# # roundcubemail.sec-mail.guru # ServerAdmin webmaster@nausch.org ServerName roundcubemail.sec-mail.guru ServerPath / Options -Indexes +FollowSymLinks Require all granted RewriteEngine on RewriteCond %{HTTPS} off RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI} DirectoryIndex index.php ErrorLog logs/roundcubemail_error.log CustomLog logs/roundcubemail_access.log combined ServerAdmin webmaster@nausch.org ServerName roundcubemail.sec-mail.guru ServerPath / DocumentRoot "/usr/share/roundcubemail" # Django # Required, because there is a host with same ServerName and # ServerAlias LISTENING ON PORT 80, - and if these lines are # not present, and .htaccess-Files or LDAP-Access is enabled # for one or more Directory the host on PORT 443 and PORT 80 # will ASK for .htaccess ord LDAP-Access, so please remember # ---------------------------------------------------------- # -- DO NOT DELETE THE FOLLOWING LINES, STARTING WITH SSL -- # -- WHEN USING .htaccess or LDAP-Access! -- # ---------------------------------------------------------- SSLEngine on SSLProtocol -ALL +SSLv3 +TLSv1 SSLCipherSuite EECDH+AES256:DHE+AES256:EECDH+AES:EDH+AES:-SHA1:EECDH+RC4:EDH+RC4:RC4-SHA:AES256-SHA:!aNULL:!eNULL:!EXP:!LOW:!MD5 SSLHonorCipherOrder on SSLCertificateFile /etc/pki/tls/private/CAcert-class3-wildcard.crt SSLCertificateKeyFile /etc/pki/tls/private/ca.key SSLCertificateChainFile /etc/pki/tls/private/CAcert_chain.crt # Define who can access the Webmail # You can enlarge permissions once configured # before configuration Require local # after configuration # Require all granted # Define who can access the installer # keep this secured once configured # while configuration Require host nausch.org # after configuration # Require local # Those directories should not be viewed by Web clients. Require all denied Require all denied DirectoryIndex index.php ErrorLog logs/postfixadmin_error.log CustomLog logs/postfixadmin_access.log combined