<VirtualHost *:80>
ServerAdmin debian-admin@debian.org
- DocumentRoot /srv/ftp.root/debian-security
+ DocumentRoot /srv/mirrors/debian-security
ServerPath /debian-security
ServerName security.debian.org
ServerAlias security.ipv6.debian.org
ExpiresActive On
ExpiresDefault "access plus 2 minutes"
- Alias /debian-security /srv/ftp.root/debian-security
- Use ftp-archive /srv/ftp.root/debian-security
+ Alias /debian-security /srv/mirrors/debian-security
+ Use ftp-archive /srv/mirrors/debian-security
+
+ Alias /_health /run/dsa-mirror-health-security/health
+ <Directory /run/dsa-mirror-health-security/>
+ Require all granted
+ </Directory>
RewriteEngine on
RewriteRule ^/$ https://www.debian.org/security/
RewriteCond %{HTTP:Fastly-Client-IP} !. [NV]
RewriteCond %{HTTP_USER_AGENT} "!Amazon CloudFront"
+ RewriteCond %{HTTP_USER_AGENT} "!check_http"
+ RewriteCond %{HTTP_USER_AGENT} "!dsa-check-mirrorsync"
+ RewriteCond %{HTTP_USER_AGENT} "!mirror-health"
<% if scope.function_onion_global_service_hostname(['security.debian.org']) -%>
RewriteCond %{HTTP_HOST} "!=<%= scope.function_onion_global_service_hostname(['security.debian.org']) %>"
<% end %>
- RewriteRule ^/(pool/updates/main/l/linux/.*) http://security-cdn.debian.org/$1 [L,R=302]
- RewriteCond %{HTTP:Fastly-Client-IP} !. [NV]
- RewriteCond %{HTTP_USER_AGENT} "!Amazon CloudFront"
- <% if scope.function_onion_global_service_hostname(['security.debian.org']) -%>
- RewriteCond %{HTTP_HOST} "!=<%= scope.function_onion_global_service_hostname(['security.debian.org']) %>"
- <% end %>
- RewriteRule ^/debian-security/(pool/updates/main/l/linux/.*) http://security-cdn.debian.org/$1 [L,R=302]
+ RewriteCond %{REQUEST_URI} "!=/_health"
+ RewriteRule ^/(.*) http://security-cdn.debian.org/$1 [L,R=302]
- CustomLog /var/log/apache2/security.debian.org-access.log privacy
+ CustomLog /var/log/apache2/security.debian.org-access.log combined
ServerSignature On
</VirtualHost>