core.xml.es revision 173e5f4d5ec46b5febb74ce860d753bb1faaba0f
842ae4bd224140319ae7feec1872b93dfd491143fielding<!DOCTYPE modulesynopsis SYSTEM "/style/modulesynopsis.dtd">
842ae4bd224140319ae7feec1872b93dfd491143fielding<?xml-stylesheet type="text/xsl" href="/style/manual.en.xsl"?>
842ae4bd224140319ae7feec1872b93dfd491143fielding<!-- English Revision: 1040494:1399903 (outdated) -->
2d2eda71267231c2526be701fe655db125852c1ffielding Licensed to the Apache Software Foundation (ASF) under one or more
ce9621257ef9e54c1bbe5ad8a5f445a1f211c2dcnd contributor license agreements. See the NOTICE file distributed with
2d2eda71267231c2526be701fe655db125852c1ffielding this work for additional information regarding copyright ownership.
ce9621257ef9e54c1bbe5ad8a5f445a1f211c2dcnd The ASF licenses this file to You under the Apache License, Version 2.0
ce9621257ef9e54c1bbe5ad8a5f445a1f211c2dcnd (the "License"); you may not use this file except in compliance with
ce9621257ef9e54c1bbe5ad8a5f445a1f211c2dcnd the License. You may obtain a copy of the License at
2d2eda71267231c2526be701fe655db125852c1ffielding Unless required by applicable law or agreed to in writing, software
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben distributed under the License is distributed on an "AS IS" BASIS,
0432a26b69eedfb9ca5f34fba590236378a24851ben WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
0432a26b69eedfb9ca5f34fba590236378a24851ben See the License for the specific language governing permissions and
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh limitations under the License.
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh<description>Funcionalides básicas del Servidor HTTP Apache que siempre están presentes.</description>
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh<directivesynopsis>
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh<description>Configura mejoras para un Protocolo de Escucha de Sockets</description>
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh<syntax>AcceptFilter <var>protocol</var> <var>accept_filter</var></syntax>
2d2eda71267231c2526be701fe655db125852c1ffielding<contextlist><context>server config</context></contextlist>
2d2eda71267231c2526be701fe655db125852c1ffielding<compatibility>Disponible en Apache httpd 2.1.5 y posteriores.
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianhEn Windows desde Apache httpd 2.3.3 y posteriores.</compatibility>
b0f20a4a26bcfa85724b1c2e5ec6a077f12ef44crbb <p>Esta directiva hace posible mejoras específicas a nivel de sistema operativo
b0f20a4a26bcfa85724b1c2e5ec6a077f12ef44crbb y a través del tipo de Protocolo para un socket que escucha.
b0f20a4a26bcfa85724b1c2e5ec6a077f12ef44crbb La premisa básica es que el kernel no envíe un socket al servidor
b0f20a4a26bcfa85724b1c2e5ec6a077f12ef44crbb hasta que o bien los datos se hayan recibido o bien se haya almacenado
2d2eda71267231c2526be701fe655db125852c1ffielding en el buffer una Respuesta HTTP completa.
30c289e6bc6d28d210b21edd800ab2cfc78a8381wrowe Actualmente sólo están soportados
cccd31fa4a72fe23cc3249c06db181b274a55a69gstein <a href="http://www.freebsd.org/cgi/man.cgi?query=accept_filter&sektion=9">
cccd31fa4a72fe23cc3249c06db181b274a55a69gstein Accept Filters</a> sobre FreeBSD, <code>TCP_DEFER_ACCEPT</code> sobre Linux,
cd39d2139743ca0ef899953c6496dcf99e9c791atrawick y AcceptEx() sobre Windows.</p>
a261b81a1044c0e2ea3f21cf9b7019297bad16aajorton <p>El uso de <code>none</code> para un argumento desactiva cualquier filtro
b627048681b27fe30f979ba471b523be3a6a22adrbb aceptado para ese protocolo. Esto es útil para protocolos que requieren que un
cccd31fa4a72fe23cc3249c06db181b274a55a69gstein servidor envíe datos primeros, tales como <code>ftp:</code> o <code>nntp</code>:</p>
b0f20a4a26bcfa85724b1c2e5ec6a077f12ef44crbb <p>Los nombres de protocolo por defecto son <code>https</code> para el puerto 443
e6cc28a5eb3371ba0c38e941855e71ff0054f50erbb y <code>http</code> para todos los demás puertos. Para especificar que se está
d9039a9aaeaa1359c1147af66c09aeac56ae3ee0pquerna utilizando otro protocolo con un puerto escuchando, añade el argumento <var>protocol</var>
cdccf2ac94172d1a4a54bc2e17324e1ef682ccf3pquerna a la directiva <directive module="mpm_common">Listen</directive>.</p>
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton AcceptFilter http httpready <br/>
7c7372abe2484e7fcf81937b93496d1246e5b816gstein AcceptFilter https dataready
a261b81a1044c0e2ea3f21cf9b7019297bad16aajorton <p>El filtro <code>httpready</code> almacena en el buffer peticiones HTTP completas
a261b81a1044c0e2ea3f21cf9b7019297bad16aajorton a nivel de kernel. Una vez que la petición es recibida, el kernel la envía al servidor.
d71fd7cd9c4815d0647425f21ba3a803919a9148jorton Consulta la página man de
7c7372abe2484e7fcf81937b93496d1246e5b816gstein <a href="http://www.freebsd.org/cgi/man.cgi?query=accf_http&sektion=9">
7c7372abe2484e7fcf81937b93496d1246e5b816gstein accf_http(9)</a> para más detalles. Puesto que las peticiones HTTPS
7c7372abe2484e7fcf81937b93496d1246e5b816gstein están encriptadas, sólo se utiliza el filtro
7c7372abe2484e7fcf81937b93496d1246e5b816gstein <a href="http://www.freebsd.org/cgi/man.cgi?query=accf_data&sektion=9">accf_data(9)</a>.</p>
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh AcceptFilter http data <br/>
2d2eda71267231c2526be701fe655db125852c1ffielding AcceptFilter https data
4a13940dc2990df0a798718d3a3f9cf1566c2217bjh <p>En Linux, <code>TCP_DEFER_ACCEPT</code> no soporta el buffering en peticiones http.
4a13940dc2990df0a798718d3a3f9cf1566c2217bjh Cualquier valor además de <code>none</code> habilitará
4a13940dc2990df0a798718d3a3f9cf1566c2217bjh <code>TCP_DEFER_ACCEPT</code> en ese socket. Para más detalles
4a13940dc2990df0a798718d3a3f9cf1566c2217bjh ver la página man de Linux
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh <a href="http://homepages.cwi.nl/~aeb/linux/man2html/man7/tcp.7.html">
2d2eda71267231c2526be701fe655db125852c1ffielding AcceptFilter http data <br/>
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh AcceptFilter https data
2d2eda71267231c2526be701fe655db125852c1ffielding <p>Sobre Windows mpm_winnt interpreta el argumento AcceptFilter para conmutar la API
2d2eda71267231c2526be701fe655db125852c1ffielding AcceptEx(), y no soporta el buffering sobre el protocolo http. Hay dos valores
b0f20a4a26bcfa85724b1c2e5ec6a077f12ef44crbb que utilizan la API Windows AcceptEx() y que recuperan sockets de red
b0f20a4a26bcfa85724b1c2e5ec6a077f12ef44crbb entre conexciones. <code>data</code> espera hasta que los datos han sido
b0f20a4a26bcfa85724b1c2e5ec6a077f12ef44crbb transmitidos como se comentaba anteriormente, y el buffer inicial de datos y las
b0f20a4a26bcfa85724b1c2e5ec6a077f12ef44crbb direcciones de red son recuperadas a partir de una única llamada AcceptEx().
72a4ef8eac1adef882246c5bfb9b8bbd82d613c4coar <code>connect</code> utiliza la API AcceptEx() API, y recupera también
b0f20a4a26bcfa85724b1c2e5ec6a077f12ef44crbb las direcciones de red, pero a diferencia de <code>none</code>
b0f20a4a26bcfa85724b1c2e5ec6a077f12ef44crbb la opción <code>connect</code> no espera a la transmisión inicial de los datos.</p>
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh <p>Sobre Windows, <code>none</code> prefiere accept() antes que AcceptEx()
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh y no recuperará sockets entre las conexiones. Lo que es útil para los adaptadores de
2d2eda71267231c2526be701fe655db125852c1ffielding red con un soporte precario de drivers, así como para algunos proveedores de red
2d2eda71267231c2526be701fe655db125852c1ffielding tales como drivers vpn, o filtros de spam, de virus o de spyware.</p>
4a13940dc2990df0a798718d3a3f9cf1566c2217bjh</directivesynopsis>
4a13940dc2990df0a798718d3a3f9cf1566c2217bjh<directivesynopsis>
4a13940dc2990df0a798718d3a3f9cf1566c2217bjh<description>Los recursos aceptan información sobre su ruta</description>
2d2eda71267231c2526be701fe655db125852c1ffielding<context>virtual host</context><context>directory</context>
2d2eda71267231c2526be701fe655db125852c1ffielding<compatibility>Disponible en Apache httpd 2.0.30 y posteriores</compatibility>
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh <p>Esta directiva controla si las peticiones que contienen información sobre la ruta
2d2eda71267231c2526be701fe655db125852c1ffielding que sigue un fichero que existe (o un fichero que no existe pero en un directorio que
4a13940dc2990df0a798718d3a3f9cf1566c2217bjh sí existe) serán aceptadas o denegadas. La información de ruta puede estar disponible
2d2eda71267231c2526be701fe655db125852c1ffielding para los scripts en la variable de entorno <code>PATH_INFO</code>.</p>
2d2eda71267231c2526be701fe655db125852c1ffielding <p>Por ejemplo, asumamos que la ubicación <code>/test/</code> apunta a
2d2eda71267231c2526be701fe655db125852c1ffielding un directorio que contiene únicamente el fichero
2d2eda71267231c2526be701fe655db125852c1ffielding <code>here.html</code>. Entonces, las peticiones tanto para
2d2eda71267231c2526be701fe655db125852c1ffielding <code>/more</code> como <code>PATH_INFO</code>.</p>
4a13940dc2990df0a798718d3a3f9cf1566c2217bjh <p>Los tres posibles argumentos para la directiva
4a13940dc2990df0a798718d3a3f9cf1566c2217bjh <directive>AcceptPathInfo</directive> son los siguientes:</p>
2d2eda71267231c2526be701fe655db125852c1ffielding <dt><code>Off</code></dt><dd>Una petición sólo será aceptada si
4a13940dc2990df0a798718d3a3f9cf1566c2217bjh se corresponde con una ruta literal que existe. Por lo tanto, una petición
2d2eda71267231c2526be701fe655db125852c1ffielding con una información de ruta después del nombre de fichero tal como
2d2eda71267231c2526be701fe655db125852c1ffielding <code>/test/here.html/more</code> en el ejemplo anterior devolverá
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh un error 404 NOT FOUND.</dd>
2d2eda71267231c2526be701fe655db125852c1ffielding <dt><code>On</code></dt><dd>Una petición será aceptada si una
2d2eda71267231c2526be701fe655db125852c1ffielding ruta principal de acceso se corresponde con un fichero que existe. El ejemplo
2d2eda71267231c2526be701fe655db125852c1ffielding anterior <code>/test/here.html/more</code> será aceptado si
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh <code>/test/here.html</code> corresponde a un fichero válido.</dd>
2d2eda71267231c2526be701fe655db125852c1ffielding <dt><code>Default</code></dt><dd>La gestión de las peticiones
2d2eda71267231c2526be701fe655db125852c1ffielding con información de ruta está determinada por el <a
2d2eda71267231c2526be701fe655db125852c1ffielding href="/handler.html">controlador</a> responsable de la petición.
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh El controlador principal para para ficheros normales rechaza por defecto
2d2eda71267231c2526be701fe655db125852c1ffielding peticiones <code>PATH_INFO</code>. Los controladores que sirven scripts, tales como <a
2d2eda71267231c2526be701fe655db125852c1ffielding href="mod_isapi.html">isapi-handler</a>, normalmente aceptan
e44e11f9fece12c783f18d033923bfc0d6b4289aake <p>El objetivo principal de la directiva <code>AcceptPathInfo</code>
2d2eda71267231c2526be701fe655db125852c1ffielding es permitirte sobreescribir la opción del controlador
2d2eda71267231c2526be701fe655db125852c1ffielding de aceptar or rechazar <code>PATH_INFO</code>. Este tipo de sobreescritura se necesita,
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh por ejemplo, cuando utilizas un <a href="/filter.html">filtro</a>, tal como
2d2eda71267231c2526be701fe655db125852c1ffielding <a href="mod_include.html">INCLUDES</a>, para generar contenido
ee1af2aeb57527f33baa4737aa431e4aef997855rbowen basado en <code>PATH_INFO</code>. El controlador principal normalmente rechazaría
2d2eda71267231c2526be701fe655db125852c1ffielding la petición, de modo que puedes utilizar la siguiente configuración para habilitarla
2d2eda71267231c2526be701fe655db125852c1ffielding como script:</p>
2d2eda71267231c2526be701fe655db125852c1ffielding Options +Includes<br />
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh SetOutputFilter INCLUDES<br />
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh AcceptPathInfo On<br />
2d2eda71267231c2526be701fe655db125852c1ffielding </Files>
2d2eda71267231c2526be701fe655db125852c1ffielding</directivesynopsis>
2d2eda71267231c2526be701fe655db125852c1ffielding<directivesynopsis>
ee7882748b83255e50ea6bc3b3fdc8ee0949e2e3jorton<description>Nombre del fichero distribuido de configuración</description>
2d2eda71267231c2526be701fe655db125852c1ffielding<syntax>AccessFileName <var>filename</var> [<var>filename</var>] ...</syntax>
2d2eda71267231c2526be701fe655db125852c1ffielding<contextlist><context>server config</context><context>virtual host</context>
2d2eda71267231c2526be701fe655db125852c1ffielding</contextlist>
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh <p>Mientras que procesa una petición el servidor busca
2d2eda71267231c2526be701fe655db125852c1ffielding el primer fichero de configuración existente dentro de un listado de nombres en
2d2eda71267231c2526be701fe655db125852c1ffielding cada directorio de la ruta del documento, si los ficheros distribuidos
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh de configuración están <a href="#allowoverride">habilitados para ese
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh AccessFileName .acl
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh </example>
2d2eda71267231c2526be701fe655db125852c1ffielding <p>antes de servir el documento
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh <code>/usr/local/web/index.html</code>, el servidor leerá
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh <code>/usr/local/.acl</code> and <code>/usr/local/web/.acl</code>
2efb935ae8fe12d5192a3bf2c52c28461b6c68afdgaudet para las directivas, salvo que estén deshabilitadas with</p>
2efb935ae8fe12d5192a3bf2c52c28461b6c68afdgaudet <Directory /><br />
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh AllowOverride None<br />
b0f20a4a26bcfa85724b1c2e5ec6a077f12ef44crbb </Directory>
b0f20a4a26bcfa85724b1c2e5ec6a077f12ef44crbb </example>
b0f20a4a26bcfa85724b1c2e5ec6a077f12ef44crbb<seealso><directive module="core">AllowOverride</directive></seealso>
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh<seealso><a href="/configuring.html">Configuration Files</a></seealso>
b0f20a4a26bcfa85724b1c2e5ec6a077f12ef44crbb<seealso><a href="/howto/htaccess.html">.htaccess Files</a></seealso>
b0f20a4a26bcfa85724b1c2e5ec6a077f12ef44crbb</directivesynopsis>
b0f20a4a26bcfa85724b1c2e5ec6a077f12ef44crbb<directivesynopsis>
b0f20a4a26bcfa85724b1c2e5ec6a077f12ef44crbb<description>Default charset parameter to be added when a response
b0f20a4a26bcfa85724b1c2e5ec6a077f12ef44crbbcontent-type is <code>text/plain</code> or <code>text/html</code></description>
b0f20a4a26bcfa85724b1c2e5ec6a077f12ef44crbb<syntax>AddDefaultCharset On|Off|<var>charset</var></syntax>
b0f20a4a26bcfa85724b1c2e5ec6a077f12ef44crbb<context>virtual host</context><context>directory</context>
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh <p>This directive specifies a default value for the media type
b0f20a4a26bcfa85724b1c2e5ec6a077f12ef44crbb charset parameter (the name of a character encoding) to be added
b0f20a4a26bcfa85724b1c2e5ec6a077f12ef44crbb to a response if and only if the response's content-type is either
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh <code>text/plain</code> or <code>text/html</code>. This should override
b0f20a4a26bcfa85724b1c2e5ec6a077f12ef44crbb any charset specified in the body of the response via a <code>META</code>
b0f20a4a26bcfa85724b1c2e5ec6a077f12ef44crbb element, though the exact behavior is often dependent on the user's client
b0f20a4a26bcfa85724b1c2e5ec6a077f12ef44crbb configuration. A setting of <code>AddDefaultCharset Off</code>
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh disables this functionality. <code>AddDefaultCharset On</code> enables
b0f20a4a26bcfa85724b1c2e5ec6a077f12ef44crbb a default charset of <code>iso-8859-1</code>. Any other value is assumed
b0f20a4a26bcfa85724b1c2e5ec6a077f12ef44crbb to be the <var>charset</var> to be used, which should be one of the
b0f20a4a26bcfa85724b1c2e5ec6a077f12ef44crbb <a href="http://www.iana.org/assignments/character-sets">IANA registered
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh charset values</a> for use in Internet media types (MIME types).
b0f20a4a26bcfa85724b1c2e5ec6a077f12ef44crbb For example:</p>
99d6d3207e24ba1f8eba77ef903948d738886cf5nd AddDefaultCharset utf-8
99d6d3207e24ba1f8eba77ef903948d738886cf5nd </example>
99d6d3207e24ba1f8eba77ef903948d738886cf5nd <p><directive>AddDefaultCharset</directive> should only be used when all
99d6d3207e24ba1f8eba77ef903948d738886cf5nd of the text resources to which it applies are known to be in that
99d6d3207e24ba1f8eba77ef903948d738886cf5nd character encoding and it is too inconvenient to label their charset
99d6d3207e24ba1f8eba77ef903948d738886cf5nd individually. One such example is to add the charset parameter
99d6d3207e24ba1f8eba77ef903948d738886cf5nd to resources containing generated content, such as legacy CGI
99d6d3207e24ba1f8eba77ef903948d738886cf5nd scripts, that might be vulnerable to cross-site scripting attacks
99d6d3207e24ba1f8eba77ef903948d738886cf5nd due to user-provided data being included in the output. Note, however,
99d6d3207e24ba1f8eba77ef903948d738886cf5nd that a better solution is to just fix (or delete) those scripts, since
99d6d3207e24ba1f8eba77ef903948d738886cf5nd setting a default charset does not protect users that have enabled
99d6d3207e24ba1f8eba77ef903948d738886cf5nd the "auto-detect character encoding" feature on their browser.</p>
99d6d3207e24ba1f8eba77ef903948d738886cf5nd<seealso><directive module="mod_mime">AddCharset</directive></seealso>
b0f20a4a26bcfa85724b1c2e5ec6a077f12ef44crbb</directivesynopsis>
b0f20a4a26bcfa85724b1c2e5ec6a077f12ef44crbb<directivesynopsis>
b0f20a4a26bcfa85724b1c2e5ec6a077f12ef44crbb<description>Determines whether encoded path separators in URLs are allowed to
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianhbe passed through</description>
b0f20a4a26bcfa85724b1c2e5ec6a077f12ef44crbb<contextlist><context>server config</context><context>virtual host</context>
b0f20a4a26bcfa85724b1c2e5ec6a077f12ef44crbb</contextlist>
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh<compatibility>Available in Apache httpd 2.0.46 and later</compatibility>
b0f20a4a26bcfa85724b1c2e5ec6a077f12ef44crbb <p>The <directive>AllowEncodedSlashes</directive> directive allows URLs
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben which contain encoded path separators (<code>%2F</code> for <code>/</code>
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben and additionally <code>%5C</code> for <code>\</code> on according systems)
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben to be used. Normally such URLs are refused with a 404 (Not found) error.</p>
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben <p>Turning <directive>AllowEncodedSlashes</directive> <code>On</code> is
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben mostly useful when used in conjunction with <code>PATH_INFO</code>.</p>
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben <p>Allowing encoded slashes does <em>not</em> imply <em>decoding</em>.
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben Occurrences of <code>%2F</code> or <code>%5C</code> (<em>only</em> on
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben according systems) will be left as such in the otherwise decoded URL
b0f20a4a26bcfa85724b1c2e5ec6a077f12ef44crbb string.</p>
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben<seealso><directive module="core">AcceptPathInfo</directive></seealso>
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben</directivesynopsis>
b0f20a4a26bcfa85724b1c2e5ec6a077f12ef44crbb<directivesynopsis>
b0f20a4a26bcfa85724b1c2e5ec6a077f12ef44crbb<description>Types of directives that are allowed in
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh<syntax>AllowOverride All|None|<var>directive-type</var>
b0f20a4a26bcfa85724b1c2e5ec6a077f12ef44crbb<default>AllowOverride None (2.3.9 and later), AllowOverride All (2.3.8 and earlier)</default>
bbe046d7cbb950ab3e372e4119ae001a5fe52ed4striker <p>When the server finds an <code>.htaccess</code> file (as
bbe046d7cbb950ab3e372e4119ae001a5fe52ed4striker specified by <directive module="core">AccessFileName</directive>)
bbe046d7cbb950ab3e372e4119ae001a5fe52ed4striker it needs to know which directives declared in that file can override
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh earlier configuration directives.</p>
c8aa00ee0cfc17b5fa08fb8a2b08d30dc9e4f1b1wrowe <note><title>Only available in <Directory> sections</title>
4542d057c4bde23857f31d449fa3108561206139wrowe <directive type="section" module="core">Directory</directive>
c8aa00ee0cfc17b5fa08fb8a2b08d30dc9e4f1b1wrowe sections specified without regular expressions, not in <directive
4542d057c4bde23857f31d449fa3108561206139wrowe type="section" module="core">Location</directive>, <directive
c8aa00ee0cfc17b5fa08fb8a2b08d30dc9e4f1b1wrowe module="core" type="section">DirectoryMatch</directive> or
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh <directive type="section" module="core">Files</directive> sections.
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh <p>When this directive is set to <code>None</code>, then
b0f20a4a26bcfa85724b1c2e5ec6a077f12ef44crbb <a href="#accessfilename">.htaccess</a> files are completely ignored.
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh In this case, the server will not even attempt to read
b0f20a4a26bcfa85724b1c2e5ec6a077f12ef44crbb <p>When this directive is set to <code>All</code>, then any
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh directive which has the .htaccess <a
b0f20a4a26bcfa85724b1c2e5ec6a077f12ef44crbb href="directive-dict.html#Context">Context</a> is allowed in
6d74c65f131583f6832b04424c1a9e1e7cc72c8egregames <p>The <var>directive-type</var> can be one of the following
6d74c65f131583f6832b04424c1a9e1e7cc72c8egregames groupings of directives.</p>
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh Allow use of the authorization directives (<directive
2e123e8beedc9f921448c113e2d6823a92fd5261fielding <directive module="mod_authn_dbm">AuthDBMUserFile</directive>,
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben <directive module="mod_authz_groupfile">AuthGroupFile</directive>,
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben <directive module="mod_authn_core">AuthName</directive>,
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben <directive module="mod_authn_core">AuthType</directive>, <directive
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben module="mod_authn_file">AuthUserFile</directive>, <directive
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben module="mod_authz_core">Require</directive>, <em>etc.</em>).</dd>
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben Allow use of the directives controlling document types
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben <directive module="mod_negotiation">LanguagePriority</directive>,
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben <directive module="core">SetOutputFilter</directive>, and
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben document meta data (<directive
64b9fa4bc3e79b0eefb2d93fb56eae40d88e0f06wrowe module="mod_headers">RequestHeader</directive>, <directive
64b9fa4bc3e79b0eefb2d93fb56eae40d88e0f06wrowe module="mod_setenvif">SetEnvIf</directive>, <directive
64b9fa4bc3e79b0eefb2d93fb56eae40d88e0f06wrowe module="mod_setenvif">SetEnvIfNoCase</directive>, <directive
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben module="mod_setenvif">BrowserMatch</directive>, <directive
64b9fa4bc3e79b0eefb2d93fb56eae40d88e0f06wrowe module="mod_usertrack">CookieExpires</directive>, <directive
64b9fa4bc3e79b0eefb2d93fb56eae40d88e0f06wrowe module="mod_usertrack">CookieDomain</directive>, <directive
64b9fa4bc3e79b0eefb2d93fb56eae40d88e0f06wrowe module="mod_usertrack">CookieStyle</directive>, <directive
64b9fa4bc3e79b0eefb2d93fb56eae40d88e0f06wrowe module="mod_usertrack">CookieTracking</directive>, <directive
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben module="mod_rewrite">RewriteEngine</directive>, <directive
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben module="mod_rewrite">RewriteOptions</directive>, <directive
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben module="mod_rewrite">RewriteBase</directive>, <directive
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben module="mod_rewrite">RewriteCond</directive>, <directive
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh <directive module="mod_actions">Action</directive> from
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh Allow use of the directives controlling directory indexing
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh (<directive
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh <directive module="mod_autoindex">AddIcon</directive>, <directive
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben <directive module="mod_autoindex">AddIconByType</directive>,
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben <directive module="mod_autoindex">DefaultIcon</directive>, <directive
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben module="mod_autoindex">FancyIndexing</directive>, <directive
d11bf78168abbb07d8ed9f54d7ea0953d46aad83nd module="mod_autoindex">HeaderName</directive>, <directive
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh module="mod_autoindex">IndexIgnore</directive>, <directive
d11bf78168abbb07d8ed9f54d7ea0953d46aad83nd module="mod_autoindex">IndexOptions</directive>, <directive
d11bf78168abbb07d8ed9f54d7ea0953d46aad83nd Allow use of the directives controlling host access (<directive
d11bf78168abbb07d8ed9f54d7ea0953d46aad83nd Allow use of the directives controlling specific directory
d11bf78168abbb07d8ed9f54d7ea0953d46aad83nd features (<directive module="core">Options</directive> and
1ce78cf71b5baaf2c1ab48e818cb1f2397df5010trawick An equal sign may be given followed by a comma (but no spaces)
1ce78cf71b5baaf2c1ab48e818cb1f2397df5010trawick separated lists of options that may be set using the <directive
1ce78cf71b5baaf2c1ab48e818cb1f2397df5010trawick AllowOverride AuthConfig Indexes
1ce78cf71b5baaf2c1ab48e818cb1f2397df5010trawick <p>In the example above all directives that are neither in the group
1ce78cf71b5baaf2c1ab48e818cb1f2397df5010trawick <code>AuthConfig</code> nor <code>Indexes</code> cause an internal
1ce78cf71b5baaf2c1ab48e818cb1f2397df5010trawick server error.</p>
1ce78cf71b5baaf2c1ab48e818cb1f2397df5010trawick <note><p>For security and performance reasons, do not set
1ce78cf71b5baaf2c1ab48e818cb1f2397df5010trawick <code>AllowOverride</code> to anything other than <code>None</code>
1ce78cf71b5baaf2c1ab48e818cb1f2397df5010trawick in your <code><Directory /></code> block. Instead, find (or
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben create) the <code><Directory></code> block that refers to the
a520b923984f45daeaf0741d5c7e3de1f2d24509rbb directory where you're actually planning to place a
a520b923984f45daeaf0741d5c7e3de1f2d24509rbb<seealso><directive module="core">AccessFileName</directive></seealso>
a520b923984f45daeaf0741d5c7e3de1f2d24509rbb<seealso><a href="/configuring.html">Configuration Files</a></seealso>
a520b923984f45daeaf0741d5c7e3de1f2d24509rbb<seealso><a href="/howto/htaccess.html">.htaccess Files</a></seealso>
3d96ee83babeec32482c9082c9426340cee8c44dwrowe</directivesynopsis>
4e2c23ca8bd7b207f6e9c396759c1e2171370990trawick<directivesynopsis>
ceb14f8ba57a8086c9a68ad264efbe2433134382covener<description>Technique for locating the interpreter for CGI
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianhscripts</description>
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh<syntax>CGIMapExtension <var>cgi-path</var> <var>.extension</var></syntax>
2d2eda71267231c2526be701fe655db125852c1ffielding<contextlist><context>directory</context><context>.htaccess</context>
2d2eda71267231c2526be701fe655db125852c1ffielding</contextlist>
ceb14f8ba57a8086c9a68ad264efbe2433134382covener <p>This directive is used to control how Apache httpd finds the
ceb14f8ba57a8086c9a68ad264efbe2433134382covener interpreter used to run CGI scripts. For example, setting
ceb14f8ba57a8086c9a68ad264efbe2433134382covener cause all CGI script files with a <code>.foo</code> extension to
ceb14f8ba57a8086c9a68ad264efbe2433134382covener be passed to the FOO interpreter.</p>
ceb14f8ba57a8086c9a68ad264efbe2433134382covener</directivesynopsis>
ceb14f8ba57a8086c9a68ad264efbe2433134382covener<directivesynopsis>
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh<description>Enables the generation of <code>Content-MD5</code> HTTP Response
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianhheaders</description>
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh<contextlist><context>server config</context><context>virtual host</context>
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh<context>directory</context><context>.htaccess</context>
2d2eda71267231c2526be701fe655db125852c1ffielding</contextlist>
2d2eda71267231c2526be701fe655db125852c1ffielding <p>This directive enables the generation of
2d2eda71267231c2526be701fe655db125852c1ffielding <code>Content-MD5</code> headers as defined in RFC1864
2d2eda71267231c2526be701fe655db125852c1ffielding respectively RFC2616.</p>
2d2eda71267231c2526be701fe655db125852c1ffielding <p>MD5 is an algorithm for computing a "message digest"
2d2eda71267231c2526be701fe655db125852c1ffielding (sometimes called "fingerprint") of arbitrary-length data, with
2d2eda71267231c2526be701fe655db125852c1ffielding a high degree of confidence that any alterations in the data
2d2eda71267231c2526be701fe655db125852c1ffielding will be reflected in alterations in the message digest.</p>
2d2eda71267231c2526be701fe655db125852c1ffielding <p>The <code>Content-MD5</code> header provides an end-to-end
2d2eda71267231c2526be701fe655db125852c1ffielding message integrity check (MIC) of the entity-body. A proxy or
2d2eda71267231c2526be701fe655db125852c1ffielding client may check this header for detecting accidental
2d2eda71267231c2526be701fe655db125852c1ffielding modification of the entity-body in transit. Example header:</p>
2d2eda71267231c2526be701fe655db125852c1ffielding Content-MD5: AuLb7Dp1rqtRtxz2m9kRpA==
2d2eda71267231c2526be701fe655db125852c1ffielding <p>Note that this can cause performance problems on your server
2d2eda71267231c2526be701fe655db125852c1ffielding since the message digest is computed on every request (the
2d2eda71267231c2526be701fe655db125852c1ffielding values are not cached).</p>
2d2eda71267231c2526be701fe655db125852c1ffielding <p><code>Content-MD5</code> is only sent for documents served
2d2eda71267231c2526be701fe655db125852c1ffielding by the <module>core</module>, and not by any module. For example,
2d2eda71267231c2526be701fe655db125852c1ffielding SSI documents, output from CGI scripts, and byte range responses
2d2eda71267231c2526be701fe655db125852c1ffielding do not have this header.</p>
2d2eda71267231c2526be701fe655db125852c1ffielding</directivesynopsis>
2d2eda71267231c2526be701fe655db125852c1ffielding<directivesynopsis>
2d2eda71267231c2526be701fe655db125852c1ffielding<description>This directive has no effect other than to emit warnings
2d2eda71267231c2526be701fe655db125852c1ffieldingif the value is not <code>none</code>. In prior versions, DefaultType
2d2eda71267231c2526be701fe655db125852c1ffieldingwould specify a default media type to assign to response content for
2d2eda71267231c2526be701fe655db125852c1ffieldingwhich no other media type configuration could be found.
2d2eda71267231c2526be701fe655db125852c1ffielding</description>
2d2eda71267231c2526be701fe655db125852c1ffielding<syntax>DefaultType <var>media-type|none</var></syntax>
2d2eda71267231c2526be701fe655db125852c1ffielding<contextlist><context>server config</context><context>virtual host</context>
2d2eda71267231c2526be701fe655db125852c1ffielding</contextlist>
2d2eda71267231c2526be701fe655db125852c1ffielding<compatibility>The argument <code>none</code> is available in Apache httpd 2.2.7 and later. All other choices are DISABLED for 2.3.x and later.</compatibility>
2d2eda71267231c2526be701fe655db125852c1ffielding <p>This directive has been disabled. For backwards compatibility
2d2eda71267231c2526be701fe655db125852c1ffielding of configuration files, it may be specified with the value
2d2eda71267231c2526be701fe655db125852c1ffielding <code>none</code>, meaning no default media type. For example:</p>
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh DefaultType None
2d2eda71267231c2526be701fe655db125852c1ffielding <p><code>DefaultType None</code> is only available in
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh httpd-2.2.7 and later.</p>
2d2eda71267231c2526be701fe655db125852c1ffielding <directive module="mod_mime">AddType</directive> to configure media
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh type assignments via file extensions, or the
2d2eda71267231c2526be701fe655db125852c1ffielding <directive module="core">ForceType</directive> directive to configure
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh the media type for specific resources. Otherwise, the server will
2d2eda71267231c2526be701fe655db125852c1ffielding send the response without a Content-Type header field and the
a59f92f67a2c7735469d0ade559f96218627eef0niq recipient may attempt to guess the media type.</p>
2d2eda71267231c2526be701fe655db125852c1ffielding</directivesynopsis>
2d2eda71267231c2526be701fe655db125852c1ffielding<directivesynopsis>
2d2eda71267231c2526be701fe655db125852c1ffielding<description>Define the existence of a variable</description>
2d2eda71267231c2526be701fe655db125852c1ffielding<contextlist><context>server config</context></contextlist>
2d2eda71267231c2526be701fe655db125852c1ffielding <p>Equivalent to passing the <code>-D</code> argument to <program
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh <p>This directive can be used to toggle the use of <directive module="core"
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh type="section">IfDefine</directive> sections without needing to alter
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh</directivesynopsis>
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh<description>Enclose a group of directives that apply only to the
2d2eda71267231c2526be701fe655db125852c1ffieldingnamed file-system directory, sub-directories, and their contents.</description>
763f7b125b6d3dd1e4992a3822005efa2616f983coar... </Directory></syntax>
763f7b125b6d3dd1e4992a3822005efa2616f983coar<contextlist><context>server config</context><context>virtual host</context>
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh</contextlist>
5a9667916c79d8c699b069068e5570aa1c331c80gstein <code></Directory></code> are used to enclose a group of
5a9667916c79d8c699b069068e5570aa1c331c80gstein directives that will apply only to the named directory,
5a9667916c79d8c699b069068e5570aa1c331c80gstein sub-directories of that directory, and the files within the respective
5a9667916c79d8c699b069068e5570aa1c331c80gstein directories. Any directive that is allowed
5a9667916c79d8c699b069068e5570aa1c331c80gstein in a directory context may be used. <var>Directory-path</var> is
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh either the full path to a directory, or a wild-card string using
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh Unix shell-style matching. In a wild-card string, <code>?</code> matches
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh any single character, and <code>*</code> matches any sequences of
5a9667916c79d8c699b069068e5570aa1c331c80gstein characters. You may also use <code>[]</code> character ranges. None
5a9667916c79d8c699b069068e5570aa1c331c80gstein of the wildcards match a `/' character, so <code><Directory
5a9667916c79d8c699b069068e5570aa1c331c80gstein /*/public_html></code> will not match
5a9667916c79d8c699b069068e5570aa1c331c80gstein <code>/home/user/public_html</code>, but <code><Directory
5a9667916c79d8c699b069068e5570aa1c331c80gstein /home/*/public_html></code> will match. Example:</p>
5a9667916c79d8c699b069068e5570aa1c331c80gstein Options Indexes FollowSymLinks<br />
5a9667916c79d8c699b069068e5570aa1c331c80gstein </Directory>
5a9667916c79d8c699b069068e5570aa1c331c80gstein <p>Be careful with the <var>directory-path</var> arguments:
5a9667916c79d8c699b069068e5570aa1c331c80gstein They have to literally match the filesystem path which Apache httpd uses
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh to access the files. Directives applied to a particular
2d2eda71267231c2526be701fe655db125852c1ffielding <code><Directory></code> will not apply to files accessed from
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh that same directory via a different path, such as via different symbolic
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh links.</p>
2d2eda71267231c2526be701fe655db125852c1ffielding expressions</glossary> can also be used, with the addition of the
5a9667916c79d8c699b069068e5570aa1c331c80gstein <Directory ~ "^/www/.*/[0-9]{3}">
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh </example>
48d2edbfb84e5559b5da0f8d614ccab805cc67a8rbb <p>would match directories in <code>/www/</code> that consisted of
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh three numbers.</p>
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh match the directory (or one of its parents) containing a document,
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh then the directives are applied in the order of shortest match
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh first, interspersed with the directives from the <a
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh href="#accessfilename">.htaccess</a> files. For example,
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh <Directory /><br />
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh AllowOverride None<br />
a520b923984f45daeaf0741d5c7e3de1f2d24509rbb </Directory><br />
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh <Directory /home/><br />
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh AllowOverride FileInfo<br />
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh </Directory>
2d2eda71267231c2526be701fe655db125852c1ffielding <p>for access to the document <code>/home/web/dir/doc.html</code>
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh the steps are:</p>
2d2eda71267231c2526be701fe655db125852c1ffielding <li>Apply directive <code>AllowOverride None</code>
54e94821097724bf413d2d4cc70711760f7494e1trawick <li>Apply directive <code>AllowOverride FileInfo</code> (for
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh <code>/home/.htaccess</code>, <code>/home/web/.htaccess</code> and
2d2eda71267231c2526be701fe655db125852c1ffielding <code>/home/web/dir/.htaccess</code> in that order.</li>
db3fa7db7c7910f2f23c3e3ffe0cf9f41a1899b9trawick <p>Regular expressions are not considered until after all of the
54e94821097724bf413d2d4cc70711760f7494e1trawick normal sections have been applied. Then all of the regular
54e94821097724bf413d2d4cc70711760f7494e1trawick expressions are tested in the order they appeared in the
54e94821097724bf413d2d4cc70711760f7494e1trawick configuration file. For example, with</p>
54e94821097724bf413d2d4cc70711760f7494e1trawick <Directory ~ abc$><br />
54e94821097724bf413d2d4cc70711760f7494e1trawick # ... directives here ...<br />
db3fa7db7c7910f2f23c3e3ffe0cf9f41a1899b9trawick </Directory>
2d2eda71267231c2526be701fe655db125852c1ffielding <p>the regular expression section won't be considered until after
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh all normal <directive type="section">Directory</directive>s and
cd9eb79cfbf9bc730ccacc3a3774b1fe1b99ed53wrowe <code>.htaccess</code> files have been applied. Then the regular
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh expression will match on <code>/home/abc/public_html/abc</code> and
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh the corresponding <directive type="section">Directory</directive> will
2d2eda71267231c2526be701fe655db125852c1ffielding be applied.</p>
2d2eda71267231c2526be701fe655db125852c1ffielding <code><Directory /></code> is <code>Allow from All</code>.
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh This means that Apache httpd will serve any file mapped from an URL. It is
2d2eda71267231c2526be701fe655db125852c1ffielding recommended that you change this with a block such
2d2eda71267231c2526be701fe655db125852c1ffielding <Directory /><br />
cd9eb79cfbf9bc730ccacc3a3774b1fe1b99ed53wrowe Order Deny,Allow<br />
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh Deny from All<br />
cd9eb79cfbf9bc730ccacc3a3774b1fe1b99ed53wrowe </Directory>
e57fd661645dcfdf166e77484b509b248e62a19eaaron href="/misc/security_tips.html">Security Tips</a> page for more
cd9eb79cfbf9bc730ccacc3a3774b1fe1b99ed53wrowe <p>The directory sections occur in the <code>httpd.conf</code> file.
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh <directive type="section">Directory</directive> directives
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh cannot nest, and cannot appear in a <directive module="core"
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh type="section">Limit</directive> or <directive module="core"
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh<seealso><a href="/sections.html">How <Directory>,
2d2eda71267231c2526be701fe655db125852c1ffielding <Location> and <Files> sections work</a> for an
2d2eda71267231c2526be701fe655db125852c1ffielding explanation of how these different sections are combined when a
2d2eda71267231c2526be701fe655db125852c1ffielding request is received</seealso>
2d2eda71267231c2526be701fe655db125852c1ffielding</directivesynopsis>
2d2eda71267231c2526be701fe655db125852c1ffielding<description>Enclose directives that apply to
2d2eda71267231c2526be701fe655db125852c1ffieldingthe contents of file-system directories matching a regular expression.</description>
2d2eda71267231c2526be701fe655db125852c1ffielding... </DirectoryMatch></syntax>
2d2eda71267231c2526be701fe655db125852c1ffielding<contextlist><context>server config</context><context>virtual host</context>
952908500d5f99f35afc5ed510391b9bdc3833farbb</contextlist>
2d2eda71267231c2526be701fe655db125852c1ffielding <p><directive type="section">DirectoryMatch</directive> and
2d2eda71267231c2526be701fe655db125852c1ffielding <code></DirectoryMatch></code> are used to enclose a group
952908500d5f99f35afc5ed510391b9bdc3833farbb of directives which will apply only to the named directory (and the files within),
952908500d5f99f35afc5ed510391b9bdc3833farbb the same as <directive module="core" type="section">Directory</directive>.
952908500d5f99f35afc5ed510391b9bdc3833farbb However, it takes as an argument a
952908500d5f99f35afc5ed510391b9bdc3833farbb <glossary ref="regex">regular expression</glossary>. For example:</p>
952908500d5f99f35afc5ed510391b9bdc3833farbb <DirectoryMatch "^/www/(.+/)?[0-9]{3}">
2d2eda71267231c2526be701fe655db125852c1ffielding <p>would match directories in <code>/www/</code> that consisted of three
2d2eda71267231c2526be701fe655db125852c1ffielding numbers.</p>
3887202241db08986e94b252fbd06a55e55d4b2dbhyde Prior to 2.3.9, this directive implicitly applied to sub-directories
3887202241db08986e94b252fbd06a55e55d4b2dbhyde (like <directive module="core" type="section">Directory</directive>) and
3887202241db08986e94b252fbd06a55e55d4b2dbhyde could not match the end of line symbol ($). In 2.3.9 and later,
3887202241db08986e94b252fbd06a55e55d4b2dbhyde only directories that match the expression are affected by the enclosed
3887202241db08986e94b252fbd06a55e55d4b2dbhyde directives.
3887202241db08986e94b252fbd06a55e55d4b2dbhyde This directive applies to requests for directories that may or may
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh not end in a trailing slash, so expressions that are anchored to the
2d2eda71267231c2526be701fe655db125852c1ffielding end of line ($) must be written with care.
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh<seealso><directive type="section" module="core">Directory</directive> for
2d2eda71267231c2526be701fe655db125852c1ffieldinga description of how regular expressions are mixed in with normal
d9039a9aaeaa1359c1147af66c09aeac56ae3ee0pquerna<directive type="section">Directory</directive>s</seealso>
2d2eda71267231c2526be701fe655db125852c1ffieldinghref="/sections.html">How <Directory>, <Location> and
7c7372abe2484e7fcf81937b93496d1246e5b816gstein<Files> sections work</a> for an explanation of how these different
7c7372abe2484e7fcf81937b93496d1246e5b816gsteinsections are combined when a request is received</seealso>
864c5615d55b8ebbde24e72043f6325741335a74fielding</directivesynopsis>
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh<directivesynopsis>
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh<description>Directory that forms the main document tree visible
3887202241db08986e94b252fbd06a55e55d4b2dbhydefrom the web</description>
e57fd661645dcfdf166e77484b509b248e62a19eaaron<syntax>DocumentRoot <var>directory-path</var></syntax>
e57fd661645dcfdf166e77484b509b248e62a19eaaron<contextlist><context>server config</context><context>virtual host</context>
952908500d5f99f35afc5ed510391b9bdc3833farbb</contextlist>
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf <p>This directive sets the directory from which <program>httpd</program>
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf will serve files. Unless matched by a directive like <directive
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf module="mod_alias">Alias</directive>, the server appends the
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf path from the requested URL to the document root to make the
3887202241db08986e94b252fbd06a55e55d4b2dbhyde path to the document. Example:</p>
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh </example>
952908500d5f99f35afc5ed510391b9bdc3833farbb <p>then an access to
1ccd992d37d62c8cb2056126f2234f64ec189bfddougm <code>http://www.my.host.com/index.html</code> refers to
e57fd661645dcfdf166e77484b509b248e62a19eaaron <code>/usr/web/index.html</code>. If the <var>directory-path</var> is
2d2eda71267231c2526be701fe655db125852c1ffielding not absolute then it is assumed to be relative to the <directive
2d2eda71267231c2526be701fe655db125852c1ffielding <p>The <directive>DocumentRoot</directive> should be specified without
e57fd661645dcfdf166e77484b509b248e62a19eaaron a trailing slash.</p>
e57fd661645dcfdf166e77484b509b248e62a19eaaron<seealso><a href="/urlmapping.html#documentroot">Mapping URLs to Filesystem
2d2eda71267231c2526be701fe655db125852c1ffielding</directivesynopsis>
6658f209f08181bd218341770db9f428032dd23ajwoolley<directivesynopsis>
2d2eda71267231c2526be701fe655db125852c1ffielding<description>Use memory-mapping to read files during delivery</description>
2d2eda71267231c2526be701fe655db125852c1ffielding<contextlist><context>server config</context><context>virtual host</context>
e57fd661645dcfdf166e77484b509b248e62a19eaaron<context>directory</context><context>.htaccess</context>
952908500d5f99f35afc5ed510391b9bdc3833farbb</contextlist>
79c0ed7d839527abd86794a6b1d2df4fd189a2a8jerenkrantz <p>This directive controls whether the <program>httpd</program> may use
79c0ed7d839527abd86794a6b1d2df4fd189a2a8jerenkrantz memory-mapping if it needs to read the contents of a file during
853a0c44563b056e40e9cffe911190f554e63ec3chuck delivery. By default, when the handling of a request requires
952908500d5f99f35afc5ed510391b9bdc3833farbb access to the data within a file -- for example, when delivering a
952908500d5f99f35afc5ed510391b9bdc3833farbb server-parsed file using <module>mod_include</module> -- Apache httpd
952908500d5f99f35afc5ed510391b9bdc3833farbb memory-maps the file if the OS supports it.</p>
952908500d5f99f35afc5ed510391b9bdc3833farbb <p>This memory-mapping sometimes yields a performance improvement.
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf But in some environments, it is better to disable the memory-mapping
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf to prevent operational problems:</p>
952908500d5f99f35afc5ed510391b9bdc3833farbb <li>On some multiprocessor systems, memory-mapping can reduce the
952908500d5f99f35afc5ed510391b9bdc3833farbb <li>Deleting or truncating a file while <program>httpd</program>
952908500d5f99f35afc5ed510391b9bdc3833farbb has it memory-mapped can cause <program>httpd</program> to
952908500d5f99f35afc5ed510391b9bdc3833farbb crash with a segmentation fault.
2d2eda71267231c2526be701fe655db125852c1ffielding <p>For server configurations that are vulnerable to these problems,
2d2eda71267231c2526be701fe655db125852c1ffielding you should disable memory-mapping of delivered files by specifying:</p>
2d2eda71267231c2526be701fe655db125852c1ffielding EnableMMAP Off
952908500d5f99f35afc5ed510391b9bdc3833farbb </example>
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf <p>For NFS mounted files, this feature may be disabled explicitly for
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf the offending files by specifying:</p>
e57fd661645dcfdf166e77484b509b248e62a19eaaron <Directory "/path-to-nfs-files">
952908500d5f99f35afc5ed510391b9bdc3833farbb EnableMMAP Off
952908500d5f99f35afc5ed510391b9bdc3833farbb </Directory>
952908500d5f99f35afc5ed510391b9bdc3833farbb </example>
952908500d5f99f35afc5ed510391b9bdc3833farbb</directivesynopsis>
952908500d5f99f35afc5ed510391b9bdc3833farbb<directivesynopsis>
952908500d5f99f35afc5ed510391b9bdc3833farbb<description>Use the kernel sendfile support to deliver files to the client</description>
952908500d5f99f35afc5ed510391b9bdc3833farbb<contextlist><context>server config</context><context>virtual host</context>
952908500d5f99f35afc5ed510391b9bdc3833farbb</contextlist>
952908500d5f99f35afc5ed510391b9bdc3833farbb<compatibility>Available in version 2.0.44 and later. Default changed to Off in
62db15de4c1f335a64d45821796ae197cff94ef8rbbversion 2.3.9.</compatibility>
a520b923984f45daeaf0741d5c7e3de1f2d24509rbb <p>This directive controls whether <program>httpd</program> may use the
a520b923984f45daeaf0741d5c7e3de1f2d24509rbb sendfile support from the kernel to transmit file contents to the client.
2d2eda71267231c2526be701fe655db125852c1ffielding By default, when the handling of a request requires no access
952908500d5f99f35afc5ed510391b9bdc3833farbb to the data within a file -- for example, when delivering a
11a7b0dff22d26770b532c174d1cf2e7b56ec244wrowe static file -- Apache httpd uses sendfile to deliver the file contents
952908500d5f99f35afc5ed510391b9bdc3833farbb without ever reading the file if the OS supports it.</p>
e57fd661645dcfdf166e77484b509b248e62a19eaaron <p>This sendfile mechanism avoids separate read and send operations,
952908500d5f99f35afc5ed510391b9bdc3833farbb and buffer allocations. But on some platforms or within some
2d2eda71267231c2526be701fe655db125852c1ffielding filesystems, it is better to disable this feature to avoid
2d2eda71267231c2526be701fe655db125852c1ffielding operational problems:</p>
952908500d5f99f35afc5ed510391b9bdc3833farbb <li>Some platforms may have broken sendfile support that the build
952908500d5f99f35afc5ed510391b9bdc3833farbb system did not detect, especially if the binaries were built on
7bdef86e15d47d16dcbe7a5611683191774bd5fbgstein another box and moved to such a machine with broken sendfile
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf support.</li>
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf <li>On Linux the use of sendfile triggers TCP-checksum
952908500d5f99f35afc5ed510391b9bdc3833farbb offloading bugs on certain networking cards when using IPv6.</li>
e57fd661645dcfdf166e77484b509b248e62a19eaaron <li>On Linux on Itanium, sendfile may be unable to handle files
e57fd661645dcfdf166e77484b509b248e62a19eaaron over 2GB in size.</li>
952908500d5f99f35afc5ed510391b9bdc3833farbb module="core">DocumentRoot</directive> (e.g., NFS, SMB, CIFS, FUSE),
952908500d5f99f35afc5ed510391b9bdc3833farbb the kernel may be unable to serve the network file through
952908500d5f99f35afc5ed510391b9bdc3833farbb its own cache.</li>
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf <p>For server configurations that are not vulnerable to these problems,
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf you may enable this feature by specifying:</p>
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf EnableSendfile On
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf </example>
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf <p>For network mounted files, this feature may be disabled explicitly
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf for the offending files by specifying:</p>
2d2eda71267231c2526be701fe655db125852c1ffielding <Directory "/path-to-nfs-files">
2d2eda71267231c2526be701fe655db125852c1ffielding EnableSendfile Off
2d2eda71267231c2526be701fe655db125852c1ffielding </Directory>
2d2eda71267231c2526be701fe655db125852c1ffielding <p>Please note that the per-directory and .htaccess configuration
2d2eda71267231c2526be701fe655db125852c1ffielding of <directive>EnableSendfile</directive> is not supported by
2d2eda71267231c2526be701fe655db125852c1ffielding Only global definition of <directive>EnableSendfile</directive>
2d2eda71267231c2526be701fe655db125852c1ffielding is taken into account by the module.
1ccd992d37d62c8cb2056126f2234f64ec189bfddougm</directivesynopsis>
1ccd992d37d62c8cb2056126f2234f64ec189bfddougm<directivesynopsis>
952908500d5f99f35afc5ed510391b9bdc3833farbb<description>Abort configuration parsing with a custom error message</description>
952908500d5f99f35afc5ed510391b9bdc3833farbb<contextlist><context>server config</context><context>virtual host</context>
1ccd992d37d62c8cb2056126f2234f64ec189bfddougm<context>directory</context><context>.htaccess</context>
952908500d5f99f35afc5ed510391b9bdc3833farbb</contextlist>
44a4ee1140769173da7bc2b42d1a686e3260ad84wrowe <p>If an error can be detected within the configuration, this
44a4ee1140769173da7bc2b42d1a686e3260ad84wrowe directive can be used to generate a custom error message, and halt
2d2eda71267231c2526be701fe655db125852c1ffielding configuration parsing. The typical use is for reporting required
952908500d5f99f35afc5ed510391b9bdc3833farbb modules which are missing from the configuration.</p>
e57fd661645dcfdf166e77484b509b248e62a19eaaron # ensure that mod_include is loaded<br />
2d2eda71267231c2526be701fe655db125852c1ffielding <IfModule !include_module><br />
952908500d5f99f35afc5ed510391b9bdc3833farbb Error mod_include is required by mod_foo. Load it with LoadModule.<br />
2d2eda71267231c2526be701fe655db125852c1ffielding </IfModule><br />
952908500d5f99f35afc5ed510391b9bdc3833farbb # ensure that exactly one of SSL,NOSSL is defined<br />
2d2eda71267231c2526be701fe655db125852c1ffielding <IfDefine SSL><br />
952908500d5f99f35afc5ed510391b9bdc3833farbb <IfDefine NOSSL><br />
952908500d5f99f35afc5ed510391b9bdc3833farbb Error Both SSL and NOSSL are defined. Define only one of them.<br />
2e123e8beedc9f921448c113e2d6823a92fd5261fielding </IfDefine><br />
952908500d5f99f35afc5ed510391b9bdc3833farbb </IfDefine><br />
952908500d5f99f35afc5ed510391b9bdc3833farbb <IfDefine !SSL><br />
952908500d5f99f35afc5ed510391b9bdc3833farbb <IfDefine !NOSSL><br />
952908500d5f99f35afc5ed510391b9bdc3833farbb Error Either SSL or NOSSL must be defined.<br />
2d2eda71267231c2526be701fe655db125852c1ffielding </IfDefine><br />
2d2eda71267231c2526be701fe655db125852c1ffielding </IfDefine><br />
e57fd661645dcfdf166e77484b509b248e62a19eaaron</directivesynopsis>
f8033d657a57eab45af44368774d8beb3e4f7f35pquerna<directivesynopsis>
e57fd661645dcfdf166e77484b509b248e62a19eaaron<description>What the server will return to the client
2d2eda71267231c2526be701fe655db125852c1ffieldingin case of an error</description>
e57fd661645dcfdf166e77484b509b248e62a19eaaron<syntax>ErrorDocument <var>error-code</var> <var>document</var></syntax>
fa3785601cc3801525bc3fc98cafcea5d82efe99wrowe<contextlist><context>server config</context><context>virtual host</context>
a18775c154178d6c07aed84bd54ac16f59f89bc9wrowe<context>directory</context><context>.htaccess</context>
e57fd661645dcfdf166e77484b509b248e62a19eaaron</contextlist>
2d2eda71267231c2526be701fe655db125852c1ffielding <p>In the event of a problem or error, Apache httpd can be configured
e57fd661645dcfdf166e77484b509b248e62a19eaaron to do one of four things,</p>
cd9eb79cfbf9bc730ccacc3a3774b1fe1b99ed53wrowe <li>redirect to a local <var>URL-path</var> to handle the
2d2eda71267231c2526be701fe655db125852c1ffielding <p>The first option is the default, while options 2-4 are
2d2eda71267231c2526be701fe655db125852c1ffielding configured using the <directive>ErrorDocument</directive>
2d2eda71267231c2526be701fe655db125852c1ffielding directive, which is followed by the HTTP response code and a URL
2d2eda71267231c2526be701fe655db125852c1ffielding or a message. Apache httpd will sometimes offer additional information
952908500d5f99f35afc5ed510391b9bdc3833farbb <p>URLs can begin with a slash (/) for local web-paths (relative
a6b9ed64fdf548c61de9714e2cfb999ec59d149cgstein to the <directive module="core">DocumentRoot</directive>), or be a
2d2eda71267231c2526be701fe655db125852c1ffielding full URL which the client can resolve. Alternatively, a message
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf can be provided to be displayed by the browser. Examples:</p>
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf ErrorDocument 500 http://foo.example.com/cgi-bin/tester<br />
e302f38fd646764ce1a1e1c578d794aef514a9e5sf ErrorDocument 403 "Sorry can't allow you access today"
e302f38fd646764ce1a1e1c578d794aef514a9e5sf </example>
e302f38fd646764ce1a1e1c578d794aef514a9e5sf <p>Additionally, the special value <code>default</code> can be used
e57fd661645dcfdf166e77484b509b248e62a19eaaron to specify Apache httpd's simple hardcoded message. While not required
e57fd661645dcfdf166e77484b509b248e62a19eaaron under normal circumstances, <code>default</code> will restore
e57fd661645dcfdf166e77484b509b248e62a19eaaron Apache httpd's simple hardcoded message for configurations that would
e57fd661645dcfdf166e77484b509b248e62a19eaaron otherwise inherit an existing <directive>ErrorDocument</directive>.</p>
a93bda3b944fb92e3850db5621b5a27fc0e44509wrowe ErrorDocument 404 default<br />
a93bda3b944fb92e3850db5621b5a27fc0e44509wrowe </Directory>
e57e920838f31508f1418aa4c25ce55b345b2cebrbb </example>
e57e920838f31508f1418aa4c25ce55b345b2cebrbb <p>Note that when you specify an <directive>ErrorDocument</directive>
a93bda3b944fb92e3850db5621b5a27fc0e44509wrowe that points to a remote URL (ie. anything with a method such as
e57e920838f31508f1418aa4c25ce55b345b2cebrbb <code>http</code> in front of it), Apache HTTP Server will send a redirect to the
e57e920838f31508f1418aa4c25ce55b345b2cebrbb client to tell it where to find the document, even if the
a93bda3b944fb92e3850db5621b5a27fc0e44509wrowe document ends up being on the same server. This has several
e57e920838f31508f1418aa4c25ce55b345b2cebrbb implications, the most important being that the client will not
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf receive the original error status code, but instead will
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf receive a redirect status code. This in turn can confuse web
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf robots and other clients which try to determine if a URL is
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf valid using the status code. In addition, if you use a remote
439ccf2a084e1da566548931c585cbcc3a9e7f4cminfrin URL in an <code>ErrorDocument 401</code>, the client will not
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf know to prompt the user for a password since it will not
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf receive the 401 status code. Therefore, <strong>if you use an
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf <code>ErrorDocument 401</code> directive then it must refer to a local
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf <p>Microsoft Internet Explorer (MSIE) will by default ignore
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf server-generated error messages when they are "too small" and substitute
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf its own "friendly" error messages. The size threshold varies depending on
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf the type of error, but in general, if you make your error document
2d2eda71267231c2526be701fe655db125852c1ffielding greater than 512 bytes, then MSIE will show the server-generated
2d2eda71267231c2526be701fe655db125852c1ffielding error rather than masking it. More information is available in
9f9307bbe539dbcf96919715315eb64ce3465f5bben Microsoft Knowledge Base article <a
9f9307bbe539dbcf96919715315eb64ce3465f5bben href="http://support.microsoft.com/default.aspx?scid=kb;en-us;Q294807"
853a0c44563b056e40e9cffe911190f554e63ec3chuck <p>Although most error messages can be overriden, there are certain
853a0c44563b056e40e9cffe911190f554e63ec3chuck circumstances where the internal messages are used regardless of the
853a0c44563b056e40e9cffe911190f554e63ec3chuck setting of <directive module="core">ErrorDocument</directive>. In
9f9307bbe539dbcf96919715315eb64ce3465f5bben particular, if a malformed request is detected, normal request processing
853a0c44563b056e40e9cffe911190f554e63ec3chuck will be immediately halted and the internal error message returned.
853a0c44563b056e40e9cffe911190f554e63ec3chuck This is necessary to guard against security problems caused by
9f9307bbe539dbcf96919715315eb64ce3465f5bben bad requests.</p>
9f9307bbe539dbcf96919715315eb64ce3465f5bben <p>If you are using mod_proxy, you may wish to enable
79c0ed7d839527abd86794a6b1d2df4fd189a2a8jerenkrantz <directive module="mod_proxy">ProxyErrorOverride</directive> so that you can provide
9f9307bbe539dbcf96919715315eb64ce3465f5bben custom error messages on behalf of your Origin servers. If you don't enable ProxyErrorOverride,
9f9307bbe539dbcf96919715315eb64ce3465f5bben Apache httpd will not generate custom error documents for proxied content.</p>
f9a773d26994c3b267589e404cdb5b760f83e888jerenkrantz</directivesynopsis>
f9a773d26994c3b267589e404cdb5b760f83e888jerenkrantz<directivesynopsis>
f9a773d26994c3b267589e404cdb5b760f83e888jerenkrantz<description>Location where the server will log errors</description>
2d2eda71267231c2526be701fe655db125852c1ffielding<syntax> ErrorLog <var>file-path</var>|syslog[:<var>facility</var>]</syntax>
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh<default>ErrorLog logs/error_log (Unix) ErrorLog logs/error.log (Windows and OS/2)</default>
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh<contextlist><context>server config</context><context>virtual host</context>
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh</contextlist>
1ccd992d37d62c8cb2056126f2234f64ec189bfddougm <p>The <directive>ErrorLog</directive> directive sets the name of
be8a31a0afdb2363dbcc98bbbaa94b6184061b5fdreid the file to which the server will log any errors it encounters. If
952908500d5f99f35afc5ed510391b9bdc3833farbb the <var>file-path</var> is not absolute then it is assumed to be
952908500d5f99f35afc5ed510391b9bdc3833farbb relative to the <directive module="core">ServerRoot</directive>.</p>
952908500d5f99f35afc5ed510391b9bdc3833farbb </example>
91644a5f4d3e992dc208304b50e80bbb236fca89trawick begins with a pipe character "<code>|</code>" then it is assumed to be a
e6cc28a5eb3371ba0c38e941855e71ff0054f50erbb command to spawn to handle the error log.</p>
952908500d5f99f35afc5ed510391b9bdc3833farbb </example>
952908500d5f99f35afc5ed510391b9bdc3833farbb <p>See the notes on <a href="/logs.html#piped">piped logs</a> for
952908500d5f99f35afc5ed510391b9bdc3833farbb more information.</p>
952908500d5f99f35afc5ed510391b9bdc3833farbb <p>Using <code>syslog</code> instead of a filename enables logging
952908500d5f99f35afc5ed510391b9bdc3833farbb via syslogd(8) if the system supports it. The default is to use
952908500d5f99f35afc5ed510391b9bdc3833farbb syslog facility <code>local7</code>, but you can override this by
952908500d5f99f35afc5ed510391b9bdc3833farbb using the <code>syslog:<var>facility</var></code> syntax where
952908500d5f99f35afc5ed510391b9bdc3833farbb <var>facility</var> can be one of the names usually documented in
952908500d5f99f35afc5ed510391b9bdc3833farbb syslog(1). The facility is effectively global, and if it is changed
952908500d5f99f35afc5ed510391b9bdc3833farbb in individual virtual hosts, the final facility specified affects the
952908500d5f99f35afc5ed510391b9bdc3833farbb entire server.</p>
eb0fa8f996539c1cd5e5edf34f46e7e9c199641estas ErrorLog syslog:user
eb0fa8f996539c1cd5e5edf34f46e7e9c199641estas </example>
eb0fa8f996539c1cd5e5edf34f46e7e9c199641estas href="/misc/security_tips.html#serverroot">security tips</a>
952908500d5f99f35afc5ed510391b9bdc3833farbb document for details on why your security could be compromised
9f9307bbe539dbcf96919715315eb64ce3465f5bben if the directory where log files are stored is writable by
a93bda3b944fb92e3850db5621b5a27fc0e44509wrowe anyone other than the user that starts the server.</p>
a93bda3b944fb92e3850db5621b5a27fc0e44509wrowe <p>When entering a file path on non-Unix platforms, care should be taken
ca47a2b6bcea23e8af185c68f256dcbbfd2a0f9dtrawick to make sure that only forward slashed are used even though the platform
ca47a2b6bcea23e8af185c68f256dcbbfd2a0f9dtrawick may allow the use of back slashes. In general it is a good idea to always
2fc50921b88defeb7127985dfe4b4130175e069ejwoolley use forward slashes throughout the configuration files.</p>
d9039a9aaeaa1359c1147af66c09aeac56ae3ee0pquerna<seealso><directive module="core">LogLevel</directive></seealso>
d9039a9aaeaa1359c1147af66c09aeac56ae3ee0pquerna<seealso><a href="/logs.html">Apache HTTP Server Log Files</a></seealso>
d9039a9aaeaa1359c1147af66c09aeac56ae3ee0pquerna</directivesynopsis>
2f1bb5376c5c4022383bb729679ca751dd75a2eabrianp<directivesynopsis>
135402675e89e6df0e17735e48f428a1e1d8eb16pquerna<description>Format specification for error log entries</description>
135402675e89e6df0e17735e48f428a1e1d8eb16pquerna<syntax> ErrorLog [connection|request] <var>format</var></syntax>
135402675e89e6df0e17735e48f428a1e1d8eb16pquerna<contextlist><context>server config</context><context>virtual host</context>
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf</contextlist>
cdccf2ac94172d1a4a54bc2e17324e1ef682ccf3pquerna<compatibility>Available in Apache httpd 2.3.9 and later</compatibility>
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf <p><directive>ErrorLogFormat</directive> allows to specify what
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf supplementary information is logged in the error log in addition to the
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf actual log message.</p>
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf ErrorLogFormat "[%t] [%l] [pid %P] %F: %E: [client %a] %M"
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf </example>
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf <p>Specifying <code>connection</code> or <code>request</code> as first
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf paramter allows to specify additional formats, causing additional
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf information to be logged when the first message is logged for a specific
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf connection or request, respectivly. This additional information is only
efd83d1dd1a25688a3093c5a542ae16bacef62ddsf logged once per connection/request. If a connection or request is processed
efd83d1dd1a25688a3093c5a542ae16bacef62ddsf without causing any log message, the additional information is not logged
efd83d1dd1a25688a3093c5a542ae16bacef62ddsf either.</p>
e302f38fd646764ce1a1e1c578d794aef514a9e5sf <p>It can happen that some format string items do not produce output. For
e302f38fd646764ce1a1e1c578d794aef514a9e5sf example, the Referer header is only present if the log message is
e302f38fd646764ce1a1e1c578d794aef514a9e5sf associated to a request and the log message happens at a time when the
e302f38fd646764ce1a1e1c578d794aef514a9e5sf Referer header has already been read from the client. If no output is
e302f38fd646764ce1a1e1c578d794aef514a9e5sf produced, the default behaviour is to delete everything from the preceeding
e302f38fd646764ce1a1e1c578d794aef514a9e5sf space character to the next space character. This means the log line is
cdccf2ac94172d1a4a54bc2e17324e1ef682ccf3pquerna implicitly divided into fields on non-whitespace to whitespace transitions.
cdccf2ac94172d1a4a54bc2e17324e1ef682ccf3pquerna If a format string item does not produce output, the whole field is
cdccf2ac94172d1a4a54bc2e17324e1ef682ccf3pquerna ommitted. For example, if the remote address <code>%a</code> in the log
cdccf2ac94172d1a4a54bc2e17324e1ef682ccf3pquerna format <code>[%t] [%l] [%a] %M </code> is not available, the surrounding
cdccf2ac94172d1a4a54bc2e17324e1ef682ccf3pquerna brackets are not logged either. Space characters can be escaped with a
cdccf2ac94172d1a4a54bc2e17324e1ef682ccf3pquerna backslash to prevent them from delimiting a field. The combination '% '
cdccf2ac94172d1a4a54bc2e17324e1ef682ccf3pquerna (percent space) is a zero-witdh field delimiter that does not produce any
cdccf2ac94172d1a4a54bc2e17324e1ef682ccf3pquerna output.</p>
d9039a9aaeaa1359c1147af66c09aeac56ae3ee0pquerna <p>The above behaviour can be changed by adding modifiers to the format
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh string item. A <code>-</code> (minus) modifier causes a minus to be logged if the
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh respective item does not produce any output. In once-per-connection/request
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh formats, it is also possible to use the <code>+</code> (plus) modifier. If an
d9039a9aaeaa1359c1147af66c09aeac56ae3ee0pquerna item with the plus modifier does not produce any output, the whole line is
d9039a9aaeaa1359c1147af66c09aeac56ae3ee0pquerna ommitted.</p>
ad862ab5716726a2d72a292ba1dfb29566c86153brianp <p>A number as modifier can be used to assign a log severity level to a
ad862ab5716726a2d72a292ba1dfb29566c86153brianp format item. The item will only be logged if the severity of the log
b0d8a6d437db6f4c222173f27ef81c98622fbd02pquerna message is not higher than the specified log severity level. The number can
6d866a6eb84421d08d630030c2a7a2f53f248ad9jorton range from 1 (alert) over 4 (warn) and 7 (debug) to 15 (trace8).</p>
d9039a9aaeaa1359c1147af66c09aeac56ae3ee0pquerna <p>Some format string items accept additional parameters in braces.</p>
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh <columnspec><column width=".2"/><column width=".8"/></columnspec>
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh <tr><th>Format String</th> <th>Description</th></tr>
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf <td>Request environment variable <code>name</code></td></tr>
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh <td>Source file name and line number of the log call</td></tr>
952908500d5f99f35afc5ed510391b9bdc3833farbb <td>Number of keep-alive requests on this connection</td></tr>
8a261a9f7d18d1e862d63f68e93f288d3e1f0d94trawick <td>Log ID of the connection if used in connection scope, empty otherwise</td></tr>
2d2eda71267231c2526be701fe655db125852c1ffielding <td>Name of the module logging the message</td></tr>
2d2eda71267231c2526be701fe655db125852c1ffielding <td>The current time including micro-seconds</td></tr>
2d2eda71267231c2526be701fe655db125852c1ffielding <td>The current time in compact ISO 8601 format, including
efd83d1dd1a25688a3093c5a542ae16bacef62ddsf <td>The canonical <directive module="core">ServerName</directive>
952908500d5f99f35afc5ed510391b9bdc3833farbb <td>The server name of the server serving the request according to the
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf <p>The log ID format <code>%L</code> produces a unique id for a connection
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf or request. This can be used to correlate which log lines belong to the
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf same connection or request, which request happens on which connection.
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf <module>mod_log_config</module>, to allow to correlate access log entries
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf with error log lines. If <module>mod_unique_id</module> is loaded, its
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf unique id will be used as log ID for requests.</p>
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf <example><title>Example (somewhat similar to default format)</title>
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf ErrorLogFormat "[%{u}t] [%-m:%l] [pid %P] %7F: %E: [client\ %a]
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf %M% ,\ referer\ %{Referer}i"
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf </example>
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf <example><title>Example (similar to the 2.2.x format)</title>
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf ErrorLogFormat "[%t] [%l] %7F: %E: [client\ %a]
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf %M% ,\ referer\ %{Referer}i"
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf </example>
2d2eda71267231c2526be701fe655db125852c1ffielding <example><title>Advanced example with request/connection log IDs</title>
952908500d5f99f35afc5ed510391b9bdc3833farbb ErrorLogFormat "[%{uc}t] [%-m:%-l] [R:%L] [C:%{C}L] %7F: %E: %M"<br/>
2d2eda71267231c2526be701fe655db125852c1ffielding ErrorLogFormat request "[%{uc}t] [R:%L] Request %k on C:%{c}L pid:%P tid:%T"<br/>
fa861fc5a880d2c3a5ecc0ec71fa7da556adf5c1wrowe ErrorLogFormat request "[%{uc}t] [R:%L] UA:'%+{User-Agent}i'"<br/>
fa861fc5a880d2c3a5ecc0ec71fa7da556adf5c1wrowe ErrorLogFormat request "[%{uc}t] [R:%L] Referer:'%+{Referer}i'"<br/>
fa861fc5a880d2c3a5ecc0ec71fa7da556adf5c1wrowe ErrorLogFormat connection "[%{uc}t] [C:%{c}L] local\ %a remote\ %A"<br/>
952908500d5f99f35afc5ed510391b9bdc3833farbb<seealso><directive module="core">ErrorLog</directive></seealso>
952908500d5f99f35afc5ed510391b9bdc3833farbb<seealso><directive module="core">LogLevel</directive></seealso>
952908500d5f99f35afc5ed510391b9bdc3833farbb<seealso><a href="/logs.html">Apache HTTP Server Log Files</a></seealso>
952908500d5f99f35afc5ed510391b9bdc3833farbb</directivesynopsis>
952908500d5f99f35afc5ed510391b9bdc3833farbb<directivesynopsis>
952908500d5f99f35afc5ed510391b9bdc3833farbb<description>Keep track of extended status information for each
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sfrequest</description>
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf<contextlist><context>server config</context></contextlist>
952908500d5f99f35afc5ed510391b9bdc3833farbb <p>This option tracks additional data per worker about the
952908500d5f99f35afc5ed510391b9bdc3833farbb currently executing request, and a utilization summary; you
952908500d5f99f35afc5ed510391b9bdc3833farbb can see these variables during runtime by configuring
952908500d5f99f35afc5ed510391b9bdc3833farbb <module>mod_status</module>. Note that other modules may
952908500d5f99f35afc5ed510391b9bdc3833farbb rely on this scoreboard.</p>
40965c37b2fd320093215de6c3fbd516382077eajim <p>This setting applies to the entire server, and cannot be
40965c37b2fd320093215de6c3fbd516382077eajim enabled or disabled on a virtualhost-by-virtualhost basis.
40965c37b2fd320093215de6c3fbd516382077eajim The collection of extended status information can slow down
2d2eda71267231c2526be701fe655db125852c1ffielding the server. Also note that this setting cannot be changed
2d2eda71267231c2526be701fe655db125852c1ffielding during a graceful restart.</p>
1af2b28846e2647963db788b081676884fb7df8crpluem <p>Note that loading <module>mod_status</module> will change
4a68d6a5a7d10728f1f4172c595818f65e38f7b5sf the default behavior to ExtendedStatus On, while other
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf third party modules may do the same. Such modules rely on
78b8e4dd910f03af0a602bc4b63ad7bc69868ee3sf collecting detailed information about the state of all workers.
e6cc28a5eb3371ba0c38e941855e71ff0054f50erbb The default is changed by <module>mod_status</module> beginning
e6cc28a5eb3371ba0c38e941855e71ff0054f50erbb with version 2.3.6; the previous default was always Off.</p>
4fbb89a070c82e489830233bde6bc78ddf179978stoddard</directivesynopsis>
4fbb89a070c82e489830233bde6bc78ddf179978stoddard<directivesynopsis>
4fbb89a070c82e489830233bde6bc78ddf179978stoddard<description>File attributes used to create the ETag
4fbb89a070c82e489830233bde6bc78ddf179978stoddardHTTP response header for static files</description>
4fbb89a070c82e489830233bde6bc78ddf179978stoddard<contextlist><context>server config</context><context>virtual host</context>
4fbb89a070c82e489830233bde6bc78ddf179978stoddard<context>directory</context><context>.htaccess</context>
4fbb89a070c82e489830233bde6bc78ddf179978stoddard</contextlist>
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben The <directive>FileETag</directive> directive configures the file
952908500d5f99f35afc5ed510391b9bdc3833farbb attributes that are used to create the <code>ETag</code> (entity
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben tag) response header field when the document is based on a static file.
952908500d5f99f35afc5ed510391b9bdc3833farbb (The <code>ETag</code> value is used in cache management to save
3d96ee83babeec32482c9082c9426340cee8c44dwrowe network bandwidth.) The
952908500d5f99f35afc5ed510391b9bdc3833farbb <directive>FileETag</directive> directive allows you to choose
952908500d5f99f35afc5ed510391b9bdc3833farbb which of these -- if any -- should be used. The recognized keywords are:
952908500d5f99f35afc5ed510391b9bdc3833farbb <dd>The file's i-node number will be included in the calculation</dd>
952908500d5f99f35afc5ed510391b9bdc3833farbb <dd>The date and time the file was last modified will be included</dd>
2d2eda71267231c2526be701fe655db125852c1ffielding <dd>The number of bytes in the file will be included</dd>
2d2eda71267231c2526be701fe655db125852c1ffielding <dd>All available fields will be used. This is equivalent to:
952908500d5f99f35afc5ed510391b9bdc3833farbb <dd>If a document is file-based, no <code>ETag</code> field will be
952908500d5f99f35afc5ed510391b9bdc3833farbb included in the response</dd>
952908500d5f99f35afc5ed510391b9bdc3833farbb <p>The <code>INode</code>, <code>MTime</code>, and <code>Size</code>
952908500d5f99f35afc5ed510391b9bdc3833farbb keywords may be prefixed with either <code>+</code> or <code>-</code>,
952908500d5f99f35afc5ed510391b9bdc3833farbb which allow changes to be made to the default setting inherited
3d96ee83babeec32482c9082c9426340cee8c44dwrowe from a broader scope. Any keyword appearing without such a prefix
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh immediately and completely cancels the inherited setting.</p>
952908500d5f99f35afc5ed510391b9bdc3833farbb <p>If a directory's configuration includes
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben <code>FileETag INode MTime Size</code>, and a
952908500d5f99f35afc5ed510391b9bdc3833farbb subdirectory's includes <code>FileETag -INode</code>,
952908500d5f99f35afc5ed510391b9bdc3833farbb the setting for that subdirectory (which will be inherited by
952908500d5f99f35afc5ed510391b9bdc3833farbb any sub-subdirectories that don't override it) will be equivalent to
3d96ee83babeec32482c9082c9426340cee8c44dwrowe Do not change the default for directories or locations that have WebDAV
952908500d5f99f35afc5ed510391b9bdc3833farbb enabled and use <module>mod_dav_fs</module> as a storage provider.
952908500d5f99f35afc5ed510391b9bdc3833farbb <module>mod_dav_fs</module> uses <code>INode MTime Size</code>
952908500d5f99f35afc5ed510391b9bdc3833farbb as a fixed format for <code>ETag</code> comparisons on conditional requests.
952908500d5f99f35afc5ed510391b9bdc3833farbb These conditional requests will break if the <code>ETag</code> format is
952908500d5f99f35afc5ed510391b9bdc3833farbb An ETag is not generated for responses parsed by <module>mod_include</module>,
3d96ee83babeec32482c9082c9426340cee8c44dwrowe since the response entity can change without a change of the INode, MTime, or Size
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh of the static file with embedded SSI directives.
952908500d5f99f35afc5ed510391b9bdc3833farbb</directivesynopsis>
952908500d5f99f35afc5ed510391b9bdc3833farbb<description>Contains directives that apply to matched
3d96ee83babeec32482c9082c9426340cee8c44dwrowefilenames</description>
952908500d5f99f35afc5ed510391b9bdc3833farbb<syntax><Files <var>filename</var>> ... </Files></syntax>
952908500d5f99f35afc5ed510391b9bdc3833farbb<contextlist><context>server config</context><context>virtual host</context>
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh<context>directory</context><context>.htaccess</context>
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben</contextlist>
952908500d5f99f35afc5ed510391b9bdc3833farbb <p>The <directive type="section">Files</directive> directive
952908500d5f99f35afc5ed510391b9bdc3833farbb limits the scope of the enclosed directives by filename. It is comparable
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben to the <directive module="core" type="section">Directory</directive>
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben and <directive module="core" type="section">Location</directive>
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh directives. It should be matched with a <code></Files></code>
952908500d5f99f35afc5ed510391b9bdc3833farbb directive. The directives given within this section will be applied to
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh any object with a basename (last component of filename) matching the
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben specified filename. <directive type="section">Files</directive>
952908500d5f99f35afc5ed510391b9bdc3833farbb sections are processed in the order they appear in the
952908500d5f99f35afc5ed510391b9bdc3833farbb <code>.htaccess</code> files are read, but before <directive
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben type="section" module="core">Location</directive> sections. Note
952908500d5f99f35afc5ed510391b9bdc3833farbb that <directive type="section">Files</directive> can be nested
952908500d5f99f35afc5ed510391b9bdc3833farbb module="core">Directory</directive> sections to restrict the
952908500d5f99f35afc5ed510391b9bdc3833farbb portion of the filesystem they apply to.</p>
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben <p>The <var>filename</var> argument should include a filename, or
952908500d5f99f35afc5ed510391b9bdc3833farbb a wild-card string, where <code>?</code> matches any single character,
3d96ee83babeec32482c9082c9426340cee8c44dwrowe can also be used, with the addition of the
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben <Files ~ "\.(gif|jpe?g|png)$">
952908500d5f99f35afc5ed510391b9bdc3833farbb </example>
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben <p>would match most common Internet graphics formats. <directive
952908500d5f99f35afc5ed510391b9bdc3833farbb module="core" type="section">FilesMatch</directive> is preferred,
3d96ee83babeec32482c9082c9426340cee8c44dwrowe however.</p>
952908500d5f99f35afc5ed510391b9bdc3833farbb module="core">Directory</directive> and <directive type="section"
952908500d5f99f35afc5ed510391b9bdc3833farbb type="section">Files</directive> sections can be used inside
952908500d5f99f35afc5ed510391b9bdc3833farbb <code>.htaccess</code> files. This allows users to control access to
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben their own files, at a file-by-file level.</p>
952908500d5f99f35afc5ed510391b9bdc3833farbb<seealso><a href="/sections.html">How <Directory>, <Location>
3d96ee83babeec32482c9082c9426340cee8c44dwrowe and <Files> sections work</a> for an explanation of how these
2d2eda71267231c2526be701fe655db125852c1ffielding different sections are combined when a request is received</seealso>
952908500d5f99f35afc5ed510391b9bdc3833farbb</directivesynopsis>
952908500d5f99f35afc5ed510391b9bdc3833farbb<description>Contains directives that apply to regular-expression matched
952908500d5f99f35afc5ed510391b9bdc3833farbbfilenames</description>
952908500d5f99f35afc5ed510391b9bdc3833farbb<syntax><FilesMatch <var>regex</var>> ... </FilesMatch></syntax>
952908500d5f99f35afc5ed510391b9bdc3833farbb<contextlist><context>server config</context><context>virtual host</context>
aecb17a45c6d3ee4729ed5f68dc4270f211ee7a8fielding</contextlist>
952908500d5f99f35afc5ed510391b9bdc3833farbb <p>The <directive type="section">FilesMatch</directive> directive
952908500d5f99f35afc5ed510391b9bdc3833farbb limits the scope of the enclosed directives by filename, just as the
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben <directive module="core" type="section">Files</directive> directive
952908500d5f99f35afc5ed510391b9bdc3833farbb does. However, it accepts a <glossary ref="regex">regular
952908500d5f99f35afc5ed510391b9bdc3833farbb <FilesMatch "\.(gif|jpe?g|png)$">
952908500d5f99f35afc5ed510391b9bdc3833farbb <p>would match most common Internet graphics formats.</p>
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben<seealso><a href="/sections.html">How <Directory>, <Location>
952908500d5f99f35afc5ed510391b9bdc3833farbb and <Files> sections work</a> for an explanation of how these
952908500d5f99f35afc5ed510391b9bdc3833farbb different sections are combined when a request is received</seealso>
952908500d5f99f35afc5ed510391b9bdc3833farbb</directivesynopsis>
3d96ee83babeec32482c9082c9426340cee8c44dwrowe<directivesynopsis>
952908500d5f99f35afc5ed510391b9bdc3833farbb<description>Forces all matching files to be served with the specified
971ced4989415d939afba8d70c82a9ce0113bceendmedia type in the HTTP Content-Type header field</description>
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben<contextlist><context>directory</context><context>.htaccess</context>
952908500d5f99f35afc5ed510391b9bdc3833farbb</contextlist>
971ced4989415d939afba8d70c82a9ce0113bceend<compatibility>Moved to the core in Apache httpd 2.0</compatibility>
3d96ee83babeec32482c9082c9426340cee8c44dwrowe <directive type="section" module="core">Directory</directive>, or
952908500d5f99f35afc5ed510391b9bdc3833farbb <directive type="section" module="core">Location</directive> or
952908500d5f99f35afc5ed510391b9bdc3833farbb <directive type="section" module="core">Files</directive>
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben section, this directive forces all matching files to be served
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben with the content type identification given by
952908500d5f99f35afc5ed510391b9bdc3833farbb <var>media-type</var>. For example, if you had a directory full of
952908500d5f99f35afc5ed510391b9bdc3833farbb GIF files, but did not want to label them all with <code>.gif</code>,
952908500d5f99f35afc5ed510391b9bdc3833farbb you might want to use:</p>
952908500d5f99f35afc5ed510391b9bdc3833farbb </example>
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben <p>Note that this directive overrides other indirect media type
952908500d5f99f35afc5ed510391b9bdc3833farbb associations defined in mime.types or via the
952908500d5f99f35afc5ed510391b9bdc3833farbb <p>You can also override more general
952908500d5f99f35afc5ed510391b9bdc3833farbb <Location /images><br />
fb8ee8b7a3a2503b95bf47685f9083e0b9834e6fminfrin </Location><br />
fb8ee8b7a3a2503b95bf47685f9083e0b9834e6fminfrin # but normal mime-type associations here:<br />
fb8ee8b7a3a2503b95bf47685f9083e0b9834e6fminfrin ForceType None<br />
952908500d5f99f35afc5ed510391b9bdc3833farbb </Location>
952908500d5f99f35afc5ed510391b9bdc3833farbb </example>
952908500d5f99f35afc5ed510391b9bdc3833farbb <p>This directive primarily overrides the content types generated for
952908500d5f99f35afc5ed510391b9bdc3833farbb static files served out of the filesystem. For resources other than
3d96ee83babeec32482c9082c9426340cee8c44dwrowe static files, where the generator of the response typically specifies
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh a Content-Type, this directive has no effect.</p>
8419e6f8bff1a3617933f3ba760d2bdec7442f44coar</directivesynopsis>
8419e6f8bff1a3617933f3ba760d2bdec7442f44coar<directivesynopsis>
8419e6f8bff1a3617933f3ba760d2bdec7442f44coar<description>Directory to write gmon.out profiling data to. </description>
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh<syntax>GprofDir <var>/tmp/gprof/</var>|<var>/tmp/gprof/</var>%</syntax>
952908500d5f99f35afc5ed510391b9bdc3833farbb<contextlist><context>server config</context><context>virtual host</context>
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben</contextlist>
3d96ee83babeec32482c9082c9426340cee8c44dwrowe <p>When the server has been compiled with gprof profiling support,
952908500d5f99f35afc5ed510391b9bdc3833farbb <directive>GprofDir</directive> causes <code>gmon.out</code> files to
952908500d5f99f35afc5ed510391b9bdc3833farbb be written to the specified directory when the process exits. If the
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben argument ends with a percent symbol ('%'), subdirectories are created
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben for each process id.</p>
952908500d5f99f35afc5ed510391b9bdc3833farbb <p>This directive currently only works with the <module>prefork</module>
952908500d5f99f35afc5ed510391b9bdc3833farbb</directivesynopsis>
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben<directivesynopsis>
952908500d5f99f35afc5ed510391b9bdc3833farbb<description>Enables DNS lookups on client IP addresses</description>
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh<contextlist><context>server config</context><context>virtual host</context>
fb8ee8b7a3a2503b95bf47685f9083e0b9834e6fminfrin <p>This directive enables DNS lookups so that host names can be
fb8ee8b7a3a2503b95bf47685f9083e0b9834e6fminfrin logged (and passed to CGIs/SSIs in <code>REMOTE_HOST</code>).
fb8ee8b7a3a2503b95bf47685f9083e0b9834e6fminfrin The value <code>Double</code> refers to doing double-reverse
a5f529db7a87e3ac2e3c67b4ae009c1c094235d9minfrin DNS lookup. That is, after a reverse lookup is performed, a forward
fb8ee8b7a3a2503b95bf47685f9083e0b9834e6fminfrin lookup is then performed on that result. At least one of the IP
952908500d5f99f35afc5ed510391b9bdc3833farbb addresses in the forward lookup must match the original
952908500d5f99f35afc5ed510391b9bdc3833farbb address. (In "tcpwrappers" terminology this is called
952908500d5f99f35afc5ed510391b9bdc3833farbb <p>Regardless of the setting, when <module>mod_authz_host</module> is
952908500d5f99f35afc5ed510391b9bdc3833farbb used for controlling access by hostname, a double reverse lookup
952908500d5f99f35afc5ed510391b9bdc3833farbb will be performed. This is necessary for security. Note that the
952908500d5f99f35afc5ed510391b9bdc3833farbb result of this double-reverse isn't generally available unless you
3d96ee83babeec32482c9082c9426340cee8c44dwrowe set <code>HostnameLookups Double</code>. For example, if only
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh <code>HostnameLookups On</code> and a request is made to an object
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh that is protected by hostname restrictions, regardless of whether
2d2eda71267231c2526be701fe655db125852c1ffielding the double-reverse fails or not, CGIs will still be passed the
952908500d5f99f35afc5ed510391b9bdc3833farbb <p>The default is <code>Off</code> in order to save the network
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben traffic for those sites that don't truly need the reverse
952908500d5f99f35afc5ed510391b9bdc3833farbb lookups done. It is also better for the end users because they
952908500d5f99f35afc5ed510391b9bdc3833farbb don't have to suffer the extra latency that a lookup entails.
952908500d5f99f35afc5ed510391b9bdc3833farbb Heavily loaded sites should leave this directive
8c3667cd1d0db08647793137c0d1aa7f6526bebfniq <code>Off</code>, since DNS lookups can take considerable
8c3667cd1d0db08647793137c0d1aa7f6526bebfniq amounts of time. The utility <program>logresolve</program>, compiled by
8c3667cd1d0db08647793137c0d1aa7f6526bebfniq default to the <code>bin</code> subdirectory of your installation
8c3667cd1d0db08647793137c0d1aa7f6526bebfniq directory, can be used to look up host names from logged IP addresses
8c3667cd1d0db08647793137c0d1aa7f6526bebfniq offline.</p>
8c3667cd1d0db08647793137c0d1aa7f6526bebfniq</directivesynopsis>
3de8d8649277a02f53aa4f06121420985e8eee08nd<description>Contains directives that apply only if a condition is
3de8d8649277a02f53aa4f06121420985e8eee08ndsatisfied by a request at runtime</description>
3de8d8649277a02f53aa4f06121420985e8eee08nd<syntax><If <var>expression</var>> ... </If></syntax>
82acfa3f57607ae78326104c420a317260554a47nd<contextlist><context>server config</context><context>virtual host</context>
3de8d8649277a02f53aa4f06121420985e8eee08nd</contextlist>
82acfa3f57607ae78326104c420a317260554a47nd <p>The <directive type="section">If</directive> directive
82acfa3f57607ae78326104c420a317260554a47nd evaluates an expression at runtime, and applies the enclosed
82acfa3f57607ae78326104c420a317260554a47nd directives if and only if the expression evaluates to true.
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh For example:</p>
82acfa3f57607ae78326104c420a317260554a47nd <If "$req{Host} = ''">
82acfa3f57607ae78326104c420a317260554a47nd </example>
952908500d5f99f35afc5ed510391b9bdc3833farbb <p>would match HTTP/1.0 requests without a <var>Host:</var> header.</p>
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben <p>You may compare the value of any variable in the request headers
952908500d5f99f35afc5ed510391b9bdc3833farbb ($req), response headers ($resp) or environment ($env) in your
952908500d5f99f35afc5ed510391b9bdc3833farbb expression.</p>
952908500d5f99f35afc5ed510391b9bdc3833farbb <p>Apart from <code>=</code>, <code>If</code> can use the <code>IN</code>
952908500d5f99f35afc5ed510391b9bdc3833farbb operator to compare if the expression is in a given range:</p>
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh <If %{REQUEST_METHOD} IN GET,HEAD,OPTIONS>
952908500d5f99f35afc5ed510391b9bdc3833farbb </example>
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben<seealso><a href="/expr.html">Expressions in Apache HTTP Server</a>,
952908500d5f99f35afc5ed510391b9bdc3833farbbfor a complete reference and more examples.</seealso>
3d96ee83babeec32482c9082c9426340cee8c44dwrowe<seealso><a href="/sections.html">How <Directory>, <Location>,
2d2eda71267231c2526be701fe655db125852c1ffielding <Files> sections work</a> for an explanation of how these
952908500d5f99f35afc5ed510391b9bdc3833farbb different sections are combined when a request is received.
952908500d5f99f35afc5ed510391b9bdc3833farbb <directive type="section">If</directive> has the same precedence
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben and usage as <directive type="section">Files</directive></seealso>
952908500d5f99f35afc5ed510391b9bdc3833farbb</directivesynopsis>
952908500d5f99f35afc5ed510391b9bdc3833farbb<description>Encloses directives that will be processed only
759f4a24d09e28c4eaca9f97311b497fc15cb5c7benif a test is true at startup</description>
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben<syntax><IfDefine [!]<var>parameter-name</var>> ...
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben </IfDefine></syntax>
952908500d5f99f35afc5ed510391b9bdc3833farbb<contextlist><context>server config</context><context>virtual host</context>
952908500d5f99f35afc5ed510391b9bdc3833farbb</contextlist>
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben <p>The <code><IfDefine <var>test</var>>...</IfDefine>
3d96ee83babeec32482c9082c9426340cee8c44dwrowe </code> section is used to mark directives that are conditional. The
7c7372abe2484e7fcf81937b93496d1246e5b816gstein directives within an <directive type="section">IfDefine</directive>
952908500d5f99f35afc5ed510391b9bdc3833farbb section are only processed if the <var>test</var> is true. If <var>
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben test</var> is false, everything between the start and end markers is
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben ignored.</p>
952908500d5f99f35afc5ed510391b9bdc3833farbb >IfDefine</directive> section directive can be one of two forms:</p>
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben <p>In the former case, the directives between the start and end
58619148951981bcfa5c506ad8ce745aa8831980rbb markers are only processed if the parameter named
58619148951981bcfa5c506ad8ce745aa8831980rbb <var>parameter-name</var> is defined. The second format reverses
58619148951981bcfa5c506ad8ce745aa8831980rbb the test, and only processes the directives if
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh <var>parameter-name</var> is <strong>not</strong> defined.</p>
3d72602d1d9e6f0d49d20f0d0a71831c160ef589wrowe <p>The <var>parameter-name</var> argument is a define as given on the
58619148951981bcfa5c506ad8ce745aa8831980rbb <program>httpd</program> command line via <code>-D<var>parameter</var>
3d96ee83babeec32482c9082c9426340cee8c44dwrowe </code> at the time the server was started or by the <directive
3d72602d1d9e6f0d49d20f0d0a71831c160ef589wrowe <p><directive type="section">IfDefine</directive> sections are
3d72602d1d9e6f0d49d20f0d0a71831c160ef589wrowe nest-able, which can be used to implement simple
3d72602d1d9e6f0d49d20f0d0a71831c160ef589wrowe multiple-parameter tests. Example:</p>
3d72602d1d9e6f0d49d20f0d0a71831c160ef589wrowe httpd -DReverseProxy -DUseCache -DMemCache ...<br />
3d72602d1d9e6f0d49d20f0d0a71831c160ef589wrowe <IfDefine ReverseProxy><br />
58619148951981bcfa5c506ad8ce745aa8831980rbb LoadModule proxy_http_module modules/mod_proxy_http.so<br />
58619148951981bcfa5c506ad8ce745aa8831980rbb <IfDefine UseCache><br />
58619148951981bcfa5c506ad8ce745aa8831980rbb <IfDefine MemCache><br />
58619148951981bcfa5c506ad8ce745aa8831980rbb LoadModule mem_cache_module modules/mod_mem_cache.so<br />
58619148951981bcfa5c506ad8ce745aa8831980rbb </IfDefine><br />
58619148951981bcfa5c506ad8ce745aa8831980rbb <IfDefine !MemCache><br />
58619148951981bcfa5c506ad8ce745aa8831980rbb LoadModule cache_disk_module modules/mod_cache_disk.so<br />
92d6e181c597b97647d750c43a7bc3626e056b59gstein </IfDefine>
58619148951981bcfa5c506ad8ce745aa8831980rbb </IfDefine>
58619148951981bcfa5c506ad8ce745aa8831980rbb </IfDefine>
58619148951981bcfa5c506ad8ce745aa8831980rbb </example>
58619148951981bcfa5c506ad8ce745aa8831980rbb</directivesynopsis>
58619148951981bcfa5c506ad8ce745aa8831980rbb<description>Encloses directives that are processed conditional on the
58619148951981bcfa5c506ad8ce745aa8831980rbbpresence or absence of a specific module</description>
58619148951981bcfa5c506ad8ce745aa8831980rbb<syntax><IfModule [!]<var>module-file</var>|<var>module-identifier</var>> ...
58619148951981bcfa5c506ad8ce745aa8831980rbb </IfModule></syntax>
58619148951981bcfa5c506ad8ce745aa8831980rbb<contextlist><context>server config</context><context>virtual host</context>
3e0494829cf6e8ac61e80fd82b1133111a52614cbrianp<context>directory</context><context>.htaccess</context>
58619148951981bcfa5c506ad8ce745aa8831980rbb</contextlist>
58619148951981bcfa5c506ad8ce745aa8831980rbb<compatibility>Module identifiers are available in version 2.1 and
30c095035b1d5910cc239a1384c816aef228beb5jimlater.</compatibility>
30c095035b1d5910cc239a1384c816aef228beb5jim <p>The <code><IfModule <var>test</var>>...</IfModule></code>
30c095035b1d5910cc239a1384c816aef228beb5jim section is used to mark directives that are conditional on the presence of
30c095035b1d5910cc239a1384c816aef228beb5jim a specific module. The directives within an <directive type="section"
bdadc326446cae4a51bf75811fbe01a3a362df64gstein >IfModule</directive> section are only processed if the <var>test</var>
bdadc326446cae4a51bf75811fbe01a3a362df64gstein is true. If <var>test</var> is false, everything between the start and
30c095035b1d5910cc239a1384c816aef228beb5jim end markers is ignored.</p>
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben >IfModule</directive> section directive can be one of two forms:</p>
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben <p>In the former case, the directives between the start and end
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh markers are only processed if the module named <var>module</var>
58619148951981bcfa5c506ad8ce745aa8831980rbb is included in Apache httpd -- either compiled in or
3d96ee83babeec32482c9082c9426340cee8c44dwrowe >LoadModule</directive>. The second format reverses the test,
58619148951981bcfa5c506ad8ce745aa8831980rbb and only processes the directives if <var>module</var> is
e0cb33839fe1b103e960da9538156de474d290e2sf <p>The <var>module</var> argument can be either the module identifier or
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben the file name of the module, at the time it was compiled. For example,
58619148951981bcfa5c506ad8ce745aa8831980rbb <code>mod_rewrite.c</code> is the file name. If a module consists of
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh several source files, use the name of the file containing the string
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben <p><directive type="section">IfModule</directive> sections are
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh nest-able, which can be used to implement simple multiple-module
58619148951981bcfa5c506ad8ce745aa8831980rbb tests.</p>
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton <note>This section should only be used if you need to have one
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton configuration file that works whether or not a specific module
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh is available. In normal operation, directives need not be
58619148951981bcfa5c506ad8ce745aa8831980rbb placed in <directive type="section">IfModule</directive>
58619148951981bcfa5c506ad8ce745aa8831980rbb sections.</note>
58619148951981bcfa5c506ad8ce745aa8831980rbb</directivesynopsis>
e0cb33839fe1b103e960da9538156de474d290e2sf<directivesynopsis>
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton<description>Includes other configuration files from within
58619148951981bcfa5c506ad8ce745aa8831980rbbthe server configuration files</description>
58619148951981bcfa5c506ad8ce745aa8831980rbb<syntax>Include [<var>optional</var>|<var>strict</var>] <var>file-path</var>|<var>directory-path</var>|<var>wildcard</var></syntax>
58619148951981bcfa5c506ad8ce745aa8831980rbb<contextlist><context>server config</context><context>virtual host</context>
58619148951981bcfa5c506ad8ce745aa8831980rbb</contextlist>
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben<compatibility>Wildcard matching available in 2.0.41 and later, directory
58619148951981bcfa5c506ad8ce745aa8831980rbbwildcard matching available in 2.3.6 and later</compatibility>
58619148951981bcfa5c506ad8ce745aa8831980rbb <p>This directive allows inclusion of other configuration files
58619148951981bcfa5c506ad8ce745aa8831980rbb from within the server configuration files.</p>
58619148951981bcfa5c506ad8ce745aa8831980rbb <p>Shell-style (<code>fnmatch()</code>) wildcard characters can be used
3d96ee83babeec32482c9082c9426340cee8c44dwrowe in the filename or directory parts of the path to include several files
ef5650b61a8e35f3cc93ec07e73efc17ea329894jorton at once, in alphabetical order. In addition, if
2d2eda71267231c2526be701fe655db125852c1ffielding <directive>Include</directive> points to a directory, rather than a file,
58619148951981bcfa5c506ad8ce745aa8831980rbb Apache httpd will read all files in that directory and any subdirectory.
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben However, including entire directories is not recommended, because it is
58619148951981bcfa5c506ad8ce745aa8831980rbb easy to accidentally leave temporary files in a directory that can cause
58619148951981bcfa5c506ad8ce745aa8831980rbb <program>httpd</program> to fail. Instead, we encourage you to use the
58619148951981bcfa5c506ad8ce745aa8831980rbb wildcard syntax shown below, to include files that match a particular
3d96ee83babeec32482c9082c9426340cee8c44dwrowe pattern, such as *.conf, for example.</p>
58619148951981bcfa5c506ad8ce745aa8831980rbb <p>When a wildcard is specified for a <strong>file</strong> component of
58619148951981bcfa5c506ad8ce745aa8831980rbb the path, and no file matches the wildcard, the
58619148951981bcfa5c506ad8ce745aa8831980rbb directive will be <strong>silently ignored</strong>. When a wildcard is
3d96ee83babeec32482c9082c9426340cee8c44dwrowe specified for a <strong>directory</strong> component of the path, and
58619148951981bcfa5c506ad8ce745aa8831980rbb no directory matches the wildcard, the
58619148951981bcfa5c506ad8ce745aa8831980rbb <directive module="core">Include</directive> directive will
58619148951981bcfa5c506ad8ce745aa8831980rbb <strong>fail with an error</strong> saying the directory cannot be found.
58619148951981bcfa5c506ad8ce745aa8831980rbb <p>For further control over the behaviour of the server when no files or
58619148951981bcfa5c506ad8ce745aa8831980rbb directories match, prefix the path with the modifiers <var>optional</var>
58619148951981bcfa5c506ad8ce745aa8831980rbb or <var>strict</var>. If <var>optional</var> is specified, any wildcard
aecb17a45c6d3ee4729ed5f68dc4270f211ee7a8fielding file or directory that does not match will be silently ignored. If
58619148951981bcfa5c506ad8ce745aa8831980rbb <var>strict</var> is specified, any wildcard file or directory that does
58619148951981bcfa5c506ad8ce745aa8831980rbb not match at least one file will cause server startup to fail.</p>
58619148951981bcfa5c506ad8ce745aa8831980rbb <p>When a directory or file component of the path is
58619148951981bcfa5c506ad8ce745aa8831980rbb specified exactly, and that directory or file does not exist,
58619148951981bcfa5c506ad8ce745aa8831980rbb <directive module="core">Include</directive> directive will fail with an
58619148951981bcfa5c506ad8ce745aa8831980rbb error saying the file or directory cannot be found.</p>
aecb17a45c6d3ee4729ed5f68dc4270f211ee7a8fielding <p>The file path specified may be an absolute path, or may be relative
2d2eda71267231c2526be701fe655db125852c1ffielding to the <directive module="core">ServerRoot</directive> directory.</p>
783334f576bfb7ef44623faf7af44a65cf13b9b4jim </example>
783334f576bfb7ef44623faf7af44a65cf13b9b4jim <p>Wildcards may be included in the directory or file portion of the
783334f576bfb7ef44623faf7af44a65cf13b9b4jim path. In the following example, the server will fail to load if no
783334f576bfb7ef44623faf7af44a65cf13b9b4jim directories match conf/vhosts/*, but will load successfully if no
783334f576bfb7ef44623faf7af44a65cf13b9b4jim files match *.conf.</p>
9257af3c6aaeaf201fccb3e3c87cf8c41783fdb7rpluem <p>In this example, the server will fail to load if either
9257af3c6aaeaf201fccb3e3c87cf8c41783fdb7rpluem conf/vhosts/* matches no directories, or if *.conf matches no files:</p>
9257af3c6aaeaf201fccb3e3c87cf8c41783fdb7rpluem <p>In this example, the server load successfully if either conf/vhosts/*
9257af3c6aaeaf201fccb3e3c87cf8c41783fdb7rpluem matches no directories, or if *.conf matches no files:</p>
9257af3c6aaeaf201fccb3e3c87cf8c41783fdb7rpluem</directivesynopsis>
7c66a25db06001672e6ec5485b69bc7f3c342753jim<directivesynopsis>
7c66a25db06001672e6ec5485b69bc7f3c342753jim<description>Enables HTTP persistent connections</description>
7c66a25db06001672e6ec5485b69bc7f3c342753jim<contextlist><context>server config</context><context>virtual host</context>
7c66a25db06001672e6ec5485b69bc7f3c342753jim</contextlist>
dac0f846350698d2a3e65c814daf82721bafc502jim <p>The Keep-Alive extension to HTTP/1.0 and the persistent
b8055f3cb7e560830169cd1117a47b86abae41b4jim connection feature of HTTP/1.1 provide long-lived HTTP sessions
b8055f3cb7e560830169cd1117a47b86abae41b4jim which allow multiple requests to be sent over the same TCP
b8055f3cb7e560830169cd1117a47b86abae41b4jim connection. In some cases this has been shown to result in an
b8055f3cb7e560830169cd1117a47b86abae41b4jim almost 50% speedup in latency times for HTML documents with
b8055f3cb7e560830169cd1117a47b86abae41b4jim many images. To enable Keep-Alive connections, set
dac0f846350698d2a3e65c814daf82721bafc502jim <p>For HTTP/1.0 clients, Keep-Alive connections will only be
b8055f3cb7e560830169cd1117a47b86abae41b4jim used if they are specifically requested by a client. In
b8055f3cb7e560830169cd1117a47b86abae41b4jim addition, a Keep-Alive connection with an HTTP/1.0 client can
dac0f846350698d2a3e65c814daf82721bafc502jim only be used when the length of the content is known in
dac0f846350698d2a3e65c814daf82721bafc502jim advance. This implies that dynamic content such as CGI output,
b8055f3cb7e560830169cd1117a47b86abae41b4jim SSI pages, and server-generated directory listings will
b8055f3cb7e560830169cd1117a47b86abae41b4jim generally not use Keep-Alive connections to HTTP/1.0 clients.
b8055f3cb7e560830169cd1117a47b86abae41b4jim For HTTP/1.1 clients, persistent connections are the default
b8055f3cb7e560830169cd1117a47b86abae41b4jim unless otherwise specified. If the client requests it, chunked
b8055f3cb7e560830169cd1117a47b86abae41b4jim encoding will be used in order to send content of unknown
b8055f3cb7e560830169cd1117a47b86abae41b4jim length over persistent connections.</p>
b8055f3cb7e560830169cd1117a47b86abae41b4jim <p>When a client uses a Keep-Alive connection it will be counted
2d2eda71267231c2526be701fe655db125852c1ffielding as a single "request" for the <directive module="mpm_common"
58619148951981bcfa5c506ad8ce745aa8831980rbb >MaxConnectionsPerChild</directive> directive, regardless
58619148951981bcfa5c506ad8ce745aa8831980rbb of how many requests are sent using the connection.</p>
58619148951981bcfa5c506ad8ce745aa8831980rbb<seealso><directive module="core">MaxKeepAliveRequests</directive></seealso>
30c095035b1d5910cc239a1384c816aef228beb5jim</directivesynopsis>
7c7372abe2484e7fcf81937b93496d1246e5b816gstein<directivesynopsis>
30c095035b1d5910cc239a1384c816aef228beb5jim<description>Amount of time the server will wait for subsequent
759f4a24d09e28c4eaca9f97311b497fc15cb5c7benrequests on a persistent connection</description>
58619148951981bcfa5c506ad8ce745aa8831980rbb<contextlist><context>server config</context><context>virtual host</context>
47ab8dcf8ad581569376f2e04ef16bc785bb122aake</contextlist>
2d2eda71267231c2526be701fe655db125852c1ffielding<compatibility>Specifying a value in milliseconds is available in
2d2eda71267231c2526be701fe655db125852c1ffieldingApache httpd 2.3.2 and later</compatibility>
2d2eda71267231c2526be701fe655db125852c1ffielding <p>The number of seconds Apache httpd will wait for a subsequent
58619148951981bcfa5c506ad8ce745aa8831980rbb request before closing the connection. By adding a postfix of ms the
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben timeout can be also set in milliseconds. Once a request has been
759f4a24d09e28c4eaca9f97311b497fc15cb5c7ben received, the timeout value specified by the
58619148951981bcfa5c506ad8ce745aa8831980rbb <directive module="core">Timeout</directive> directive applies.</p>
58619148951981bcfa5c506ad8ce745aa8831980rbb <p>Setting <directive>KeepAliveTimeout</directive> to a high value
2d2eda71267231c2526be701fe655db125852c1ffielding may cause performance problems in heavily loaded servers. The
58619148951981bcfa5c506ad8ce745aa8831980rbb higher the timeout, the more server processes will be kept
58619148951981bcfa5c506ad8ce745aa8831980rbb occupied waiting on connections with idle clients.</p>
58619148951981bcfa5c506ad8ce745aa8831980rbb <p>In a name-based virtual host context, the value of the first
58619148951981bcfa5c506ad8ce745aa8831980rbb defined virtual host (the default host) in a set of <directive
3d96ee83babeec32482c9082c9426340cee8c44dwrowe The other values will be ignored.</p>
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh</directivesynopsis>
2d2eda71267231c2526be701fe655db125852c1ffielding<description>Restrict enclosed access controls to only certain HTTP
2d2eda71267231c2526be701fe655db125852c1ffieldingmethods</description>
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh<syntax><Limit <var>method</var> [<var>method</var>] ... > ...
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh </Limit></syntax>
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh<contextlist><context>directory</context><context>.htaccess</context>
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh</contextlist>
0186cb43574836fc95a0506456210c94cfc3ea6ftrawick <p>Access controls are normally effective for
6e70165f24ec2e664764a9402e358eb0f6e99a3dtrawick <strong>all</strong> access methods, and this is the usual
0186cb43574836fc95a0506456210c94cfc3ea6ftrawick desired behavior. <strong>In the general case, access control
6e70165f24ec2e664764a9402e358eb0f6e99a3dtrawick directives should not be placed within a
0186cb43574836fc95a0506456210c94cfc3ea6ftrawick <directive type="section">Limit</directive> section.</strong></p>
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh <p>The purpose of the <directive type="section">Limit</directive>
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh directive is to restrict the effect of the access controls to the
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh nominated HTTP methods. For all other methods, the access
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh restrictions that are enclosed in the <directive
2d2eda71267231c2526be701fe655db125852c1ffielding type="section">Limit</directive> bracket <strong>will have no
2d2eda71267231c2526be701fe655db125852c1ffielding effect</strong>. The following example applies the access control
2d2eda71267231c2526be701fe655db125852c1ffielding only to the methods <code>POST</code>, <code>PUT</code>, and
2d2eda71267231c2526be701fe655db125852c1ffielding <code>DELETE</code>, leaving all other methods unprotected:</p>
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh <Limit POST PUT DELETE><br />
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh Require valid-user<br />
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh </Limit>
2d2eda71267231c2526be701fe655db125852c1ffielding <p>The method names listed can be one or more of: <code>GET</code>,
2d2eda71267231c2526be701fe655db125852c1ffielding <code>POST</code>, <code>PUT</code>, <code>DELETE</code>,
2d2eda71267231c2526be701fe655db125852c1ffielding <code>PATCH</code>, <code>PROPFIND</code>, <code>PROPPATCH</code>,
2d2eda71267231c2526be701fe655db125852c1ffielding <code>MKCOL</code>, <code>COPY</code>, <code>MOVE</code>,
2d2eda71267231c2526be701fe655db125852c1ffielding <code>LOCK</code>, and <code>UNLOCK</code>. <strong>The method name is
2d2eda71267231c2526be701fe655db125852c1ffielding case-sensitive.</strong> If <code>GET</code> is used it will also
2d2eda71267231c2526be701fe655db125852c1ffielding restrict <code>HEAD</code> requests. The <code>TRACE</code> method
9f9307bbe539dbcf96919715315eb64ce3465f5bben module="core">LimitExcept</directive> section should always be
9f9307bbe539dbcf96919715315eb64ce3465f5bben used in preference to a <directive type="section">Limit</directive>
9f9307bbe539dbcf96919715315eb64ce3465f5bben section when restricting access, since a <directive type="section"
9f9307bbe539dbcf96919715315eb64ce3465f5bben module="core">LimitExcept</directive> section provides protection
9f9307bbe539dbcf96919715315eb64ce3465f5bben against arbitrary methods.</note>
2d2eda71267231c2526be701fe655db125852c1ffielding <directive type="section" module="core">LimitExcept</directive>
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh directives may be nested. In this case, each successive level of
2d2eda71267231c2526be701fe655db125852c1ffielding <directive type="section">Limit</directive> or <directive
2d2eda71267231c2526be701fe655db125852c1ffielding type="section" module="core">LimitExcept</directive> directives must
2d2eda71267231c2526be701fe655db125852c1ffielding further restrict the set of methods to which access controls apply.</p>
0e6e93183d91142d7cf9ffbf502114ff77bd9e19ben <directive type="section">LimitExcept</directive> directives with
9521cafc02c2caafc8f9594006994ed1f62540a4dreid the <directive module="mod_authz_core">Require</directive> directive,
18173b5033350759b5aa4f6d9a4fd9e12d440135trawick note that the first <directive module="mod_authz_core">Require</directive>
18173b5033350759b5aa4f6d9a4fd9e12d440135trawick to succeed authorizes the request, regardless of the presence of other
18173b5033350759b5aa4f6d9a4fd9e12d440135trawick <directive module="mod_authz_core">Require</directive> directives.</note>
18173b5033350759b5aa4f6d9a4fd9e12d440135trawick <p>For example, given the following configuration, all users will
18173b5033350759b5aa4f6d9a4fd9e12d440135trawick be authorized for <code>POST</code> requests, and the
84ba82304285b4bb1aafd5c6cdada5ce74c29973striker <code>Require group editors</code> directive will be ignored
84ba82304285b4bb1aafd5c6cdada5ce74c29973striker in all cases:</p>
84ba82304285b4bb1aafd5c6cdada5ce74c29973striker <LimitExcept GET>
84ba82304285b4bb1aafd5c6cdada5ce74c29973striker Require valid-user
0e6e93183d91142d7cf9ffbf502114ff77bd9e19ben </LimitExcept><br />
5f7c351eb2a69d8cef6c3e98e27ce6158a0b1780rbb <Limit POST>
5f7c351eb2a69d8cef6c3e98e27ce6158a0b1780rbb Require group editors
dca927eafb338b9de9d0214818136c16d436e3fdrbb </Limit>
dca927eafb338b9de9d0214818136c16d436e3fdrbb </example>
0e6e93183d91142d7cf9ffbf502114ff77bd9e19ben</directivesynopsis>
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh<description>Restrict access controls to all HTTP methods
66d349e02d1a5a599a01c977d2c5b0009181f7debenexcept the named ones</description>
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh<syntax><LimitExcept <var>method</var> [<var>method</var>] ... > ...
0e6e93183d91142d7cf9ffbf502114ff77bd9e19ben </LimitExcept></syntax>
3d0bdf16bc410722e6c42aa2ceb0677b0ae29b90ianh<contextlist><context>directory</context><context>.htaccess</context>
0e6e93183d91142d7cf9ffbf502114ff77bd9e19ben</contextlist>
dca927eafb338b9de9d0214818136c16d436e3fdrbb <p><directive type="section">LimitExcept</directive> and
0e6e93183d91142d7cf9ffbf502114ff77bd9e19ben a group of access control directives which will then apply to any
0a09a4a642f7c0d367598394411dbdd4a6d8cd09fielding HTTP access method <strong>not</strong> listed in the arguments;
55d986c77300fd39420b41f765b08c15b4c6418drbb module="core">Limit</directive> section and can be used to control
2d2eda71267231c2526be701fe655db125852c1ffielding both standard and nonstandard/unrecognized methods. See the
2d2eda71267231c2526be701fe655db125852c1ffielding type="section">Limit</directive> for more details.</p>
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh <LimitExcept POST GET><br />
9d129b55f5a43abf43865c6b0eb6dd19bc22aba8ianh Require valid-user<br />
<p>You only need to set the protocol if you are running on non-standard ports, otherwise <code>http</code> is assumed for port 80 and <code>https</code> for port 443.</p>
<p>For example, if you are running <code>https</code> on a non-standard port, specify the protocol explicitly:</p>
<p>You can also specify the protocol using the <directive module="mpm_common">Listen</directive> directive.</p>
<syntax>ServerName [<var>scheme</var>://]<var>fully-qualified-domain-name</var>[:<var>port</var>]</syntax>
ServerName www.example.com:80
settings which determine whether self-referential URLs (e.g., by the
httpd: Could not reliably determine the server's fully qualified domain name, using rocinante.local for ServerName
href="http://httpd.apache.org/docs/misc/FAQ.html#prompted-twice">the