aboutsummaryrefslogtreecommitdiffstats
path: root/modules/apache
Commit message (Collapse)AuthorAgeFilesLines
* Reduce number of logs kept on friteuseDan Fandrich2025-07-121-1/+1
| | | | The disk just fills up too quickly.
* Properly escape the target in then anti-robot redirectDan Fandrich2025-06-063-1/+18
| | | | Any additional URL parameters after a & were previously dropped.
* Block expensive svnweb operations without a cookieDan Fandrich2025-05-231-0/+9
| | | | | | | | | If an expensive request comes in from anyone without a cookie attached, redirect to a page where the cookie is set using JavaScript, then redirect back. This should block robots from these paths, most of which do not support JavaScript. The collateral damage is that a JavaScript browser is now required for users to access those paths. The contents of the cookie is not currently checked, merely that it is set.
* Reduce the number of SVN paths considered too expensiveDan Fandrich2025-05-231-4/+3
| | | | | | | These two don't seem to contribute much to the load seen when robots start hitting svnweb that hard. Also, remove a separate query block that seems to not help much (and which was hard to find in a different location in the file).
* Block expensive operations on another Google botDan Fandrich2025-05-191-2/+2
| | | | | | | The last range was actually another Google bot, which clearly doesn't support Crawl-Delay:. Rather than block one IP range, which isn't going to work long-term since they have so many ranges, block only expensive operations via its new User-Agent: string instead.
* Block another abusive IP address rangeDan Fandrich2025-05-191-1/+1
|
* Block more abusive IP address rangesDan Fandrich2025-05-171-1/+1
| | | | These comprise roughly 20% of current requests.
* Rotate apache logs weekly on sucuk to keep them smallerJani Välimaa2025-05-101-0/+3
|
* Block PrestoJani Välimaa2025-05-041-1/+1
| | | | Most probably Presto is not used as user agent in browsers used by potential users of Mageia.
* Block TridentJani Välimaa2025-05-041-1/+1
|
* Block a few more thingsPascal Terjan2025-04-161-1/+4
|
* Expand the IP ranges banned for hosting spidersDan Fandrich2025-03-071-1/+1
| | | | Widen the CIDR mask to catch many more addresses used by these bots.
* Fix a typo in the last commitDan Fandrich2024-10-301-1/+1
|
* Reduce the number of old Apache logs on friteuse (mga#33670)Dan Fandrich2024-10-301-1/+5
| | | | | They're currently taking up half the available disk which is currently full.
* Remove conditionals for releases older than Mageia 6Dan Fandrich2024-10-153-21/+4
| | | | | This eliminates a bunch of conditionals, simplifying the configuration. We no longer have any servers running on a release older than this.
* Enable transparent compression on Apache (mga#6969)Dan Fandrich2024-10-152-0/+38
| | | | | | This will increase CPU usage somewhat, but the reduction in required bandwidth ought to make it a win for users. The compression level is set to the lowest setting to keep CPU usage down.
* Use @ when accessing variables in templatesDan Fandrich2024-10-0512-43/+43
| | | | | | | | Access without the @ symbol is the older method and is discouraged. This take leaves alone accesses of variables that are defined within the template, which don't seem to allow an @. This batch of changes is for templates related to web sites.
* Revert "Use @ when accessing variables in templates"Dan Fandrich2024-10-0413-35/+35
| | | | | | Variables defined within a template can't be accessed with @. This change needs to be reworked to eliminate those cases. This reverts commits 2c7da665 and ae197622.
* Use @ when accessing variables in templatesDan Fandrich2024-10-0413-35/+35
| | | | Access without the @ symbol is the older method and is discouraged.
* Block a couple of IP address ranges on svnwebDan Fandrich2024-09-041-1/+6
| | | | | | There was a bot there was hammering us for weeks, but which doesn't identify itself in the User-Agent string. Also, add another couple of bot User-Agent strings.
* Block expensive SVN operations on robots on svnwebDan Fandrich2024-09-031-0/+8
| | | | | | This will result in most operations other than showing a directory or downloading a specific version of a file being blocked. ClaudeBot and Amazonbot remain completely blocked.
* Fix typos in commentsDan Fandrich2024-08-151-1/+1
| | | | This should result in no difference in configuration.
* Ban two robots from svnwebDan Fandrich2024-04-251-0/+10
|
* Switch links to https: that are found in commentsDan Fandrich2024-01-252-2/+2
| | | | These are for use by humans only.
* Have vhost_simple create an https site, tooDan Fandrich2023-12-261-0/+5
| | | | | This is only currently used by xymon, but it looks like it could be used to simplify a few other vhosts.
* apache logrotate: add sharedscripts (mga#29620)Thomas Backlund2022-07-051-0/+1
|
* work around crash during logrotate (mga#29620)Thomas Backlund2021-11-281-1/+1
|
* apache: logrotate: keep 60 days of logs on duvelThomas Backlund2021-03-191-1/+2
|
* apache: logrotate daily on duvelThomas Backlund2021-03-061-0/+4
|
* apache: update logrotate to use systemctl callsThomas Backlund2021-03-061-4/+1
|
* add missing newlineThomas Backlund2018-09-051-1/+1
|
* apache: protect any hidden files or dirs with 404Thomas Backlund2018-09-042-0/+7
|
* drop temp range check fixesThomas Backlund2017-05-261-2/+1
|
* temp range check to fix puppet run failingThomas2017-05-251-1/+2
|
* Allow to not use Location directive in apache ( but keep past use by default)Nicolas Lécureuil2017-04-172-1/+4
|
* apache fcgid: support multiple script aliasesOlivier Blin2017-04-102-1/+7
|
* apache: rename vhost_catalyst_app template as vhost_fcgidOlivier Blin2017-04-102-1/+1
|
* Remove duplicate class apache::mod::fcgid definitionOlivier Blin2017-04-101-4/+0
| | | | | | Already in fcgid.pp From unknown author root@duvel
* catalyst_app: simplify using AddHandlerOlivier Blin2017-04-081-3/+1
|
* Allow having static aliasPascal Terjan2017-04-081-1/+3
|
* catalyst_app: use fcgid instead of fastcgiOlivier Blin2017-04-082-4/+5
| | | | fastcgi is not available on Mageia 5.
* catalyst_app: remove duplicate aliases, already in vhost::baseOlivier Blin2017-04-081-3/+0
|
* apache: use apachectl configtest directlyOlivier Blin2017-04-082-2/+2
| | | | "service httpd configtest" does not work with systemd
* Add apache::mod::fcgid classNicolas Lécureuil2017-04-061-0/+5
|
* Remove broken apache-mod_deflate package requirementOlivier Blin2017-02-211-4/+0
| | | | | | | | | | | | | This has been provided by the apache package directly since Mga3. apache-mod_deflate was used for the planet config only, on the champagne host, running Mga4. puppet failed because it did not handle the virtual package from the apache package: Error: Package apache-mod_deflate was not present after trying to install it Error: /Stage[main]/Apache::Mod::Deflate/Package[apache-mod_deflate]/ensure: change from absent to present failed: Package apache-mod_deflate was not present after trying to install it
* apache: fix vhost_simple for apache 2.4Thomas Backlund2016-03-141-1/+6
|
* enforce hardened sslThomas Backlund2016-03-012-3/+8
|
* Make vhost_base compatible with Apache 2.4Pascal Terjan2016-02-071-1/+6
|
* apache: use proper conf.d dir on Mageia >= 2Olivier Blin2015-11-305-7/+12
|
* apache: rename ssl.conf as ssl_vhost.confOlivier Blin2015-11-302-2/+2
| | | | Not to conflict with packaged file from Mageia >= 3
generated by cgit v1.2.1 (git 2.21.0) at 2025-08-10 11:26:44 +0000