F
falter
Guest
Now, I understand the idea behind adding configuration parameters to my vhost apache configurations ( httpd.include ) via vhost.conf or vhost_ssl.conf. However, I have found little documentation on what the capabilities of these override files are.
Specifically, say that there is something inside httpd.include that I would like to just comment out. I see no means to issue subtractive config options in vhost.conf or vhost_ssl.conf.
A more particular example is the Plesk admin interface Apache configuration (httpsd.conf found in /usr/local/psa/admin/conf). I only want to be able to access it via SSL on port 8443, and would love to disable non-ssl access that is on port 8880. I have found that if I block access to port 8880 via the firewall, I can still log into the admin interface on 8443, but I am presented with the following error:
"Service Unavailable
Service is not available now, probably your Plesk is misconfigured.
Contact Your provider for details."
That smacks of insanity. If my SSL-encrypted session is dependant on access to a non-encrypted version of the interface, then what is the point of having an encrypted version of the interface?
Anyway, back to the whole overrides thing. According to /usr/local/psa/admin/conf/httpsd.conf, I can ONLY override configuration options with /usr/local/psa/admin/conf/httpsd.custom.include .. I could easilly just comment out the "Listen 8880" statement in httpsd.conf, but if plesk gets upgraded, I could lose the change. What do I do in httpsd.custom.include to disable access to port 8880?
Specifically, say that there is something inside httpd.include that I would like to just comment out. I see no means to issue subtractive config options in vhost.conf or vhost_ssl.conf.
A more particular example is the Plesk admin interface Apache configuration (httpsd.conf found in /usr/local/psa/admin/conf). I only want to be able to access it via SSL on port 8443, and would love to disable non-ssl access that is on port 8880. I have found that if I block access to port 8880 via the firewall, I can still log into the admin interface on 8443, but I am presented with the following error:
"Service Unavailable
Service is not available now, probably your Plesk is misconfigured.
Contact Your provider for details."
That smacks of insanity. If my SSL-encrypted session is dependant on access to a non-encrypted version of the interface, then what is the point of having an encrypted version of the interface?
Anyway, back to the whole overrides thing. According to /usr/local/psa/admin/conf/httpsd.conf, I can ONLY override configuration options with /usr/local/psa/admin/conf/httpsd.custom.include .. I could easilly just comment out the "Listen 8880" statement in httpsd.conf, but if plesk gets upgraded, I could lose the change. What do I do in httpsd.custom.include to disable access to port 8880?