ServerRoot "/etc/httpd" Listen 420 User apache Group apache Include conf.modules.d/*.conf IncludeOptional modsecurity.d/*.conf IncludeOptional modsecurity.d/activated_rules/*.conf AllowOverride none Require all denied DocumentRoot "/var/www/html" AllowOverride None Require all granted # Allow open access: # Further relax access to the default document root: Options Indexes FollowSymLinks AllowOverride None Require all granted # DirectoryIndex: sets the file that Apache will serve if a directory # is requested. # DirectoryIndex index.html # The following lines prevent .htaccess and .htpasswd files from being # viewed by Web clients. Require all denied ErrorLog "logs/error_log" LogLevel warn LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\"" combined LogFormat "%h %l %u %t \"%r\" %>s %b" common LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\" %I %O" combinedio CustomLog "logs/access_log" combined TypesConfig /etc/mime.types AddType application/x-compress .Z AddType application/x-gzip .gz .tgz AddType text/html .shtml AddOutputFilter INCLUDES .shtml AddDefaultCharset UTF-8 MIMEMagicFile conf/magic # reverse proxy for juice shop ProxyRequests Off ProxyPreserveHost On ProxyPass /socket.io/ ws://127.0.0.1:3000/socket.io/ ProxyPassReverse /socket.io/ ws://127.0.0.1:3000/socket.io/ ProxyPass / http://127.0.0.1:3000/ ProxyPassReverse / http://127.0.0.1:3000/ # Security Headers Header set X-Frame-Options "SAMEORIGIN" Header set X-Content-Type-Options "nosniff" Header set Content-Security-Policy "default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self' ws: wss:;" Header always unset Access-Control-Allow-Origin # EnableMMAP off # EnableSendfile on IncludeOptional conf.d/*.conf ServerAdmin jeevacation@gmail.com # ServerName www.coimbravpn.com:420