+<IfModule mod_headers.c>
+ Header always set Strict-Transport-Security "max-age=15552000; includeSubDomains; preload"
+</IfModule>
<IfModule mod_ssl.c>
<VirtualHost *:443>
Header set Referrer-Policy "no-referrer"
ServerAdmin admin@hoellein.online
- DocumentRoot /var/www/icinga2/
- ServerName icinga.hoellein.online
+ DocumentRoot /usr/share/icingaweb2/public
+ ServerName icinga.hoellein.online:443
ServerAlias www.icinga.hoellein.online
+<Directory "/usr/share/icingaweb2/public">
+ Options SymLinksIfOwnerMatch
+ AllowOverride None
+
+ SetEnv ICINGAWEB_CONFIGDIR "/etc/icingaweb2"
+
+ EnableSendfile Off
+
+# <IfModule mod_rewrite.c>
+# RewriteEngine on
+# RewriteBase /icingaweb2/
+# RewriteCond %{REQUEST_FILENAME} -s [OR]
+# RewriteCond %{REQUEST_FILENAME} -l [OR]
+# RewriteCond %{REQUEST_FILENAME} -d
+# RewriteRule ^.*$ - [NC,L]
+# RewriteRule ^.*$ index.php [NC,L]
+# </IfModule>
+
+ <IfModule !mod_rewrite.c>
+ DirectoryIndex error_norewrite.html
+ ErrorDocument 404 /error_norewrite.html
+ </IfModule>
+</Directory>
+
<Directory />
Options FollowSymLinks
AllowOverride all
SSLCertificateKeyFile /etc/letsencrypt/live/icinga.hoellein.online/privkey.pem
</VirtualHost>
</IfModule>
-
#
# The MySQL database server configuration file.
#
-# You can copy this to one of:
-# - "/etc/mysql/my.cnf" to set global options,
-# - "~/.my.cnf" to set user-specific options.
-#
# One can use all long options that the program supports.
# Run program with --help to get a list of available options and with
# --print-defaults to see which it would actually understand and use.
# For explanations see
# http://dev.mysql.com/doc/mysql/en/server-system-variables.html
-# This will be passed to all mysql clients
-# It has been reported that passwords should be enclosed with ticks/quotes
-# escpecially if they contain "#" chars...
-# Remember to edit /etc/mysql/debian.cnf when changing the socket location.
-
# Here is entries for some specific programs
# The following values assume you have at least 32M ram
-[mysqld_safe]
-socket = /var/run/mysqld/mysqld.sock
-nice = 0
-
[mysqld]
#
# * Basic Settings
#
user = mysql
-pid-file = /var/run/mysqld/mysqld.pid
-socket = /var/run/mysqld/mysqld.sock
-port = 3306
-basedir = /usr
-datadir = /var/lib/mysql
-tmpdir = /tmp
-lc-messages-dir = /usr/share/mysql
-skip-external-locking
+# pid-file = /var/run/mysqld/mysqld.pid
+# socket = /var/run/mysqld/mysqld.sock
+# port = 3306
+# datadir = /var/lib/mysql
+
+
+# If MySQL is running as a replication slave, this should be
+# changed. Ref https://dev.mysql.com/doc/refman/8.0/en/server-system-variables.html#sysvar_tmpdir
+# tmpdir = /tmp
#
# Instead of skip-networking the default is now to listen only on
# localhost which is more compatible and is not less secure.
# * Fine Tuning
#
key_buffer_size = 16M
-max_allowed_packet = 16M
-thread_stack = 192K
-thread_cache_size = 8
+# max_allowed_packet = 64M
+# thread_stack = 256K
+
+# thread_cache_size = -1
+
# This replaces the startup script and checks MyISAM tables if needed
# the first time they are touched
myisam-recover-options = BACKUP
-#max_connections = 100
-#table_open_cache = 64
-#thread_concurrency = 10
-#
-# * Query Cache Configuration
-#
-query_cache_limit = 1M
-query_cache_size = 16M
+
+# max_connections = 151
+
+# table_open_cache = 4000
+
#
# * Logging and Replication
#
# Both location gets rotated by the cronjob.
+#
+# Log all queries
# Be aware that this log type is a performance killer.
-# As of 5.1 you can enable the log at runtime!
-#general_log_file = /var/log/mysql/mysql.log
-#general_log = 1
+# general_log_file = /var/log/mysql/query.log
+# general_log = 1
#
# Error log - should be very few entries.
#
log_error = /var/log/mysql/error.log
#
# Here you can see queries with especially long duration
-#slow_query_log = 1
-#slow_query_log_file = /var/log/mysql/mysql-slow.log
-#long_query_time = 2
-#log-queries-not-using-indexes
+# slow_query_log = 1
+# slow_query_log_file = /var/log/mysql/mysql-slow.log
+# long_query_time = 2
+# log-queries-not-using-indexes
#
# The following can be used as easy to replay backup logs or for replication.
# note: if you are setting up a replication slave, see README.Debian about
# other settings you may need to change.
-#server-id = 1
-#log_bin = /var/log/mysql/mysql-bin.log
-expire_logs_days = 10
+# server-id = 1
+# log_bin = /var/log/mysql/mysql-bin.log
+# binlog_expire_logs_seconds = 2592000
max_binlog_size = 100M
-#binlog_do_db = include_database_name
-#binlog_ignore_db = include_database_name
-#
-# * InnoDB
-#
-# InnoDB is enabled by default with a 10MB datafile in /var/lib/mysql/.
-# Read the manual for more InnoDB related options. There are many!
-#
-# * Security Features
-#
-# Read the manual, too, if you want chroot!
-# chroot = /var/lib/mysql/
-#
-# For generating SSL certificates I recommend the OpenSSL GUI "tinyca".
-#
-# ssl-ca=/etc/mysql/cacert.pem
-# ssl-cert=/etc/mysql/server-cert.pem
-# ssl-key=/etc/mysql/server-key.pem
+# binlog_do_db = include_database_name
+# binlog_ignore_db = include_database_name
projects / vserver / commitdiff