--- loncom/loncapa_apache.conf 2013/08/09 20:59:57 1.215.2.9
+++ loncom/loncapa_apache.conf 2013/12/13 02:50:01 1.215.2.10
@@ -2,7 +2,7 @@
## loncapa_apache.conf -- Apache HTTP LON-CAPA configuration file
##
-# $Id: loncapa_apache.conf,v 1.215.2.9 2013/08/09 20:59:57 raeburn Exp $
+# $Id: loncapa_apache.conf,v 1.215.2.10 2013/12/13 02:50:01 raeburn Exp $
#
# LON-CAPA Section (extensions to httpd.conf daemon configuration)
@@ -64,7 +64,7 @@ PerlSetVar lonOtherAuthen no
#PerlWarn On
-PerlAuthenHandler 'sub { return OK }'
+PerlAuthzHandler 'sub { return OK }'
# Send proper expires header to avoid unnecessary HTTP request for static content
@@ -416,8 +416,8 @@ ErrorDocument 413 /adm/overloaded.tx
AuthType LONCAPA
Require valid-user
-SetHandler perl-script
PerlAuthzHandler Apache::lonacc
+SetHandler perl-script
PerlHandler Apache::lonmeta
@@ -635,8 +635,8 @@ PerlHandler Apache::lonlogin
PerlAccessHandler Apache::publiccheck
AuthType LONCAPA
Require valid-user
-SetHandler perl-script
PerlAuthzHandler Apache::lonacc
+SetHandler perl-script
PerlHandler Apache::restrictedaccess
ErrorDocument 500 /adm/errorhandler
@@ -645,8 +645,8 @@ ErrorDocument 500 /adm/errorhandler
PerlAccessHandler Apache::publiccheck
AuthType LONCAPA
Require valid-user
-SetHandler perl-script
PerlAuthzHandler Apache::lonacc
+SetHandler perl-script
PerlHandler Apache::blockedaccess
ErrorDocument 500 /adm/errorhandler
@@ -1440,8 +1440,13 @@ PerlChildExitHandler Apache::lonacc::goo
Options None
AllowOverride None
-order deny,allow
-deny from all
+
+ Require all denied
+
+
+ order deny,allow
+ deny from all
+
# Allow uploaded files to be served
@@ -1449,8 +1454,13 @@ deny from all
Options Includes FollowSymLinks
AllowOverride None
-order allow,deny
-allow from all
+
+ Require all granted
+
+
+ order allow,deny
+ allow from all
+
# Allow construction space files to be served
@@ -1458,8 +1468,13 @@ allow from all
Options Includes FollowSymLinks
AllowOverride
-order allow,deny
-allow from all
+
+ Require all granted
+
+
+ order allow,deny
+ allow from all
+
# Yes to symbolic links and server-side includes
@@ -1467,8 +1482,13 @@ allow from all
Options Includes FollowSymLinks
AllowOverride None
-order allow,deny
-allow from all
+
+ Require all granted
+
+
+ order allow,deny
+ allow from all
+
# If it is in cgi-bin, then it can be executed as a CGI script.
@@ -1476,8 +1496,13 @@ allow from all
AllowOverride None
Options ExecCGI FollowSymLinks
-order allow,deny
-allow from all
+
+ Require all granted
+
+
+ order allow,deny
+ allow from all
+
# Allow serving of files in prtspool
@@ -1485,8 +1510,13 @@ allow from all
Options Includes FollowSymLinks
AllowOverride None
-order allow,deny
-allow from all
+
+ Require all granted
+
+
+ order allow,deny
+ allow from all
+
# Allow serving of files in zipspool
@@ -1494,8 +1524,13 @@ allow from all
Options Includes FollowSymLinks
AllowOverride None
-order allow,deny
-allow from all
+
+ Require all granted
+
+
+ order allow,deny
+ allow from all
+
# Allow serving of files in captchaspool
@@ -1503,10 +1538,19 @@ allow from all
Options Includes FollowSymLinks
AllowOverride None
-order allow,deny
-allow from all
+
+ Require all granted
+
+
+ order allow,deny
+ allow from all
+
+
+ DirectoryIndex disabled
+
+
# ============================================================= Access Handlers
# ------------------------------------------------- Allow server-status reports
@@ -1525,10 +1569,15 @@ ErrorDocument 500 /adm/errorhandler
# ------------------- Allow access to local system documentation from localhost
Alias /doc /usr/doc
-order deny,allow
-deny from all
-allow from localhost
Options Indexes FollowSymLinks
+
+ Require local
+
+
+ order deny,allow
+ deny from all
+ allow from localhost
+
# ******** THESE "SHOULD" NEVER BE ALTERED BY THE USER ************************