25b08c09a8
AI crawlers continue to get more and more aggressive. To ensure that there are more webserver slots for actual users apply the user agent filter to every vhost on static.o.o. Note that at least one vhost already used the ua filter so we don't need to update config management beyond the vhost configs. The macro is already installed on static. Change-Id: I7c377d51f0a89272fd6fadbecc3d7923bba3cfd7
45 lines
1.5 KiB
Plaintext
45 lines
1.5 KiB
Plaintext
<VirtualHost *:80>
|
|
ServerName docs.openstack.org
|
|
|
|
RewriteEngine on
|
|
Use UserAgentFilter
|
|
RewriteRule ^/(.*) https://docs.openstack.org/$1 [last,redirect=permanent]
|
|
|
|
ErrorLog /var/log/apache2/docs.openstack.org_error.log
|
|
LogLevel warn
|
|
CustomLog /var/log/apache2/docs.openstack.org_access.log combined
|
|
ServerSignature Off
|
|
</VirtualHost>
|
|
|
|
<IfModule mod_ssl.c>
|
|
<VirtualHost *:443>
|
|
ServerName docs.openstack.org
|
|
|
|
RewriteEngine on
|
|
Use UserAgentFilter
|
|
|
|
SSLCertificateFile /etc/letsencrypt-certs/docs.openstack.org/docs.openstack.org.cer
|
|
SSLCertificateKeyFile /etc/letsencrypt-certs/docs.openstack.org/docs.openstack.org.key
|
|
SSLCertificateChainFile /etc/letsencrypt-certs/docs.openstack.org/ca.cer
|
|
SSLProtocol All -SSLv2 -SSLv3
|
|
# Note: this list should ensure ciphers that provide forward secrecy
|
|
SSLCipherSuite ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:!AES256:!aNULL:!eNULL:!MD5:!DSS:!PSK:!SRP
|
|
SSLHonorCipherOrder on
|
|
|
|
DocumentRoot /afs/openstack.org/docs
|
|
<Directory /afs/openstack.org/docs>
|
|
Options Indexes FollowSymLinks MultiViews
|
|
Require all granted
|
|
AllowOverride None
|
|
# Allow mod_rewrite rules
|
|
AllowOverrideList Redirect RedirectMatch
|
|
ErrorDocument 404 /errorpage.html
|
|
</Directory>
|
|
|
|
ErrorLog /var/log/apache2/docs.openstack.org_error.log
|
|
LogLevel warn
|
|
CustomLog /var/log/apache2/docs.openstack.org_access.log combined
|
|
ServerSignature Off
|
|
</VirtualHost>
|
|
</IfModule>
|