Apache Per Server Settings

Apache Per Server Settings

The Apache web server is the default web server choice on Enhance, offering full .htaccess support and high compatibility with web applications. In addition to the General Per Server Settings, Apache has some customisable configurations:

1. php-fpm Settings
   Apache servers automatically inherit the global php.ini settings. Custom directives can be added or overridden for individual servers:

   • Go to Servers > Manage for the desired server.
   • Scroll to Roles > Application > php settings.
   • Edit or add directives as needed.

2. Virtual Host Includes
   You can add custom virtual host configurations for a site by logging in via SSH and editing the file at /var/local/enhance/apache/vhost_includes/example.com.conf. This configuration will be included at the end of both the HTTP and HTTPS VirtualHost blocks.
   Warning: Incorrect syntax could take down your web server. Do not edit the httpd.conf directly, as changes will be lost on updates.

3. ModSecurity
   ModSecurity can be enabled or disabled, and custom security rules can be set up using Enhance's inline editor. The OWASP ruleset is enabled by default, providing protection against common vulnerabilities like SQL injection and XSS.
   To enable ModSecurity:

   • Go to Servers > Manage > Roles > Application > ModSecurity.
   • Toggle it on or off.

4. Apache Modules
   Apache comes with a set of modules, some enabled by default and others disabled. The enabled modules include:

   • mpm_event_module, auth_basic_module, rewrite_module, proxy_module, ssl_module, http2_module, and many more.

   Disabled modules (not enabled by default) include:

   • mod_buffer, mod_cache, mod_session, mod_proxy_balancer, mod_security2, and others.

These configurations allow for customisation to fine-tune the server's performance, security, and functionality.