| 1 |
diff -Nur --no-dereference smeserver-phpki-ng-0.3.old/root/etc/e-smith/templates/etc/httpd/conf/httpd.conf/VirtualHosts/28phpkiProxyPass smeserver-phpki-ng-0.3/root/etc/e-smith/templates/etc/httpd/conf/httpd.conf/VirtualHosts/28phpkiProxyPass |
| 2 |
--- smeserver-phpki-ng-0.3.old/root/etc/e-smith/templates/etc/httpd/conf/httpd.conf/VirtualHosts/28phpkiProxyPass 2022-07-21 11:14:01.272000000 -0400 |
| 3 |
+++ smeserver-phpki-ng-0.3/root/etc/e-smith/templates/etc/httpd/conf/httpd.conf/VirtualHosts/28phpkiProxyPass 2022-07-21 11:16:34.643000000 -0400 |
| 4 |
@@ -27,9 +27,7 @@ |
| 5 |
|
| 6 |
<Location /phpki> |
| 7 |
SSLRequireSSL on |
| 8 |
- order deny,allow |
| 9 |
- deny from all |
| 10 |
- allow from $localAccess $externalSSLAccess |
| 11 |
+ Require ip $localAccess $externalSSLAccess |
| 12 |
</Location> |
| 13 |
|
| 14 |
HERE |
| 15 |
diff -Nur --no-dereference smeserver-phpki-ng-0.3.old/root/etc/e-smith/templates/etc/httpd/pki-conf/httpd.conf/20Modules smeserver-phpki-ng-0.3/root/etc/e-smith/templates/etc/httpd/pki-conf/httpd.conf/20Modules |
| 16 |
--- smeserver-phpki-ng-0.3.old/root/etc/e-smith/templates/etc/httpd/pki-conf/httpd.conf/20Modules 2022-07-21 11:14:01.280000000 -0400 |
| 17 |
+++ smeserver-phpki-ng-0.3/root/etc/e-smith/templates/etc/httpd/pki-conf/httpd.conf/20Modules 2022-07-21 11:21:12.958000000 -0400 |
| 18 |
@@ -46,7 +46,6 @@ |
| 19 |
cgi |
| 20 |
mpm_prefork |
| 21 |
unixd |
| 22 |
- access_compat |
| 23 |
authn_core |
| 24 |
authz_core |
| 25 |
authz_user |
| 26 |
diff -Nur --no-dereference smeserver-phpki-ng-0.3.old/root/etc/e-smith/templates/etc/httpd/pki-conf/httpd.conf/85DefaultAccess smeserver-phpki-ng-0.3/root/etc/e-smith/templates/etc/httpd/pki-conf/httpd.conf/85DefaultAccess |
| 27 |
--- smeserver-phpki-ng-0.3.old/root/etc/e-smith/templates/etc/httpd/pki-conf/httpd.conf/85DefaultAccess 2008-08-15 12:32:53.000000000 -0400 |
| 28 |
+++ smeserver-phpki-ng-0.3/root/etc/e-smith/templates/etc/httpd/pki-conf/httpd.conf/85DefaultAccess 2022-07-21 11:18:14.953000000 -0400 |
| 29 |
@@ -5,9 +5,7 @@ |
| 30 |
<Directory /> |
| 31 |
Options None |
| 32 |
AllowOverride None |
| 33 |
- order deny,allow |
| 34 |
- deny from all |
| 35 |
- allow from none |
| 36 |
+ Require all denied |
| 37 |
</Directory> |
| 38 |
|
| 39 |
|
| 40 |
diff -Nur --no-dereference smeserver-phpki-ng-0.3.old/root/etc/e-smith/templates/etc/httpd/pki-conf/httpd.conf/90phpki smeserver-phpki-ng-0.3/root/etc/e-smith/templates/etc/httpd/pki-conf/httpd.conf/90phpki |
| 41 |
--- smeserver-phpki-ng-0.3.old/root/etc/e-smith/templates/etc/httpd/pki-conf/httpd.conf/90phpki 2022-07-21 11:14:01.281000000 -0400 |
| 42 |
+++ smeserver-phpki-ng-0.3/root/etc/e-smith/templates/etc/httpd/pki-conf/httpd.conf/90phpki 2022-07-21 11:19:34.780000000 -0400 |
| 43 |
@@ -14,17 +14,11 @@ |
| 44 |
SetHandler \"proxy:unix:/var/run/php-fpm/php${version}-${pool_name}.sock|fcgi://localhost\" |
| 45 |
</FilesMatch>\n"; |
| 46 |
} |
| 47 |
-# php_flag register_globals off |
| 48 |
-# php_flag register_long_arrays on |
| 49 |
-# php_admin_value session.save_path /var/lib/php/pki-session |
| 50 |
-# php_admin_value openbase_dir /opt/phpki:/var/lib/php/pki-session |
| 51 |
AddType application/x-x509-ca-cert .crt .pem |
| 52 |
AddType application/pkix-crl .crl |
| 53 |
AddType application/pkix-cert .cer .der |
| 54 |
AllowOverride None |
| 55 |
- order deny,allow |
| 56 |
- deny from all |
| 57 |
- allow from 127.0.0.1 |
| 58 |
+ Require ip 127.0.0.1 |
| 59 |
</Directory> |
| 60 |
|
| 61 |
# /ca is only allowed for admin and explicitely authorized users |
| 62 |
@@ -47,7 +41,6 @@ |
| 63 |
# Disable access to /admin, which is used to configure user/password |
| 64 |
# via an htaccess file |
| 65 |
<Directory /opt/phpki/html/admin> |
| 66 |
- order deny,allow |
| 67 |
- deny from all |
| 68 |
+ Require all denied |
| 69 |
</Directory> |
| 70 |
|
Parent Directory
| 
Revision Log
| 
Revision Graph
