diff options
| author | mh <mh@immerda.ch> | 2010-07-06 00:06:32 +0200 |
|---|---|---|
| committer | mh <mh@immerda.ch> | 2010-07-06 00:08:56 +0200 |
| commit | 29deff66d7dfad609e429a14ad6917b79de5de50 (patch) | |
| tree | a1b8a526c5e07e95be8ff6451216a5269b606f66 /files | |
| parent | 9ff20635fbb0945195f2b562f46efca8f5d13850 (diff) | |
| download | puppet-lighttpd-29deff66d7dfad609e429a14ad6917b79de5de50.tar.gz puppet-lighttpd-29deff66d7dfad609e429a14ad6917b79de5de50.tar.bz2 | |
improve vhosts / ssl stuff
- facter out ssl things in a seperate file
- introduce 1 vhost per file config
Diffstat (limited to 'files')
| -rw-r--r-- | files/conf.d/ssl.conf | 6 | ||||
| -rw-r--r-- | files/lighttpd.conf | 2 |
2 files changed, 8 insertions, 0 deletions
diff --git a/files/conf.d/ssl.conf b/files/conf.d/ssl.conf new file mode 100644 index 0000000..291fce5 --- /dev/null +++ b/files/conf.d/ssl.conf @@ -0,0 +1,6 @@ +$SERVER["socket"] == ":443" { + ssl.engine = "enable" + ssl.pemfile = "/etc/ssl/private/lighttpd.pem" + ssl.use-sslv2 = "disable" + ssl.cipher-list = "HIGH:MEDIUM:!aNULL:!SSLv2:@STRENGTH" +} diff --git a/files/lighttpd.conf b/files/lighttpd.conf index 2e0b68e..c84faa8 100644 --- a/files/lighttpd.conf +++ b/files/lighttpd.conf @@ -324,4 +324,6 @@ server.groupname = "lighttpd" ## include configuration snippets, usually provided by packages include_shell "find /etc/lighttpd/conf.d -maxdepth 1 -name '*.conf' -exec cat {} \;" +# include vhost snippets +include_shell "find /etc/lighttpd/vhosts.d -maxdepth 1 -name '*.conf' -exec cat {} \;" |