37. EPMO Open Source Coordination Office Redaction File Detail Report

Produced by Araxis Merge on 7/6/2017 8:22:22 PM Central Daylight Time. See www.araxis.com for information about Merge. This report uses XHTML and CSS2, and is best viewed with a modern standards-compliant browser. For optimum results when printing this report, use landscape orientation and enable printing of background images and colours in your browser.

37.1 Files compared

#	Location	File	Last Modified
1	OSCIF_CTT_v4_build 1.zip\apache_extensions	ssl.conf-PRE	Wed May 31 03:59:20 2017 UTC
2	OSCIF_CTT_v4_build 1.zip\apache_extensions	ssl.conf-PRE	Mon Jul 3 20:37:15 2017 UTC

37.2 Comparison summary

Description	Between Files 1 and 2
Description	Text Blocks	Lines
Unchanged	25	256
Changed	24	184
Inserted	0	0
Removed	0	0

37.3 Comparison options

Whitespace
Character case	Differences in character case are significant
Line endings	Differences in line endings (`CR` and `LF` characters) are ignored
CR/LF characters	Not shown in the comparison detail

37.4 Active regular expressions

No regular expressions were active.

37.5 Comparison detail

	1	LoadModule ssl_modul e modules/ mod_ssl.so
	2	LoadModule proxy_mod ule module s/mod_prox y.so
	3	LoadModule proxy_htt p_module m odules/mod _proxy_htt p.so
	4	Listen 443
	5	Listen 444
	6	SSLProxyEn gine On
	7	ProxyReque sts Off
	8	ProxyPrese rveHost On
	9	ProxyTimeo ut 600
	10	SSLPassPhr aseDialog builtin
	11	SSLSession Cache shmcb: /var/cache /mod_ssl/s cache(5120 00)
	12	SSLSession CacheTimeo ut 300
	13	SSLMutex d efault
	14	SSLRandomS eed startu p file:/de v/urandom 256
	15	SSLRandomS eed connec t builtin
	16	#SSLRandom Seed start up file:/d ev/random 512
	17	#SSLRandom Seed conne ct file:/d ev/random 512
	18	#SSLRandom Seed conne ct file:/d ev/urandom 512
	19	SSLCryptoD evice buil tin
	20	#SSLCrypto Device ubs ec
	21	# The virt ualhost be low 443 is for SSOi
	22	<VirtualHo st _defaul t_:443>
	23	ErrorLog l ogs/ssl_er ror_log
	24	TransferLo g logs/ssl _access_lo g
	25	LogLevel i nfo
	26	SSLEngine on
	27	#SSLProtoc ol all -SS Lv2
	28	#SSLCipher Suite DEFA ULT:!EXP:! SSLv2:!DES :!IDEA:!SE ED:+3DES
	29	#SSLCipher Suite DEFA ULT:!EXP:! SSLv2:!DES :!IDEA:!SE ED:+3DES
	30	# The 3 li nes below fixes the BEAST expl oit
	31	########## ########## ########## ########## ###
	32	SSLProtoco l all -TLS v1.1 -TLSv 1 -SSLv2 - SSLv3
	33	#SSLCipher Suite ALL: +HIGH:!ADH :!EXP:!SSL v2:!SSLv3: !NULL:!aNU LL
	34	SSLCipherS uite DHE-D SS-AES128- GCM-SHA256 :DHE-RSA-A ES128-GCM- SHA256:ECD HE-RSA-AES 256-GCM-SH A384:ECDHE -ECDSA-AES 256-GCM-SH A384:ECDHE -ECDSA-AES 256-SHA384 :DHE-DSS-A ES256-GCM- SHA384:DHE -RSA-AES25 6-GCM-SHA3 84:ADH-AES 256-GCM-SH A384:ECDH- RSA-AES256 -GCM-SHA38 4:ECDH-ECD SA-AES256- GCM-SHA384 :ECDH-ECDS A-AES256-S HA384:AES2 56-GCM-SHA 384:ECDHE- RSA-AES128 -GCM-SHA25 6:ECDHE-EC DSA-AES128 -GCM-SHA25 6:ADH-AES1 28-GCM-SHA 256:ECDH-E CDSA-AES12 8-GCM-SHA2 56:ECDH-EC DSA-AES128 -SHA256:AD H-AES128-G CM-SHA256: ECDH-ECDSA -AES128-GC M-SHA256:E CDH-ECDSA- AES128-SHA 256:AES128 -GCM-SHA25 6
	35	SSLHonorCi pherOrder on
	36	########## ########## ########## ########## ###
	37	SSLCertifi cateFile / app/certs/ server.crt
	38	SSLCertifi cateKeyFil e /app/cer ts/server. key
	39	SSLVerifyC lient none
	40	<Files ~ " \.(cgi\|sht ml\|phtml\|p hp3?)$">
	41	SSLOpt ions +StdE nvVars
	42	</Files>
	43	<Directory "/var/www /cgi-bin">
	44	SSLOpt ions +StdE nvVars
	45	</Director y>
	46	SetEnvIf U ser-Agent ".MSIE." \
	47	n okeepalive ssl-uncle an-shutdow n \
	48	d owngrade-1 .0 force-r esponse-1. 0
	49	CustomLog logs/ssl_r equest_log \
	50	"%t %h %{S SL_PROTOCO L}x %{SSL_ CIPHER}x \ "%r\" %b"
	51	# Special Proxy Mapp ings
	52	#
	53	#Komet (on ly to appc tt404 for rails_kome t_a)
	54	ProxyPass /1/rails_k omet_a/ass ets https: // DNS
	55	ProxyPassR everse /1/ rails_kome t_a/assets https:// DNS
	56	ProxyPass /1/rails_k omet_a/map ping https :// DNS
	57	ProxyPassR everse /1/ rails_kome t_a/mappin g https:// DNS
	58	ProxyPass /1/rails_k omet_a/kom et_dashboa rd https:/ / DNS
	59	ProxyPassR everse /1/ rails_kome t_a/komet_ dashboard https:// DNS
	60	ProxyPass /1/rails_k omet_a/ext ernal http s:// DNS
	61	ProxyPassR everse /1/ rails_kome t_a/extern al https:/ / DNS
	62
	63	#Komet (on ly to appc tt404 for rails_kome t_b)
	64	ProxyPass /2/rails_k omet_b/ass ets https: // DNS
	65	ProxyPassR everse /2/ rails_kome t_b/assets https:// DNS
	66	ProxyPass /2/rails_k omet_b/map ping https :// DNS
	67	ProxyPassR everse /2/ rails_kome t_b/mappin g https:// DNS
	68	ProxyPass /2/rails_k omet_b/kom et_dashboa rd https:/ / DNS
	69	ProxyPassR everse /2/ rails_kome t_b/komet_ dashboard https:// DNS
	70	ProxyPass /2/rails_k omet_b/ext ernal http s:// DNS
	71	ProxyPassR everse /2/ rails_kome t_b/extern al https:/ / DNS
	72
	73	#Komet (on ly to appc tt404 for rails_kome t_c)
	74	ProxyPass /3/rails_k omet_c/ass ets https: // DNS
	75	ProxyPassR everse /3/ rails_kome t_c/assets https:// DNS
	76	ProxyPass /3/rails_k omet_c/map ping https :// DNS
	77	ProxyPassR everse /3/ rails_kome t_c/mappin g https:// DNS
	78	ProxyPass /3/rails_k omet_c/kom et_dashboa rd https:/ / DNS
	79	ProxyPassR everse /3/ rails_kome t_c/komet_ dashboard https:// DNS
	80	ProxyPass /3/rails_k omet_c/ext ernal http s:// DNS
	81	ProxyPassR everse /3/ rails_kome t_c/extern al https:/ / DNS
	82
	83	#Komet - ( only to ap pctt405 fo r rails_ko met_a)
	84	ProxyPass /4/rails_k omet_a/ass ets https: // DNS
	85	ProxyPassR everse /4/ rails_kome t_a/assets https:// DNS
	86	ProxyPass /4/rails_k omet_a/map ping https :// DNS
	87	ProxyPassR everse /4/ rails_kome t_a/mappin g https:// DNS
	88	ProxyPass /4/rails_k omet_a/kom et_dashboa rd https:/ / DNS
	89	ProxyPassR everse /4/ rails_kome t_a/komet_ dashboard https:// DNS
	90	ProxyPass /4/rails_k omet_a/ext ernal http s:// DNS
	91	ProxyPassR everse /4/ rails_kome t_a/extern al https:/ / DNS
	92
	93	#Komet - ( only to ap pctt405 fo r rails_ko met_b)
	94	ProxyPass /5/rails_k omet_b/ass ets https: // DNS
	95	ProxyPassR everse /5/ rails_kome t_b/assets https:// DNS
	96	ProxyPass /5/rails_k omet_b/map ping https :// DNS
	97	ProxyPassR everse /5/ rails_kome t_b/mappin g https:// DNS
	98	ProxyPass /5/rails_k omet_b/kom et_dashboa rd https:/ / DNS
	99	ProxyPassR everse /5/ rails_kome t_b/komet_ dashboard https:// DNS
	100	ProxyPass /5/rails_k omet_b/ext ernal http s:// DNS
	101	ProxyPassR everse /5/ rails_kome t_b/extern al https:/ / DNS
	102
	103	#Komet - ( only to ap pctt405 fo r rails_ko met_c)
	104	ProxyPass /6/rails_k omet_c/ass ets https: // DNS
	105	ProxyPassR everse /6/ rails_kome t_c/assets https:// DNS
	106	ProxyPass /6/rails_k omet_c/map ping https :// DNS
	107	ProxyPassR everse /6/ rails_kome t_c/mappin g https:// DNS
	108	ProxyPass /6/rails_k omet_c/kom et_dashboa rd https:/ / DNS
	109	ProxyPassR everse /6/ rails_kome t_c/komet_ dashboard https:// DNS
	110	ProxyPass /6/rails_k omet_c/ext ernal http s:// DNS
	111	ProxyPassR everse /6/ rails_kome t_c/extern al https:/ / DNS
	112
	113	#Prisme
	114	ProxyPass /rails_pri sme/assets https:// DNS
	115	ProxyPassR everse /ra ils_prisme /assets ht tps:// DNS
	116	ProxyPass /rails_pri sme/welcom e https:// DNS
	117	ProxyPassR everse /ra ils_prisme /welcome h ttps:// DNS
	118	ProxyPass /rails_pri sme/users/ sign_in ht tps:// DNS
	119	ProxyPassR everse /ra ils_prisme /users/sig n_in https :// DNS
	120	ProxyPass /rails_pri sme https: // DNS
	121	ProxyPassR everse /ra ils_prisme https:// DNS
	122	#Jenkins
	123	ProxyPass /jenkins h ttps:// DNS
	124	ProxyPassR everse /je nkins http s:// DNS
	125	#ISAAC-RES T
	126	Proxypass /isaac-res t-1 https: // DNS
	127	ProxyPassR everse /is aac-rest-1 https:// DNS
	128	Proxypass /isaac-res t-2 https: // DNS
	129	ProxyPassR everse /is aac-rest-2 https:// DNS
	130	</VirtualH ost>
	131
	132	#Rewrite R ules
	133	# for appc tt404
	134	<Location /1/isaac-r est>
	135	ProxyPass https://DN S
	136	ProxyPassR everse htt ps:// DNS
	137	</Location >
	138
	139	# for appc tt404
	140	<Location /2/isaac-r est>
	141	ProxyPass https://DN S
	142	ProxyPassR everse htt ps:// DNS
	143	</Location >
	144
	145	# for appc tt404
	146	<Location /3/isaac-r est>
	147	ProxyPass https://DN S
	148	ProxyPassR everse htt ps:// DNS
	149	</Location >
	150
	151	# for appc tt405
	152	<Location /4/isaac-r est>
	153	ProxyPass https://DN S
	154	ProxyPassR everse htt ps:// DNS
	155	</Location >
	156
	157	# for appc tt405
	158	<Location /5/isaac-r est>
	159	ProxyPass https://DN S
	160	ProxyPassR everse htt ps:// DNS
	161	</Location >
	162
	163	# for appc tt405
	164	<Location /6/isaac-r est>
	165	ProxyPass https://DN S
	166	ProxyPassR everse htt ps:// DNS
	167	</Location >
	168
	169	<Location /nexus>
	170	ProxyPass https:// DNS /
	171	ProxyPassR everse htt ps:// DNS /
	172	</Location >
	173
	174	<Location /rails_pri sme/>
	175	RequestHea der set ap ache_time "%D,%t"
	176	ProxyPass https://DN S/
	177	ProxyPassR everse htt ps:// DNS /
	178	SetEnv pro xy-sendchu nks 1
	179	</Location >
	180
	181	#Location for appctt 404 komet_ a
	182	<Location /1/rails_k omet_a/>
	183	ProxyPass https://DN S
	184	ProxyPassR everse htt ps:// DNS
	185	</Location >
	186
	187	#Location for appctt 404 komet_ b
	188	<Location /2/rails_k omet_b/>
	189	ProxyPass https://DN S
	190	ProxyPassR everse htt ps:// DNS
	191	</Location >
	192
	193	#Location for appctt 404 komet_ c
	194	<Location /3/rails_k omet_c/>
	195	ProxyPass https://DN S
	196	ProxyPassR everse htt ps:// DNS
	197	</Location >
	198
	199	#Location for appctt 405 komet_ a
	200	<Location /4/rails_k omet_a/>
	201	ProxyPass https://DN S
	202	ProxyPassR everse htt ps:// DNS
	203	</Location >
	204
	205	#Location for appctt 405 komet_ b
	206	<Location /5/rails_k omet_b/>
	207	ProxyPass https://DN S
	208	ProxyPassR everse htt ps:// DNS
	209	</Location >
	210
	211	#Location for appctt 405 komet_ c
	212	<Location /6/rails_k omet_c/>
	213	ProxyPass https://DN S
	214	ProxyPassR everse htt ps:// DNS
	215	</Location >
	216
	217	<Location /git/>
	218	ProxyPass https:// DNS : PORT /git/
	219	ProxyPassR everse htt ps:// DNS : PORT /git/
	220	</Location >