Produced by Araxis Merge on 3/29/2017 4:53:21 PM Eastern Daylight Time. See www.araxis.com for information about Merge. This report uses XHTML and CSS2, and is best viewed with a modern standards-compliant browser. For optimum results when printing this report, use landscape orientation and enable printing of background images and colours in your browser.
| # | Location | File | Last Modified |
|---|---|---|---|
| 1 | CTT-DM CIF Submission.zip\code\apache_extensions | ssl.conf-SQA | Fri Mar 3 16:22:14 2017 UTC |
| 2 | CTT-DM CIF Submission.zip\code\apache_extensions | ssl.conf-SQA | Wed Mar 29 14:07:34 2017 UTC |
| Description | Between Files 1 and 2 |
|
|---|---|---|
| Text Blocks | Lines | |
| Unchanged | 19 | 216 |
| Changed | 18 | 136 |
| Inserted | 0 | 0 |
| Removed | 0 | 0 |
| Whitespace | |
|---|---|
| Character case | Differences in character case are significant |
| Line endings | Differences in line endings (CR and LF characters) are ignored |
| CR/LF characters | Not shown in the comparison detail |
No regular expressions were active.
| 1 | LoadModule ssl_modul e modules/ mod_ssl.so | |
| 2 | LoadModule proxy_mod ule module s/mod_prox y.so | |
| 3 | LoadModule proxy_htt p_module m odules/mod _proxy_htt p.so | |
| 4 | Listen 443 | |
| 5 | Listen 444 | |
| 6 | SSLProxyEn gine On | |
| 7 | ProxyReque sts Off | |
| 8 | ProxyPrese rveHost On | |
| 9 | ProxyTimeo ut 600 | |
| 10 | SSLPassPhr aseDialog builtin | |
| 11 | SSLSession Cache shmcb: /var/cache /mod_ssl/s cache(5120 00) | |
| 12 | SSLSession CacheTimeo ut 300 | |
| 13 | SSLMutex d efault | |
| 14 | SSLRandomS eed startu p file:/de v/urandom 256 | |
| 15 | SSLRandomS eed connec t builtin | |
| 16 | #SSLRandom Seed start up file:/d ev/random 512 | |
| 17 | #SSLRandom Seed conne ct file:/d ev/random 512 | |
| 18 | #SSLRandom Seed conne ct file:/d ev/urandom 512 | |
| 19 | SSLCryptoD evice buil tin | |
| 20 | #SSLCrypto Device ubs ec | |
| 21 | # The virt ualhost be low 443 is for SSOi | |
| 22 | <VirtualHo st _defaul t_:443> | |
| 23 | ErrorLog l ogs/ssl_er ror_log | |
| 24 | TransferLo g logs/ssl _access_lo g | |
| 25 | LogLevel i nfo | |
| 26 | SSLEngine on | |
| 27 | #SSLProtoc ol all -SS Lv2 | |
| 28 | #SSLCipher Suite DEFA ULT:!EXP:! SSLv2:!DES :!IDEA:!SE ED:+3DES | |
| 29 | #SSLCipher Suite DEFA ULT:!EXP:! SSLv2:!DES :!IDEA:!SE ED:+3DES | |
| 30 | # The 3 li nes below fixes the BEAST expl oit | |
| 31 | ########## ########## ########## ########## ### | |
| 32 | SSLProtoco l all -TLS v1.1 -TLSv 1 -SSLv2 - SSLv3 | |
| 33 | #SSLCipher Suite ALL: +HIGH:!ADH :!EXP:!SSL v2:!SSLv3: !NULL:!aNU LL | |
| 34 | SSLCipherS uite DHE-D SS-AES128- GCM-SHA256 :DHE-RSA-A ES128-GCM- SHA256:ECD HE-RSA-AES 256-GCM-SH A384:ECDHE -ECDSA-AES 256-GCM-SH A384:ECDHE -ECDSA-AES 256-SHA384 :DHE-DSS-A ES256-GCM- SHA384:DHE -RSA-AES25 6-GCM-SHA3 84:ADH-AES 256-GCM-SH A384:ECDH- RSA-AES256 -GCM-SHA38 4:ECDH-ECD SA-AES256- GCM-SHA384 :ECDH-ECDS A-AES256-S HA384:AES2 56-GCM-SHA 384:ECDHE- RSA-AES128 -GCM-SHA25 6:ECDHE-EC DSA-AES128 -GCM-SHA25 6:ADH-AES1 28-GCM-SHA 256:ECDH-E CDSA-AES12 8-GCM-SHA2 56:ECDH-EC DSA-AES128 -SHA256:AD H-AES128-G CM-SHA256: ECDH-ECDSA -AES128-GC M-SHA256:E CDH-ECDSA- AES128-SHA 256:AES128 -GCM-SHA25 6 | |
| 35 | SSLHonorCi pherOrder on | |
| 36 | ########## ########## ########## ########## ### | |
| 37 | ||
| 38 | SSLCertifi cateFile / app/certs/ server.crt | |
| 39 | SSLCertifi cateKeyFil e /app/cer ts/server. key | |
| 40 | SSLVerifyC lient none | |
| 41 | <Files ~ " \.(cgi|sht ml|phtml|p hp3?)$"> | |
| 42 | SSLOpt ions +StdE nvVars | |
| 43 | </Files> | |
| 44 | <Directory "/var/www /cgi-bin"> | |
| 45 | SSLOpt ions +StdE nvVars | |
| 46 | </Director y> | |
| 47 | SetEnvIf U ser-Agent ".*MSIE.*" \ | |
| 48 | n okeepalive ssl-uncle an-shutdow n \ | |
| 49 | d owngrade-1 .0 force-r esponse-1. 0 | |
| 50 | CustomLog logs/ssl_r equest_log \ | |
| 51 | "%t %h %{S SL_PROTOCO L}x %{SSL_ CIPHER}x \ "%r\" %b" | |
| 52 | # Special Proxy Mapp ings | |
| 53 | # | |
| 54 | #Komet (on ly to appc tt703 for rails_kome t_a) | |
| 55 | ProxyPass /1/rails_k omet_a/ass ets https: // DNS . DNS : PORT /rails_kom et_a/asset s | |
| 56 | ProxyPassR everse /1/ rails_kome t_a/assets https:// DNS . DNS : PORT /rails_kom et_a/asset s | |
| 57 | ProxyPass /1/rails_k omet_a/map ping https :// DNS . DNS : PORT /rails_kom et_a/mappi ng | |
| 58 | ProxyPassR everse /1/ rails_kome t_a/mappin g https:// DNS . DNS : PORT /rails_kom et_a/mappi ng | |
| 59 | ProxyPass /1/rails_k omet_a/kom et_dashboa rd https:/ / DNS . DNS : PORT /rails_kom et_a/komet _dashboard | |
| 60 | ProxyPassR everse /1/ rails_kome t_a/komet_ dashboard https:// DNS . DNS : PORT /rails_kom et_a/komet _dashboard | |
| 61 | ProxyPass /1/rails_k omet_a/ext ernal http s:// DNS . DNS : PORT /rails_kom et_a/exter nal | |
| 62 | ProxyPassR everse /1/ rails_kome t_a/extern al https:/ / DNS . DNS : PORT /rails_kom et_a/exter nal | |
| 63 | ||
| 64 | #Komet (on ly to appc tt703 for rails_kome t_b) | |
| 65 | ProxyPass /2/rails_k omet_b/ass ets https: // DNS . DNS : PORT /rails_kom et_b/asset s | |
| 66 | ProxyPassR everse /2/ rails_kome t_b/assets https:// DNS . DNS : PORT /rails_kom et_b/asset s | |
| 67 | ProxyPass /2/rails_k omet_b/map ping https :// DNS . DNS : PORT /rails_kom et_a/mappi ng | |
| 68 | ProxyPassR everse /2/ rails_kome t_b/mappin g https:// DNS . DNS : PORT /rails_kom et_b/mappi ng | |
| 69 | ProxyPass /2/rails_k omet_b/kom et_dashboa rd https:/ / DNS . DNS : PORT /rails_kom et_b/komet _dashboard | |
| 70 | ProxyPassR everse /2/ rails_kome t_b/komet_ dashboard https:// DNS . DNS : PORT /rails_kom et_b/komet _dashboard | |
| 71 | ProxyPass /2/rails_k omet_b/ext ernal http s:// DNS . DNS : PORT /rails_kom et_b/exter nal | |
| 72 | ProxyPassR everse /2/ rails_kome t_b/extern al https:/ / DNS . DNS : PORT /rails_kom et_b/exter nal | |
| 73 | ||
| 74 | #Komet - ( only to ap pctt704 fo r rails_ko met_b) | |
| 75 | ProxyPass /3/rails_k omet_a/ass ets https: // DNS . DNS : PORT /rails_kom et_a/asset s | |
| 76 | ProxyPassR everse /3/ rails_kome t_a/assets https:// DNS . DNS : PORT /rails_kom et_a/asset s | |
| 77 | ProxyPass /3/rails_k omet_a/map ping https :// DNS . DNS : PORT /rails_kom et_a/mappi ng | |
| 78 | ProxyPassR everse /3/ rails_kome t_a/mappin g https:// DNS . DNS : PORT /rails_kom et_a/mappi ng | |
| 79 | ProxyPass /3/rails_k omet_a/kom et_dashboa rd https:/ / DNS . DNS : PORT /rails_kom et_a/komet _dashboard | |
| 80 | ProxyPassR everse /3/ rails_kome t_a/komet_ dashboard https:// DNS . DNS : PORT /rails_kom et_a/komet _dashboard | |
| 81 | ProxyPass /3/rails_k omet_a/ext ernal http s:// DNS . DNS : PORT /rails_kom et_a/exter nal | |
| 82 | ProxyPassR everse /3/ rails_kome t_a/extern al https:/ / DNS . DNS : PORT /rails_kom et_a/exter nal | |
| 83 | ||
| 84 | #Komet - ( only to ap pctt704 fo r rails_ko met_b) | |
| 85 | ProxyPass /4/rails_k omet_b/ass ets https: // DNS . DNS : PORT /rails_kom et_b/asset s | |
| 86 | ProxyPassR everse /4/ rails_kome t_b/assets https:// DNS . DNS : PORT /rails_kom et_b/asset s | |
| 87 | ProxyPass /4/rails_k omet_b/map ping https :// DNS . DNS : PORT /rails_kom et_b/mappi ng | |
| 88 | ProxyPassR everse /4/ rails_kome t_b/mappin g https:// DNS . DNS : PORT /rails_kom et_b/mappi ng | |
| 89 | ProxyPass /4/rails_k omet_b/kom et_dashboa rd https:/ / DNS . DNS : PORT /rails_kom et_b/komet _dashboard | |
| 90 | ProxyPassR everse /4/ rails_kome t_b/komet_ dashboard https:// DNS . DNS : PORT /rails_kom et_b/komet _dashboard | |
| 91 | ProxyPass /4/rails_k omet_b/ext ernal http s:// DNS . DNS : PORT /rails_kom et_b/exter nal | |
| 92 | ProxyPassR everse /4/ rails_kome t_b/extern al https:/ / DNS . DNS : PORT /rails_kom et_b/exter nal | |
| 93 | ||
| 94 | #Prisme | |
| 95 | ProxyPass /rails_pri sme/assets https:// DNS . DNS : PORT /rails_pri sme/assets | |
| 96 | ProxyPassR everse /ra ils_prisme /assets ht tps:// DNS . DNS : PORT /rails_pri sme/assets | |
| 97 | ProxyPass /rails_pri sme/welcom e https:// DNS . DNS : PORT /rails_pri sme/welcom e | |
| 98 | ProxyPassR everse /ra ils_prisme /welcome h ttps:// DNS . DNS : PORT /rails_pri sme/welcom e | |
| 99 | ProxyPass /rails_pri sme/users/ sign_in ht tps:// DNS . DNS : PORT /rails_pri sme/users/ sign_in | |
| 100 | ProxyPassR everse /ra ils_prisme /users/sig n_in https :// DNS . DNS : PORT /rails_pri sme/users/ sign_in | |
| 101 | ProxyPass /rails_pri sme https: // DNS . DNS : PORT /rails_pri sme | |
| 102 | ProxyPassR everse /ra ils_prisme https:// DNS . DNS : PORT /rails_pri sme | |
| 103 | #Jenkins | |
| 104 | ProxyPass /jenkins h ttps:// DNS . DNS : PORT /jenkins | |
| 105 | ProxyPassR everse /je nkins http s:// DNS . DNS : PORT /jenkins | |
| 106 | #ISAAC-RES T | |
| 107 | Proxypass /isaac-res t-1 https: // DNS . DNS : PORT /isaac-res t | |
| 108 | ProxyPassR everse /is aac-rest-1 https:// DNS . DNS : PORT /isaac-res t | |
| 109 | Proxypass /isaac-res t-2 https: // DNS . DNS : PORT /isaac-res t | |
| 110 | ProxyPassR everse /is aac-rest-2 https:// DNS . DNS : PORT /isaac-res t | |
| 111 | </VirtualH ost> | |
| 112 | #Rewrite R ules | |
| 113 | # | |
| 114 | # for 703 | |
| 115 | <Location /1/isaac-r est> | |
| 116 | ProxyPass https:// DNS . DNS : PORT /isaac-res t_1 | |
| 117 | ProxyPassR everse htt ps:// DNS . DNS : PORT /isaac-res t | |
| 118 | </Location > | |
| 119 | ||
| 120 | # for 703 | |
| 121 | <Location /2/isaac-r est> | |
| 122 | ProxyPass https:// DNS . DNS : PORT /isaac-res t_2 | |
| 123 | ProxyPassR everse htt ps:// DNS . DNS : PORT /isaac-res t | |
| 124 | </Location > | |
| 125 | ||
| 126 | # for 704 | |
| 127 | <Location /3/isaac-r est> | |
| 128 | ProxyPass https:// DNS . DNS : PORT /isaac-res t_1 | |
| 129 | ProxyPassR everse htt ps:// DNS . DNS : PORT /isaac-res t | |
| 130 | </Location > | |
| 131 | ||
| 132 | # for 704 | |
| 133 | <Location /4/isaac-r est> | |
| 134 | ProxyPass https:// DNS . DNS : PORT /isaac-res t_2 | |
| 135 | ProxyPassR everse htt ps:// DNS . DNS : PORT /isaac-res t | |
| 136 | </Location > | |
| 137 | ||
| 138 | <Location /nexus> | |
| 139 | ProxyPass https:// DNS . DNS : PORT /nexus | |
| 140 | ProxyPassR everse htt ps://vaaus appctt702. aac. DNS :8443/nexu s | |
| 141 | </Location > | |
| 142 | ||
| 143 | <Location /rails_pri sme/> | |
| 144 | ProxyPass https:// DNS . DNS : PORT /rails_pri sme/ | |
| 145 | ProxyPassR everse htt ps:// DNS . DNS : PORT /rails_pri sme/ | |
| 146 | SetEnv pro xy-sendchu nks 1 | |
| 147 | </Location > | |
| 148 | ||
| 149 | #Location for 703 ko met_a | |
| 150 | <Location /1/rails_k omet_a/> | |
| 151 | ProxyPass https:// DNS . DNS : PORT /rails_kom et_a/ | |
| 152 | ProxyPassR everse htt ps:// DNS . DNS : PORT /rails_kom et_a/ | |
| 153 | </Location > | |
| 154 | ||
| 155 | #Location for 703 ko met_b | |
| 156 | <Location /2/rails_k omet_b/> | |
| 157 | ProxyPass https://v DNS . DNS : PORT /rails_kom et_b/ | |
| 158 | ProxyPassR everse htt ps:// DNS . DNS : PORT /rails_kom et_b/ | |
| 159 | </Location > | |
| 160 | ||
| 161 | #Location for 704 ko met_a | |
| 162 | <Location /3/rails_k omet_a/> | |
| 163 | ProxyPass https:// DNS . DNS : PORT /rails_kom et_a/ | |
| 164 | ProxyPassR everse htt ps:// DNS . DNS : PORT /rails_kom et_a/ | |
| 165 | </Location > | |
| 166 | ||
| 167 | #Location for 704 ko met_b | |
| 168 | <Location /4/rails_k omet_b/> | |
| 169 | ProxyPass https:// DNS . DNS : PORT /rails_kom et_b/ | |
| 170 | ProxyPassR everse htt ps:// DNS . DNS : PORT /rails_kom et_b/ | |
| 171 | </Location > | |
| 172 | ||
| 173 | <Location /git/> | |
| 174 | ProxyPass https:// DNS . DNS : PORT /git/ | |
| 175 | ProxyPassR everse htt ps:// DNS . DNS : PORT /git/ | |
| 176 | </Location > |
Araxis Merge (but not the data content of this report) is Copyright © 1993-2016 Araxis Ltd (www.araxis.com). All rights reserved.