diff --git a/lighttpd/conf.d/access_log.conf b/lighttpd/conf.d/access_log.conf deleted file mode 100644 index 6c1e7e3..0000000 --- a/lighttpd/conf.d/access_log.conf +++ /dev/null @@ -1,27 +0,0 @@ -####################################################################### -## -## Corresponding documentation: -## -## http://www.lighttpd.net/documentation/access.html -## -server.modules += ( "mod_accesslog" ) - -## -## Default access log. -## -accesslog.filename = log_root + "/access.log" - -## -## The default format produces CLF compatible output. -## For available parameters see access.txt -## -#accesslog.format = "%h %l %u %t \"%r\" %b %>s \"%{User-Agent}i\" \"%{Referer}i\"" - -## -## If you want to log to syslog you have to unset the -## accesslog.use-syslog setting and uncomment the next line. -## -#accesslog.use-syslog = "enable" - -# -####################################################################### diff --git a/lighttpd/conf.d/cgi.conf b/lighttpd/conf.d/cgi.conf deleted file mode 100644 index cf18425..0000000 --- a/lighttpd/conf.d/cgi.conf +++ /dev/null @@ -1,33 +0,0 @@ -####################################################################### -## -## CGI modules -## --------------- -## -## http://www.lighttpd.net/documentation/cgi.html -## -server.modules += ( "mod_cgi" ) - -## -## Plain old CGI handling -## -## For PHP don't forget to set cgi.fix_pathinfo = 1 in the php.ini. -## -cgi.assign = ( ".pl" => "/usr/bin/perl", - ".cgi" => "", - ".rb" => "/usr/bin/ruby", - ".erb" => "/usr/bin/eruby", - ".py" => "/usr/bin/python" ) - -## -## to get the old cgi-bin behavior of apache -## -## Note: make sure that mod_alias is loaded if you uncomment the -## next line. (see modules.conf) -## -#alias.url += ( "/cgi-bin" => server_root + "/cgi-bin" ) -#$HTTP["url"] =~ "^/cgi-bin" { -# cgi.assign = ( "" => "" ) -#} - -## -####################################################################### diff --git a/lighttpd/conf.d/debug.conf b/lighttpd/conf.d/debug.conf deleted file mode 100644 index 80bbea0..0000000 --- a/lighttpd/conf.d/debug.conf +++ /dev/null @@ -1,47 +0,0 @@ -####################################################################### -## -## Debug options -## --------------- -## -## Enable those options for debugging the behavior -## -## The settings can be set per location/vhost. -## - -## -## log-request-handling allows you to track the request -## handing inside lighttpd. -## -#debug.log-request-handling = "enable" - -## -## log all request headers. -## -#debug.log-request-header = "enable" - -## -## similar to log-request-header. -## but only logs if we encountered an error. -## (return codes 400 and 5xx) -## -#debug.log-request-header-on-error = "enable" - -## -## log the header we send out to the client. -## -#debug.log-response-header = "enable" - -## -## log if a file wasnt found in the error log. -## -#debug.log-file-not-found = "enable" - -## -## debug conditionals handling -## -#debug.log-condition-handling = "enable" - -# -####################################################################### - - diff --git a/lighttpd/conf.d/dirlisting.conf b/lighttpd/conf.d/dirlisting.conf deleted file mode 100644 index ba2cfd6..0000000 --- a/lighttpd/conf.d/dirlisting.conf +++ /dev/null @@ -1,55 +0,0 @@ -####################################################################### -## -## Dirlisting Module -## ------------------- -## -## See http://www.lighttpd.net/documentation/dirlisting.html -## - -## -## Enabled Directory listing -## -dir-listing.activate = "enable" - -## -## Hide dot files from the listing? -## By default they are listed. -## -dir-listing.hide-dotfiles = "disable" - -## -## list of regular expressions. Files that match any of the specified -## regular expressions will be excluded from directory listings. -## -dir-listing.exclude = ( "~$" ) - -## -## set a encoding for the generated directory listing -## -## If you file-system is not using ASCII you have to set the encoding of -## the filenames as they are put into the HTML listing AS IS (with XML -## encoding) -## -dir-listing.encoding = "UTF-8" - -## -## Specify the url to an optional CSS file. -## -#dir-listing.external-css = "/dirindex.css" - -## -## Include HEADER.txt files above the directory listing. -## You can disable showing the HEADER.txt in the listing. -## -dir-listing.hide-header-file = "disable" -dir-listing.show-header = "disable" - -## -## Include README.txt files above the directory listing. -## You can disable showing the README.txt in the listing. -## -dir-listing.hide-readme-file = "disable" -dir-listing.show-readme = "disable" - -## -####################################################################### diff --git a/lighttpd/conf.d/mime.conf b/lighttpd/conf.d/mime.conf deleted file mode 100644 index 5c088ff..0000000 --- a/lighttpd/conf.d/mime.conf +++ /dev/null @@ -1,79 +0,0 @@ -####################################################################### -## -## MimeType handling -## ------------------- -## -## http://www.lighttpd.net/documentation/configuration.html#mimetypes -## -## Use the "Content-Type" extended attribute to obtain mime type if -## possible -## -mimetype.use-xattr = "disable" - -## -## mimetype mapping -## -mimetype.assign = ( - ".pdf" => "application/pdf", - ".sig" => "application/pgp-signature", - ".spl" => "application/futuresplash", - ".class" => "application/octet-stream", - ".ps" => "application/postscript", - ".torrent" => "application/x-bittorrent", - ".dvi" => "application/x-dvi", - ".gz" => "application/x-gzip", - ".pac" => "application/x-ns-proxy-autoconfig", - ".swf" => "application/x-shockwave-flash", - ".tar.gz" => "application/x-tgz", - ".tgz" => "application/x-tgz", - ".tar" => "application/x-tar", - ".zip" => "application/zip", - ".mp3" => "audio/mpeg", - ".m3u" => "audio/x-mpegurl", - ".wma" => "audio/x-ms-wma", - ".wax" => "audio/x-ms-wax", - ".ogg" => "application/ogg", - ".wav" => "audio/x-wav", - ".gif" => "image/gif", - ".jpg" => "image/jpeg", - ".jpeg" => "image/jpeg", - ".png" => "image/png", - ".svg" => "image/svg+xml", - ".xbm" => "image/x-xbitmap", - ".xpm" => "image/x-xpixmap", - ".xwd" => "image/x-xwindowdump", - ".css" => "text/css", - ".html" => "text/html", - ".htm" => "text/html", - ".js" => "text/javascript", - ".asc" => "text/plain", - ".c" => "text/plain", - ".cpp" => "text/plain", - ".log" => "text/plain", - ".conf" => "text/plain", - ".text" => "text/plain", - ".txt" => "text/plain", - ".spec" => "text/plain", - ".dtd" => "text/xml", - ".xml" => "text/xml", - ".mpeg" => "video/mpeg", - ".mpg" => "video/mpeg", - ".mov" => "video/quicktime", - ".qt" => "video/quicktime", - ".avi" => "video/x-msvideo", - ".asf" => "video/x-ms-asf", - ".asx" => "video/x-ms-asf", - ".wmv" => "video/x-ms-wmv", - ".bz2" => "application/x-bzip", - ".tbz" => "application/x-bzip-compressed-tar", - ".tar.bz2" => "application/x-bzip-compressed-tar", - ".rpm" => "application/x-rpm", - ".json" => "application/json", - # make the default mime type application/octet-stream. - "" => "application/octet-stream", - ) - - -# -####################################################################### - diff --git a/lighttpd/lighttpd.conf b/lighttpd/lighttpd.conf deleted file mode 100644 index 5704d0e..0000000 --- a/lighttpd/lighttpd.conf +++ /dev/null @@ -1,473 +0,0 @@ -####################################################################### -## -## /etc/lighttpd/lighttpd.conf -## -## check /etc/lighttpd/conf.d/*.conf for the configuration of modules. -## -####################################################################### - -####################################################################### -## -## Some Variable definition which will make chrooting easier. -## -## if you add a variable here. Add the corresponding variable in the -## chroot example aswell. -## -var.log_root = "/var/log/lighttpd" -var.server_root = "/var/www" -var.state_dir = "/var/run" -var.home_dir = "/var/lib/lighttpd" -var.conf_dir = "/etc/lighttpd" - -## -## run the server chrooted. -## -## This requires root permissions during startup. -## -## If you run Chrooted set the the variables to directories relative to -## the chroot dir. -## -## example chroot configuration: -## -#var.log_root = "/logs" -#var.server_root = "/" -#var.state_dir = "/run" -#var.home_dir = "/lib/lighttpd" -#var.vhosts_dir = "/vhosts" -#var.conf_dir = "/etc" -# -#server.chroot = "/srv/www" - -## -## Some additional variables to make the configuration easier -## - -## -## Base directory for all virtual hosts -## -## used in: -## conf.d/evhost.conf -## conf.d/simple_vhost.conf -## vhosts.d/vhosts.template -## -var.vhosts_dir = server_root + "/vhosts" - -## -## Cache for mod_compress -## -## used in: -## conf.d/compress.conf -## -var.cache_dir = "/var/cache/lighttpd" - -## -## Base directory for sockets. -## -## used in: -## conf.d/fastcgi.conf -## conf.d/scgi.conf -## -var.socket_dir = home_dir + "/sockets" - -## -####################################################################### - -####################################################################### -## -## Load the modules. -include "modules.conf" - -## -####################################################################### - -####################################################################### -## -## Basic Configuration -## --------------------- -## -server.port = 80 - -## -## Use IPv6? -## -server.use-ipv6 = "enable" - -## -## bind to a specific IP -## -#server.bind = "localhost" - -## -## Run as a different username/groupname. -## This requires root permissions during startup. -## -server.username = "lighttpd" -server.groupname = "lighttpd" - -## -## enable core files. -## -#server.core-files = "disable" - -## -## Document root -## -server.document-root = server_root + "/lighttpd" - -## -## The value for the "Server:" response field. -## -## It would be nice to keep it at "lighttpd". -## -#server.tag = "lighttpd" - -## -## store a pid file -## -server.pid-file = state_dir + "/lighttpd.pid" - -## -####################################################################### - -####################################################################### -## -## Logging Options -## ------------------ -## -## all logging options can be overwritten per vhost. -## -## Path to the error log file -## -server.errorlog = log_root + "/error.log" - -## -## If you want to log to syslog you have to unset the -## server.errorlog setting and uncomment the next line. -## -#server.errorlog-use-syslog = "enable" - -## -## Access log config -## -include "conf.d/access_log.conf" - -## -## The debug options are moved into their own file. -## see conf.d/debug.conf for various options for request debugging. -## -include "conf.d/debug.conf" - -## -####################################################################### - -####################################################################### -## -## Tuning/Performance -## -------------------- -## -## corresponding documentation: -## http://www.lighttpd.net/documentation/performance.html -## -## set the event-handler (read the performance section in the manual) -## -## possible options on linux are: -## -## select -## poll -## linux-sysepoll -## -## linux-sysepoll is recommended on kernel 2.6. -## -server.event-handler = "linux-sysepoll" - -## -## The basic network interface for all platforms at the syscalls read() -## and write(). Every modern OS provides its own syscall to help network -## servers transfer files as fast as possible -## -## linux-sendfile - is recommended for small files. -## writev - is recommended for sending many large files -## -server.network-backend = "linux-sendfile" - -## -## As lighttpd is a single-threaded server, its main resource limit is -## the number of file descriptors, which is set to 1024 by default (on -## most systems). -## -## If you are running a high-traffic site you might want to increase this -## limit by setting server.max-fds. -## -## Changing this setting requires root permissions on startup. see -## server.username/server.groupname. -## -## By default lighttpd would not change the operation system default. -## But setting it to 2048 is a better default for busy servers. -## -## With SELinux enabled, this is denied by default and needs to be allowed -## by running the following once : setsebool -P httpd_setrlimit on -#server.max-fds = 2048 - -## -## Stat() call caching. -## -## lighttpd can utilize FAM/Gamin to cache stat call. -## -## possible values are: -## disable, simple or fam. -## -server.stat-cache-engine = "simple" - -## -## Fine tuning for the request handling -## -## max-connections == max-fds/2 (maybe /3) -## means the other file handles are used for fastcgi/files -## -server.max-connections = 1024 - -## -## How many seconds to keep a keep-alive connection open, -## until we consider it idle. -## -## Default: 5 -## -#server.max-keep-alive-idle = 5 - -## -## How many keep-alive requests until closing the connection. -## -## Default: 16 -## -#server.max-keep-alive-requests = 16 - -## -## Maximum size of a request in kilobytes. -## By default it is unlimited (0). -## -## Uploads to your server cant be larger than this value. -## -#server.max-request-size = 0 - -## -## Time to read from a socket before we consider it idle. -## -## Default: 60 -## -#server.max-read-idle = 60 - -## -## Time to write to a socket before we consider it idle. -## -## Default: 360 -## -#server.max-write-idle = 360 - -## -## Traffic Shaping -## ----------------- -## -## see /usr/share/doc/lighttpd/traffic-shaping.txt -## -## Values are in kilobyte per second. -## -## Keep in mind that a limit below 32kB/s might actually limit the -## traffic to 32kB/s. This is caused by the size of the TCP send -## buffer. -## -## per server: -## -#server.kbytes-per-second = 128 - -## -## per connection: -## -#connection.kbytes-per-second = 32 - -## -####################################################################### - -####################################################################### -## -## Filename/File handling -## ------------------------ - -## -## files to check for if .../ is requested -## index-file.names = ( "index.php", "index.rb", "index.html", -## "index.htm", "default.htm" ) -## -#index-file.names += ( -# "index.xhtml", "index.html", "index.htm", "default.htm", "index.php" -#) -index-file.names += ( - "index.xhtml", "index.html", "index.htm", "default.htm", "index.php", - "index.cgi" -) - -## -## deny access the file-extensions -## -## ~ is for backupfiles from vi, emacs, joe, ... -## .inc is often used for code includes which should in general not be part -## of the document-root -url.access-deny = ( "~", ".inc" ) - -## -## disable range requests for pdf files -## workaround for a bug in the Acrobat Reader plugin. -## -$HTTP["url"] =~ "\.pdf$" { - server.range-requests = "disable" -} - -## -## url handling modules (rewrite, redirect) -## -#url.rewrite = ( "^/$" => "/server-status" ) -#url.redirect = ( "^/wishlist/(.+)" => "http://www.example.com/$1" ) - -## -## both rewrite/redirect support back reference to regex conditional using %n -## -#$HTTP["host"] =~ "^www\.(.*)" { -# url.redirect = ( "^/(.*)" => "http://%1/$1" ) -#} -$HTTP["host"] =~ "^(.*)$" { - url.redirect = ( - "^/scoring/highscores.html" => "http://%1/scoring/high.cgi?l=40" - ) -} - -## -## which extensions should not be handle via static-file transfer -## -## .php, .pl, .fcgi are most often handled by mod_fastcgi or mod_cgi -## -#static-file.exclude-extensions = ( ".php", ".pl", ".fcgi", ".scgi" ) -static-file.exclude-extensions = ( ".php", ".pl", ".fcgi", ".cgi", ".py", ".scgi" ) - -## -## error-handler for status 404 -## -#server.error-handler-404 = "/error-handler.html" -#server.error-handler-404 = "/error-handler.php" -server.error-handler-404 = "404.html" - -## -## Format: .html -## -> ..../status-404.html for 'File not found' -## -#server.errorfile-prefix = "/srv/www/htdocs/errors/status-" - -## -## mimetype mapping -## -include "conf.d/mime.conf" - -## -## directory listing configuration -## -include "conf.d/dirlisting.conf" - -## -## Should lighttpd follow symlinks? -## -server.follow-symlink = "enable" - -## -## force all filenames to be lowercase? -## -#server.force-lowercase-filenames = "disable" - -## -## defaults to /var/tmp as we assume it is a local harddisk -## -server.upload-dirs = ( "/var/tmp" ) - -## -####################################################################### - - -####################################################################### -## -## SSL Support -## ------------- -## -## To enable SSL for the whole server you have to provide a valid -## certificate and have to enable the SSL engine.:: -## -## ssl.engine = "enable" -## ssl.pemfile = "/path/to/server.pem" -## -## The HTTPS protocol does not allow you to use name-based virtual -## hosting with SSL. If you want to run multiple SSL servers with -## one lighttpd instance you must use IP-based virtual hosting: :: -## -## Mitigate CVE-2009-3555 by disabling client triggered renegotation -## This is enabled by default. -## -## IMPORTANT: this setting can only be used in the global scope. -## It does *not* work inside conditionals -## -# ssl.disable-client-renegotiation = "enable" -## -## $SERVER["socket"] == "10.0.0.1:443" { -## ssl.engine = "enable" -## ssl.pemfile = "/etc/ssl/private/www.example.com.pem" -## # -## # (Following SSL/TLS Deployment Best Practices 1.3 / 17 September 2013 from: -## # https://www.ssllabs.com/projects/best-practices/index.html) -## # - BEAST is considered mitigaed on client side now, and new weaknesses have been found in RC4, -## # so it is strongly advised to disable RC4 ciphers (HIGH doesn't include RC4) -## # - It is recommended to disable 3DES too (although disabling RC4 and 3DES breaks IE6+8 on Windows XP, -## # so you might want to support 3DES for now - just remove the '!3DES' parts below). -## # - The examples below prefer ciphersuites with "Forward Secrecy" (and ECDHE over DHE (alias EDH)), remove '+kEDH +kRSA' -## # if you don't want that. -## # - SRP and PSK are not supported anyway, excluding those ('!kSRP !kPSK') just keeps the list smaller (easier to review) -## # Check your cipher list with: openssl ciphers -v '...' (use single quotes as your shell won't like ! in double quotes) -## # -## # If you know you have RSA keys (standard), you can use: -## ssl.cipher-list = "PROFILE=SYSTEM" -## # The more generic version (without the restriction to RSA keys) is -## # ssl.cipher-list = "HIGH !aNULL !3DES +kEDH +kRSA !kSRP !kPSK" -## # -## # Make the server prefer the order of the server side cipher suite instead of the client suite. -## # This option is enabled by default, but only used if ssl.cipher-list is set. -## # -## # ssl.honor-cipher-order = "enable" -## # -## server.name = "www.example.com" -## -## server.document-root = "/srv/www/vhosts/example.com/www/" -## } -## - -## If you have a .crt and a .key file, cat them together into a -## single PEM file: -## $ cat /etc/ssl/private/lighttpd.key /etc/ssl/certs/lighttpd.crt \ -## > /etc/ssl/private/lighttpd.pem -## -#ssl.pemfile = "/etc/ssl/private/lighttpd.pem" - -## -## optionally pass the CA certificate here. -## -## -#ssl.ca-file = "" - -## -####################################################################### - -####################################################################### -## -## custom includes like vhosts. -## -#include "conf.d/config.conf" -#include_shell "cat /etc/lighttpd/vhosts.d/*.conf" -## -####################################################################### - -setenv.add-environment = ( - "LC_CTYPE" => "en_US.utf8" -) diff --git a/lighttpd/modules.conf b/lighttpd/modules.conf deleted file mode 100644 index b4cf170..0000000 --- a/lighttpd/modules.conf +++ /dev/null @@ -1,174 +0,0 @@ -####################################################################### -## -## Modules to load -## ----------------- -## -## at least mod_access and mod_accesslog should be loaded -## all other module should only be loaded if really neccesary -## -## - saves some time -## - saves memory -## -## the default module set contains: -## -## "mod_indexfile", "mod_dirlisting", "mod_staticfile" -## -## you dont have to include those modules in your list -## -## Modules, which are pulled in via conf.d/*.conf -## -## NOTE: the order of modules is important. -## -## - mod_accesslog -> conf.d/access_log.conf -## - mod_compress -> conf.d/compress.conf -## - mod_status -> conf.d/status.conf -## - mod_webdav -> conf.d/webdav.conf -## - mod_cml -> conf.d/cml.conf -## - mod_evhost -> conf.d/evhost.conf -## - mod_simple_vhost -> conf.d/simple_vhost.conf -## - mod_mysql_vhost -> conf.d/mysql_vhost.conf -## - mod_trigger_b4_dl -> conf.d/trigger_b4_dl.conf -## - mod_userdir -> conf.d/userdir.conf -## - mod_rrdtool -> conf.d/rrdtool.conf -## - mod_ssi -> conf.d/ssi.conf -## - mod_cgi -> conf.d/cgi.conf -## - mod_scgi -> conf.d/scgi.conf -## - mod_fastcgi -> conf.d/fastcgi.conf -## - mod_proxy -> conf.d/proxy.conf -## - mod_secdownload -> conf.d/secdownload.conf -## - mod_expire -> conf.d/expire.conf -## - -server.modules = ( - "mod_access", - "mod_accesslog", - "mod_cgi", -# "mod_alias", -# "mod_auth", -# "mod_evasive", - "mod_redirect", -# "mod_rewrite", - "mod_setenv", -# "mod_usertrack", -) - -## -####################################################################### - -####################################################################### -## -## Config for various Modules -## - -## -## mod_ssi -## -#include "conf.d/ssi.conf" - -## -## mod_status -## -#include "conf.d/status.conf" - -## -## mod_webdav -## -#include "conf.d/webdav.conf" - -## -## mod_compress -## -#include "conf.d/compress.conf" - -## -## mod_userdir -## -#include "conf.d/userdir.conf" - -## -## mod_magnet -## -#include "conf.d/magnet.conf" - -## -## mod_cml -## -#include "conf.d/cml.conf" - -## -## mod_rrdtool -## -#include "conf.d/rrdtool.conf" - -## -## mod_proxy -## -#include "conf.d/proxy.conf" - -## -## mod_expire -## -#include "conf.d/expire.conf" - -## -## mod_secdownload -## -#include "conf.d/secdownload.conf" - -## -####################################################################### - -####################################################################### -## -## CGI modules -## - -## -## SCGI (mod_scgi) -## -#include "conf.d/scgi.conf" - -## -## FastCGI (mod_fastcgi) -## -#include "conf.d/fastcgi.conf" - -## -## plain old CGI (mod_cgi) -## -include "conf.d/cgi.conf" - -## -####################################################################### - -####################################################################### -## -## VHost Modules -## -## Only load ONE of them! -## ======================== -## - -## -## You can use conditionals for vhosts aswell. -## -## see http://www.lighttpd.net/documentation/configuration.html -## - -## -## mod_evhost -## -#include "conf.d/evhost.conf" - -## -## mod_simple_vhost -## -#include "conf.d/simple_vhost.conf" - -## -## mod_mysql_vhost -## -#include "conf.d/mysql_vhost.conf" - -## -####################################################################### diff --git a/lighttpd/rlgallery.conf b/lighttpd/rlgallery.conf new file mode 100644 index 0000000..c423179 --- /dev/null +++ b/lighttpd/rlgallery.conf @@ -0,0 +1,37 @@ +# lighttpd configuration file for rlgallery.org +# Include this file in your lighttpd.conf + +# Ensure index.cgi is in the list +index-file.names += ( + "index.xhtml", "index.html", "index.htm", "index.cgi" +) + +server.modules += ( "mod_cgi", "mod_redirect", "mod_setenv" ) + +cgi.assign = ( ".cgi" => "" ) + +# The old static high score page now redirects to the CGI script +$HTTP["host"] =~ "^(.*)$" { + url.redirect = ( + "^/scoring/highscores.html" => "http://%1/scoring/high.cgi?l=40" + ) +} + +# Don't send CGI scripts or python scripts as static files +static-file.exclude-extensions += ( ".cgi", ".py" ) + +# Use the custom 404 error page +server.error-handler-404 = "404.html" + +# Set a UTF-8 environment, or Python 3 won't work +setenv.add-environment = ( + "LC_CTYPE" => "en_US.utf8" +) + +# Turn on directory listing where it is needed +$HTTP["url"] =~ "^/files/" { + dir-listing.activate = "enable" +} +$HTTP["url"] =~ "^/ttyrecs/" { + dir-listing.activate = "enable" +}