File manager - Edit - /home/newsbmcs.com/public_html/static/img/logo/docs.tar
Back
ServTuning_Help.html��������������������������������������������������������������������������������0000644�����������������00000145373�15027525531�0010530 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Server Tuning</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Server Tuning." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 9</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><span class="current"><a href="ServTuning_Help.html">Server Tuning</a></span></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="ServLog_Help.html">Server Log</a></div><div class="center"><a href="config.html">Configuration</a></div><div class="next"><a href="ServSecurity_Help.html">Server Security</a> »</div></div> <h1>Server Tuning</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header>OS Optimization</header><p> <a href="#shmDefaultDir">Default SHM Directory</a> | <a href="#proxyProtocol">PROXY protocol</a></p></section> <section class="toc-row"><header>Connection</header><p> <a href="#maxConnections">Max Connections</a> | <a href="#maxSSLConnections">Max SSL Connections</a> | <a href="#connTimeout">Connection Timeout (secs)</a> | <a href="#maxKeepAliveReq">Max Keep-Alive Requests</a> | <a href="#keepAliveTimeout">Keep-Alive Timeout (secs)</a> | <a href="#sndBufSize">Send Buffer Size (bytes)</a> | <a href="#rcvBufSize">Receive Buffer Size (bytes)</a></p></section> <section class="toc-row"><header>Request/Response</header><p> <a href="#maxReqURLLen">Max Request URL Length (bytes)</a> | <a href="#maxReqHeaderSize">Max Request Header Size (bytes)</a> | <a href="#maxReqBodySize">Max Request Body Size (bytes)</a> | <a href="#maxDynRespHeaderSize">Max Dynamic Response Header Size (bytes)</a> | <a href="#maxDynRespSize">Max Dynamic Response Body Size (bytes)</a></p></section> <section class="toc-row"><header>Static File Delivery Optimization</header><p> <a href="#maxCachedFileSize">Max Cached Small File Size (bytes)</a> | <a href="#totalInMemCacheSize">Total Small File Cache Size (bytes)</a> | <a href="#maxMMapFileSize">Max MMAP File Size (bytes)</a> | <a href="#totalMMapCacheSize">Total MMAP Cache Size (bytes)</a> | <a href="#useSendfile">Use sendfile()</a> | <a href="#useAIO">Use AIO</a> | <a href="#AIOBlockSize">AIO Block Size</a> | <a href="#fileETag">File ETag</a></p></section> <section class="toc-row"><header>GZIP/Brotli Compression</header><p> <a href="#enableGzipCompress">Enable GZIP Compression</a> | <a href="#compressibleTypes">Compressible Types</a> | <a href="#enableDynGzipCompress">Enable GZIP Dynamic Compression</a> | <a href="#gzipCompressLevel">GZIP Compression Level (Dynamic Content)</a> | <a href="#gzipAutoUpdateStatic">Auto Update Static File</a> | <a href="#gzipStaticCompressLevel">GZIP Compression Level (Static File)</a> | <a href="#brStaticCompressLevel">Brotli Compression Level (Static File)</a> | <a href="#gzipCacheDir">Static Cache Directory</a> | <a href="#gzipMaxFileSize">Max Static File Size (bytes)</a> | <a href="#gzipMinFileSize">Min Static File Size (bytes)</a></p></section> <section class="toc-row"><header>SSL Global Settings</header><p> <a href="#sslDefaultCiphers">Default Cipher Suite</a> | <a href="#sslStrongDhKey">SSL Strong DH Key</a> | <a href="#sslEnableMultiCerts">Enable Multiple SSL Certificates</a> | <a href="#sslSessionCache">Enable Session Cache</a> | <a href="#sslSessionCacheSize">Session Cache Size (bytes)</a> | <a href="#sslSessionCacheTimeout">Session Cache Timeout (secs)</a> | <a href="#sslSessionTickets">Enable Session Tickets</a> | <a href="#sslSessionTicketLifetime">SSL Session Ticket Lifetime (secs)</a> | <a href="#sslSessionTicketKeyFile">SSL Session Ticket Key File</a> | <a href="#sslOcspProxy">OCSP Proxy</a> | <a href="#sslStrictSni">Strict SNI Certificate</a></p></section> <section class="toc-row"><header>HTTP3/QUIC</header><p> <a href="#quicEnable">Enable HTTP3/QUIC</a> | <a href="#quicShmDir">QUIC SHM Directory</a> | <a href="#quicVersions">HTTP3/QUIC Versions</a> | <a href="#quicCongestionCtrl">Congestion Control</a> | <a href="#quicCfcw">Connection Flow Control Window</a> | <a href="#quicMaxCfcw">Max Connection Flow Control Window</a> | <a href="#quicSfcw">Stream Flow Control Window</a> | <a href="#quicMaxSfcw">Max Stream Flow Control Window</a> | <a href="#quicMaxStreams">Max Concurrent Streams Per Connection</a> | <a href="#quicHandshakeTimeout">Handshake Timeout</a> | <a href="#quicIdleTimeout">Idle Timeout</a> | <a href="#quicEnableDPLPMTUD">Enable DPLPMTUD</a> | <a href="#quicBasePLPMTU">PLPMTU Base Value</a> | <a href="#quicMaxPLPMTU">PLPMTU Max Value</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="shmDefaultDir"><h3>Default SHM Directory<span class="ls-permlink"><a href="#shmDefaultDir"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Changes shared memory's default directory to the specified path. If the directory does not exist, it will be created. All SHM data will be stored in this directory unless otherwise specified.</p> <h4>Syntax</h4><p>path</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="proxyProtocol"><h3>PROXY protocol<span class="ls-permlink"><a href="#proxyProtocol"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>List of IPs/subnets for front-end proxies that communicate with this server using PROXY protocol. Once set, the server will use PROXY protocol for incoming connections from listed IPs/subnets or fall back to a regular connection if PROXY protocol is unavailable.<br/><br/> Applies to HTTP, HTTPS, HTTP2, and websocket connections.</p> <h4>Syntax</h4><p>Comma delimited list of IP addresses or sub-networks.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxConnections"><h3>Max Connections<span class="ls-permlink"><a href="#maxConnections"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the maximum number of concurrent connections that the server can accept. This includes both plain TCP connections and SSL connections. Once the maximum concurrent connections limit is reached, the server will close Keep-Alive connections when they complete active requests.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> When the server is started by "root" user, the server will try to adjust the per-process file descriptor limits automatically, however, if this fails, you may need to increase this limit manually.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxSSLConnections"><h3>Max SSL Connections<span class="ls-permlink"><a href="#maxSSLConnections"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the maximum number of concurrent SSL connections the server will accept. Since total concurrent SSL and non-SSL connections cannot exceed the limit specified by <span class="tagl"><a href="#maxConnections">Max Connections</a></span>, the actual number of concurrent SSL connections allowed must be lower than this limit.</p> <h4>Syntax</h4><p>Integer number</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="connTimeout"><h3>Connection Timeout (secs)<span class="ls-permlink"><a href="#connTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the maximum connection idle time allowed during processing one request. The connection will be closed if it has been idle, i.e. no I/O activity, for this period of time.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> Set this as low as you can to help recover dead connections during a potential DoS attack.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#keepAliveTimeout">Keep-Alive Timeout (secs)</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxKeepAliveReq"><h3>Max Keep-Alive Requests<span class="ls-permlink"><a href="#maxKeepAliveReq"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the maximum number of requests that can be served through a keep-alive (persistent) session. The connection will be closed once this limit is reached. You can set this limit for each virtual host as well.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> Set this to a reasonably high value. A value of "1" or "0" will disable keep-alive.</p> <h4>See Also</h4><p class="ls-text-small">Virtual Host <span class="tagl"><a href="VirtualHosts_Help.html#vhMaxKeepAliveReq">Max Keep-Alive Requests</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="keepAliveTimeout"><h3>Keep-Alive Timeout (secs)<span class="ls-permlink"><a href="#keepAliveTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the maximum idle time between requests from a keep-alive connection. If no new request is received during this period of time, the connection will be closed. This setting only applies to HTTP/1.1 connections. HTTP/2 connections have long keep-alive timeouts by design and are not affected by this setting.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span><span title="Performance" class="ls-icon-performance"></span> We recommend that you set this value just long enough to wait for subsequent requests from a client when there are more assets referenced by a single page that need to be loaded. Do not set this too long hoping that the next page will be served over the keep-alive connection. Keeping many idle keep-alive connections is a waste of server resources and could be taken advantage of by (D)DoS attacks. <span class="val">2-5</span> seconds is a reasonable range for most applications. LiteSpeed is highly efficient in a non-keep-alive environment.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sndBufSize"><h3>Send Buffer Size (bytes)<span class="ls-permlink"><a href="#sndBufSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The sending buffer size of each TCP socket. <span class="val">512K</span> is the maximum allowed buffer size.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> It is recommended to leave this value as "Not Set" or set to 0 to use the operating system's default buffer size.<br/> <span title="Performance" class="ls-icon-performance"></span> If your web site serves large static files, increase the send buffer size to improve performance.<br/> <span title="Performance" class="ls-icon-performance"></span> Setting this to a lower value will reduce throughput and memory usage per socket allowing the server to have more concurrent sockets when memory is a bottleneck.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="rcvBufSize"><h3>Receive Buffer Size (bytes)<span class="ls-permlink"><a href="#rcvBufSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The receiving buffer size of each TCP socket. <span class="val">512K</span> is the maximum allowed buffer size.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> It is recommended to leave this value as "Not Set" or set to 0 to use the operating system's default buffer size.<br/> <span title="Performance" class="ls-icon-performance"></span> A large receive buffer will increase performance when processing incoming requests with large payloads, i.e. file uploads.<br/> <span title="Performance" class="ls-icon-performance"></span> Setting this to a lower value will reduce throughput and memory usage per socket allowing the server to have more concurrent sockets when memory is a bottleneck.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxReqURLLen"><h3>Max Request URL Length (bytes)<span class="ls-permlink"><a href="#maxReqURLLen"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the maximum size of a request URL. URL is the full text address used to access a server resource including the query string. Hard limit is <span class="val">65530</span> bytes. Values larger than this, such as <span class="val">64K</span> (6 bytes larger), will be treated as if <span class="val">65530</span> was used.<br/><br/> Default value: <span class="val">8192</span> or <span class="val">8K</span>.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span><span title="Performance" class="ls-icon-performance"></span> Set it reasonably low to reduce memory usage and help identify bogus requests and DoS attacks.<br/> 2-3K is big enough for most web sites unless the HTTP GET method is used with large query strings instead of POST.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxReqHeaderSize"><h3>Max Request Header Size (bytes)<span class="ls-permlink"><a href="#maxReqHeaderSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the maximum size of an HTTP request header including request URL. Hard limit is <span class="val">131072</span> bytes or 128K.<br/><br/> Default value: <span class="val">32768</span> or <span class="val">32K</span></p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span><span title="Performance" class="ls-icon-performance"></span> Set it reasonably low to reduce memory usage and help identify bogus requests and DoS attacks.<br/> 4-8K is big enough for most web sites under normal circumstances.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxReqBodySize"><h3>Max Request Body Size (bytes)<span class="ls-permlink"><a href="#maxReqBodySize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the maximum size of an HTTP request body. For a 32Bit OS, <span class="val">2GB</span> is the hard limit. For a 64Bit OS, it is virtually unlimited.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> To help prevent DoS attacks, try to constrain this limit to only what is really needed. Your swapping space must have enough free space to accommodate this limit.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxDynRespHeaderSize"><h3>Max Dynamic Response Header Size (bytes)<span class="ls-permlink"><a href="#maxDynRespHeaderSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the maximum header size of a dynamically generated response. Hard limit is <span class="val">131072</span> bytes or 128K.<br/><br/> Default value: <span class="val">32768</span> or <span class="val">32K</span></p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> Set it reasonably low to help recognize bad responses dynamically generated by external applications.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxDynRespSize"><h3>Max Dynamic Response Body Size (bytes)<span class="ls-permlink"><a href="#maxDynRespSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the maximum body size of a dynamically generated response.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> Set the limit reasonably low to help identify bad responses. It is not uncommon to malformed scripts to contain an infinite loop which leads to infinity-sized responses.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxCachedFileSize"><h3>Max Cached Small File Size (bytes)<span class="ls-permlink"><a href="#maxCachedFileSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the largest static file that will be cached in a pre-allocated memory buffer. Static files can be served in four different ways: memory buffer cache, memory-mapped cache, plain read/write, and sendfile(). Files whose size is smaller than this setting are served from memory buffer cache. Files whose size is larger than this setting, but smaller than the <span class="tagl"><a href="#maxMMapFileSize">Max MMAP File Size (bytes)</a></span> will be served from memory-mapped cache. Files whose size is larger than the <span class="tagl"><a href="#maxMMapFileSize">Max MMAP File Size (bytes)</a></span> will be served via plain read/write or sendfile(). It is optimal to serve static files smaller than 4K from the memory buffer cache.</p> <h4>Syntax</h4><p>Integer number</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="totalInMemCacheSize"><h3>Total Small File Cache Size (bytes)<span class="ls-permlink"><a href="#totalInMemCacheSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the total memory that can be allocated to the buffer cache in order to cache/serve small static files.</p> <h4>Syntax</h4><p>Integer number</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxMMapFileSize"><h3>Max MMAP File Size (bytes)<span class="ls-permlink"><a href="#maxMMapFileSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the largest static file that will be memory mapped (MMAP). Static files can be served in four different ways: memory buffer cache, memory-mapped cache, plain read/write, and sendfile(). Files whose size is smaller than the <span class="tagl"><a href="#maxCachedFileSize">Max Cached Small File Size (bytes)</a></span> are served from memory buffer cache. Files whose size is larger than the <span class="tagl"><a href="#maxCachedFileSize">Max Cached Small File Size (bytes)</a></span>, but smaller than the Max MMAP File Size will be served from memory-mapped cache. Files whose size is larger than the Max MMAP File Size will be served via plain read/write or sendfile(). Since the server has a 32bit address space (2GB), it is not recommended to memory map very large files.</p> <h4>Syntax</h4><p>Integer number</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="totalMMapCacheSize"><h3>Total MMAP Cache Size (bytes)<span class="ls-permlink"><a href="#totalMMapCacheSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the total memory that can be allocated for memory- mapped cache in order to cache/serve medium sized static files.</p> <h4>Syntax</h4><p>Integer number</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="useSendfile"><h3>Use sendfile()<span class="ls-permlink"><a href="#useSendfile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to use the sendfile() system call to serve static files. Static files can be served in four different ways: memory buffer cache, memory-mapped cache, plain read/write, and sendfile(). Files smaller than the <span class="tagl"><a href="#maxCachedFileSize">Max Cached Small File Size (bytes)</a></span> are served from memory buffer cache. Files larger than the <span class="tagl"><a href="#maxCachedFileSize">Max Cached Small File Size (bytes)</a></span> but smaller than the <span class="tagl"><a href="#maxMMapFileSize">Max MMAP File Size (bytes)</a></span> will be served from memory-mapped cache. Files larger than the <span class="tagl"><a href="#maxMMapFileSize">Max MMAP File Size (bytes)</a></span> will be served via plain read/write or sendfile(). Sendfile() is a "zero copy" system call that can greatly reduce CPU utilization when serving very large static files. Sendfile() requires an optimized network card kernel driver and thus may not be suitable for some small-vendor network adapters.</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="useAIO"><h3>Use AIO<span class="ls-permlink"><a href="#useAIO"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to use asynchronous I/O to serve static files along with the AIO implementation to use. Options <span class="val">LINUX AIO</span> and <span class="val">io_uring</span> are only available on Linux machines.<br/><br/> Default value: <span class="val">No</span></p> <h4>Syntax</h4><p>Select from drop down list</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> AIO can help improve performance in servers with a high I/O wait.<br/> <span title="Attention" class="ls-icon-attention"></span> When <span class="val">io_uring</span> is selected but not supported on the current machine, <span class="val">Linux AIO</span> will be used instead.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#AIOBlockSize">AIO Block Size</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="AIOBlockSize"><h3>AIO Block Size<span class="ls-permlink"><a href="#AIOBlockSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the sent block size for AIO. This block size multiplied by the total files being processed should be less than the physical memory of the server, otherwise, AIO will not help. If your server has enough memory, you can choose a bigger size.<br/><br/> Default value: <span class="val">128K</span></p> <h4>Syntax</h4><p>Select from drop down list</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#useAIO">Use AIO</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="fileETag"><h3>File ETag<span class="ls-permlink"><a href="#fileETag"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to use a file's inode, last-modified time, and size attributes to generate the ETag HTTP response header for static files. All three attributes are enabled by default. If you plan to serve the same file out of mirrored servers, you should not include inode; otherwise, the ETag generated for one file will be different on different servers.</p> <h4>Syntax</h4><p>Select from checkbox</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableGzipCompress"><h3>Enable GZIP Compression<span class="ls-permlink"><a href="#enableGzipCompress"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Enables GZIP/Brotli compression for both static and dynamic responses.<br/><br/> Default value: Yes</p> <h4>Syntax</h4><p>Select from radio box</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> Enable it to save network bandwidth. Text-based responses such as html, css, and javascript files benefit the most and on average can be compressed to half of their original size.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="compressibleTypes"><h3>Compressible Types<span class="ls-permlink"><a href="#compressibleTypes"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies what MIME types are allowed to be compressed. Leave this setting unset or enter <span class="val">default</span> to use the server built-in default list which should already cover most mime-types.<br/><br/> Default value: <span class="val">text/*,application/x-javascript,application/javascript,application/xml,image/svg+xml,application/rss+xml, application/json,application/vnd.ms-fontobject,application/x-font,application/x-font-opentype, application/x-font-truetype,application/x-font-ttf,font/eot,font/opentype,font/otf,font/ttf,image/x-icon, image/vnd.microsoft.icon,application/xhtml+xml</span></p> <h4>Syntax</h4><p>MIME type list separated by commas. Wild card "*" and negate sign "!" are allowed, such as text/*, !text/js.</p> <h4>Example</h4><div class="ls-example">If you want to compress text/* but not text/css, you can have a rule like <span class="val">text/*, !text/css</span>. "!" will exclude that MIME type.</div><h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> Only allow types that will benefit from GZIP/Brotli compression. Binary files such as gif/png/jpeg images and flash files do not benefit from compression.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableDynGzipCompress"><h3>Enable GZIP Dynamic Compression<span class="ls-permlink"><a href="#enableDynGzipCompress"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Controls GZIP compression for dynamically generated responses.<br/><br/> For this setting to have an effect, <span class="tagl"><a href="#enableGzipCompress">Enable GZIP Compression</a></span> must be set to <span class="val">Yes</span>.<br/><br/> Default value: Yes</p> <h4>Syntax</h4><p>Select from radio box</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> Compressing dynamic responses increases CPU and memory utilization but saves network bandwidth.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="gzipCompressLevel"><h3>GZIP Compression Level (Dynamic Content)<span class="ls-permlink"><a href="#gzipCompressLevel"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the level of GZIP compression applied to dynamic content. Ranges from <span class="val">1</span> (lowest) to <span class="val">9</span> (highest).<br/><br/> This setting will only take effect when <span class="tagl"><a href="#enableGzipCompress">Enable GZIP Compression</a></span> and <span class="tagl"><a href="#enableDynGzipCompress">Enable GZIP Dynamic Compression</a></span> are enabled.<br/><br/> Default value: 6</p> <h4>Syntax</h4><p>Number between 1 and 9.</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> Higher compression level will use more memory and CPU cycles. You can set it to a higher level if your machine has additional power. There is not much difference between 6 and 9, except that 9 uses many more CPU cycles.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="gzipAutoUpdateStatic"><h3>Auto Update Static File<span class="ls-permlink"><a href="#gzipAutoUpdateStatic"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to let the server automatically create/update GZIP-compressed versions of compressible static files or not. If set to <span class="val">Yes</span>, when a file with a MIME type listed in <span class="tagl"><a href="#compressibleTypes">Compressible Types</a></span> is requested, the server may create or update the corresponding compressed version of the file depending on the compressed file's timestamp. This compressed file is created under the <span class="tagl"><a href="#gzipCacheDir">Static Cache Directory</a></span>. The filename is based on a MD5 hash of the path of the original file.<br/><br/> Default value: Yes</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="gzipStaticCompressLevel"><h3>GZIP Compression Level (Static File)<span class="ls-permlink"><a href="#gzipStaticCompressLevel"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the level of GZIP compression applied to static files. Ranges from <span class="val">1</span> (lowest) to <span class="val">9</span> (highest).<br/><br/> This setting will only take effect when <span class="tagl"><a href="#enableGzipCompress">Enable GZIP Compression</a></span> and <span class="tagl"><a href="#gzipAutoUpdateStatic">Auto Update Static File</a></span> are enabled.<br/><br/> Default value: 6</p> <h4>Syntax</h4><p>Number between 1 and 9.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="brStaticCompressLevel"><h3>Brotli Compression Level (Static File)<span class="ls-permlink"><a href="#brStaticCompressLevel"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the level of Brotli compression applied to static files. Ranges from <span class="val">0</span> (disabled) to <span class="val">11</span> (highest).<br/><br/> When set to <span class="val">0</span>, brotli compression will be disabled globally.<br/><br/> Default value: 5</p> <h4>Syntax</h4><p>Number between 0 and 11.</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> Save network bandwidth. Text-based responses such as html, css, and javascript files benefit the most and on average can be compressed to half of their original size.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="gzipCacheDir"><h3>Static Cache Directory<span class="ls-permlink"><a href="#gzipCacheDir"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the path of the directory used to store compressed files for static content.<br/><br/> Default value: <span class="tagl"><a href="#swappingDir">Swapping Directory</a></span>.</p> <h4>Syntax</h4><p>Directory Path</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="gzipMaxFileSize"><h3>Max Static File Size (bytes)<span class="ls-permlink"><a href="#gzipMaxFileSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the maximum size of a static file for which the server will create a compressed file automatically.<br/><br/> Default value: 10M</p> <h4>Syntax</h4><p>Number in bytes not less than 1K.</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> It is not recommended to have the server create/update compressed files for large files. Compressing blocks an entire server process and no further requests can be processed until the compression is completed.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="gzipMinFileSize"><h3>Min Static File Size (bytes)<span class="ls-permlink"><a href="#gzipMinFileSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the minimum size of a static file for which the server will create a corresponding compressed file.<br/><br/> Default value: 200</p> <h4>Syntax</h4><p>Number in bytes not less than 200.</p> <h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> It is not necessary to compress very small files as the bandwidth saving is negligible.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslDefaultCiphers"><h3>Default Cipher Suite<span class="ls-permlink"><a href="#sslDefaultCiphers"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Default cipher suite for SSL certificates.<br/><br/> Default value: Server Internal Default (Based on current best practices)</p> <h4>Syntax</h4><p>Colon-separated string of cipher specifications.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslStrongDhKey"><h3>SSL Strong DH Key<span class="ls-permlink"><a href="#sslStrongDhKey"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to use 2048 or 1024 bit DH keys for SSL handshakes. If set to "Yes", 2048 bit DH keys will be used for 2048 bit SSL keys and certificates. 1024 bit DH keys will still be used in other situations. Default is "Yes".<br/><br/> Earlier versions of Java do not support DH key size higher than 1024 bits. If Java client compatibility is required, this should be set to "No".</p> <h4>Syntax</h4><p>radio</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslEnableMultiCerts"><h3>Enable Multiple SSL Certificates<span class="ls-permlink"><a href="#sslEnableMultiCerts"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Allows listeners/vhosts to set multiple SSL certificates. If multiple certificates are enabled, the certificates/keys are expected to follow a naming scheme. If the cert is named server.crt, other possible cert names are server.crt.rsa, server.crt.dsa, server.crt.ecc. If "Not Set", defaults to "No".</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslSessionCache"><h3>Enable Session Cache<span class="ls-permlink"><a href="#sslSessionCache"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Enables session ID caching using OpenSSL's default setting. Server-level setting must be set to "Yes" for Virtual Host setting to take effect.<br/><br/> Default values:<br/> <b>Server-level:</b> Yes<br/> <b>VH-Level:</b> Yes</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslSessionCacheSize"><h3>Session Cache Size (bytes)<span class="ls-permlink"><a href="#sslSessionCacheSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets the maximum number of SSL session IDs to store in the cache. Default is 1,000,000.</p> <h4>Syntax</h4><p>Integer number</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslSessionCacheTimeout"><h3>Session Cache Timeout (secs)<span class="ls-permlink"><a href="#sslSessionCacheTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>This value determines how long a session ID will be valid within the cache before renegotiation is required. Default is 3,600.</p> <h4>Syntax</h4><p>Integer number</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslSessionTickets"><h3>Enable Session Tickets<span class="ls-permlink"><a href="#sslSessionTickets"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Enables session tickets using OpenSSL's default session ticket setting. Server-level setting must be set to "Yes" for Virtual Host setting to take effect.<br/><br/> Default values:<br/> <b>Server-level:</b> Yes<br/> <b>VH-Level:</b> Yes</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslSessionTicketLifetime"><h3>SSL Session Ticket Lifetime (secs)<span class="ls-permlink"><a href="#sslSessionTicketLifetime"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>This value determines how long a session ticket will be valid before a renegotiation is required. Default is 3,600.</p> <h4>Syntax</h4><p>Integer number</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslSessionTicketKeyFile"><h3>SSL Session Ticket Key File<span class="ls-permlink"><a href="#sslSessionTicketKeyFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Allows the SSL Ticket Key to be created/maintained by an administrator. The file must be 48 bytes long. If this option is left empty, the load balancer will generate and rotate its own set of keys.<br/><br/> IMPORTANT: To maintain forward secrecy, it is strongly recommended to change the key every <b>SSL Session Ticket Lifetime</b> seconds. If this cannot be done, it is recommended to leave this field empty.</p> <h4>Syntax</h4><p>Path</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslOcspProxy"><h3>OCSP Proxy<span class="ls-permlink"><a href="#sslOcspProxy"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Socket address used as the proxy server address for OCSP verification. Leave this setting unset If not using a proxy.<br/><br/> Default value: <span class="val">not set</span></p> <h4>Syntax</h4><p>Socket Address</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslStrictSni"><h3>Strict SNI Certificate<span class="ls-permlink"><a href="#sslStrictSni"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to strictly require a dedicated virtual host certificate configuration. When enabled, SSL connections to virtual hosts without a dedicated certificate configuration will fail instead of using a default catch-all certificate.<br/><br/> Default value: <span class="val">No</span></p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="quicEnable"><h3>Enable HTTP3/QUIC<span class="ls-permlink"><a href="#quicEnable"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Enables the HTTP3/QUIC network protocol server wide. Default value is <span class="val">Yes</span>.</p> <h4>Syntax</h4><p>Select from radio box</p> <h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> When this setting is set to <span class="val">Yes</span>, HTTP3/QUIC can still be disabled at the listener level through the <span class="tagl"><a href="Listeners_SSL_Help.html#allowQuic">Open HTTP3/QUIC (UDP) port</a></span> setting, or at the virtual host level through the <span class="tagl"><a href="VHSSL_Help.html#vhEnableQuic">Enable HTTP3/QUIC</a></span> setting.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="quicShmDir"><h3>QUIC SHM Directory<span class="ls-permlink"><a href="#quicShmDir"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the directory used to save QUIC data to shared memory.<br/><br/> By default, the server's default SHM directory, <span class="val">/dev/shm</span>, will be used.</p> <h4>Syntax</h4><p>Path</p> <h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> A RAM based partition, such as <span class="val">/dev/shm</span>, is recommended.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="quicVersions"><h3>HTTP3/QUIC Versions<span class="ls-permlink"><a href="#quicVersions"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>A list of enabled HTTP3/QUIC versions. This setting should only be used to limit HTTP3/QUIC support to the versions listed and is best left blank.</p> <h4>Syntax</h4><p>Comma-separated list</p> <h4>Example</h4><div class="ls-example">h3-29, h3-Q050</div><h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> It is recommended to leave this setting blank to have the the best configuration applied automatically.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="quicCongestionCtrl"><h3>Congestion Control<span class="ls-permlink"><a href="#quicCongestionCtrl"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The congestion control algorithm used. This can be set manually or left up to the QUIC library in use by selecting the "Default" option.<br/><br/> Default value: Default</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="quicCfcw"><h3>Connection Flow Control Window<span class="ls-permlink"><a href="#quicCfcw"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The initial size of the buffer allocated for a QUIC connection. Default value is <span class="val">1.5M</span>.</p> <h4>Syntax</h4><p>Number between 64K and 512M</p> <h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> A larger window size will use more memory.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="quicMaxCfcw"><h3>Max Connection Flow Control Window<span class="ls-permlink"><a href="#quicMaxCfcw"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the maximum size that a connection flow control window buffer is allowed to reach due to window auto-tuning.<br/><br/> Default value is <span class="val">0</span>, which means that the value of <span class="tagl"><a href="ServTuning_Help.html#quicCfcw">Connection Flow Control Window</a></span> is used and no auto-tuning is performed.</p> <h4>Syntax</h4><p>0 or a number between 64K and 512M</p> <h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> A larger window size will use more memory.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="quicSfcw"><h3>Stream Flow Control Window<span class="ls-permlink"><a href="#quicSfcw"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The initial amount of data a QUIC connection is willing to receive per stream. Default value is <span class="val">1M</span>.</p> <h4>Syntax</h4><p>Number between 64K and 128M</p> <h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> A larger window size will use more memory.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="quicMaxSfcw"><h3>Max Stream Flow Control Window<span class="ls-permlink"><a href="#quicMaxSfcw"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the maximum size that a stream flow control window is allowed to reach due to window auto-tuning.<br/><br/> Default value is <span class="val">0</span>, which means that the value of <span class="tagl"><a href="ServTuning_Help.html#quicSfcw">Stream Flow Control Window</a></span> is used and no auto-tuning is performed.</p> <h4>Syntax</h4><p>0 or a number between 64K and 128M</p> <h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> A larger window size will use more memory.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="quicMaxStreams"><h3>Max Concurrent Streams Per Connection<span class="ls-permlink"><a href="#quicMaxStreams"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The maximum number of concurrent streams allowed per QUIC connection. Default value is <span class="val">100</span>.</p> <h4>Syntax</h4><p>Integer number between 10 and 1000</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="quicHandshakeTimeout"><h3>Handshake Timeout<span class="ls-permlink"><a href="#quicHandshakeTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The time in seconds a new QUIC connection is given to complete its handshake, after which the connection is aborted. Default value is <span class="val">10</span>.</p> <h4>Syntax</h4><p>Integer number between 1 and 15</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="quicIdleTimeout"><h3>Idle Timeout<span class="ls-permlink"><a href="#quicIdleTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The time in seconds after which an idle QUIC connection will be closed. Default value is <span class="val">30</span>.</p> <h4>Syntax</h4><p>Integer number between 10 and 30</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="quicEnableDPLPMTUD"><h3>Enable DPLPMTUD<span class="ls-permlink"><a href="#quicEnableDPLPMTUD"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Enable Datagram Packetization Layer Path Maximum Transmission Unit Discovery (DPLPMTUD).<br/><br/> <b> <a href=" https://tools.ietf.org/html/rfc8899 " target="_blank" rel="noopener noreferrer"> Background on DPLPMTUD (RFC 8899) </a> </b><br/><br/> Default value: Yes</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="quicBasePLPMTU"><h3>PLPMTU Base Value<span class="ls-permlink"><a href="#quicBasePLPMTU"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The maximum value of PLPMTU (maximum packet size without headers) in bytes that QUIC will use by default. Setting this to <span class="val">0</span> will allow QUIC to pick the size.<br/><br/> This setting should be set lower than <span class="tagl"><a href="#quicMaxPLPMTU">PLPMTU Max Value</a></span>.<br/><br/> Default value: 0</p> <h4>Syntax</h4><p>0 or integer number between 1200 and 65527</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="quicMaxPLPMTU"><h3>PLPMTU Max Value<span class="ls-permlink"><a href="#quicMaxPLPMTU"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The PLPMTU (maximum packet size without headers) probe upper limit in bytes. This setting is used to limit the "maximum packet size" in the DPLPMTUD search space. Setting this to <span class="val">0</span> will allow QUIC to pick the size (By default LSQUIC assumes that MTU is 1,500 bytes (Ethernet)).<br/><br/> This setting should be set higher than <span class="tagl"><a href="#quicBasePLPMTU">PLPMTU Base Value</a></span>.<br/> Default value: 0</p> <h4>Syntax</h4><p>0 or integer number between 1200 and 65527</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ���������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������AdminSecurity_Help.html�����������������������������������������������������������������������������0000644�����������������00000023175�15027525531�0011177 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Admin Console Security</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Admin Console Security." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 9</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><span class="current"><a href="AdminSecurity_Help.html">Admin Console Security</a></span></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="AdminGeneral_Help.html">Admin Console General</a></div><div class="center"><a href="webconsole.html">Web Console</a></div><div class="next"><a href="AdminListeners_General_Help.html">Admin Listeners General</a> »</div></div> <h1>Admin Console Security</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header><a href="#accessControl">Access Control</a></header><p> <a href="#accessControl_allow">Allowed List</a> | <a href="#accessControl_deny">Denied List</a></p></section> <section class="toc-row"><header><a href="#adminUser">WebAdmin User</a></header><p> </p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="accessControl"><h3>Access Control<span class="ls-permlink"><a href="#accessControl"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies what sub networks and/or IP addresses can access the server. At the server level, this setting will affect all virtual hosts. You can also set up access control unique to each virtual host at the virtual host level. Virtual host level settings will NOT override server level settings.<br/><br/> Blocking/Allowing an IP is determined by the combination of the allowed list and the denied list. If you want to block only certain IPs or sub-networks, put <span class="val">*</span> or <span class="val">ALL</span> in the <span class="tagl"><a href="#accessControl_allow">Allowed List</a></span> and list the blocked IPs or sub-networks in the <span class="tagl"><a href="#accessControl_deny">Denied List</a></span>. If you want to allow only certain IPs or sub-networks, put <span class="val">*</span> or <span class="val">ALL</span> in the <span class="tagl"><a href="#accessControl_deny">Denied List</a></span> and list the allowed IPs or sub-networks in the <span class="tagl"><a href="#accessControl_allow">Allowed List</a></span>. The setting of the smallest scope that fits for an IP will be used to determine access.<br/><br/> <b>Server Level:</b> Trusted IPs or sub-networks must be specified in the <span class="tagl"><a href="#accessControl_allow">Allowed List</a></span> by adding a trailing "T". Trusted IPs or sub-networks are not affected by connection/throttling limits. Only server level access control can set up trusted IPs/sub-networks.</p> <h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> Use this at the server level for general restrictions that apply to all virtual hosts.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessControl_allow"><h3>Allowed List<span class="ls-permlink"><a href="#accessControl_allow"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the list of IPs or sub-networks allowed. <span class="val">*</span> or <span class="val">ALL</span> are accepted.</p> <h4>Syntax</h4><p>Comma delimited list of IP addresses or sub-networks. A trailing "T" can be used to indicate a trusted IP or sub-network, such as <span class="val">192.168.1.*T</span>.</p> <h4>Example</h4><div class="ls-example"><b>Sub-networks:</b> 192.168.1.0/255.255.255.0, 192.168.1.0/24, 192.168.1, or 192.168.1.*<br/> <b>IPv6 addresses:</b> ::1 or [::1]<br/> <b>IPv6 subnets:</b> 3ffe:302:11:2:20f:1fff:fe29:717c/64 or [3ffe:302:11:2:20f:1fff:fe29:717c]/64</div><h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> Trusted IPs or sub-networks set at the server level access control will be excluded from connection/throttling limits.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessControl_deny"><h3>Denied List<span class="ls-permlink"><a href="#accessControl_deny"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the list of IPs or sub-networks disallowed.</p> <h4>Syntax</h4><p>Comma delimited list of IP addresses or sub-networks. <span class="val">*</span> or <span class="val">ALL</span> are accepted.</p> <h4>Example</h4><div class="ls-example"><b>Sub-networks:</b> 192.168.1.0/255.255.255.0, 192.168.1.0/24, 192.168.1, or 192.168.1.*<br/> <b>IPv6 addresses:</b> ::1 or [::1]<br/> <b>IPv6 subnets:</b> 3ffe:302:11:2:20f:1fff:fe29:717c/64 or [3ffe:302:11:2:20f:1fff:fe29:717c]/64</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="adminUser"><h3>WebAdmin User<span class="ls-permlink"><a href="#adminUser"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Change the username and password for the WebAdmin Console. The old password must be entered and verified in order to save changes.</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ���������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������External_LB.html������������������������������������������������������������������������������������0000644�����������������00000014274�15027525531�0007606 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Load Balancer</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Load Balancer." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 9</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><span class="current"><a href="External_LB.html">Load Balancer</a></span></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="External_PL.html">Piped Logger</a></div><div class="center"><a href="ExtApp_Help.html">External Apps</a></div><div class="next"> </div></div> <h1>Load Balancer</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header>Load Balancer</header><p> <a href="#extAppName">Name</a> | <a href="#extWorkers">Workers</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="extAppName"><h3>Name<span class="ls-permlink"><a href="#extAppName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>A unique name for this external application. You will refer to it by this name when you use it in other parts of the configuration.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extWorkers"><h3>Workers<span class="ls-permlink"><a href="#extWorkers"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>List of worker groups previously defined in the external load balancer.</p> <h4>Syntax</h4><p>A comma-separated list in the form ExternalAppType::ExternalAppName</p> <h4>Example</h4><div class="ls-example">fcgi::localPHP, proxy::backend1</div></article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������Rewrite_Help.html�����������������������������������������������������������������������������������0000644�����������������00000032751�15027525531�0010040 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Rewrite</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Rewrite." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 9</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><span class="current"><a href="Rewrite_Help.html">Rewrite</a></span></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="VHSSL_Help.html">Virtual Host SSL</a></div><div class="center"><a href="config.html">Configuration</a></div><div class="next"><a href="Context_Help.html">Context</a> »</div></div> <h1>Rewrite</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header>Rewrite Control</header><p> <a href="#enableRewrite">Enable Rewrite</a> | <a href="#autoLoadHtaccess">Auto Load from .htaccess</a> | <a href="#rewriteLogLevel">Log Level</a></p></section> <section class="toc-row"><header>Rewrite Map</header><p> <a href="#rewriteMapName">Name</a> | <a href="#rewriteMapLocation">Location</a></p></section> <section class="toc-row"><header>Rewrite Rules</header><p> <a href="#rewriteRules">Rewrite Rules</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="enableRewrite"><h3>Enable Rewrite<span class="ls-permlink"><a href="#enableRewrite"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to enable LiteSpeed's URL rewrite engine. This option can be customized at the virtual host or context level, and is inherited along the directory tree until it is explicitly overridden.</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="autoLoadHtaccess"><h3>Auto Load from .htaccess<span class="ls-permlink"><a href="#autoLoadHtaccess"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Autoload rewrite rules contained in a directory's .htaccess file when first accessing that directory if an HttpContext for that directory using the <b>rewritefile</b> directive does not already exist. Once initially loaded, a graceful restart must be performed for any further changes to that .htaccess file to take effect.<br/><br/> Virtual Host-level setting overrides Server-level setting. Default values:<br/><br/> <b>Server-level:</b> No<br/><br/> <b>VH-Level:</b> Inherit Server-level setting</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="rewriteLogLevel"><h3>Log Level<span class="ls-permlink"><a href="#rewriteLogLevel"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the level of detail of the rewrite engine's debug output. This value ranges from <span class="val">0</span> - <span class="val">9</span>. <span class="val">0</span> disables logging. <span class="val">9</span> produces the most detailed log. The server and virtual host's error log <span class="tagl"><a href="ServGeneral_Help.html#log_logLevel">Log Level</a></span> must be set to at least <span class="val">INFO</span> for this option to take effect. This is useful when testing rewrite rules.</p> <h4>Syntax</h4><p>Integer number</p> <h4>See Also</h4><p class="ls-text-small">Server <span class="tagl"><a href="ServGeneral_Help.html#log_logLevel">Log Level</a></span>, Virtual Host <span class="tagl"><a href="VHGeneral_Help.html#vhlog_logLevel">Log Level</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="rewriteMapName"><h3>Name<span class="ls-permlink"><a href="#rewriteMapName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies a unique name for the rewrite map at the virtual host level. This name will be used by a mapping-reference in rewrite rules. When referencing this name, one of the following syntaxes should be used: <blockquote><code> $\{MapName:LookupKey\}<br/> $\{MapName:LookupKey|DefaultValue\} </code></blockquote><br/> The implementation of LiteSpeed's rewrite engine follows the specifications of Apache's rewrite engine. For more details about rewrite maps, please refer to <a href="http://httpd.apache.org/docs/current/mod/mod_rewrite.html" target="_blank" rel="noopener noreferrer">Apache's mod_rewrite document</a>.</p> <h4>Syntax</h4><p>string</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="rewriteMapLocation"><h3>Location<span class="ls-permlink"><a href="#rewriteMapLocation"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the location of the rewrite map using the syntax <span class="val">MapType:MapSource</span>.<br/> LiteSpeed's rewrite engine supports three types of rewrite maps: <ul> <li><b>Standard Plain Text</b> <blockquote> <b>MapType:</b> txt; <br/> <b>MapSource:</b> file path to a valid plain ASCII file. </blockquote> Each line of this file should contain two elements separated by blank spaces. The first element is the key and the second element is the value. Comments can be added with a leading "<span class="val">#</span>" sign. </li> <li><b>Randomized Plain Text</b> <blockquote> <b>MapType:</b> rnd;<br/> <b>MapSource:</b> file path of a valid plain ASCII file. </blockquote> File format is similar to the Standard Plain Text file, except that the second element can contain multiple choices separated by a "<span class="val">|</span>" sign and chosen randomly by the rewrite engine. </li> <li><b>Internal Function</b> <blockquote> <b>MapType:</b> int;<br/> <b>MapSource:</b> Internal string function </blockquote> 4 functions are available: <ul> <li><b>toupper:</b> converts lookup key to upper cases.</li> <li><b>tolower:</b> converts lookup key to lower cases.</li> <li><b>escape:</b> perform URL encoding on lookup key.</li> <li><b>unescape:</b> perform URL decoding on lookup key.</li> </ul> </li> The following map types available in Apache have not been implemented in LiteSpeed:<br/> Hash File and External Rewriting Program. </ul> The implementation of LiteSpeed's rewrite engine follows the specifications of Apache's rewrite engine. For more details about rewrite map, please refer to <a href="http://httpd.apache.org/docs/current/mod/mod_rewrite.html" target="_blank" rel="noopener noreferrer">Apache's mod_rewrite document</a>.</p> <h4>Syntax</h4><p>String</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="rewriteRules"><h3>Rewrite Rules<span class="ls-permlink"><a href="#rewriteRules"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies a list of rewrite rules at the virtual host level.<br/><br/> Do NOT add any document root level rewrite rules here. If you have any document root level rewrite rules from .htaccess, you should instead create a static context with uri "/" and add the rewrite rules there.<br/><br/> A rewrite rule is comprised of one <span class="val">RewriteRule</span> directive and optionally preceded by multiple <span class="val">RewriteCond</span> directives. <ul> <li>Each directive should take only one line.</li> <li> <span class="val">RewriteCond</span> and <span class="val">RewriteRule</span> follow Apache's rewrite directive syntax. Just copy and paste rewrite directives from your Apache configuration files. </li> <li> There are minor differences between LiteSpeed and Apache mod_rewrite implementation: <ul> <li> <span class="val">%\{LA-U:variable\}</span> and <span class="val">%\{LA-F:variable\}</span> are ignored by the LiteSpeed rewrite engine </li> <li> Two new server variables are added in the LiteSpeed rewrite engine: <span class="val">%\{CURRENT_URI\}</span> represents the current URI being processed by the rewrite engine and <span class="val">%\{SCRIPT_NAME\}</span> has the same meaning as the corresponding CGI environment variable. </li> <li> The LiteSpeed rewrite engine will stop processing rewrite rules after encountering an <span class="val">[L]</span> flag to avoid looping while Apache mod_rewrite will stop processing rewrite rules for the current iteration only. This behavior is similar to that of the <span class="val">[END]</span> flag in Apache mod_rewrite. </li> </ul> </li> </ul><br/> The implementation of LiteSpeed's rewrite engine follows Apache's rewrite engine specifications. For more details about rewrite rules, please refer to <a href="https://httpd.apache.org/docs/current/mod/mod_rewrite.html" target="_blank" rel="noopener noreferrer"> Apache's mod_rewrite document </a> and <a href="https://httpd.apache.org/docs/current/rewrite/" target="_blank" rel="noopener noreferrer"> Apache's URL rewriting guide </a>.</p> <h4>Syntax</h4><p>string</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> �����������������������Listeners_General_Help.html�������������������������������������������������������������������������0000644�����������������00000027206�15027525531�0012023 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Listeners General</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Listeners General." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 9</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><span class="current"><a href="Listeners_General_Help.html">Listener General</a></span></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="Module_Help.html">Module Configuration</a></div><div class="center"><a href="config.html">Configuration</a></div><div class="next"><a href="Listeners_SSL_Help.html">Listeners SSL</a> »</div></div> <h1>Listeners General</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header>Address Settings</header><p> <a href="#listenerName">Listener Name</a> | <a href="#listenerIP">IP Address</a> | <a href="#listenerPort">Port</a> | <a href="#listenerBinding">Binding</a> | <a href="#reusePort">Enable REUSEPORT</a> | <a href="#listenerSecure">Secure</a></p></section> <section class="toc-row"><header><a href="#virtualHostMapping">Virtual Host Mappings</a></header><p> <a href="#virtualHostName">Virtual Host</a> | <a href="#domainName">Domains</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="listenerName"><h3>Listener Name<span class="ls-permlink"><a href="#listenerName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>A unique name for this listener.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="listenerIP"><h3>IP Address<span class="ls-permlink"><a href="#listenerIP"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the IP of this listener. All available IP addresses are listed. IPv6 addresses are enclosed in "[ ]".<br/><br/> To listen on all IPv4 IP addresses, select <span class="val">ANY</span>. To listen on all IPv4 and IPv6 IP addresses, select <span class="val">[ANY]</span>.<br/><br/> In order to serve both IPv4 and IPv6 clients, an IPv4-mapped IPv6 address should be used instead of a plain IPv4 address. An IPv4-mapped IPv6 address is written as [::FFFF:x.x.x.x].</p> <h4>Syntax</h4><p>Select from drop down list</p> <h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> If your machine has multiple IPs on different sub-networks, you can select a specific IP to only allow traffic from the corresponding sub-network.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="listenerPort"><h3>Port<span class="ls-permlink"><a href="#listenerPort"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the TCP port of the listener. Only the super user ("root") can use ports lower than <span class="val">1024</span>. Port <span class="val">80</span> is the default HTTP port. Port <span class="val">443</span> is the default HTTPS port.</p> <h4>Syntax</h4><p>Integer number</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="listenerBinding"><h3>Binding<span class="ls-permlink"><a href="#listenerBinding"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies which lshttpd child process the listener is assigned to. Different child processes can be used to handle requests to different listeners by manually associating a listener with a process. By default, a listener is assigned to all child processes.</p> <h4>Syntax</h4><p>Select from checkbox</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="reusePort"><h3>Enable REUSEPORT<span class="ls-permlink"><a href="#reusePort"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Use SO_REUSEPORT socket option to distribute incoming traffic to multiple workers. This setting is only effective for multi-worker licenses. When enabled, all workers are automatically bound to this listener and "Binding" configuration is ignored.<br/><br/> Default value: On</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="listenerSecure"><h3>Secure<span class="ls-permlink"><a href="#listenerSecure"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether this is a secure (SSL) listener. For secure listeners, additional SSL settings need to be set properly.</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="virtualHostMapping"><h3>Virtual Host Mappings<span class="ls-permlink"><a href="#virtualHostMapping"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the relationship between the listener and virtual hosts. Listeners and virtual hosts are associated by domain names. An HTTP request will be routed to a virtual host with a matching domain name. One listener can map to multiple virtual hosts for different domain names. One virtual host can also be mapped from different listeners. One listener can allow one catchall virtual host with the domain name value "*". When there is no explicitly matched domain name in the listener's mapping, the listener will forward the request to that catchall virtual host.</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> Only add necessary mappings. If the listener is mapped to only one virtual host, then only set up a catchall mapping "*".</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="virtualHostName"><h3>Virtual Host<span class="ls-permlink"><a href="#virtualHostName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the name of a virtual host.</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="domainName"><h3>Domains<span class="ls-permlink"><a href="#domainName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the mapping domain names. Domain names are case insensitive and the leading "www." will be removed. The wildcard characters "*" and "?" are allowed. "?" only represents one character. "*" represents any numbers of characters. Duplicated domain names are not allowed.</p> <h4>Syntax</h4><p>Comma-separated list.</p> <h4>Example</h4><div class="ls-example">www?.example.com<br/> "*.mydomain.com" will match all subdomains of mydomain.com.<br/> "*" by itself is the catchall domain and will match any unmatched domain names.</div><h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> If a listener is dedicated to one virtual host, always use <span class="val">*</span> for the domain name to avoid unnecessary checking. Domain names with wildcard characters (other than the catchall domain) should be avoided whenever possible.</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������AdminListeners_SSL_Help.html������������������������������������������������������������������������0000644�����������������00000046626�15027525531�0012067 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Admin Listeners SSL</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Admin Listeners SSL." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 9</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <span class="current"><a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a></span> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="AdminListeners_General_Help.html">Admin Listeners General</a></div><div class="center"><a href="webconsole.html">Web Console</a></div><div class="next"> </div></div> <h1>Admin Listeners SSL</h1><section class="ls-spacer-small-bottom">Admin Listeners are dedicated to the Admin Server. Secure (SSL) listeners are recommended for the Admin Server.</section> <h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header><a href="#sslCert">SSL Private Key & Certificate</a></header><p> <a href="#keyFile">Private Key File</a> | <a href="#certFile">Certificate File</a> | <a href="#certChain">Chained Certificate</a> | <a href="#CACertPath">CA Certificate Path</a> | <a href="#CACertFile">CA Certificate File</a></p></section> <section class="toc-row"><header><a href="#sslProtocolSetting">SSL Protocol</a></header><p> <a href="#ciphers">Ciphers</a> | <a href="#enableECDHE">Enable ECDH Key Exchange</a> | <a href="#enableDHE">Enable DH Key Exchange</a> | <a href="#DHParam">DH Parameter</a></p></section> <section class="toc-row"><header>Security & Features</header><p> <a href="#renegProtection">SSL Renegotiation Protection</a> | <a href="#sslSessionCache">Enable Session Cache</a> | <a href="#sslSessionTickets">Enable Session Tickets</a> | <a href="#enableSpdy">ALPN</a> | <a href="#allowQuic">Open HTTP3/QUIC (UDP) port</a></p></section> <section class="toc-row"><header>Client Verification</header><p> <a href="#clientVerify">Client Verification</a> | <a href="#verifyDepth">Verify Depth</a> | <a href="#crlPath">Client Revocation Path</a> | <a href="#crlFile">Client Revocation File</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="sslCert"><h3>SSL Private Key & Certificate<span class="ls-permlink"><a href="#sslCert"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Every SSL listener requires a paired SSL private key and SSL certificate. Multiple SSL listeners can share the same key and certificate.<br/><br/> You can generate SSL private keys yourself using an SSL software package, such as OpenSSL. SSL certificates can also be purchased from an authorized certificate issuer like VeriSign or Thawte. You can also sign the certificate yourself. Self-signed certificates will not be trusted by web browsers and should not be used on public websites containing critical data. However, a self-signed certificate is good enough for internal use, e.g. for encrypting traffic to LiteSpeed Web Server's WebAdmin Console.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="keyFile"><h3>Private Key File<span class="ls-permlink"><a href="#keyFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The filename of the SSL private key file. The key file should not be encrypted.</p> <h4>Syntax</h4><p>Filename which can be an absolute path or a relative path to $SERVER_ROOT.</p> <h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> The private key file should be placed in a secured directory that allows read-only access to the user the server runs as.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="certFile"><h3>Certificate File<span class="ls-permlink"><a href="#certFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The filename of the SSL certificate file.</p> <h4>Syntax</h4><p>Filename which can be an absolute path or a relative path to $SERVER_ROOT.</p> <h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> The certificate file should be placed in a secured directory, which allows read-only access to the user that the server runs as.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="certChain"><h3>Chained Certificate<span class="ls-permlink"><a href="#certChain"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether the certificate is a chained certificate or not. The file that stores a certificate chain must be in PEM format, and the certificates must be in the chained order, from the lowest level (the actual client or server certificate) to the highest level (root) CA.</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="CACertPath"><h3>CA Certificate Path<span class="ls-permlink"><a href="#CACertPath"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the directory where the certificates of certification authorities (CAs) are kept. Those certificates are used for client certificate authentication and constructing the server certificate chain, which will be sent to browsers in addition to the server certificate.</p> <h4>Syntax</h4><p>path</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="CACertFile"><h3>CA Certificate File<span class="ls-permlink"><a href="#CACertFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the file that contains all certificates of certification authorities (CAs) for chained certificates. This file is simply the concatenation of PEM-encoded certificate files, in order of preference. This can be used as an alternative or in addition to <span class="tagl"><a href="#CACertPath">CA Certificate Path</a></span>. Those certificates are used for client certificate authentication and constructing the server certificate chain, which will be sent to browsers in addition to the server certificate.</p> <h4>Syntax</h4><p>Filename which can be an absolute path or a relative path to $SERVER_ROOT.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslProtocolSetting"><h3>SSL Protocol<span class="ls-permlink"><a href="#sslProtocolSetting"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Customizes SSL protocols accepted by the listener.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="ciphers"><h3>Ciphers<span class="ls-permlink"><a href="#ciphers"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the cipher suite to be used when negotiating the SSL handshake. LSWS supports cipher suites implemented in SSL v3.0, TLS v1.0, TLS v1.2, and TLS v1.3.</p> <h4>Syntax</h4><p>Colon-separated string of cipher specifications.</p> <h4>Example</h4><div class="ls-example">ECDHE-RSA-AES128-SHA256:RC4:HIGH:!MD5:!aNULL:!EDH</div><h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> We recommend leaving this field blank to use our default cipher which follows SSL cipher best practices.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableECDHE"><h3>Enable ECDH Key Exchange<span class="ls-permlink"><a href="#enableECDHE"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Allows use of Elliptic Curve Diffie-Hellman key exchange for further SSL encryption.</p> <h4>Syntax</h4><p>Select from radio box</p> <h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> ECDH key exchange is more secure than using just an RSA key. ECDH and DH key exchange are equally secure.<br/><br/> <span title="Performance" class="ls-icon-performance"></span> Enabling ECDH key exchange will increase CPU load and is slower than using just an RSA key.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableDHE"><h3>Enable DH Key Exchange<span class="ls-permlink"><a href="#enableDHE"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Allows use of Diffie-Hellman key exchange for further SSL encryption.</p> <h4>Syntax</h4><p>Select from radio box</p> <h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> DH key exchange is more secure than using just an RSA key. ECDH and DH key exchange are equally secure.<br/><br/> <span title="Performance" class="ls-icon-performance"></span> Enabling DH key exchange will increase CPU load and is slower than ECDH key exchange and RSA. ECDH key exchange is preferred when available.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="DHParam"><h3>DH Parameter<span class="ls-permlink"><a href="#DHParam"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the location of the Diffie-Hellman parameter file necessary for DH key exchange.</p> <h4>Syntax</h4><p>Filename which can be an absolute path or a relative path to $SERVER_ROOT.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="renegProtection"><h3>SSL Renegotiation Protection<span class="ls-permlink"><a href="#renegProtection"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to enable SSL Renegotiation Protection to defend against SSL handshake-based attacks. The default value is "Yes".</p> <h4>Syntax</h4><p>Select from radio box</p> <h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> This setting can be enabled at the listener and virtual host levels.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslSessionCache"><h3>Enable Session Cache<span class="ls-permlink"><a href="#sslSessionCache"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Enables session ID caching using OpenSSL's default setting. Server-level setting must be set to "Yes" for Virtual Host setting to take effect.<br/><br/> Default values:<br/> <b>Server-level:</b> Yes<br/> <b>VH-Level:</b> Yes</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslSessionTickets"><h3>Enable Session Tickets<span class="ls-permlink"><a href="#sslSessionTickets"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Enables session tickets using OpenSSL's default session ticket setting. Server-level setting must be set to "Yes" for Virtual Host setting to take effect.<br/><br/> Default values:<br/> <b>Server-level:</b> Yes<br/> <b>VH-Level:</b> Yes</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableSpdy"><h3>ALPN<span class="ls-permlink"><a href="#enableSpdy"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Selectively enable HTTP/3, HTTP/2, and SPDY HTTP network protocols.<br/><br/> If you wish to disable SPDY, HTTP/2, and HTTP3, check "None" and leave all other boxes unchecked.<br/><br/> Default value: All enabled</p> <h4>Syntax</h4><p>Select from checkbox</p> <h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> This setting can be set at the listener and virtual host levels.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="allowQuic"><h3>Open HTTP3/QUIC (UDP) port<span class="ls-permlink"><a href="#allowQuic"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Allows the use of the HTTP3/QUIC network protocol for virtual hosts mapped to this listener. For this setting to take effect, <span class="tagl"><a href="ServTuning_Help.html#quicEnable">Enable HTTP3/QUIC</a></span> must also be set to <span class="val">Yes</span> at the server level. Default value is <span class="val">Yes</span>.</p> <h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> When this setting is set to <span class="val">Yes</span>, HTTP3/QUIC can still be disabled at the virtual host level through the <span class="tagl"><a href="VHSSL_Help.html#vhEnableQuic">Enable HTTP3/QUIC</a></span> setting.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="clientVerify"><h3>Client Verification<span class="ls-permlink"><a href="#clientVerify"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p> Specifies the type of client certifcate authentication. Available types are: <ul> <li><b>None:</b> No client certificate is required.</li> <li><b>Optional:</b> Client certificate is optional.</li> <li><b>Require:</b> The client must has valid certificate.</li> <li><b>Optional_no_ca:</b> Same as optional.</li> </ul> The default is "None".</p> <h4>Syntax</h4><p>Select from drop down list</p> <h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> "None" or "Require" are recommended.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="verifyDepth"><h3>Verify Depth<span class="ls-permlink"><a href="#verifyDepth"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p> Specifies how deeply a certificate should be verified before determining that the client does not have a valid certificate. The default is "1".</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="crlPath"><h3>Client Revocation Path<span class="ls-permlink"><a href="#crlPath"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p> Specifies the directory containing PEM-encoded CA CRL files for revoked client certificates. The files in this directory have to be PEM-encoded. These files are accessed through hash filenames, hash-value.rN. Please refer to openSSL or Apache mod_ssl documentation regarding creating the hash filename.</p> <h4>Syntax</h4><p>path</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="crlFile"><h3>Client Revocation File<span class="ls-permlink"><a href="#crlFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p> Specifies the file containing PEM-encoded CA CRL files enumerating revoked client certificates. This can be used as an alternative or in addition to <span class="tagl"><a href="#crlPath">Client Revocation Path</a></span>.</p> <h4>Syntax</h4><p>Filename which can be an absolute path or a relative path to $SERVER_ROOT.</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ����������������������������������������������������������������������������������������������������������Module_Context.html���������������������������������������������������������������������������������0000644�����������������00000037124�15027525531�0010377 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Module Handler Context</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Module Handler Context." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 9</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><span class="current"><a href="Module_Context.html">Module Handler Context</a></span></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="App_Server_Context.html">App Server Context</a></div><div class="center"><a href="Context_Help.html">Context</a></div><div class="next"> </div></div> <h1>Module Handler Context</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header><a href="#moduleContext">Module Handler Context</a></header><p> <a href="#expuri">URI</a> | <a href="#moduleNameSel">Module</a> | <a href="#extraHeaders">Header Operations</a> | <a href="#realm">Realm</a> | <a href="#authName">Authentication Name</a> | <a href="#required">Require (Authorized Users/Groups)</a> | <a href="#accessAllowed">Access Allowed</a> | <a href="#accessDenied">Access Denied</a> | <a href="#extAuthorizer">Authorizer</a> | <a href="#addDefaultCharset">Add Default Charset</a> | <a href="#defaultCharsetCustomized">Customized Default Charset</a> | <a href="#enableIpGeo">Enable GeoLocation Lookup</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="moduleContext"><h3>Module Handler Context<span class="ls-permlink"><a href="#moduleContext"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>A module handler context will associate a URI with a registered module. Modules need to be registered at Server Module Configuration tab.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expuri"><h3>URI<span class="ls-permlink"><a href="#expuri"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the URI for this context.</p> <h4>Syntax</h4><p>The URI can be a plain URI (starting with "/") or a Perl compatible regular expression URI (starting with "exp:"). If a plain URI ends with a "/", then this context will include all sub-URIs under this URI. If the context maps to a directory on the file system, a trailing "/" must be added.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#location">Location</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="moduleNameSel"><h3>Module<span class="ls-permlink"><a href="#moduleNameSel"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Name of the module. The module must be registered under the Server Module Configuration tab. Once it is registered, the module name will be available in the drop down box for the Listener and Virtual Host configurations.</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extraHeaders"><h3>Header Operations<span class="ls-permlink"><a href="#extraHeaders"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies additional response/request headers to be added. Multiple header directives can be added with one directive per line. "NONE" can be used to disable parent header inheritance. If no directive is provided 'Header' is assumed.</p> <h4>Syntax</h4><p>[Header]|RequestHeader [condition] set|append|merge|add|unset header [value] [early|env=[!]variable]</p> <h4>Example</h4><div class="ls-example">set Cache-control no-cache<br/> append Cache-control no-store<br/> Header set My-header cust_header_val<br/> RequestHeader set My-req-header cust_req_header_val</div><h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> Syntax and usage are similar to <a href="https://httpd.apache.org/docs/2.2/mod/mod_headers.html#header" target="_blank" rel="noopener noreferrer">Apache's mod_headers directives</a> for supported operations.<br/><br/> <span title="Information" class="ls-icon-info"></span> The 'Header' directive is is optional and can be excluded or left in when copying rules from elsewhere without issue.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="realm"><h3>Realm<span class="ls-permlink"><a href="#realm"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the authorization realm for this context. When specified, a valid username and password must be provided in order to access this context. <span class="tagl"><a href="VHSecurity_Help.html#realms">Authorization Realms</a></span> are set up in the <span class="tagP"><a href="#VHSecurity_Help">Virtual Host Security</a></span> section. This setting uses each realm's <span class="tagl"><a href="VHSecurity_Help.html#realmName">Realm Name</a></span>.</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="authName"><h3>Authentication Name<span class="ls-permlink"><a href="#authName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies an alternative name for the authorization realm for the current context. If not specified, the original realm name will be used. The authentication name is displayed on the browser's login pop-up.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="required"><h3>Require (Authorized Users/Groups)<span class="ls-permlink"><a href="#required"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies which user/group can access this context. This allows you to use one user/group database (specified in <span class="tagl"><a href="#realm">Realm</a></span>) across a number of contexts, but only allow certain users/groups from that database to access this context.</p> <h4>Syntax</h4><p>Syntax is compatible with Apache's Require directive. For example: <ul> <li><span class="val">user username [username ...]</span><br/> Only listed users can access this context.</li> <li> <span class="val">group groupid [groupid ...]</span><br/> Only users belonging to the listed groups can access this context.</li> </ul> If this setting is not specified, all valid users will be allowed to access this resource.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessAllowed"><h3>Access Allowed<span class="ls-permlink"><a href="#accessAllowed"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies which IPs or sub-networks are allowed to access resources under this context. Together with <span class="tagl"><a href="#accessDenied">Access Denied</a></span> and server/virtual host level access control, accessibility is determined by the smallest scope that a client's IP address falls into.</p> <h4>Syntax</h4><p>Comma-delimited list of IPs/sub-networks.</p> <h4>Example</h4><div class="ls-example">Sub-networks can be written as <span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span>, or <span class="val">192.168.1.*</span>.</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessDenied"><h3>Access Denied<span class="ls-permlink"><a href="#accessDenied"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies which IPs or sub-networks are NOT allowed to access resources under this context. Together with <span class="tagl"><a href="#accessAllowed">Access Allowed</a></span> and server/virtual host-level access control, accessibility is determined by the smallest scope that a client's IP address falls into.</p> <h4>Syntax</h4><p>Comma-delimited list of IPs/sub-networks.</p> <h4>Example</h4><div class="ls-example">Sub-networks can be written as <span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span>, or <span class="val">192.168.1.*</span>.</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAuthorizer"><h3>Authorizer<span class="ls-permlink"><a href="#extAuthorizer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies an external application that can be used to generate authorized/unauthorized decisions. Currently, only the FastCGI Authorizer is available. For more details about the FastCGI Authorizer role, please visit <a href=" https://fastcgi-archives.github.io/ " target="_blank" rel="noopener noreferrer"> https://fastcgi-archives.github.io/ </a>.</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="addDefaultCharset"><h3>Add Default Charset<span class="ls-permlink"><a href="#addDefaultCharset"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to add a character set tag to the "Content-Type" response header, when content type is either "text/html" or "text/plain" without any parameters. When set to <span class="val">Off</span>, this function is disabled. When set to <span class="val">On</span>, either the character set specified by <span class="tagl"><a href="#defaultCharsetCustomized">Customized Default Charset</a></span> or the default "iso-8859-1" will be added.</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="defaultCharsetCustomized"><h3>Customized Default Charset<span class="ls-permlink"><a href="#defaultCharsetCustomized"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies a character set to be used when <span class="tagl"><a href="#addDefaultCharset">Add Default Charset</a></span> is <span class="val">On</span>. This is optional. The default value is <span class="val">iso-8859-1</span>. This entry has no effect when <span class="tagl"><a href="#addDefaultCharset">Add Default Charset</a></span> is <span class="val">Off</span>.</p> <h4>Syntax</h4><p>Name of a character set.</p> <h4>Example</h4><div class="ls-example">utf-8</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableIpGeo"><h3>Enable GeoLocation Lookup<span class="ls-permlink"><a href="#enableIpGeo"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p> Specifies whether to enable/disable IP Geolocation lookup. Can be set at server, virtual host, or context level. IP Geolocation is disabled by default when using value "Not Set".</p> <h4>Syntax</h4><p>Select from radio box</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="ServGeneral_Help.html#useIpInProxyHeader">Use Client IP in Header</a></span>, <span class="tagl"><a href="ServGeneral_Help.html#geoipDBFile">DB File Path</a></span>,</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ��������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������webconsole.html�������������������������������������������������������������������������������������0000644�����������������00000012632�15027525531�0007603 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Web Console</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Web Console." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 9</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><span class="current"><a href="webconsole.html">Web Console</a></span> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="config.html">Configuration</a></div><div class="center"><a href="index.html">Home</a></div><div class="next"><a href="CompilePHP_Help.html">Compile PHP</a> »</div></div> <h1>Web Console</h1> <p>The Web Console section controls the settings for the WebAdmin Console. Some of these settings include:</p> <ul> <li>Session Timeout</li> <li>Log Settings</li> <li>Access Control</li> <li>Create/Delete Admin Users</li> <li>Reset Admin Passwords</li> <li>WebAdmin Listeners & SSL Settings</li> </ul></article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ������������������������������������������������������������������������������������������������������Listeners_SSL_Help.html�����������������������������������������������������������������������������0000644�����������������00000056430�15027525531�0011110 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Listeners SSL</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Listeners SSL." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 9</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><span class="current"><a href="Listeners_SSL_Help.html">Listener SSL</a></span></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="Listeners_General_Help.html">Listeners General</a></div><div class="center"><a href="config.html">Configuration</a></div><div class="next"><a href="Templates_Help.html">Virtual Host Templates</a> »</div></div> <h1>Listeners SSL</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header><a href="#sslCert">SSL Private Key & Certificate</a></header><p> <a href="#keyFile">Private Key File</a> | <a href="#certFile">Certificate File</a> | <a href="#certChain">Chained Certificate</a> | <a href="#CACertPath">CA Certificate Path</a> | <a href="#CACertFile">CA Certificate File</a></p></section> <section class="toc-row"><header><a href="#sslProtocolSetting">SSL Protocol</a></header><p> <a href="#ciphers">Ciphers</a> | <a href="#enableECDHE">Enable ECDH Key Exchange</a> | <a href="#enableDHE">Enable DH Key Exchange</a> | <a href="#DHParam">DH Parameter</a></p></section> <section class="toc-row"><header>Security & Features</header><p> <a href="#renegProtection">SSL Renegotiation Protection</a> | <a href="#sslSessionCache">Enable Session Cache</a> | <a href="#sslSessionTickets">Enable Session Tickets</a> | <a href="#enableSpdy">ALPN</a> | <a href="#allowQuic">Open HTTP3/QUIC (UDP) port</a></p></section> <section class="toc-row"><header><a href="#sslOCSP">OCSP Stapling</a></header><p> <a href="#enableStapling">Enable OCSP Stapling</a> | <a href="#ocspRespMaxAge">OCSP Response Max Age (secs)</a> | <a href="#ocspResponder">OCSP Responder</a> | <a href="#ocspCACerts">OCSP CA Certificates</a></p></section> <section class="toc-row"><header>Client Verification</header><p> <a href="#clientVerify">Client Verification</a> | <a href="#verifyDepth">Verify Depth</a> | <a href="#crlPath">Client Revocation Path</a> | <a href="#crlFile">Client Revocation File</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="sslCert"><h3>SSL Private Key & Certificate<span class="ls-permlink"><a href="#sslCert"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Every SSL listener requires a paired SSL private key and SSL certificate. Multiple SSL listeners can share the same key and certificate.<br/><br/> You can generate SSL private keys yourself using an SSL software package, such as OpenSSL. SSL certificates can also be purchased from an authorized certificate issuer like VeriSign or Thawte. You can also sign the certificate yourself. Self-signed certificates will not be trusted by web browsers and should not be used on public websites containing critical data. However, a self-signed certificate is good enough for internal use, e.g. for encrypting traffic to LiteSpeed Web Server's WebAdmin Console.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="keyFile"><h3>Private Key File<span class="ls-permlink"><a href="#keyFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The filename of the SSL private key file. The key file should not be encrypted.</p> <h4>Syntax</h4><p>Filename which can be an absolute path or a relative path to $SERVER_ROOT.</p> <h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> The private key file should be placed in a secured directory that allows read-only access to the user the server runs as.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="certFile"><h3>Certificate File<span class="ls-permlink"><a href="#certFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The filename of the SSL certificate file.</p> <h4>Syntax</h4><p>Filename which can be an absolute path or a relative path to $SERVER_ROOT.</p> <h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> The certificate file should be placed in a secured directory, which allows read-only access to the user that the server runs as.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="certChain"><h3>Chained Certificate<span class="ls-permlink"><a href="#certChain"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether the certificate is a chained certificate or not. The file that stores a certificate chain must be in PEM format, and the certificates must be in the chained order, from the lowest level (the actual client or server certificate) to the highest level (root) CA.</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="CACertPath"><h3>CA Certificate Path<span class="ls-permlink"><a href="#CACertPath"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the directory where the certificates of certification authorities (CAs) are kept. Those certificates are used for client certificate authentication and constructing the server certificate chain, which will be sent to browsers in addition to the server certificate.</p> <h4>Syntax</h4><p>path</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="CACertFile"><h3>CA Certificate File<span class="ls-permlink"><a href="#CACertFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the file that contains all certificates of certification authorities (CAs) for chained certificates. This file is simply the concatenation of PEM-encoded certificate files, in order of preference. This can be used as an alternative or in addition to <span class="tagl"><a href="#CACertPath">CA Certificate Path</a></span>. Those certificates are used for client certificate authentication and constructing the server certificate chain, which will be sent to browsers in addition to the server certificate.</p> <h4>Syntax</h4><p>Filename which can be an absolute path or a relative path to $SERVER_ROOT.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslProtocolSetting"><h3>SSL Protocol<span class="ls-permlink"><a href="#sslProtocolSetting"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Customizes SSL protocols accepted by the listener.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="ciphers"><h3>Ciphers<span class="ls-permlink"><a href="#ciphers"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the cipher suite to be used when negotiating the SSL handshake. LSWS supports cipher suites implemented in SSL v3.0, TLS v1.0, TLS v1.2, and TLS v1.3.</p> <h4>Syntax</h4><p>Colon-separated string of cipher specifications.</p> <h4>Example</h4><div class="ls-example">ECDHE-RSA-AES128-SHA256:RC4:HIGH:!MD5:!aNULL:!EDH</div><h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> We recommend leaving this field blank to use our default cipher which follows SSL cipher best practices.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableECDHE"><h3>Enable ECDH Key Exchange<span class="ls-permlink"><a href="#enableECDHE"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Allows use of Elliptic Curve Diffie-Hellman key exchange for further SSL encryption.</p> <h4>Syntax</h4><p>Select from radio box</p> <h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> ECDH key exchange is more secure than using just an RSA key. ECDH and DH key exchange are equally secure.<br/><br/> <span title="Performance" class="ls-icon-performance"></span> Enabling ECDH key exchange will increase CPU load and is slower than using just an RSA key.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableDHE"><h3>Enable DH Key Exchange<span class="ls-permlink"><a href="#enableDHE"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Allows use of Diffie-Hellman key exchange for further SSL encryption.</p> <h4>Syntax</h4><p>Select from radio box</p> <h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> DH key exchange is more secure than using just an RSA key. ECDH and DH key exchange are equally secure.<br/><br/> <span title="Performance" class="ls-icon-performance"></span> Enabling DH key exchange will increase CPU load and is slower than ECDH key exchange and RSA. ECDH key exchange is preferred when available.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="DHParam"><h3>DH Parameter<span class="ls-permlink"><a href="#DHParam"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the location of the Diffie-Hellman parameter file necessary for DH key exchange.</p> <h4>Syntax</h4><p>Filename which can be an absolute path or a relative path to $SERVER_ROOT.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="renegProtection"><h3>SSL Renegotiation Protection<span class="ls-permlink"><a href="#renegProtection"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to enable SSL Renegotiation Protection to defend against SSL handshake-based attacks. The default value is "Yes".</p> <h4>Syntax</h4><p>Select from radio box</p> <h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> This setting can be enabled at the listener and virtual host levels.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslSessionCache"><h3>Enable Session Cache<span class="ls-permlink"><a href="#sslSessionCache"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Enables session ID caching using OpenSSL's default setting. Server-level setting must be set to "Yes" for Virtual Host setting to take effect.<br/><br/> Default values:<br/> <b>Server-level:</b> Yes<br/> <b>VH-Level:</b> Yes</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslSessionTickets"><h3>Enable Session Tickets<span class="ls-permlink"><a href="#sslSessionTickets"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Enables session tickets using OpenSSL's default session ticket setting. Server-level setting must be set to "Yes" for Virtual Host setting to take effect.<br/><br/> Default values:<br/> <b>Server-level:</b> Yes<br/> <b>VH-Level:</b> Yes</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableSpdy"><h3>ALPN<span class="ls-permlink"><a href="#enableSpdy"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Selectively enable HTTP/3, HTTP/2, and SPDY HTTP network protocols.<br/><br/> If you wish to disable SPDY, HTTP/2, and HTTP3, check "None" and leave all other boxes unchecked.<br/><br/> Default value: All enabled</p> <h4>Syntax</h4><p>Select from checkbox</p> <h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> This setting can be set at the listener and virtual host levels.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="allowQuic"><h3>Open HTTP3/QUIC (UDP) port<span class="ls-permlink"><a href="#allowQuic"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Allows the use of the HTTP3/QUIC network protocol for virtual hosts mapped to this listener. For this setting to take effect, <span class="tagl"><a href="ServTuning_Help.html#quicEnable">Enable HTTP3/QUIC</a></span> must also be set to <span class="val">Yes</span> at the server level. Default value is <span class="val">Yes</span>.</p> <h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> When this setting is set to <span class="val">Yes</span>, HTTP3/QUIC can still be disabled at the virtual host level through the <span class="tagl"><a href="VHSSL_Help.html#vhEnableQuic">Enable HTTP3/QUIC</a></span> setting.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslOCSP"><h3>OCSP Stapling<span class="ls-permlink"><a href="#sslOCSP"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Online Certificate Status Protocol (OCSP) is a more efficient method of checking whether a digital certificate is valid. It works by communicating with another server — the OCSP responder — to get verification that the certificate is valid instead of checking through certificate revocation lists (CRL).<br/><br/> OCSP stapling is a further improvement on this protocol, allowing the server to check with the OCSP responder at regular intervals instead of every time a certificate is requested. See the <a href="http://en.wikipedia.org/wiki/OCSP_Stapling" target="_blank" rel="noopener noreferrer">OCSP Wikipedia page</a> for more details.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableStapling"><h3>Enable OCSP Stapling<span class="ls-permlink"><a href="#enableStapling"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Determines whether to enable OCSP stapling, a more efficient way of verifying public key certificates.</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="ocspRespMaxAge"><h3>OCSP Response Max Age (secs)<span class="ls-permlink"><a href="#ocspRespMaxAge"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>This option sets the maximum allowable age for an OCSP response. If an OCSP response is older than this maximum age, the server will contact the OCSP responder for a new response. The default value is <span class="val">86400</span>. Maximum age can be turned off by setting this value to <span class="val">-1</span>.</p> <h4>Syntax</h4><p>Integer of seconds</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="ocspResponder"><h3>OCSP Responder<span class="ls-permlink"><a href="#ocspResponder"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the URL of the OCSP responder to be used. If not set, the server will attempt to contact the OCSP responder detailed in the certificate authority's issuer certificate. Some issuer certificates may not have an OCSP responder URL specified.</p> <h4>Syntax</h4><p>URL starting with <span class="val">http://</span></p> <h4>Example</h4><div class="ls-example"><span class="val">http://rapidssl-ocsp.geotrust.com </span></div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="ocspCACerts"><h3>OCSP CA Certificates<span class="ls-permlink"><a href="#ocspCACerts"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the location of the file where OCSP certificate authority (CA) certificates are stored. These certificates are used to check responses from the OCSP responder (and make sure those responses are not spoofed or otherwise compromised). This file should contain the whole certificate chain. If this file does not contain the root certificate, LSWS should be able to find the root certificate in your system directory without you adding it to the file, but, if this validation fails, you should try adding your root certificate to this file.<br/><br/> This setting is optional. If this setting is not set, the server will automatically check <span class="tagl"><a href="#CACertFile">CA Certificate File</a></span>.</p> <h4>Syntax</h4><p>Filename which can be an absolute path or a relative path to $SERVER_ROOT.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="clientVerify"><h3>Client Verification<span class="ls-permlink"><a href="#clientVerify"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p> Specifies the type of client certifcate authentication. Available types are: <ul> <li><b>None:</b> No client certificate is required.</li> <li><b>Optional:</b> Client certificate is optional.</li> <li><b>Require:</b> The client must has valid certificate.</li> <li><b>Optional_no_ca:</b> Same as optional.</li> </ul> The default is "None".</p> <h4>Syntax</h4><p>Select from drop down list</p> <h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> "None" or "Require" are recommended.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="verifyDepth"><h3>Verify Depth<span class="ls-permlink"><a href="#verifyDepth"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p> Specifies how deeply a certificate should be verified before determining that the client does not have a valid certificate. The default is "1".</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="crlPath"><h3>Client Revocation Path<span class="ls-permlink"><a href="#crlPath"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p> Specifies the directory containing PEM-encoded CA CRL files for revoked client certificates. The files in this directory have to be PEM-encoded. These files are accessed through hash filenames, hash-value.rN. Please refer to openSSL or Apache mod_ssl documentation regarding creating the hash filename.</p> <h4>Syntax</h4><p>path</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="crlFile"><h3>Client Revocation File<span class="ls-permlink"><a href="#crlFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p> Specifies the file containing PEM-encoded CA CRL files enumerating revoked client certificates. This can be used as an alternative or in addition to <span class="tagl"><a href="#crlPath">Client Revocation Path</a></span>.</p> <h4>Syntax</h4><p>Filename which can be an absolute path or a relative path to $SERVER_ROOT.</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������ExtApp_Help.html������������������������������������������������������������������������������������0000644�����������������00000027374�15027525531�0007625 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - External Apps</title> <meta name="description" content="OpenLiteSpeed Users' Manual - External Apps." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 9</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><span class="current"><a href="ExtApp_Help.html">External Apps</a></span></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="ServSecurity_Help.html">Server Security</a></div><div class="center"><a href="config.html">Configuration</a></div><div class="next"><a href="ScriptHandler_Help.html">Script Handler</a> »</div></div> <h1>External Apps</h1><section class="ls-spacer-small-bottom">LiteSpeed web server can forward requests to external applications to process and generate dynamic content. Since 2.0, LiteSpeed Web Server has supported seven types of external applications: CGI, FastCGI, web server, servlet engine, LiteSpeed SAPI application, load balancer, and piped logger. <ul> <li> CGI stands for Common Gateway Interface. The current standard is CGI/1.1. CGI applications run in standalone processes. A CGI process is started for each request and will exit after finishing the request. </li> <li> FastCGI is a fast, open, and secure web server interface that solves the performance problems inherent in CGI without introducing the overhead and complexity of proprietary APIs (Application Programming Interfaces). For more information, please visit <a href="https://fastcgi-archives.github.io/">https://fastcgi-archives.github.io/</a>. On LiteSpeed Web Server, FastCGI applications can take two roles: generating dynamic responses (a responder role) or authorizing requests (an authorizer role). LiteSpeed Web Server further defines two types of FastCGI applications: local FastCGI and remote FastCGI. Local FastCGI applications are started automatically by the web server on demand. Remote FastCGI applications are not started by the web server. (They can run on a remote machine or on the same machine.) </li> <li> A web server is a server application that supports HTTP 1.0/1.1 protocols. LiteSpeed web server can serve as a transparent reverse proxy to accelerate and protect web servers and application servers. When communicating with backend web servers, LiteSpeed will always try to utilize persistent connections in order to achieve the highest performance. </li> <li> A servlet engine is an application, like Apache Tomcat and Jetty, that implements Java servlets and Java Server Pages. LiteSpeed can communicate with servlet engines through AJPv1.3 (Apache JServ Protocol version 1.3). Servlet engine cannot be started by the web server and can be setup to run on a remote machine. </li> <li> A LiteSpeed SAPI (LiteSpeed Server Application Programming Interface) application is an application that communicates with LiteSpeed Web Server through LSAPI, a fast, scalable server interface specifically designed for LiteSpeed Web Server to achieve maximum efficiency. LSAPI's mechanism of action are similar to FastCGI, but LSAPI applications can be up to 30% faster than comparable FastCGI applications. LSAPI is highly recommended over FastCGI for supported applications. (LSAPI currently supports applications written in PHP, Ruby, and Python.) For more information about LSAPI, please visit <a href="https://www.litespeedtech.com/open-source/litespeed-sapi"> https://www.litespeedtech.com/open-source/litespeed-sapi </a>. </li> <li> A load balancer is a virtual external application, which assigns requests to backend worker applications based on workload. Worker applications can be CGI, FastCGI, web server, servlet engine, or LSAPI applications. Different types of applications can be mixed together under one load balancer. Load balancers and piped loggers cannot be used as worker applications. </li> <li> A piped logger is an application that can process access logs in real-time, writing an access log into database or performing real-time statistics calculations, for example. </li> </ul> Unlike CGI applications, FastCGI applications, LSAPI applications, and servlet engine do not exit after processing a request. The application process will stay/persist and serve as many requests as it can. The socket connection can be reused for multiple requests as well. External applications can be set up in the {PAGE=ExtApp_Help} section. External applications cannot, however, function on their own. Additional settings must be configured so that the web server knows which requests to send to which application. There are two ways to to configure this in LiteSpeed Web Server: <ol> <li> Set the external application as a handler for a specific context.</li> <li> Set the external application as a handler of a script language via file suffix binding.</li> </ol> FastCGI applications, LSAPI applications, web servers, servlet engines, and load balancers have to be defined in the {PAGE=ExtApp_Help} section before you can configure them to handle a context or script suffix. It is not necessary to define CGI applications in the {PAGE=ExtApp_Help} section. External applications can be configured at the server level or at the virtual host level. When configured at the server level, the application can be used by all virtual hosts. When configured at the virtual host level, it can only be used by that virtual host.</section> <h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header>New External App</header><p> <a href="#extAppType">Type</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="extAppType"><h3>Type<span class="ls-permlink"><a href="#extAppType"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the type of external application. Application types are differentiated by the service they provide or the protocol they use to communicate with the server. Choose from <ul> <li><span class="val">FastCGI</span>: a FastCGI application with a <span class="val">Responder</span> role.</li> <li><span class="val">FastCGI Authorizer</span>: a FastCGI application with an <span class="val">Authorizer</span> role</li> <li><span class="val">Servlet Engine</span>: a servlet engine with an AJPv13 connector, such as Tomcat.</li> <li><span class="val">Web Server</span>: a web server or application server that supports HTTP protocol.</li> <li><span class="val">LiteSpeed SAPI App</span>: an application that communicates with the web server using LSAPI protocol.</li> <li><span class="val">Load Balancer</span>: a virtual application that can balance load among worker applications.</li> <li><span class="val">Piped Logger</span>: an application that can process access log entries received on its STDIN stream.</li> </ul></p> <h4>Syntax</h4><p>Select from drop down list</p> <h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> Most applications will use either LSAPI or FastCGI protocol. LSAPI supports PHP, Ruby, and Python. Perl can be used with FastCGI. (PHP, Ruby, and Python can also be set up to run using FastCGI, but they run faster using LSAPI.) Java uses servlet engines.</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ��������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������license.html����������������������������������������������������������������������������������������0000644�����������������00000120244�15027525531�0007064 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - License</title> <meta name="description" content="OpenLiteSpeed Users' Manual - License." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 9</h3> <hr/> <div> <ul> <li><span class="current"><a href="license.html">License</a></span></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev"> </div><div class="center"><a href="index.html">Home</a></div><div class="next"><a href="intro.html">Introduction</a> »</div></div> <section class="ls-eula"> <h1>GNU GENERAL PUBLIC LICENSE v3</h1> <h3>GNU GENERAL PUBLIC LICENSE<br /> Version 3, 29 June 2007</h3> <p>Copyright (C) 2007 Free Software Foundation, Inc. <http://fsf.org/> Everyone is permitted to copy and distribute verbatim copies of this license document, but changing it is not allowed. </p> <h4>Preamble</h4> <p>The GNU General Public License is a free, copyleft license for software and other kinds of works. </p> <p>The licenses for most software and other practical works are designed to take away your freedom to share and change the works. By contrast, the GNU General Public License is intended to guarantee your freedom to share and change all versions of a program--to make sure it remains free software for all its users. We, the Free Software Foundation, use the GNU General Public License for most of our software; it applies also to any other work released this way by its authors. You can apply it to your programs, too. </p> <p>When we speak of free software, we are referring to freedom, not price. Our General Public Licenses are designed to make sure that you have the freedom to distribute copies of free software (and charge for them if you wish), that you receive source code or can get it if you want it, that you can change the software or use pieces of it in new free programs, and that you know you can do these things. </p> <p>To protect your rights, we need to prevent others from denying you these rights or asking you to surrender the rights. Therefore, you have certain responsibilities if you distribute copies of the software, or if you modify it: responsibilities to respect the freedom of others. </p> <p>For example, if you distribute copies of such a program, whether gratis or for a fee, you must pass on to the recipients the same freedoms that you received. You must make sure that they, too, receive or can get the source code. And you must show them these terms so they know their rights. </p> <p>Developers that use the GNU GPL protect your rights with two steps: (1) assert copyright on the software, and (2) offer you this License giving you legal permission to copy, distribute and/or modify it. </p> <p>For the developers' and authors' protection, the GPL clearly explains that there is no warranty for this free software. For both users' and authors' sake, the GPL requires that modified versions be marked as changed, so that their problems will not be attributed erroneously to authors of previous versions. </p> <p>Some devices are designed to deny users access to install or run modified versions of the software inside them, although the manufacturer can do so. This is fundamentally incompatible with the aim of protecting users' freedom to change the software. The systematic pattern of such abuse occurs in the area of products for individuals to use, which is precisely where it is most unacceptable. Therefore, we have designed this version of the GPL to prohibit the practice for those products. If such problems arise substantially in other domains, we stand ready to extend this provision to those domains in future versions of the GPL, as needed to protect the freedom of users. </p> <p>Finally, every program is threatened constantly by software patents. States should not allow patents to restrict development and use of software on general-purpose computers, but in those that do, we wish to avoid the special danger that patents applied to a free program could make it effectively proprietary. To prevent this, the GPL assures that patents cannot be used to render the program non-free. </p> <p>The precise terms and conditions for copying, distribution and modification follow. </p> <h3>TERMS AND CONDITIONS</h3> <h4>0. Definitions.<h/4> <p>"This License" refers to version 3 of the GNU General Public License. </p> <p>"Copyright" also means copyright-like laws that apply to other kinds of works, such as semiconductor masks. </p> <p>"The Program" refers to any copyrightable work licensed under this License. Each licensee is addressed as "you". "Licensees" and "recipients" may be individuals or organizations. </p> <p>To "modify" a work means to copy from or adapt all or part of the work in a fashion requiring copyright permission, other than the making of an exact copy. The resulting work is called a "modified version" of the earlier work or a work "based on" the earlier work. </p> <p>A "covered work" means either the unmodified Program or a work based on the Program. </p> <p>To "propagate" a work means to do anything with it that, without permission, would make you directly or secondarily liable for infringement under applicable copyright law, except executing it on a computer or modifying a private copy. Propagation includes copying, distribution (with or without modification), making available to the public, and in some countries other activities as well. </p> <p>To "convey" a work means any kind of propagation that enables other parties to make or receive copies. Mere interaction with a user through a computer network, with no transfer of a copy, is not conveying. </p> <p>An interactive user interface displays "Appropriate Legal Notices" to the extent that it includes a convenient and prominently visible feature that (1) displays an appropriate copyright notice, and (2) tells the user that there is no warranty for the work (except to the extent that warranties are provided), that licensees may convey the work under this License, and how to view a copy of this License. If the interface presents a list of user commands or options, such as a menu, a prominent item in the list meets this criterion. </p> <h4>1. Source Code.</h4> <p>The "source code" for a work means the preferred form of the work for making modifications to it. "Object code" means any non-source form of a work. </p> <p>A "Standard Interface" means an interface that either is an official standard defined by a recognized standards body, or, in the case of interfaces specified for a particular programming language, one that is widely used among developers working in that language. </p> <p>The "System Libraries" of an executable work include anything, other than the work as a whole, that (a) is included in the normal form of packaging a Major Component, but which is not part of that Major Component, and (b) serves only to enable use of the work with that Major Component, or to implement a Standard Interface for which an implementation is available to the public in source code form. A "Major Component", in this context, means a major essential component (kernel, window system, and so on) of the specific operating system (if any) on which the executable work runs, or a compiler used to produce the work, or an object code interpreter used to run it. </p> <p>The "Corresponding Source" for a work in object code form means all the source code needed to generate, install, and (for an executable work) run the object code and to modify the work, including scripts to control those activities. However, it does not include the work's System Libraries, or general-purpose tools or generally available free programs which are used unmodified in performing those activities but which are not part of the work. For example, Corresponding Source includes interface definition files associated with source files for the work, and the source code for shared libraries and dynamically linked subprograms that the work is specifically designed to require, such as by intimate data communication or control flow between those subprograms and other parts of the work. </p> <p>The Corresponding Source need not include anything that users can regenerate automatically from other parts of the Corresponding Source. </p> <p>The Corresponding Source for a work in source code form is that same work. </p> <h4>2. Basic Permissions.</h4> <p>All rights granted under this License are granted for the term of copyright on the Program, and are irrevocable provided the stated conditions are met. This License explicitly affirms your unlimited permission to run the unmodified Program. The output from running a covered work is covered by this License only if the output, given its content, constitutes a covered work. This License acknowledges your rights of fair use or other equivalent, as provided by copyright law. </p> <p>You may make, run and propagate covered works that you do not convey, without conditions so long as your license otherwise remains in force. You may convey covered works to others for the sole purpose of having them make modifications exclusively for you, or provide you with facilities for running those works, provided that you comply with the terms of this License in conveying all material for which you do not control copyright. Those thus making or running the covered works for you must do so exclusively on your behalf, under your direction and control, on terms that prohibit them from making any copies of your copyrighted material outside their relationship with you. </p> <p>Conveying under any other circumstances is permitted solely under the conditions stated below. Sublicensing is not allowed; section 10 makes it unnecessary. </p> <h4>3. Protecting Users' Legal Rights From Anti-Circumvention Law.</h4> <p>No covered work shall be deemed part of an effective technological measure under any applicable law fulfilling obligations under article 11 of the WIPO copyright treaty adopted on 20 December 1996, or similar laws prohibiting or restricting circumvention of such measures. </p> <p>When you convey a covered work, you waive any legal power to forbid circumvention of technological measures to the extent such circumvention is effected by exercising rights under this License with respect to the covered work, and you disclaim any intention to limit operation or modification of the work as a means of enforcing, against the work's users, your or third parties' legal rights to forbid circumvention of technological measures. </p> <h4>4. Conveying Verbatim Copies.</h4> <p>You may convey verbatim copies of the Program's source code as you receive it, in any medium, provided that you conspicuously and appropriately publish on each copy an appropriate copyright notice; keep intact all notices stating that this License and any non-permissive terms added in accord with section 7 apply to the code; keep intact all notices of the absence of any warranty; and give all recipients a copy of this License along with the Program. </p> <p>You may charge any price or no price for each copy that you convey, and you may offer support or warranty protection for a fee. </p> <h4>5. Conveying Modified Source Versions.</h4> <p>You may convey a work based on the Program, or the modifications to produce it from the Program, in the form of source code under the terms of section 4, provided that you also meet all of these conditions: </p> <ul> <li> a) The work must carry prominent notices stating that you modified it, and giving a relevant date. </li> <li> b) The work must carry prominent notices stating that it is released under this License and any conditions added under section 7. This requirement modifies the requirement in section 4 to "keep intact all notices". </li> <li> c) You must license the entire work, as a whole, under this License to anyone who comes into possession of a copy. This License will therefore apply, along with any applicable section 7 additional terms, to the whole of the work, and all its parts, regardless of how they are packaged. This License gives no permission to license the work in any other way, but it does not invalidate such permission if you have separately received it. </li> <li> d) If the work has interactive user interfaces, each must display Appropriate Legal Notices; however, if the Program has interactive interfaces that do not display Appropriate Legal Notices, your work need not make them do so. </li> </ul> <p>A compilation of a covered work with other separate and independent works, which are not by their nature extensions of the covered work, and which are not combined with it such as to form a larger program, in or on a volume of a storage or distribution medium, is called an "aggregate" if the compilation and its resulting copyright are not used to limit the access or legal rights of the compilation's users beyond what the individual works permit. Inclusion of a covered work in an aggregate does not cause this License to apply to the other parts of the aggregate. </p> <h4>6. Conveying Non-Source Forms.</h4> <p>You may convey a covered work in object code form under the terms of sections 4 and 5, provided that you also convey the machine-readable Corresponding Source under the terms of this License, in one of these ways: </p> <ul> <li> a) Convey the object code in, or embodied in, a physical product (including a physical distribution medium), accompanied by the Corresponding Source fixed on a durable physical medium customarily used for software interchange. </li> <li> b) Convey the object code in, or embodied in, a physical product (including a physical distribution medium), accompanied by a written offer, valid for at least three years and valid for as long as you offer spare parts or customer support for that product model, to give anyone who possesses the object code either (1) a copy of the Corresponding Source for all the software in the product that is covered by this License, on a durable physical medium customarily used for software interchange, for a price no more than your reasonable cost of physically performing this conveying of source, or (2) access to copy the Corresponding Source from a network server at no charge. </li> <li> c) Convey individual copies of the object code with a copy of the written offer to provide the Corresponding Source. This alternative is allowed only occasionally and noncommercially, and only if you received the object code with such an offer, in accord with subsection 6b. </li> <li> d) Convey the object code by offering access from a designated place (gratis or for a charge), and offer equivalent access to the Corresponding Source in the same way through the same place at no further charge. You need not require recipients to copy the Corresponding Source along with the object code. If the place to copy the object code is a network server, the Corresponding Source may be on a different server (operated by you or a third party) that supports equivalent copying facilities, provided you maintain clear directions next to the object code saying where to find the Corresponding Source. Regardless of what server hosts the Corresponding Source, you remain obligated to ensure that it is available for as long as needed to satisfy these requirements. </li> <li> e) Convey the object code using peer-to-peer transmission, provided you inform other peers where the object code and Corresponding Source of the work are being offered to the general public at no charge under subsection 6d. </li> </ul> <p>A separable portion of the object code, whose source code is excluded from the Corresponding Source as a System Library, need not be included in conveying the object code work. </p> <p>A "User Product" is either (1) a "consumer product", which means any tangible personal property which is normally used for personal, family, or household purposes, or (2) anything designed or sold for incorporation into a dwelling. In determining whether a product is a consumer product, doubtful cases shall be resolved in favor of coverage. For a particular product received by a particular user, "normally used" refers to a typical or common use of that class of product, regardless of the status of the particular user or of the way in which the particular user actually uses, or expects or is expected to use, the product. A product is a consumer product regardless of whether the product has substantial commercial, industrial or non-consumer uses, unless such uses represent the only significant mode of use of the product. </p> <p>"Installation Information" for a User Product means any methods, procedures, authorization keys, or other information required to install and execute modified versions of a covered work in that User Product from a modified version of its Corresponding Source. The information must suffice to ensure that the continued functioning of the modified object code is in no case prevented or interfered with solely because modification has been made. </p> <p>If you convey an object code work under this section in, or with, or specifically for use in, a User Product, and the conveying occurs as part of a transaction in which the right of possession and use of the User Product is transferred to the recipient in perpetuity or for a fixed term (regardless of how the transaction is characterized), the Corresponding Source conveyed under this section must be accompanied by the Installation Information. But this requirement does not apply if neither you nor any third party retains the ability to install modified object code on the User Product (for example, the work has been installed in ROM). </p> <p>The requirement to provide Installation Information does not include a requirement to continue to provide support service, warranty, or updates for a work that has been modified or installed by the recipient, or for the User Product in which it has been modified or installed. Access to a network may be denied when the modification itself materially and adversely affects the operation of the network or violates the rules and protocols for communication across the network. </p> <p>Corresponding Source conveyed, and Installation Information provided, in accord with this section must be in a format that is publicly documented (and with an implementation available to the public in source code form), and must require no special password or key for unpacking, reading or copying. </p> <h4>7. Additional Terms.</h4> <p>"Additional permissions" are terms that supplement the terms of this License by making exceptions from one or more of its conditions. Additional permissions that are applicable to the entire Program shall be treated as though they were included in this License, to the extent that they are valid under applicable law. If additional permissions apply only to part of the Program, that part may be used separately under those permissions, but the entire Program remains governed by this License without regard to the additional permissions. </p> <p>When you convey a copy of a covered work, you may at your option remove any additional permissions from that copy, or from any part of it. (Additional permissions may be written to require their own removal in certain cases when you modify the work.) You may place additional permissions on material, added by you to a covered work, for which you have or can give appropriate copyright permission. </p> <p>Notwithstanding any other provision of this License, for material you add to a covered work, you may (if authorized by the copyright holders of that material) supplement the terms of this License with terms: </p> <ul> <li> a) Disclaiming warranty or limiting liability differently from the terms of sections 15 and 16 of this License; or </li> <li> b) Requiring preservation of specified reasonable legal notices or author attributions in that material or in the Appropriate Legal Notices displayed by works containing it; or </li> <li> c) Prohibiting misrepresentation of the origin of that material, or requiring that modified versions of such material be marked in reasonable ways as different from the original version; or </li> <li> d) Limiting the use for publicity purposes of names of licensors or authors of the material; or </li> <li> e) Declining to grant rights under trademark law for use of some trade names, trademarks, or service marks; or </li> <li> f) Requiring indemnification of licensors and authors of that material by anyone who conveys the material (or modified versions of it) with contractual assumptions of liability to the recipient, for any liability that these contractual assumptions directly impose on those licensors and authors. </li> </ul> <p>All other non-permissive additional terms are considered "further restrictions" within the meaning of section 10. If the Program as you received it, or any part of it, contains a notice stating that it is governed by this License along with a term that is a further restriction, you may remove that term. If a license document contains a further restriction but permits relicensing or conveying under this License, you may add to a covered work material governed by the terms of that license document, provided that the further restriction does not survive such relicensing or conveying. </p> <p>If you add terms to a covered work in accord with this section, you must place, in the relevant source files, a statement of the additional terms that apply to those files, or a notice indicating where to find the applicable terms. </p> <p>Additional terms, permissive or non-permissive, may be stated in the form of a separately written license, or stated as exceptions; the above requirements apply either way. </p> <h4>8. Termination.</h4> <p>You may not propagate or modify a covered work except as expressly provided under this License. Any attempt otherwise to propagate or modify it is void, and will automatically terminate your rights under this License (including any patent licenses granted under the third paragraph of section 11). </p> <p>However, if you cease all violation of this License, then your license from a particular copyright holder is reinstated (a) provisionally, unless and until the copyright holder explicitly and finally terminates your license, and (b) permanently, if the copyright holder fails to notify you of the violation by some reasonable means prior to 60 days after the cessation. </p> <p>Moreover, your license from a particular copyright holder is reinstated permanently if the copyright holder notifies you of the violation by some reasonable means, this is the first time you have received notice of violation of this License (for any work) from that copyright holder, and you cure the violation prior to 30 days after your receipt of the notice. </p> <p>Termination of your rights under this section does not terminate the licenses of parties who have received copies or rights from you under this License. If your rights have been terminated and not permanently reinstated, you do not qualify to receive new licenses for the same material under section 10. </p> <h4>9. Acceptance Not Required for Having Copies.</h4> <p>You are not required to accept this License in order to receive or run a copy of the Program. Ancillary propagation of a covered work occurring solely as a consequence of using peer-to-peer transmission to receive a copy likewise does not require acceptance. However, nothing other than this License grants you permission to propagate or modify any covered work. These actions infringe copyright if you do not accept this License. Therefore, by modifying or propagating a covered work, you indicate your acceptance of this License to do so. </p> <h4>10. Automatic Licensing of Downstream Recipients.</h4> <p>Each time you convey a covered work, the recipient automatically receives a license from the original licensors, to run, modify and propagate that work, subject to this License. You are not responsible for enforcing compliance by third parties with this License. </p> <p>An "entity transaction" is a transaction transferring control of an organization, or substantially all assets of one, or subdividing an organization, or merging organizations. If propagation of a covered work results from an entity transaction, each party to that transaction who receives a copy of the work also receives whatever licenses to the work the party's predecessor in interest had or could give under the previous paragraph, plus a right to possession of the Corresponding Source of the work from the predecessor in interest, if the predecessor has it or can get it with reasonable efforts. </p> <p>You may not impose any further restrictions on the exercise of the rights granted or affirmed under this License. For example, you may not impose a license fee, royalty, or other charge for exercise of rights granted under this License, and you may not initiate litigation (including a cross-claim or counterclaim in a lawsuit) alleging that any patent claim is infringed by making, using, selling, offering for sale, or importing the Program or any portion of it. </p> <h4>11. Patents.</h4> <p>A "contributor" is a copyright holder who authorizes use under this License of the Program or a work on which the Program is based. The work thus licensed is called the contributor's "contributor version". </p> <p>A contributor's "essential patent claims" are all patent claims owned or controlled by the contributor, whether already acquired or hereafter acquired, that would be infringed by some manner, permitted by this License, of making, using, or selling its contributor version, but do not include claims that would be infringed only as a consequence of further modification of the contributor version. For purposes of this definition, "control" includes the right to grant patent sublicenses in a manner consistent with the requirements of this License. </p> <p>Each contributor grants you a non-exclusive, worldwide, royalty-free patent license under the contributor's essential patent claims, to make, use, sell, offer for sale, import and otherwise run, modify and propagate the contents of its contributor version. </p> <p>In the following three paragraphs, a "patent license" is any express agreement or commitment, however denominated, not to enforce a patent (such as an express permission to practice a patent or covenant not to sue for patent infringement). To "grant" such a patent license to a party means to make such an agreement or commitment not to enforce a patent against the party. </p> <p>If you convey a covered work, knowingly relying on a patent license, and the Corresponding Source of the work is not available for anyone to copy, free of charge and under the terms of this License, through a publicly available network server or other readily accessible means, then you must either (1) cause the Corresponding Source to be so available, or (2) arrange to deprive yourself of the benefit of the patent license for this particular work, or (3) arrange, in a manner consistent with the requirements of this License, to extend the patent license to downstream recipients. "Knowingly relying" means you have actual knowledge that, but for the patent license, your conveying the covered work in a country, or your recipient's use of the covered work in a country, would infringe one or more identifiable patents in that country that you have reason to believe are valid. </p> <p>If, pursuant to or in connection with a single transaction or arrangement, you convey, or propagate by procuring conveyance of, a covered work, and grant a patent license to some of the parties receiving the covered work authorizing them to use, propagate, modify or convey a specific copy of the covered work, then the patent license you grant is automatically extended to all recipients of the covered work and works based on it. </p> <p>A patent license is "discriminatory" if it does not include within the scope of its coverage, prohibits the exercise of, or is conditioned on the non-exercise of one or more of the rights that are specifically granted under this License. You may not convey a covered work if you are a party to an arrangement with a third party that is in the business of distributing software, under which you make payment to the third party based on the extent of your activity of conveying the work, and under which the third party grants, to any of the parties who would receive the covered work from you, a discriminatory patent license (a) in connection with copies of the covered work conveyed by you (or copies made from those copies), or (b) primarily for and in connection with specific products or compilations that contain the covered work, unless you entered into that arrangement, or that patent license was granted, prior to 28 March 2007. </p> <p>Nothing in this License shall be construed as excluding or limiting any implied license or other defenses to infringement that may otherwise be available to you under applicable patent law. </p> <h4>12. No Surrender of Others' Freedom.</h4> <p>If conditions are imposed on you (whether by court order, agreement or otherwise) that contradict the conditions of this License, they do not excuse you from the conditions of this License. If you cannot convey a covered work so as to satisfy simultaneously your obligations under this License and any other pertinent obligations, then as a consequence you may not convey it at all. For example, if you agree to terms that obligate you to collect a royalty for further conveying from those to whom you convey the Program, the only way you could satisfy both those terms and this License would be to refrain entirely from conveying the Program. </p> <h4>13. Use with the GNU Affero General Public License.</h4> <p>Notwithstanding any other provision of this License, you have permission to link or combine any covered work with a work licensed under version 3 of the GNU Affero General Public License into a single combined work, and to convey the resulting work. The terms of this License will continue to apply to the part which is the covered work, but the special requirements of the GNU Affero General Public License, section 13, concerning interaction through a network will apply to the combination as such. </p> <h4>14. Revised Versions of this License.</h4> <p>The Free Software Foundation may publish revised and/or new versions of the GNU General Public License from time to time. Such new versions will be similar in spirit to the present version, but may differ in detail to address new problems or concerns. </p> <p>Each version is given a distinguishing version number. If the Program specifies that a certain numbered version of the GNU General Public License "or any later version" applies to it, you have the option of following the terms and conditions either of that numbered version or of any later version published by the Free Software Foundation. If the Program does not specify a version number of the GNU General Public License, you may choose any version ever published by the Free Software Foundation. </p> <p>If the Program specifies that a proxy can decide which future versions of the GNU General Public License can be used, that proxy's public statement of acceptance of a version permanently authorizes you to choose that version for the Program. </p> <p>Later license versions may give you additional or different permissions. However, no additional obligations are imposed on any author or copyright holder as a result of your choosing to follow a later version. </p> <h4>15. Disclaimer of Warranty.</h4> <p>THERE IS NO WARRANTY FOR THE PROGRAM, TO THE EXTENT PERMITTED BY APPLICABLE LAW. EXCEPT WHEN OTHERWISE STATED IN WRITING THE COPYRIGHT HOLDERS AND/OR OTHER PARTIES PROVIDE THE PROGRAM "AS IS" WITHOUT WARRANTY OF ANY KIND, EITHER EXPRESSED OR IMPLIED, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. THE ENTIRE RISK AS TO THE QUALITY AND PERFORMANCE OF THE PROGRAM IS WITH YOU. SHOULD THE PROGRAM PROVE DEFECTIVE, YOU ASSUME THE COST OF ALL NECESSARY SERVICING, REPAIR OR CORRECTION. </p> <h4>16. Limitation of Liability.</h4> <p>IN NO EVENT UNLESS REQUIRED BY APPLICABLE LAW OR AGREED TO IN WRITING WILL ANY COPYRIGHT HOLDER, OR ANY OTHER PARTY WHO MODIFIES AND/OR CONVEYS THE PROGRAM AS PERMITTED ABOVE, BE LIABLE TO YOU FOR DAMAGES, INCLUDING ANY GENERAL, SPECIAL, INCIDENTAL OR CONSEQUENTIAL DAMAGES ARISING OUT OF THE USE OR INABILITY TO USE THE PROGRAM (INCLUDING BUT NOT LIMITED TO LOSS OF DATA OR DATA BEING RENDERED INACCURATE OR LOSSES SUSTAINED BY YOU OR THIRD PARTIES OR A FAILURE OF THE PROGRAM TO OPERATE WITH ANY OTHER PROGRAMS), EVEN IF SUCH HOLDER OR OTHER PARTY HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. </p> <h4>17. Interpretation of Sections 15 and 16.</h4> <p>If the disclaimer of warranty and limitation of liability provided above cannot be given local legal effect according to their terms, reviewing courts shall apply local law that most closely approximates an absolute waiver of all civil liability in connection with the Program, unless a warranty or assumption of liability accompanies a copy of the Program in return for a fee. </p> <h3>END OF TERMS AND CONDITIONS</h3> <h4>How to Apply These Terms to Your New Programs</h4> <p>If you develop a new program, and you want it to be of the greatest possible use to the public, the best way to achieve this is to make it free software which everyone can redistribute and change under these terms. </p> <p>To do so, attach the following notices to the program. It is safest to attach them to the start of each source file to most effectively state the exclusion of warranty; and each file should have at least the "copyright" line and a pointer to where the full notice is found. </p> <ul> <one line to give the program's name and a brief idea of what it does.> <li>Copyright (C) <year> <name of author> </li> <li> This program is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation, either version 3 of the License, or (at your option) any later version. </li> <li> This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. </li> <li> You should have received a copy of the GNU General Public License along with this program. If not, see <http://www.gnu.org/licenses/>. </li> </ul> <p>Also add information on how to contact you by electronic and paper mail. </p> <p>If the program does terminal interaction, make it output a short notice like this when it starts in an interactive mode: </p> <ul> <li> <program> Copyright (C) <year> <name of author> </li> <li> This program comes with ABSOLUTELY NO WARRANTY; for details type `show w'. </li> <li> This is free software, and you are welcome to redistribute it under certain conditions; type `show c' for details. </li> </ul> <p>The hypothetical commands `show w' and `show c' should show the appropriate parts of the General Public License. Of course, your program's commands might be different; for a GUI interface, you would use an "about box". </p> <p>You should also get your employer (if you work as a programmer) or school, if any, to sign a "copyright disclaimer" for the program, if necessary. For more information on this, and how to apply and follow the GNU GPL, see <http://www.gnu.org/licenses/>. </p> <p>The GNU General Public License does not permit incorporating your program into proprietary programs. If your program is a subroutine library, you may consider it more useful to permit linking proprietary applications with the library. If this is what you want to do, use the GNU Lesser General Public License instead of this License. But first, please read <http://www.gnu.org/philosophy/why-not-lgpl.html>. </p> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������Servlet_Context.html��������������������������������������������������������������������������������0000644�����������������00000037660�15027525531�0010603 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Servlet Context</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Servlet Context." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 9</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><span class="current"><a href="Servlet_Context.html">Servlet Context</a></span></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="Java_Web_App_Context.html">Java Web App Context</a></div><div class="center"><a href="Context_Help.html">Context</a></div><div class="next"><a href="FCGI_Context.html">Fast CGI Context</a> »</div></div> <h1>Servlet Context</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header><a href="#servletContext">Servlet Context</a></header><p> <a href="#expuri">URI</a> | <a href="#servletEngine">Servlet Engine</a> | <a href="#extraHeaders">Header Operations</a> | <a href="#realm">Realm</a> | <a href="#authName">Authentication Name</a> | <a href="#required">Require (Authorized Users/Groups)</a> | <a href="#accessAllowed">Access Allowed</a> | <a href="#accessDenied">Access Denied</a> | <a href="#extAuthorizer">Authorizer</a> | <a href="#addDefaultCharset">Add Default Charset</a> | <a href="#defaultCharsetCustomized">Customized Default Charset</a> | <a href="#enableIpGeo">Enable GeoLocation Lookup</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="servletContext"><h3>Servlet Context<span class="ls-permlink"><a href="#servletContext"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Servlets can be imported individually through Servlet Contexts. A Servlet Context just specifies the URI for the servlet and the name of the servlet engine. You only need to use this when you do not want to import the whole web application or you want to protect different servlets with different authorization realms. This URI has the same requirements as for a <span class="tagl"><a href="#javaWebAppContext">Java Web App Context</a></span>.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expuri"><h3>URI<span class="ls-permlink"><a href="#expuri"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the URI for this context.</p> <h4>Syntax</h4><p>The URI can be a plain URI (starting with "/") or a Perl compatible regular expression URI (starting with "exp:"). If a plain URI ends with a "/", then this context will include all sub-URIs under this URI. If the context maps to a directory on the file system, a trailing "/" must be added.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#location">Location</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="servletEngine"><h3>Servlet Engine<span class="ls-permlink"><a href="#servletEngine"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the name of the servlet engine that serves this web application. Servlet engines must be defined in the <span class="tagP"><a href="#ExtApp_Help">External Apps</a></span> section at the server or virtual host level.</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extraHeaders"><h3>Header Operations<span class="ls-permlink"><a href="#extraHeaders"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies additional response/request headers to be added. Multiple header directives can be added with one directive per line. "NONE" can be used to disable parent header inheritance. If no directive is provided 'Header' is assumed.</p> <h4>Syntax</h4><p>[Header]|RequestHeader [condition] set|append|merge|add|unset header [value] [early|env=[!]variable]</p> <h4>Example</h4><div class="ls-example">set Cache-control no-cache<br/> append Cache-control no-store<br/> Header set My-header cust_header_val<br/> RequestHeader set My-req-header cust_req_header_val</div><h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> Syntax and usage are similar to <a href="https://httpd.apache.org/docs/2.2/mod/mod_headers.html#header" target="_blank" rel="noopener noreferrer">Apache's mod_headers directives</a> for supported operations.<br/><br/> <span title="Information" class="ls-icon-info"></span> The 'Header' directive is is optional and can be excluded or left in when copying rules from elsewhere without issue.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="realm"><h3>Realm<span class="ls-permlink"><a href="#realm"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the authorization realm for this context. When specified, a valid username and password must be provided in order to access this context. <span class="tagl"><a href="VHSecurity_Help.html#realms">Authorization Realms</a></span> are set up in the <span class="tagP"><a href="#VHSecurity_Help">Virtual Host Security</a></span> section. This setting uses each realm's <span class="tagl"><a href="VHSecurity_Help.html#realmName">Realm Name</a></span>.</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="authName"><h3>Authentication Name<span class="ls-permlink"><a href="#authName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies an alternative name for the authorization realm for the current context. If not specified, the original realm name will be used. The authentication name is displayed on the browser's login pop-up.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="required"><h3>Require (Authorized Users/Groups)<span class="ls-permlink"><a href="#required"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies which user/group can access this context. This allows you to use one user/group database (specified in <span class="tagl"><a href="#realm">Realm</a></span>) across a number of contexts, but only allow certain users/groups from that database to access this context.</p> <h4>Syntax</h4><p>Syntax is compatible with Apache's Require directive. For example: <ul> <li><span class="val">user username [username ...]</span><br/> Only listed users can access this context.</li> <li> <span class="val">group groupid [groupid ...]</span><br/> Only users belonging to the listed groups can access this context.</li> </ul> If this setting is not specified, all valid users will be allowed to access this resource.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessAllowed"><h3>Access Allowed<span class="ls-permlink"><a href="#accessAllowed"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies which IPs or sub-networks are allowed to access resources under this context. Together with <span class="tagl"><a href="#accessDenied">Access Denied</a></span> and server/virtual host level access control, accessibility is determined by the smallest scope that a client's IP address falls into.</p> <h4>Syntax</h4><p>Comma-delimited list of IPs/sub-networks.</p> <h4>Example</h4><div class="ls-example">Sub-networks can be written as <span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span>, or <span class="val">192.168.1.*</span>.</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessDenied"><h3>Access Denied<span class="ls-permlink"><a href="#accessDenied"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies which IPs or sub-networks are NOT allowed to access resources under this context. Together with <span class="tagl"><a href="#accessAllowed">Access Allowed</a></span> and server/virtual host-level access control, accessibility is determined by the smallest scope that a client's IP address falls into.</p> <h4>Syntax</h4><p>Comma-delimited list of IPs/sub-networks.</p> <h4>Example</h4><div class="ls-example">Sub-networks can be written as <span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span>, or <span class="val">192.168.1.*</span>.</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAuthorizer"><h3>Authorizer<span class="ls-permlink"><a href="#extAuthorizer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies an external application that can be used to generate authorized/unauthorized decisions. Currently, only the FastCGI Authorizer is available. For more details about the FastCGI Authorizer role, please visit <a href=" https://fastcgi-archives.github.io/ " target="_blank" rel="noopener noreferrer"> https://fastcgi-archives.github.io/ </a>.</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="addDefaultCharset"><h3>Add Default Charset<span class="ls-permlink"><a href="#addDefaultCharset"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to add a character set tag to the "Content-Type" response header, when content type is either "text/html" or "text/plain" without any parameters. When set to <span class="val">Off</span>, this function is disabled. When set to <span class="val">On</span>, either the character set specified by <span class="tagl"><a href="#defaultCharsetCustomized">Customized Default Charset</a></span> or the default "iso-8859-1" will be added.</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="defaultCharsetCustomized"><h3>Customized Default Charset<span class="ls-permlink"><a href="#defaultCharsetCustomized"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies a character set to be used when <span class="tagl"><a href="#addDefaultCharset">Add Default Charset</a></span> is <span class="val">On</span>. This is optional. The default value is <span class="val">iso-8859-1</span>. This entry has no effect when <span class="tagl"><a href="#addDefaultCharset">Add Default Charset</a></span> is <span class="val">Off</span>.</p> <h4>Syntax</h4><p>Name of a character set.</p> <h4>Example</h4><div class="ls-example">utf-8</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableIpGeo"><h3>Enable GeoLocation Lookup<span class="ls-permlink"><a href="#enableIpGeo"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p> Specifies whether to enable/disable IP Geolocation lookup. Can be set at server, virtual host, or context level. IP Geolocation is disabled by default when using value "Not Set".</p> <h4>Syntax</h4><p>Select from radio box</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="ServGeneral_Help.html#useIpInProxyHeader">Use Client IP in Header</a></span>, <span class="tagl"><a href="ServGeneral_Help.html#geoipDBFile">DB File Path</a></span>,</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ��������������������������������������������������������������������������������External_FCGI_Auth.html�����������������������������������������������������������������������������0000644�����������������00000057674�15027525531�0011015 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Fast CGI Authorizer</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Fast CGI Authorizer." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 9</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><span class="current"><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></span></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="External_FCGI.html">Fast CGI App</a></div><div class="center"><a href="ExtApp_Help.html">External Apps</a></div><div class="next"><a href="External_LSAPI.html">LiteSpeed SAPI App</a> »</div></div> <h1>Fast CGI Authorizer</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header>Fast CGI Authorizer</header><p> <a href="#extAppName">Name</a> | <a href="#extAppAddress">Address</a> | <a href="#maxConns">Max Connections</a> | <a href="#env">Environment</a> | <a href="#initTimeout">Initial Request Timeout (secs)</a> | <a href="#retryTimeout">Retry Timeout (secs)</a> | <a href="#persistConn">Persistent Connection</a> | <a href="#pcKeepAliveTimeout">Connection Keepalive Timeout</a> | <a href="#respBuffer">Response Buffering</a> | <a href="#autoStart">Start By Server</a> | <a href="#extAppPath">Command</a> | <a href="#backlog">Back Log</a> | <a href="#instances">Instances</a> | <a href="#extUser">Run As User</a> | <a href="#extGroup">Run As Group</a> | <a href="#extUmask">umask</a> | <a href="#runOnStartUp">Run On Start Up</a> | <a href="#extMaxIdleTime">Max Idle Time</a> | <a href="#extAppPriority">Priority</a> | <a href="#memSoftLimit">Memory Soft Limit (bytes)</a> | <a href="#memHardLimit">Memory Hard Limit (bytes)</a> | <a href="#procSoftLimit">Process Soft Limit</a> | <a href="#procHardLimit">Process Hard Limit</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="extAppName"><h3>Name<span class="ls-permlink"><a href="#extAppName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>A unique name for this external application. You will refer to it by this name when you use it in other parts of the configuration.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAppAddress"><h3>Address<span class="ls-permlink"><a href="#extAppAddress"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>A unique socket address used by the external application. IPv4/IPv6 sockets and Unix Domain Sockets (UDS) are supported. IPv4/IPv6 sockets can be used for communication over the network. UDS can only be used when the external application resides on the same machine as the server.</p> <h4>Syntax</h4><p>IPv4 or IPV6 address:port or UDS://path</p> <h4>Example</h4><div class="ls-example">127.0.0.1:5434<br/> UDS://tmp/lshttpd/php.sock.</div><h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> If the external application runs on the same machine, UDS is preferred. If you have to use an IPv4|IPV6 socket, set the IP address to <span class="val">localhost</span> or <span class="val">127.0.0.1</span>, so the external application is inaccessible from other machines.<br/> <span title="Performance" class="ls-icon-performance"></span> Unix Domain Sockets generally provide higher performance than IPv4 sockets.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxConns"><h3>Max Connections<span class="ls-permlink"><a href="#maxConns"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the maximum number of concurrent connections that can be established between the server and an external application. This setting controls how many requests can be processed concurrently by an external application, however, the real limit also depends on the external application itself. Setting this value higher will not help if the external application is not fast enough or cannot scale to a large number of concurrent requests.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> Setting a high value does not directly translate to higher performance. Setting the limit to a value that will not overload the external application will provide the best performance/throughput.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="env"><h3>Environment<span class="ls-permlink"><a href="#env"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies extra environment variables for the external application.</p> <h4>Syntax</h4><p>Key=value. Multiple variables can be separated by "ENTER"</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="initTimeout"><h3>Initial Request Timeout (secs)<span class="ls-permlink"><a href="#initTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the maximum time in seconds the server will wait for the external application to respond to the first request over a new established connection. If the server does not receive any data from the external application within this timeout limit, it will mark this connection as bad. This helps to identify communication problems with external applications as quickly as possible. If some requests take longer to process, increase this limit to avoid 503 error messages.</p> <h4>Syntax</h4><p>Integer number</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="retryTimeout"><h3>Retry Timeout (secs)<span class="ls-permlink"><a href="#retryTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the period of time that the server waits before retrying an external application that had a prior communication problem.</p> <h4>Syntax</h4><p>Integer number</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="persistConn"><h3>Persistent Connection<span class="ls-permlink"><a href="#persistConn"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to keep the connection open after a request has been processed. Persistent connections can increase performance, but some FastCGI external applications do not support persistent connections fully. The default is "On".</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="pcKeepAliveTimeout"><h3>Connection Keepalive Timeout<span class="ls-permlink"><a href="#pcKeepAliveTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the maximum time in seconds to keep an idle persistent connection open.<br/><br/> When set to "-1", the connection will never timeout. When set to 0 or greater, the connection will be closed after this time in seconds has passed.</p> <h4>Syntax</h4><p>int</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="respBuffer"><h3>Response Buffering<span class="ls-permlink"><a href="#respBuffer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to buffer responses received from external applications. If a "nph-" (Non-Parsed-Header) script is detected, buffering is turned off for responses with full HTTP headers.</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="autoStart"><h3>Start By Server<span class="ls-permlink"><a href="#autoStart"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether you want the web server to start the application automatically. Only FastCGI and LSAPI applications running on the same machine can be started automatically. The IP in the <span class="tagl"><a href="#extAppAddress">Address</a></span> must be a local IP. Starting through the LiteSpeed CGI Daemon instead of a main server process will help reduce system overhead.<br/><br/> Default value: Yes (Through CGI Daemon)</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAppPath"><h3>Command<span class="ls-permlink"><a href="#extAppPath"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the full command line including parameters to execute the external application. Required value if <span class="tagl"><a href="#autoStart">Start By Server</a></span> is enabled. A parameter should be quoted with a double or single quote if the parameter contains space or tab characters.</p> <h4>Syntax</h4><p>Full path to the executable with optional parameters.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#autoStart">Start By Server</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="backlog"><h3>Back Log<span class="ls-permlink"><a href="#backlog"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the backlog of the listening socket. Required if <span class="tagl"><a href="#autoStart">Start By Server</a></span> is enabled.</p> <h4>Syntax</h4><p>Integer number</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="instances"><h3>Instances<span class="ls-permlink"><a href="#instances"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the maximum instances of the external application the server will create. It is required if <span class="tagl"><a href="#autoStart">Start By Server</a></span> is enabled. Most FastCGI/LSAPI applications can only process one request per process instance and for those types of applications, instances should be set to match the value of <span class="tagl"><a href="#maxConns">Max Connections</a></span>. Some FastCGI/LSAPI applications can spawn multiple child processes to handle multiple requests concurrently. For these types of applications, instances should be set to "1" and environment variables used to control how many child processes the application can spawn.</p> <h4>Syntax</h4><p>Integer number</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extUser"><h3>Run As User<span class="ls-permlink"><a href="#extUser"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The external application will run as this specified user name. If not set, Virtual Host level settings will be inherited.<br/><br/> Default value: Not Set</p> <h4>Syntax</h4><p>Valid username.</p> <h4>See Also</h4><p class="ls-text-small">extGroup</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extGroup"><h3>Run As Group<span class="ls-permlink"><a href="#extGroup"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The external application will run as this specified group name. If not set, Virtual Host level settings will be inherited.<br/><br/> Default value: Not Set</p> <h4>Syntax</h4><p>Valid group name.</p> <h4>See Also</h4><p class="ls-text-small">extUser</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extUmask"><h3>umask<span class="ls-permlink"><a href="#extUmask"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets default umask for this external application's processes. See <span class="cmd"> man 2 umask </span> for details. The default value taken from the server-level <span class="tagl"><a href="ServSecurity_Help.html#umask">umask</a></span> setting.</p> <h4>Syntax</h4><p>value valid range [000]-[777].</p> <h4>See Also</h4><p class="ls-text-small">CGI <span class="tagl"><a href="ServSecurity_Help.html#umask">umask</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="runOnStartUp"><h3>Run On Start Up<span class="ls-permlink"><a href="#runOnStartUp"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to start the external application at server start up. Only applicable to external applications that can manage their own child processes and where <span class="tagl"><a href="#instances">Instances</a></span> value is set to "1".<br/><br/> If enabled, external processes will be created at server startup instead of run-time.<br/><br/> When selecting "Yes (Detached mode)", all detached process can be restarted at the Server level or Virtual Host level by touching the '.lsphp_restart.txt' file under the $SERVER_ROOT/admin/tmp/ or $VH_ROOT/ directory respectively.<br/><br/> Default value: Yes (Detached mode)</p> <h4>Syntax</h4><p>Select from radio box</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> If the configured external process has significant startup overhead, like a Rails app, then this option should be enabled to decrease first page response time.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extMaxIdleTime"><h3>Max Idle Time<span class="ls-permlink"><a href="#extMaxIdleTime"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the maximum idle time before an external application is stopped by the server, freeing idle resources. When set to "-1", the external application will not be stopped by the server unless running in ProcessGroup mode where idle external applications will be stopped after 30 seconds.<br/><br/> Default value: <span class="val">-1{/val}</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> This feature is especially useful in the mass hosting environment where, in order to prevent files owned by one virtual host from being accessed by the external application scripts of another virtual host, many different applications are run at the same time in SetUID mode. Set this value low to prevent these external applications from idling unnecessarily.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAppPriority"><h3>Priority<span class="ls-permlink"><a href="#extAppPriority"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies priority of the external application process. Value ranges from <span class="val">-20</span> to <span class="val">20</span>. A lower number means a higher priority. An external application process cannot have a higher priority than the web server. If this priority is set to a lower number than the server's, the server's priority will be used for this value.</p> <h4>Syntax</h4><p>int</p> <h4>See Also</h4><p class="ls-text-small">Server <span class="tagl"><a href="ServGeneral_Help.html#serverPriority">Priority</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="memSoftLimit"><h3>Memory Soft Limit (bytes)<span class="ls-permlink"><a href="#memSoftLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the memory consumption limit in bytes for an external application process or an external application started by the server.<br/><br/> The main purpose of this limit is to prevent excessive memory usage because of software bugs or intentional attacks, not to impose a limit on normal usage. Make sure to leave enough head room, otherwise your application may fail and 503 error may be returned. It can be set at the server- level or at an individual external application level. The server-level limit will be used if it is not set at the individual application level.<br/><br/> The operating system's default setting will be used if the value is absent at both levels or set to <span class="val">0</span>.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Attention" class="ls-icon-attention"></span> Do not over adjust this limit. This may result in 503 errors if your application needs more memory.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="memHardLimit"><h3>Memory Hard Limit (bytes)<span class="ls-permlink"><a href="#memHardLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Much the same as <span class="tagl"><a href="#memSoftLimit">Memory Soft Limit (bytes)</a></span>, except the soft limit can be raised up to the hard limit from within a user process. The hard limit can be set at server level or at an individual external application level. The server-level limit will be used if it is not set at an individual application level.<br/><br/> The operating system's default will be used if the value is absent at both levels or set to <span class="val">0</span>.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Attention" class="ls-icon-attention"></span> Do not over adjust this limit. This may result in 503 errors if your application need more memory.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="procSoftLimit"><h3>Process Soft Limit<span class="ls-permlink"><a href="#procSoftLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Limits the total number of processes that can be created on behalf of a user. All existing processes will be counted against this limit, not just new processes to be started.<br/><br/> The limit can be set at the server level or at an individual external application level. The server-level limit will be used if it is not set at an individual application level. The operating system's default setting will be used if this value is 0 or absent at both levels.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> PHP scripts can call for forking processes. The main purpose of this limit is as a last line of defense to prevent fork bombs and other attacks caused by PHP processes creating other processes.<br/><br/> Setting this setting too low can severely hurt functionality. The setting will thus be ignored below certain levels.<br/><br/> When <b>Run On Start Up</b> is set to "Yes (Daemon mode)", the actual process limit will be higher than this setting to make sure parent processes are not limited.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="procHardLimit"><h3>Process Hard Limit<span class="ls-permlink"><a href="#procHardLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Much the same as <span class="tagl"><a href="#procSoftLimit">Process Soft Limit</a></span>, except the soft limit can be raised up to the hard limit from within a user process. The hard limit can be set at the server level or at an individual external application level. The server-level limit will be used if it is not set at an individual application level. The operating system's default value will be used if the value is absent at both levels or set to <span class="val">0</span>.</p> <h4>Syntax</h4><p>Integer number</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ��������������������������������������������������������������������VHWebSocket_Help.html�������������������������������������������������������������������������������0000644�����������������00000020354�15027525531�0010537 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Web Socket Proxy</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Web Socket Proxy." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 9</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><span class="current"><a href="VHWebSocket_Help.html">Web Socket Proxy</a></span></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="Context_Help.html">Context</a></div><div class="center"><a href="config.html">Configuration</a></div><div class="next"> </div></div> <h1>Web Socket Proxy</h1><section class="ls-spacer-small-bottom"><a href="http://en.wikipedia.org/wiki/WebSocket">WebSocket</a> is a protocol that can be used instead of HTTP to deliver real-time, bidirectional communication over the Internet. Starting with version 1.1.1, OpenLiteSpeed supports WebSocket backends through the use of WebSocket proxies. These proxies send the WebSocket communication to the appropriate backend stipulated in the {ITEM=wsaddr} field.</section> <h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header>Web Socket Proxy</header><p> <a href="#wsuri">URI</a> | <a href="#wsaddr">Address</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="wsuri"><h3>URI<span class="ls-permlink"><a href="#wsuri"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the URI(s) that will use this WebSocket backend. Traffic to this URI will only be forwarded to the WebSocket backend when it contains a WebSocket upgrade request. <br/><br/> Traffic without this upgrade request will automatically be forwarded to the Context that this URI belongs to. If no Context exists for this URI, LSWS will treat this traffic as though it is accessing a static context with the location <span class="val">$DOC_ROOT/URI</span>.</p> <h4>Syntax</h4><p>A plain URI (starting with "/"). If the URI ends with a "/", then this WebSocket backend will include all sub-URIs under this URI.</p> <h4>Example</h4><div class="ls-example">Using the WebSocket proxy in conjunction with a Context allows you to serve different kinds of traffic in different ways on the same page, thus optimizing performance. You can send WebSocket traffic to the WebSocket backend, while setting up a static context so that LSWS can serve the page's static content, or an LSAPI context so LSWS will serve PHP content (both of which LSWS does more efficiently than the WebSocket backend).</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="wsaddr"><h3>Address<span class="ls-permlink"><a href="#wsaddr"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>A unique socket address used by the WebSocket backend. IPv4 sockets, IPv6 sockets, and Unix Domain Sockets (UDS) are supported. IPv4 and IPv6 sockets can be used for communication over the network. UDS can only be used when the WebSocket backend resides on the same machine as the server.</p> <h4>Syntax</h4><p>IPv4/IPv6 address:port, UDS://path, or unix:path</p> <h4>Example</h4><div class="ls-example">127.0.0.1:5434 <br/> UDS://tmp/lshttpd/php.sock<br/> unix:/tmp/lshttpd/php.sock</div><h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> If the WebSocket backend runs on the same machine, UDS is preferred. If you have to use an IPv4 or IPv6 socket, set the IP address to localhost or 127.0.0.1, so the WebSocket backend is inaccessible from other machines.<br/> <span title="Performance" class="ls-icon-performance"></span> Unix Domain Sockets generally provide higher performance than IPv4 or IPv6 sockets.</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������zh-CN/ServTuning_Help.html��������������������������������������������������������������������������0000644�����������������00000136576�15027525531�0011454 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - 服务器调节</title> <meta name="description" content="OpenLiteSpeed Users' Manual - 服务器调节." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 3</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><span class="current"><a href="ServTuning_Help.html">Server Tuning</a></span></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="ServLog_Help.html">服务器日志</a></div><div class="center"><a href="config.html">Configuration</a></div><div class="next"><a href="ServSecurity_Help.html">服务器安全</a> »</div></div> <h1>服务器调节</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header>操作系统优化</header><p> <a href="#shmDefaultDir">默认SHM目录</a> | <a href="#proxyProtocol">PROXY protocol</a></p></section> <section class="toc-row"><header>连接</header><p> <a href="#maxConnections">最大连接数</a> | <a href="#maxSSLConnections">最大SSL连接数</a> | <a href="#connTimeout">连接超时时间(secs)</a> | <a href="#maxKeepAliveReq">最大持续连接请求数</a> | <a href="#keepAliveTimeout">持续连接超时时长</a> | <a href="#sndBufSize">发送缓冲区大小</a> | <a href="#rcvBufSize">接收缓冲区大小 (bytes)</a></p></section> <section class="toc-row"><header>请求/响应</header><p> <a href="#maxReqURLLen">最大请求URL长度(bytes)</a> | <a href="#maxReqHeaderSize">最大请求头大小(bytes)</a> | <a href="#maxReqBodySize">最大请求主内容大小(bytes)</a> | <a href="#maxDynRespHeaderSize">动态回应报头最大大小(bytes)</a> | <a href="#maxDynRespSize">动态回应主内容最大大小(bytes)</a></p></section> <section class="toc-row"><header>静态文件传递优化</header><p> <a href="#maxCachedFileSize">最大小文件缓存(bytes)</a> | <a href="#totalInMemCacheSize">小文件缓存总大小 (bytes)</a> | <a href="#maxMMapFileSize">最大MMAP文件大小(bytes)</a> | <a href="#totalMMapCacheSize">总MMAP缓存大小 (bytes)</a> | <a href="#useSendfile">使用sendfile()</a> | <a href="#useAIO">Use AIO</a> | <a href="#AIOBlockSize">AIO Block Size</a> | <a href="#fileETag">文件ETag</a></p></section> <section class="toc-row"><header>GZIP/Brotli压缩</header><p> <a href="#enableGzipCompress">启用GZIP压缩</a> | <a href="#compressibleTypes">压缩类型</a> | <a href="#enableDynGzipCompress">启用GZIP动态压缩</a> | <a href="#gzipCompressLevel">GZIP压缩级别(动态内容)</a> | <a href="#gzipAutoUpdateStatic">自动更新静态文件</a> | <a href="#gzipStaticCompressLevel">GZIP压缩级别(静态内容)</a> | <a href="#brStaticCompressLevel">Brotli 压缩等级 (静态文件)</a> | <a href="#gzipCacheDir">静态缓存目录</a> | <a href="#gzipMaxFileSize">静态文件最大尺寸(bytes)</a> | <a href="#gzipMinFileSize">静态文件最小尺寸 (bytes)</a></p></section> <section class="toc-row"><header>全局SSL设置</header><p> <a href="#sslDefaultCiphers">默认密码套件</a> | <a href="#sslStrongDhKey">SSL强DH密钥</a> | <a href="#sslEnableMultiCerts">启用多个SSL证书</a> | <a href="#sslSessionCache">启用SSL会话缓存</a> | <a href="#sslSessionCacheSize">会话缓存大小 (bytes)</a> | <a href="#sslSessionCacheTimeout">会话缓存过期时间 (secs)</a> | <a href="#sslSessionTickets">启用会话记录单</a> | <a href="#sslSessionTicketLifetime">SSL会话记录单生存时间(secs)</a> | <a href="#sslSessionTicketKeyFile">SSL会话记录单密钥文件</a> | <a href="#sslOcspProxy">OCSP Proxy</a> | <a href="#sslStrictSni">Strict SNI Certificate</a></p></section> <section class="toc-row"><header>QUIC</header><p> <a href="#quicEnable">启用HTTP3/QUIC</a> | <a href="#quicShmDir">QUIC SHM 目录</a> | <a href="#quicVersions">HTTP3/QUIC版本</a> | <a href="#quicCongestionCtrl">拥塞控制</a> | <a href="#quicCfcw">流连接窗口控制</a> | <a href="#quicMaxCfcw">最大连接流量窗口值设置</a> | <a href="#quicSfcw">连接流量窗口值</a> | <a href="#quicMaxSfcw">最大流量窗口值设置</a> | <a href="#quicMaxStreams">每个连接的最大并发数</a> | <a href="#quicHandshakeTimeout">握手超时时间</a> | <a href="#quicIdleTimeout">空闲超时时间(秒)</a> | <a href="#quicEnableDPLPMTUD">启用 DPLPMTUD</a> | <a href="#quicBasePLPMTU">PLPMTU 默认值</a> | <a href="#quicMaxPLPMTU">PLPMTU的最大值</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="shmDefaultDir"><h3>默认SHM目录<span class="ls-permlink"><a href="#shmDefaultDir"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>将共享内存的默认目录更改为指定的路径。 如果该目录不存在,则将创建该目录。除非另有说明,否则所有SHM数据都将存储在此目录中。</p> <h4>Syntax</h4><p>path</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="proxyProtocol"><h3>PROXY protocol<span class="ls-permlink"><a href="#proxyProtocol"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>List of IPs/subnets for front-end proxies that communicate with this server using PROXY protocol. Once set, the server will use PROXY protocol for incoming connections from listed IPs/subnets or fall back to a regular connection if PROXY protocol is unavailable.<br/><br/> Applies to HTTP, HTTPS, HTTP2, and websocket connections.</p> <h4>Syntax</h4><p>Comma delimited list of IP addresses or sub-networks.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxConnections"><h3>最大连接数<span class="ls-permlink"><a href="#maxConnections"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定服务器可以接受的最大并发连接数。这包括纯TCP连接和SSL连接。 一旦达到此限制,服务器将在完成活动请求时关闭“Keep-Alive”的连接。</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> 当服务器由"root"用户启动时,服务器会尝试自动调整每个进程的文件描述符限制,但是,如果自动调整失败,你可能需要手动增加此限制。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxSSLConnections"><h3>最大SSL连接数<span class="ls-permlink"><a href="#maxSSLConnections"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定服务器将接受的最大并发SSL连接数。 由于并发SSL和非SSL的连接总数不能超过<span class="tagl"><a href="#maxConnections">最大连接数</a></span>的限制,因此允许的最大SSL连接的数量须低于此限制。</p> <h4>Syntax</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="connTimeout"><h3>连接超时时间(secs)<span class="ls-permlink"><a href="#connTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定一个请求允许的最大连接空闲时间。 如果在这段时间内连接一直处于空闲状态(即没有I/O活动),则它将被关闭。</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p>[安全建议] 将值设置得尽可能低,在可能的拒绝服务攻击中,这可以帮助释放无效连接所占用的连接数。</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#keepAliveTimeout">持续连接超时时长</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxKeepAliveReq"><h3>最大持续连接请求数<span class="ls-permlink"><a href="#maxKeepAliveReq"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定通过持续连接(持久)会话处理的请求的最大数量。一旦达 到此限制,连接将被关闭。您也可以为每个虚拟主机单独设置限制。</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p>[性能建议] 设置为合理的较高的值。值为“1”或“0”时将禁用持续连接。</p> <h4>See Also</h4><p class="ls-text-small">Virtual Host <span class="tagl"><a href="VirtualHosts_Help.html#vhMaxKeepAliveReq">最大Keep-Alive请求数</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="keepAliveTimeout"><h3>持续连接超时时长<span class="ls-permlink"><a href="#keepAliveTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定持续连接请求的最长闲置时间。 如果在这段时间内没有接收到新的请求,该连接将被关闭。 这个设置只适用于HTTP/1.1连接。HTTP/2连接有较长的闲置时间,不受此设置影响。</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p>[安全和性能建议] 我们建议您将值设置得刚好足够处理单个页面 视图的所有请求。没有必要延长持续连接时间。较小的值可以减少闲置 连接,提高能力,以服务更多的用户,并防范拒绝服务攻击。<span class="val">2-5</span>秒 对大多数应用是合理范围。Litespeed在非持续连接环境是非常高效的。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sndBufSize"><h3>发送缓冲区大小<span class="ls-permlink"><a href="#sndBufSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>每个TCP套接字的发送缓冲区的大小。设定值为<span class="val">0</span>使用 操作系统默认的缓冲区大小。<span class="val">65535</span>是允许的最大缓冲区大小。</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p>[性能建议] 建议将此值保留为“未设置”或设置为0以使用操作系统的默认缓冲区大小。<br/> [性能建议] 如果您的网站服务大量的静态文件,增加发送缓冲区 大小来提高性能。<br/> [性能建议] 将此值设置为较低的值将减少吞吐量和每个套接字的内存使用率,从而在内存成为瓶颈时允许服务器拥有更多并发套接字。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="rcvBufSize"><h3>接收缓冲区大小 (bytes)<span class="ls-permlink"><a href="#rcvBufSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>每个TCP套接字的接收缓冲区大小。 <span class="val">512K</span>是允许的最大缓冲区大小。</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p>[性能建议] 建议将此值保留为“未设置”或设置为0以使用操作系统的默认缓冲区大小。<br/> [性能建议] 处理大载荷入站请求,如文件上传时,大的接收缓冲区会提高性能。<br/> [性能建议] 将此值设置为较低的值将减少吞吐量和每个套接字的内存使用率,从而在内存成为瓶颈时允许服务器拥有更多并发套接字。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxReqURLLen"><h3>最大请求URL长度(bytes)<span class="ls-permlink"><a href="#maxReqURLLen"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定请求URL的最大大小。 URL是一个纯文本的地址,包含查询字符串来请求服务器上的资源。 硬限制为<span class="val">65530</span>个字节。 大于此值的值,例如<span class="val">64K</span>(大6个字节),将被视为<span class="val">65530</span>。<br/><br/> Default value: <span class="val">8192</span> or <span class="val">8K</span>.</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p>[安全和性能建议] 将其设置合理的低值来以减少内存使用 并帮助识别虚假请求和拒绝服务攻击。<br/> 对大多数网站2000-3000已经足够大,除非使用HTTP GET而不是POST来提交大型的查询字符串。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxReqHeaderSize"><h3>最大请求头大小(bytes)<span class="ls-permlink"><a href="#maxReqHeaderSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定请求URL中包含的HTTP请求头最大值。 硬限制为<span class="val">131072</span> 字节或128K.<br/><br/> Default value: <span class="val">32768</span> or <span class="val">32K</span></p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p>[安全和性能建议] 设置合理的低值来减少内存的使用并帮助识别虚假请求和拒绝服务攻击。<br/> 对于大多数网站来说4000-8000已经足够大。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxReqBodySize"><h3>最大请求主内容大小(bytes)<span class="ls-permlink"><a href="#maxReqBodySize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定HTTP请求主内容最大尺寸。对于32位操作系统, 硬限制为<span class="val">2GB</span>。对于64位操作系统,几乎是无限的。</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p>[安全建议] 为了防止拒绝服务攻击,尽量将限制值设定到实际需求的大小。 交换空间的剩余空间必须比这个限制值大。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxDynRespHeaderSize"><h3>动态回应报头最大大小(bytes)<span class="ls-permlink"><a href="#maxDynRespHeaderSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定动态回应的最大报头大小。硬限制为<span class="val">131072</span>字节或128K.<br/><br/> Default value: <span class="val">32768</span> or <span class="val">32K</span></p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p>[可靠性和性能建议] 设置一个合理的低值以帮助识别外部应用程序产生的 坏的动态回应。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxDynRespSize"><h3>动态回应主内容最大大小(bytes)<span class="ls-permlink"><a href="#maxDynRespSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定动态回应的最大主内容尺寸。硬限制是<span class="val">2047MB</span>。</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p>[可靠性和性能建议] 设置一个合理的低值以帮助识别坏的响应。恶意脚本经常包含 无限循环而导致大尺寸回应。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxCachedFileSize"><h3>最大小文件缓存(bytes)<span class="ls-permlink"><a href="#maxCachedFileSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定预分配内存缓冲区中缓存的静态文件最大尺寸。静态文件 可以用四种不同的方式服务:内存缓存、内存映射缓存、直接读写和 sendfile()。 尺寸小于<span class="tagl"><a href="#maxCachedFileSize">最大小文件缓存(bytes)</a></span>的文件将使用内存缓存服务。尺寸大于该限制、但小于 <span class="tagl"><a href="#maxMMapFileSize">最大MMAP文件大小(bytes)</a></span>的文件,将使用内存映射缓存服务。 尺寸大于<span class="tagl"><a href="#maxMMapFileSize">最大MMAP文件大小(bytes)</a></span>的文件将通过直接读写或sendfile() 服务。使用内存缓存服务小于4K的文件是最佳做法。</p> <h4>Syntax</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="totalInMemCacheSize"><h3>小文件缓存总大小 (bytes)<span class="ls-permlink"><a href="#totalInMemCacheSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定分配用于缓存/服务小静态文件的总内存。</p> <h4>Syntax</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxMMapFileSize"><h3>最大MMAP文件大小(bytes)<span class="ls-permlink"><a href="#maxMMapFileSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定使用内存映射(MMAP)的最大静态文件大小。 静态文件可以用四种不同的方式服务:内存缓存、内存映射缓存、直接读写和 sendfile()。 尺寸小于<span class="tagl"><a href="#maxCachedFileSize">最大小文件缓存(bytes)</a></span>的文件将使用内存缓存服务。尺寸大于该限制、但小于 <span class="tagl"><a href="#maxMMapFileSize">最大MMAP文件大小(bytes)</a></span>的文件,将使用内存映射缓存服务。 尺寸大于<span class="tagl"><a href="#maxMMapFileSize">最大MMAP文件大小(bytes)</a></span>的文件将通过直接读写或sendfile() 服务。 由于服务器有一个32位的地址空间(2GB),不建议使用内存映射非常大的文件。</p> <h4>Syntax</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="totalMMapCacheSize"><h3>总MMAP缓存大小 (bytes)<span class="ls-permlink"><a href="#totalMMapCacheSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定分配用于缓存/服务中等大小静态文件的总内存。</p> <h4>Syntax</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="useSendfile"><h3>使用sendfile()<span class="ls-permlink"><a href="#useSendfile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否使用sendfile()系统调用来服务静态文件。静态文件 可以用四种不同的方式服务:内存缓存、内存映射缓存、直接读写和 sendfile()。 尺寸小于<span class="tagl"><a href="#maxCachedFileSize">最大小文件缓存(bytes)</a></span>的文件将使用内存缓存服务。尺寸大于该限制、但小于 <span class="tagl"><a href="#maxMMapFileSize">最大MMAP文件大小(bytes)</a></span>的文件,将使用内存映射缓存服务。 尺寸大于<span class="tagl"><a href="#maxMMapFileSize">最大MMAP文件大小(bytes)</a></span>的文件将通过直接读写或sendfile() 服务。Sendfile()是一个“零拷贝”系统调用,可在服务非常大的 文件时大大减少CPU的使用率。Sendfile()需要一个优化的网卡内核驱动, 因此可能不适合某些小厂商的网络适配器。</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="useAIO"><h3>Use AIO<span class="ls-permlink"><a href="#useAIO"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to use asynchronous I/O to serve static files along with the AIO implementation to use. Options <span class="val">LINUX AIO</span> and <span class="val">io_uring</span> are only available on Linux machines.<br/><br/> Default value: <span class="val">No</span></p> <h4>Syntax</h4><p>从列表中选择</p> <h4>提示</h4><p><span title="Performance" class="ls-icon-performance"></span> AIO can help improve performance in servers with a high I/O wait.<br/> <span title="Attention" class="ls-icon-attention"></span> When <span class="val">io_uring</span> is selected but not supported on the current machine, <span class="val">Linux AIO</span> will be used instead.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#AIOBlockSize">AIO Block Size</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="AIOBlockSize"><h3>AIO Block Size<span class="ls-permlink"><a href="#AIOBlockSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the sent block size for AIO. This block size multiplied by the total files being processed should be less than the physical memory of the server, otherwise, AIO will not help. If your server has enough memory, you can choose a bigger size.<br/><br/> Default value: <span class="val">128K</span></p> <h4>Syntax</h4><p>从列表中选择</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#useAIO">Use AIO</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="fileETag"><h3>文件ETag<span class="ls-permlink"><a href="#fileETag"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否使用一个文件的索引节点、最后修改时间和大小属性 生成静态文件的ETag HTTP响应头。 所有这三个属性是默认启用的。 如果您打算使用镜像服务器服务相同的文件,您应该不勾选索引节点。 否则,为同一个文件生成的ETag在不同的服务器上是不同的。</p> <h4>Syntax</h4><p>从复选框中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableGzipCompress"><h3>启用GZIP压缩<span class="ls-permlink"><a href="#enableGzipCompress"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>制静态或动态HTTP回应的GZIP压缩。<br/><br/> Default value: Yes</p> <h4>Syntax</h4><p>从单选框选择</p> <h4>提示</h4><p>[性能建议] 开启该功能可以节省网络带宽。 针对基于文本的回应如html、css和javascript文件最有效果,一般可以压缩到原文件大小的一半大小。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="compressibleTypes"><h3>压缩类型<span class="ls-permlink"><a href="#compressibleTypes"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定允许压缩哪些MIME类型。 保留此设置不变,或输入<span class="val">default</span>以使用服务器内置的默认列表,该列表已经涵盖了大多数mime类型。<br/> Default value: <span class="val">text/*,application/x-javascript,application/javascript,application/xml,image/svg+xml,application/rss+xml, application/json,application/vnd.ms-fontobject,application/x-font,application/x-font-opentype, application/x-font-truetype,application/x-font-ttf,font/eot,font/opentype,font/otf,font/ttf,image/x-icon, image/vnd.microsoft.icon,application/xhtml+xml</span></p> <h4>Syntax</h4><p>MIME type list separated by commas. Wild card "*" and negate sign "!" are allowed, such as text/*, !text/js.</p> <h4>例子</h4><div class="ls-example">If you want to compress text/* but not text/css, you can have a rule like <span class="val">text/*, !text/css</span>. "!" will exclude that MIME type.</div><h4>提示</h4><p>[性能建议] 只允许特定类型进行GZIP压缩。 二进制文件如gif/png/jpeg图片文件及flash文件无法从压缩中获益。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableDynGzipCompress"><h3>启用GZIP动态压缩<span class="ls-permlink"><a href="#enableDynGzipCompress"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>控制动态HTTP回应的GZIP压缩。 <span class="tagl"><a href="#enableGzipCompress">启用GZIP压缩</a></span>必须设置为<span class="val">Yes</span>来开启动态GZIP压缩。<br/> Default value: Yes</p> <h4>Syntax</h4><p>从单选框选择</p> <h4>提示</h4><p>[性能建议] 压缩动态回应将增加CPU和内存的使用,但可以节省网络带宽。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="gzipCompressLevel"><h3>GZIP压缩级别(动态内容)<span class="ls-permlink"><a href="#gzipCompressLevel"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定压缩动态态内容的级别。 范围从<span class="val">1</span> (最低)到<span class="val">9</span> (最高)。<br/> 改设置尽在<span class="tagl"><a href="#enableGzipCompress">启用GZIP压缩</a></span>和<span class="tagl"><a href="#enableDynGzipCompress">启用GZIP动态压缩</a></span>启用时生效<br/><br/> 默认值: 6</p> <h4>Syntax</h4><p>Number between 1 and 9.</p> <h4>提示</h4><p>[性能建议] 更高的压缩级别将消耗更多的内存和CPU资源。 如果您的机器有额外的资源您可以设置更高的级别。 级别9与级别6没有太大的区别,但是级别9会占用多得多的CPU资源。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="gzipAutoUpdateStatic"><h3>自动更新静态文件<span class="ls-permlink"><a href="#gzipAutoUpdateStatic"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否由LiteSpeed自动创建/更新可压缩静态文件的GZIP压缩版本。 如果设置为<span class="val">Yes</span>,当请求文件MIME属于<span class="tagl"><a href="#compressibleTypes">压缩类型</a></span>时, LiteSpeed会根据压缩的文件时间戳来创建/更新文件的压缩版本。 压缩的文档会创建在<span class="tagl"><a href="#gzipCacheDir">静态缓存目录</a></span>目录下。 文件名称根据原文件的MD5散列创建。<br/><br/> 默认值: Yes</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="gzipStaticCompressLevel"><h3>GZIP压缩级别(静态内容)<span class="ls-permlink"><a href="#gzipStaticCompressLevel"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定GZIP压缩静态内容的级别。 范围从<span class="val">1</span> (最低)到<span class="val">9</span> (最高)。。<br/><br/> 该选项仅在 <span class="tagl"><a href="#enableGzipCompress">启用GZIP压缩</a></span>和<span class="tagl"><a href="#gzipAutoUpdateStatic">自动更新静态文件</a></span> 启用后才会生效<br/><br/> 默认值是<span class="val">6</span></p> <h4>Syntax</h4><p>Number between 1 and 9.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="brStaticCompressLevel"><h3>Brotli 压缩等级 (静态文件)<span class="ls-permlink"><a href="#brStaticCompressLevel"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定Brotli压缩静态内容的级别。 范围从<span class="val">1</span> (最低)到<span class="val">9</span> (最高)。<br/><br/> 当设置为 <span class="val">0</span>时, brotli压缩将在全局禁用。<br/><br/> Default value: 5</p> <h4>Syntax</h4><p>Number between 0 and 11.</p> <h4>提示</h4><p>[性能建议] 压缩可以用来节省网络带宽。 基于文本的响应(例如html,css和javascript文件)效果最好,平均可以将其压缩为原始大小的一半。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="gzipCacheDir"><h3>静态缓存目录<span class="ls-permlink"><a href="#gzipCacheDir"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定目录路径来存储静态内容的压缩文件。默认是<span class="tagl"><a href="#swappingDir">交换目录</a></span>。</p> <h4>Syntax</h4><p>Directory Path</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="gzipMaxFileSize"><h3>静态文件最大尺寸(bytes)<span class="ls-permlink"><a href="#gzipMaxFileSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定LiteSpeed可以自动创建压缩文件的静态文件最大尺寸。<br/><br/> 默认值为 10M</p> <h4>Syntax</h4><p>Number in bytes not less than 1K.</p> <h4>提示</h4><p>[性能建议] 不建议使用LiteSpeed创建/更新较大文件的压缩文件。 压缩操作会占用整个服务器进程并且在压缩结束前新请求都无法被处理。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="gzipMinFileSize"><h3>静态文件最小尺寸 (bytes)<span class="ls-permlink"><a href="#gzipMinFileSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定LiteSpeed创建相应压缩文件的静态文件最小尺寸。<br/><br/> Default value: 200</p> <h4>Syntax</h4><p>Number in bytes not less than 200.</p> <h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> It is not necessary to compress very small files as the bandwidth saving is negligible.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslDefaultCiphers"><h3>默认密码套件<span class="ls-permlink"><a href="#sslDefaultCiphers"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>SSL证书的默认密码套件。<br/><br/> Default value: Server Internal Default (Based on current best practices)</p> <h4>Syntax</h4><p>Colon-separated string of cipher specifications.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslStrongDhKey"><h3>SSL强DH密钥<span class="ls-permlink"><a href="#sslStrongDhKey"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是使用2048位还是1024位DH密钥进行SSL握手。 如果设置为“是”,则2048位DH密钥将用于2048位SSL密钥和证书。 在其他情况下,仍将使用1024位DH密钥。 默认值为“是”。 Java的早期版本不支持大于1024位的DH密钥大小。 如果需要Java客户端兼容性,则应将其设置为“否”。</p> <h4>Syntax</h4><p>radio</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslEnableMultiCerts"><h3>启用多个SSL证书<span class="ls-permlink"><a href="#sslEnableMultiCerts"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>允许侦听器/虚拟主机设置多个SSL证书。 如果启用了多个证书,则证书/密钥应遵循命名方案。 如果证书名为server.crt,则其他可能的证书名称为server.crt.rsa, server.crt.dsa,server.crt.ecc。 如果为“未设置”,则默认为“否”。</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslSessionCache"><h3>启用SSL会话缓存<span class="ls-permlink"><a href="#sslSessionCache"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>使用OpenSSL的默认设置启用会话ID缓存。 服务器级别设置必须设置为“是”才能使虚拟主机设置生效。<br/> 默认值:<br/> <b>服务器级别:</b> Yes<br/> <b>虚拟主机级别:</b> Yes</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslSessionCacheSize"><h3>会话缓存大小 (bytes)<span class="ls-permlink"><a href="#sslSessionCacheSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>设置要存储在缓存中的SSL会话ID的最大数量。 默认值为1,000,000。</p> <h4>Syntax</h4><p>Integer number</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslSessionCacheTimeout"><h3>会话缓存过期时间 (secs)<span class="ls-permlink"><a href="#sslSessionCacheTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>此值确定需要重新握手之前,会话ID在缓存中有效的时间。 默认值为 3,600.</p> <h4>Syntax</h4><p>Integer number</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslSessionTickets"><h3>启用会话记录单<span class="ls-permlink"><a href="#sslSessionTickets"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>使用OpenSSL的默认会话票证设置启用会话记录单。 服务器级别设置必须设置为“是”才能使虚拟主机设置生效。<br/> 默认值:<br/> <b>服务器级别:</b> Yes<br/> <b>虚拟主机级别:</b> Yes</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslSessionTicketLifetime"><h3>SSL会话记录单生存时间(secs)<span class="ls-permlink"><a href="#sslSessionTicketLifetime"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>此值确定需要重新握手之前会话记录单有效的时间。 默认值为3600。</p> <h4>Syntax</h4><p>Integer number</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslSessionTicketKeyFile"><h3>SSL会话记录单密钥文件<span class="ls-permlink"><a href="#sslSessionTicketKeyFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Allows the SSL Ticket Key to be created/maintained by an administrator. The file must be 48 bytes long. If this option is left empty, the load balancer will generate and rotate its own set of keys.<br/><br/> IMPORTANT: To maintain forward secrecy, it is strongly recommended to change the key every <b>SSL Session Ticket Lifetime</b> seconds. If this cannot be done, it is recommended to leave this field empty.</p> <h4>Syntax</h4><p>Path</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslOcspProxy"><h3>OCSP Proxy<span class="ls-permlink"><a href="#sslOcspProxy"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Socket address used as the proxy server address for OCSP verification. Leave this setting unset If not using a proxy.<br/><br/> Default value: <span class="val">not set</span></p> <h4>Syntax</h4><p>Socket Address</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslStrictSni"><h3>Strict SNI Certificate<span class="ls-permlink"><a href="#sslStrictSni"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to strictly require a dedicated virtual host certificate configuration. When enabled, SSL connections to virtual hosts without a dedicated certificate configuration will fail instead of using a default catch-all certificate.<br/><br/> Default value: <span class="val">No</span></p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="quicEnable"><h3>启用HTTP3/QUIC<span class="ls-permlink"><a href="#quicEnable"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>在整个服务器范围内启用HTTP3/QUIC网络协议。 默认值为<span class="val">是</span>。</p> <h4>Syntax</h4><p>从单选框选择</p> <h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> 当此设置设置为<span class="val">是</span>时,仍然可以通过<span class="tagl"><a href="Listeners_SSL_Help.html#allowQuic">打开HTTP3/QUIC (UDP) 端口</a></span>设置在侦听器级别 或通过<span class="tagl"><a href="VHSSL_Help.html#vhEnableQuic">Enable HTTP3/QUIC</a></span>设置在虚拟主机级别禁用HTTP3/QUIC</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="quicShmDir"><h3>QUIC SHM 目录<span class="ls-permlink"><a href="#quicShmDir"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定用于将QUIC数据保存到共享内存的目录。<br/><br/> 默认情况下,将使用服务器的默认SHM目录<span class="val">/dev/shm</span>.</p> <h4>Syntax</h4><p>Path</p> <h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> 建议使用基于RAM的分区(内存盘),例如 <span class="val">/dev/shm</span>.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="quicVersions"><h3>HTTP3/QUIC版本<span class="ls-permlink"><a href="#quicVersions"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>启用的HTTP3/QUIC版本的列表。 此设置仅应用于将HTTP3/QUIC支持限制为列出的版本,最好留空。</p> <h4>Syntax</h4><p>Comma-separated list</p> <h4>例子</h4><div class="ls-example">h3-29, h3-Q050</div><h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> It is recommended to leave this setting blank to have the the best configuration applied automatically.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="quicCongestionCtrl"><h3>拥塞控制<span class="ls-permlink"><a href="#quicCongestionCtrl"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>使用的拥塞控制算法。 可以手动设置,也可以选择“默认”选项,将其保留到的QUIC库中。<br/><br/> 默认值:: Default</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="quicCfcw"><h3>流连接窗口控制<span class="ls-permlink"><a href="#quicCfcw"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>为QUIC连接分配的缓冲区的初始大小。 默认值为<span class="val"> 1.5M </span>。</p> <h4>Syntax</h4><p>Number between 64K and 512M</p> <h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> 更大的窗口大小将使用更多的内存。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="quicMaxCfcw"><h3>最大连接流量窗口值设置<span class="ls-permlink"><a href="#quicMaxCfcw"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定由于连接流控制窗口缓冲区的最大大小 auto-tuning.<br/><br/> 默认值为<span class="val"> 0 </span>,这意味着将使用<span class="tagl"><a href="ServTuning_Help.html#quicCfcw">流连接窗口控制</a></span>的值,并且不会自动调整。</p> <h4>Syntax</h4><p>0 or a number between 64K and 512M</p> <h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> 更大的窗口大小将使用更多的内存。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="quicSfcw"><h3>连接流量窗口值<span class="ls-permlink"><a href="#quicSfcw"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>QUIC愿意为每个流接收的初始数据量。 默认值为<span class="val">1M</span>。</p> <h4>Syntax</h4><p>Number between 64K and 128M</p> <h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> 更大的窗口大小将使用更多的内存。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="quicMaxSfcw"><h3>最大流量窗口值设置<span class="ls-permlink"><a href="#quicMaxSfcw"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定由于自动调整而允许流控制窗口达到的最大大小。<br/><br/> 默认值为<span class="val">0</span>,这意味着将使用<span class="tagl"><a href="ServTuning_Help.html#quicSfcw">连接流量窗口值</a></span>的值,并且不会自动调整</p> <h4>Syntax</h4><p>0 or a number between 64K and 128M</p> <h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> 更大的窗口大小将使用更多的内存。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="quicMaxStreams"><h3>每个连接的最大并发数<span class="ls-permlink"><a href="#quicMaxStreams"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>每个QUIC连接的最大并发数。 默认值为<span class="val">100</span>。</p> <h4>Syntax</h4><p>Integer number between 10 and 1000</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="quicHandshakeTimeout"><h3>握手超时时间<span class="ls-permlink"><a href="#quicHandshakeTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>给出新的QUIC连接完成其握手的时间(以秒为单位),超过限制时间后连接将中止。 默认值为<span class="val">10</span>。</p> <h4>Syntax</h4><p>Integer number between 1 and 15</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="quicIdleTimeout"><h3>空闲超时时间(秒)<span class="ls-permlink"><a href="#quicIdleTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>空闲的QUIC连接将被关闭的时间(以秒为单位)。 默认值为<span class="val"> 30 </span>。</p> <h4>Syntax</h4><p>Integer number between 10 and 30</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="quicEnableDPLPMTUD"><h3>启用 DPLPMTUD<span class="ls-permlink"><a href="#quicEnableDPLPMTUD"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>启用 Datagram Packetization Layer Path Maximum Transmission Unit Discovery (DPLPMTUD).<br/><br/> <b><a href="https://tools.ietf.org/html/rfc8899" target="_blank" rel="noopener noreferrer">Background on DPLPMTUD (RFC 8899)</a></b><br/><br/> Default value: Yes</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="quicBasePLPMTU"><h3>PLPMTU 默认值<span class="ls-permlink"><a href="#quicBasePLPMTU"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>QUIC默认使用的PLPMTU (无报头的最大数据包大小,以字节为单位)的默认值. 设置为<span class="val">0</span>将会允许QUIC设置大小.<br/><br/> 这个设置必须低于 <span class="tagl"><a href="#quicMaxPLPMTU">PLPMTU的最大值</a></span> 的值.<br/><br/> Default value: 0</p> <h4>Syntax</h4><p>0或1200至65527之间的整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="quicMaxPLPMTU"><h3>PLPMTU的最大值<span class="ls-permlink"><a href="#quicMaxPLPMTU"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>PLPMTU(无报头的最大数据包,以字节为单位)的上限. 此设置用于限制 在DPLPMTUD search space中"最大数据包大小". 设置为<span class="val">0</span>将会允许QUIC设置大小. (默认情况下LSQUIC暂定MTU为1,500 字节 (以太网)).<br/><br/> 这个设置应该比<span class="tagl"><a href="#quicBasePLPMTU">PLPMTU 默认值</a></span>的值高.<br/> Default value: 0</p> <h4>Syntax</h4><p>0或1200至65527之间的整数</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> 版权所有.</footer> </div></div> </body> </html> ����������������������������������������������������������������������������������������������������������������������������������zh-CN/AdminSecurity_Help.html�����������������������������������������������������������������������0000644�����������������00000023146�15027525531�0012114 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Admin Console Security</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Admin Console Security." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 3</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><span class="current"><a href="AdminSecurity_Help.html">Admin Console Security</a></span></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="AdminGeneral_Help.html">管理控制台设置</a></div><div class="center"><a href="webconsole.html">Web Console</a></div><div class="next"><a href="AdminListeners_General_Help.html">Admin Listeners General</a> »</div></div> <h1>Admin Console Security</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header><a href="#accessControl">登入限制</a></header><p> <a href="#accessControl_allow">允许列表</a> | <a href="#accessControl_deny">拒绝列表</a></p></section> <section class="toc-row"><header><a href="#adminUser">网络管理员用户</a></header><p> </p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="accessControl"><h3>登入限制<span class="ls-permlink"><a href="#accessControl"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定哪些子网络和/或IP地址可以访问该服务器。 这是影响所有的虚拟主机的服务器级别设置。您还可以为每个虚拟主机设置登入限制。虚拟主机的设置不会覆盖服务器设置。<br/><br/> 是否阻止/允许一个IP是由允许列表与阻止列表共同决定。 如果你想阻止某个特定IP或子网,请在<span class="tagl"><a href="#accessControl_allow">允许列表</a></span>中写入<span class="val">*</span> 或 <span class="val">ALL</span>,并在<span class="tagl"><a href="#accessControl_deny">拒绝列表</a></span>中写入需要阻止的IP或子网。 如果你想允许某个特定的IP或子网,请在<span class="tagl"><a href="#accessControl_deny">拒绝列表</a></span>中写入<span class="val">*</span> 或 <span class="val">ALL</span>,并在<span class="tagl"><a href="#accessControl_allow">允许列表</a></span>中写入需要允许的IP或子网。 单个IP地址是被允许访问还是禁止访问取决于该IP符合的最小限制范围。<br/><br/> 信任的IP或子网络可以在<span class="tagl"><a href="#accessControl_allow">允许列表</a></span>列表中添加后缀“T”来指定。受信任的IP或子网不受连接数/流量限制。 只有服务器级别的登入限制才可以设置受信任的IP或子网。</p> <h4>提示</h4><p>[安全建议] 用此项设置适用于所有虚拟主机的常规限制。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessControl_allow"><h3>允许列表<span class="ls-permlink"><a href="#accessControl_allow"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定允许的IP地址或子网的列表。 可以使用{VAL}*</span>或{VAL}ALL</span>。</p> <h4>Syntax</h4><p>逗号分隔的IP地址或子网列表。 结尾加上“T”可以用来表示一个受信任的IP或子网,如{VAL}192.168.1.*T</span>。</p> <h4>例子</h4><div class="ls-example">子网: <span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1.0/24</span>, <span class="val">192.168.1</span> 或 <span class="val">192.168.1.*</span>. <br/> IPv6 地址: <span class="val">::1</span> 或 <span class="val">[::1]</span> <br/> IPv6 子网: <span class="val">3ffe:302:11:2:20f:1fff:fe29:717c/64</span> 或 <span class="val">[3ffe:302:11:2:20f:1fff:fe29:717c]/64</span>.</div><h4>提示</h4><p>[安全建议] 在服务器级别设置的受信任的IP或子网不受连接/节流限制。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessControl_deny"><h3>拒绝列表<span class="ls-permlink"><a href="#accessControl_deny"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定不允许的IP地址或子网的列表。</p> <h4>Syntax</h4><p>逗号分隔的IP地址或子网列表。 可以使用{VAL}*</span>或{VAL}ALL</span>。</p> <h4>例子</h4><div class="ls-example">子网: <span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1.0/24</span>, <span class="val">192.168.1</span> 或 <span class="val">192.168.1.*</span>. <br/> IPv6 地址: <span class="val">::1</span> 或 <span class="val">[::1]</span> <br/> IPv6 子网: <span class="val">3ffe:302:11:2:20f:1fff:fe29:717c/64</span> 或 <span class="val">[3ffe:302:11:2:20f:1fff:fe29:717c]/64</span>.</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="adminUser"><h3>网络管理员用户<span class="ls-permlink"><a href="#adminUser"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Change the username and password for the WebAdmin Console. The old password must be entered and verified in order to save changes.</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> 版权所有.</footer> </div></div> </body> </html> ��������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������zh-CN/External_LB.html������������������������������������������������������������������������������0000644�����������������00000014263�15027525531�0010523 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Load Balancer</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Load Balancer." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 3</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><span class="current"><a href="External_LB.html">Load Balancer</a></span></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="External_PL.html">Piped Logger</a></div><div class="center"><a href="ExtApp_Help.html">外部应用</a></div><div class="next"> </div></div> <h1>Load Balancer</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header>Load Balancer</header><p> <a href="#extAppName">名称</a> | <a href="#extWorkers">Workers</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="extAppName"><h3>名称<span class="ls-permlink"><a href="#extAppName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>此外部应用程序的唯一名称。 在配置的其他部分中使用该名称时,将使用该名称进行引用。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extWorkers"><h3>Workers<span class="ls-permlink"><a href="#extWorkers"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>List of worker groups previously defined in the external load balancer.</p> <h4>Syntax</h4><p>A comma-separated list in the form ExternalAppType::ExternalAppName</p> <h4>例子</h4><div class="ls-example">fcgi::localPHP, proxy::backend1</div></article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> 版权所有.</footer> </div></div> </body> </html> ���������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������zh-CN/Rewrite_Help.html�����������������������������������������������������������������������������0000644�����������������00000031750�15027525531�0010755 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - 重写帮助</title> <meta name="description" content="OpenLiteSpeed Users' Manual - 重写帮助." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 3</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><span class="current"><a href="Rewrite_Help.html">Rewrite</a></span></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="VHSSL_Help.html">虚拟主机SSL</a></div><div class="center"><a href="config.html">Configuration</a></div><div class="next"><a href="Context_Help.html">Context</a> »</div></div> <h1>重写帮助</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header>重写控制</header><p> <a href="#enableRewrite">启用重写</a> | <a href="#autoLoadHtaccess">自动加载.htaccess</a> | <a href="#rewriteLogLevel">日志级别</a></p></section> <section class="toc-row"><header>Rewrite Map</header><p> <a href="#rewriteMapName">名称</a> | <a href="#rewriteMapLocation">Location</a></p></section> <section class="toc-row"><header>重写规则</header><p> <a href="#rewriteRules">重写规则</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="enableRewrite"><h3>启用重写<span class="ls-permlink"><a href="#enableRewrite"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否启用LiteSpeed的URL重写. 可以在虚拟主机或context级别上自定义此选项, 并且沿目录树继承该选项,直到被其他选项覆。</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="autoLoadHtaccess"><h3>自动加载.htaccess<span class="ls-permlink"><a href="#autoLoadHtaccess"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>如果使用<b>rewritefile</ b>指令的目录的HttpContext不存在,则在初次访问该目录时自动加载.htaccess文件中包含的重写规则。 最初加载后,必须执行正常重启才能使对该.htaccess文件的修改生效。<br/><br/> 虚拟主机级别设置将覆盖服务器级别设置。 默认值:<br/><br/> <b>Server-level:</b> No<br/><br/> <b>VH-Level:</b> Inherit Server-level setting</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="rewriteLogLevel"><h3>日志级别<span class="ls-permlink"><a href="#rewriteLogLevel"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定重写调试输出的详细程度。 此值的范围是<span class="val">0</span>-<span class="val">9</span>。 设置为<span class="val">0</span>将禁用日志记录。 设置为<span class="val">9</span>将产生 最详细的日志。 服务器和虚拟主机的错误日志<span class="tagl"><a href="ServGeneral_Help.html#log_logLevel">日志级别</a></span> 至少设置为<span class="val">INFO</span>才能使此选项生效。 这对测试重写规则很有帮助。</p> <h4>Syntax</h4><p>整数</p> <h4>See Also</h4><p class="ls-text-small">Server <span class="tagl"><a href="ServGeneral_Help.html#log_logLevel">日志级别</a></span>, Virtual Host <span class="tagl"><a href="VHGeneral_Help.html#vhlog_logLevel">日志级别</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="rewriteMapName"><h3>名称<span class="ls-permlink"><a href="#rewriteMapName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies a unique name for the rewrite map at the virtual host level. This name will be used by a mapping-reference in rewrite rules. When referencing this name, one of the following syntaxes should be used: <blockquote><code> $\{MapName:LookupKey\}<br/> $\{MapName:LookupKey|DefaultValue\} </code></blockquote><br/> The implementation of LiteSpeed's rewrite engine follows the specifications of Apache's rewrite engine. For more details about rewrite maps, please refer to <a href=" http://httpd.apache.org/docs/current/mod/mod_rewrite.html " target="_blank" rel="noopener noreferrer"> Apache's mod_rewrite document </a>.</p> <h4>Syntax</h4><p>string</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="rewriteMapLocation"><h3>Location<span class="ls-permlink"><a href="#rewriteMapLocation"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the location of the rewrite map using the syntax <span class="val">MapType:MapSource</span>.<br/> LiteSpeed's rewrite engine supports three types of rewrite maps: <ul> <li><b>Standard Plain Text</b> <blockquote> <b>MapType:</b> txt; <br/> <b>MapSource:</b> file path to a valid plain ASCII file. </blockquote> Each line of this file should contain two elements separated by blank spaces. The first element is the key and the second element is the value. Comments can be added with a leading "<span class="val">#</span>" sign. </li> <li><b>Randomized Plain Text</b> <blockquote> <b>MapType:</b> rnd;<br/> <b>MapSource:</b> file path of a valid plain ASCII file. </blockquote> File format is similar to the Standard Plain Text file, except that the second element can contain multiple choices separated by a "<span class="val">|</span>" sign and chosen randomly by the rewrite engine. </li> <li><b>Internal Function</b> <blockquote> <b>MapType:</b> int;<br/> <b>MapSource:</b> Internal string function </blockquote> 4 functions are available: <ul> <li><b>toupper:</b> converts lookup key to upper cases.</li> <li><b>tolower:</b> converts lookup key to lower cases.</li> <li><b>escape:</b> perform URL encoding on lookup key.</li> <li><b>unescape:</b> perform URL decoding on lookup key.</li> </ul> </li> The following map types available in Apache have not been implemented in LiteSpeed:<br/> Hash File and External Rewriting Program. </ul> The implementation of LiteSpeed's rewrite engine follows the specifications of Apache's rewrite engine. For more details about rewrite map, please refer to <a href=" http://httpd.apache.org/docs/current/mod/mod_rewrite.html " target="_blank" rel="noopener noreferrer"> Apache's mod_rewrite document </a>.</p> <h4>Syntax</h4><p>String</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="rewriteRules"><h3>重写规则<span class="ls-permlink"><a href="#rewriteRules"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定虚拟主机级别的重写规则。<br/><br/> 请勿在此处添加任何目录级重写规则。 如果您在.htaccess有任何目录级的重写规则,则应该使用uri"/"创建一个静态context, 并在那里添加重写规则。 <br/><br/> 重写规则由一个<span class="val">RewriteRule</span>组成,并可可以在多个<span class="val">RewriteCond</span>之后。 <ul> <li>每行仅能有一条规则</li> <li> <span class="val">RewriteCond</span> 和 <span class="val">RewriteRule</span> 遵循Apache的rewrite语法。 只需从Apache配置文件中复制并粘贴重写规则即可。 </li> <li> LiteSpeed和Apache mod_rewrite之间有细微差别: <ul> <li> <span class="val">%\{LA-U:variable\}</span> and <span class="val">%\{LA-F:variable\}</span> 在Litespeed 重写中将被忽略 </li> <li> Litespeed中加入了两个新变量: <span class="val">%\{CURRENT_URI\}</span>表示正在处理的URL <span class="val">%\{SCRIPT_NAME\}</span>表示为相应的CGI环境变量。 </li> <li> Litespeed在遇到<span class="val">[L]</span>后为了避免循环将停止处理此及此后的重写规则 而Apache mod_rewrite将仅停止处理该条重写规则。此行为类似于apachemod_rewrite中的<span class="val">[END]</span>标志。 </li> </ul> </li> </ul><br/> LiteSpeed的重写规则遵循Apache的重写规范。 有关重写规则的更多详细信息,请参阅 <a href=" http://httpd.apache.org/docs/current/mod/mod_rewrite.html " target="_blank" rel="noopener noreferrer"> Apache's mod_rewrite document(英文文档) </a> 和 <a href=" http://httpd.apache.org/docs/current/rewrite/ " target="_blank" rel="noopener noreferrer"> Apache's URL rewriting guide(英文文档) </a>.</p> <h4>Syntax</h4><p>string</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> 版权所有.</footer> </div></div> </body> </html> ������������������������zh-CN/Listeners_General_Help.html�������������������������������������������������������������������0000644�����������������00000026276�15027525531�0012750 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - 侦听器设置</title> <meta name="description" content="OpenLiteSpeed Users' Manual - 侦听器设置." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 3</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><span class="current"><a href="Listeners_General_Help.html">Listener General</a></span></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="Module_Help.html">Module Configuration</a></div><div class="center"><a href="config.html">Configuration</a></div><div class="next"><a href="Listeners_SSL_Help.html">侦听器SSL</a> »</div></div> <h1>侦听器设置</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header>地址设定</header><p> <a href="#listenerName">侦听器名称</a> | <a href="#listenerIP">IP Address</a> | <a href="#listenerPort">端口</a> | <a href="#listenerBinding">绑定</a> | <a href="#reusePort">启用REUSEPORT</a> | <a href="#listenerSecure">安全</a></p></section> <section class="toc-row"><header><a href="#virtualHostMapping">虚拟主机映射</a></header><p> <a href="#virtualHostName">虚拟主机</a> | <a href="#domainName">域名</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="listenerName"><h3>侦听器名称<span class="ls-permlink"><a href="#listenerName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>此侦听器的唯一名称。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="listenerIP"><h3>IP Address<span class="ls-permlink"><a href="#listenerIP"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定此监听器的IP地址.所有可用的IP地址都列出了. IPv6地址应包含"[ ]".<br/><br/> 如果要监听所有IPV4地址, 选择 <span class="val">ANY</span>. 要监听所有IPV4和IPV6地址,选择 <span class="val">[ANY]</span>.<br/><br/> 为了同时为IPv4和IPv6客户端提供服务,应使用IPv4映射的IPv6地址代替纯IPv4地址。 IPv4映射的IPv6地址应写为[::FFFF:x.x.x.x].</p> <h4>Syntax</h4><p>从列表中选择</p> <h4>提示</h4><p>[安全建议] 如果您的计算机在不同的子网中具有多个IP, 您可以选择特定的IP以仅允许来自相应子网的流量。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="listenerPort"><h3>端口<span class="ls-permlink"><a href="#listenerPort"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定侦听器的TCP端口。 只有超级用户(root)可以使用低于<span class="val">1024</span>的端口。 端口<span class="val">80</span>是默认的HTTP端口。 端口<span class="val">443</span>是默认的HTTPS端口。</p> <h4>Syntax</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="listenerBinding"><h3>绑定<span class="ls-permlink"><a href="#listenerBinding"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定侦听器分配给哪个lshttpd子进程。 通过手动将侦听器与进程相关联,可以使用不同的子进程来处理对不同侦听器的请求。 默认情况下,将侦听器分配给所有子进程。</p> <h4>Syntax</h4><p>从复选框中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="reusePort"><h3>启用REUSEPORT<span class="ls-permlink"><a href="#reusePort"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>使用SO_REUSEPORT套接字选项将传入流量分配给多个工作进程。 此设置仅对multi-worker可证有效。 启用后,所有工作程序都将自动绑定到此侦听器,并且将忽略“绑定”配置。<br/><br/> Default value: On</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="listenerSecure"><h3>安全<span class="ls-permlink"><a href="#listenerSecure"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定这是否是安全(SSL)侦听器。 对于安全的侦听器,需要正确设置其他SSL设置。</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="virtualHostMapping"><h3>虚拟主机映射<span class="ls-permlink"><a href="#virtualHostMapping"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定侦听器和虚拟主机之间的关系。 侦听器和虚拟主机通过域名关联。 HTTP请求将被路由到具有匹配域名的虚拟主机。 一个侦听器可以映射到多个虚拟主机以获取不同的域名。 也可以从不同的侦听器映射一个虚拟主机。 一个侦听器可以允许一个具有域名值“*”的虚拟主机。 如果侦听器的映射中没有明确匹配的域名, 侦听器会将请求转发到含有"*"域名的虚拟主机。</p> <h4>提示</h4><p>[性能] 仅添加必要的映射。 如果侦听器仅映射到一个虚拟主机,则仅设置一个通配符映射“*”。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="virtualHostName"><h3>虚拟主机<span class="ls-permlink"><a href="#virtualHostName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定虚拟主机的名称。</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="domainName"><h3>域名<span class="ls-permlink"><a href="#domainName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定映射域名。域名不区分大小写,如果带有"www.", "www."则会移除,允许使用通配符"*"和"?" "?"仅代表一个字符,"*"代表任意数量的字符, 不允许出现重复域名</p> <h4>Syntax</h4><p>Comma-separated list.</p> <h4>例子</h4><div class="ls-example">www?.example.com<br/> "*.mydomain.com" will match all subdomains of mydomain.com.<br/> "*" by itself is the catchall domain and will match any unmatched domain names.</div><h4>提示</h4><p><span title="Performance" class="ls-icon-performance"></span> If a listener is dedicated to one virtual host, always use <span class="val">*</span> for the domain name to avoid unnecessary checking. Domain names with wildcard characters (other than the catchall domain) should be avoided whenever possible.</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> 版权所有.</footer> </div></div> </body> </html> ����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������zh-CN/AdminListeners_SSL_Help.html������������������������������������������������������������������0000644�����������������00000044710�15027525531�0012776 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Admin Listeners SSL</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Admin Listeners SSL." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 3</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <span class="current"><a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a></span> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="AdminListeners_General_Help.html">Admin Listeners General</a></div><div class="center"><a href="webconsole.html">Web Console</a></div><div class="next"> </div></div> <h1>Admin Listeners SSL</h1><section class="ls-spacer-small-bottom">Admin Listeners are dedicated to the Admin Server. Secure (SSL) listeners are recommended for the Admin Server.</section> <h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header><a href="#sslCert">SSL私钥和证书</a></header><p> <a href="#keyFile">私钥文件</a> | <a href="#certFile">证书文件</a> | <a href="#certChain">证书链</a> | <a href="#CACertPath">CA证书路径</a> | <a href="#CACertFile">CA证书文件</a></p></section> <section class="toc-row"><header><a href="#sslProtocolSetting">SSL协议</a></header><p> <a href="#ciphers">密码套件</a> | <a href="#enableECDHE">启用ECDH密钥交换</a> | <a href="#enableDHE">启用DH密钥交换</a> | <a href="#DHParam">DH参数</a></p></section> <section class="toc-row"><header>Security & Features</header><p> <a href="#renegProtection">SSL密钥重新协商保护</a> | <a href="#sslSessionCache">启用SSL会话缓存</a> | <a href="#sslSessionTickets">启用会话记录单</a> | <a href="#enableSpdy">启用 SPDY/HTTP2/HTTP3</a> | <a href="#allowQuic">打开HTTP3/QUIC (UDP) 端口</a></p></section> <section class="toc-row"><header>Client Verification</header><p> <a href="#clientVerify">Client Verification</a> | <a href="#verifyDepth">验证深度</a> | <a href="#crlPath">客户端吊销路径</a> | <a href="#crlFile">客户端吊销文件</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="sslCert"><h3>SSL私钥和证书<span class="ls-permlink"><a href="#sslCert"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>每个SSL侦听器都需要成对的SSL私钥和SSL证书。 多个SSL侦听器可以共享相同的密钥和证书。<br/> 您可以使用SSL软件包自行生成SSL私钥, 例如OpenSSL。 SSL证书也可以从授权证书颁发机构(如VeriSign或Thawte)购买。 您也可以自己签署证书。 自签名证书将不受Web浏览器的信任,并且不应在公共网站上使用。 但是,自签名证书足以供内部使用,例如 用于加密到LiteSpeed Web服务器的WebAdmin控制台的流量。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="keyFile"><h3>私钥文件<span class="ls-permlink"><a href="#keyFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>SSL私钥文件的文件名。 密钥文件不应被加密。</p> <h4>Syntax</h4><p>文件名可以是绝对路径,也可以是相对于$SERVER_ROOT的相对路径。</p> <h4>提示</h4><p>[安全建议] 私钥文件应放在一个安全的目录中,该目录应 允许对运行服务器的用户具有只读的访问权限。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="certFile"><h3>证书文件<span class="ls-permlink"><a href="#certFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>SSL证书文件的文件名。</p> <h4>Syntax</h4><p>文件名可以是绝对路径,也可以是相对于$SERVER_ROOT的相对路径。</p> <h4>提示</h4><p>[安全建议] 私钥文件应放在一个安全的目录中,该目录应 允许对运行服务器的用户具有只读的访问权限。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="certChain"><h3>证书链<span class="ls-permlink"><a href="#certChain"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定证书是否为证书链。 存储证书链的文件必须为PEM格式, 并且证书必须按照从最低级别(实际的客户端或服务器证书)到最高级别(Root)CA的链接顺序。</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="CACertPath"><h3>CA证书路径<span class="ls-permlink"><a href="#CACertPath"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定证书颁发机构(CA)证书的目录。 这些证书用于客户端证书身份验证和构建服务器证书链,除了服务器证书之外,这些证书还将发送到浏览器。</p> <h4>Syntax</h4><p>path</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="CACertFile"><h3>CA证书文件<span class="ls-permlink"><a href="#CACertFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定包含证书颁发机构(CA)证书的证书链文件。 按照优先顺序,此文件只是PEM编码的证书文件的串联。 这可以用作替代或 除了<span class="tagl"><a href="#CACertPath">CA证书路径</a></span>。 这些证书用于客户端证书身份验证和构建服务器证书链,除了服务器证书之外,这些证书还将发送到浏览器。</p> <h4>Syntax</h4><p>文件名可以是绝对路径,也可以是相对于$SERVER_ROOT的相对路径。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslProtocolSetting"><h3>SSL协议<span class="ls-permlink"><a href="#sslProtocolSetting"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>自定义侦听器接受的SSL协议。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="ciphers"><h3>密码套件<span class="ls-permlink"><a href="#ciphers"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the cipher suite to be used when negotiating the SSL handshake. LSWS supports cipher suites implemented in SSL v3.0, TLS v1.0, TLS v1.2, and TLS v1.3.</p> <h4>Syntax</h4><p>Colon-separated string of cipher specifications.</p> <h4>例子</h4><div class="ls-example">ECDHE-RSA-AES128-SHA256:RC4:HIGH:!MD5:!aNULL:!EDH</div><h4>提示</h4><p><span title="Security" class="ls-icon-security"></span> We recommend leaving this field blank to use our default cipher which follows SSL cipher best practices.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableECDHE"><h3>启用ECDH密钥交换<span class="ls-permlink"><a href="#enableECDHE"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>允许使用Diffie-Hellman密钥交换进行进一步的SSL加密。</p> <h4>Syntax</h4><p>从单选框选择</p> <h4>提示</h4><p>[安全建议] ECDH密钥交换比仅使用RSA密钥更安全。 ECDH和DH密钥交换安全性相同。<br/><br/> [性能] 启用ECDH密钥交换会增加CPU负载,并且比仅使用RSA密钥要慢。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableDHE"><h3>启用DH密钥交换<span class="ls-permlink"><a href="#enableDHE"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>允许使用Diffie-Hellman密钥交换进行进一步的SSL加密。</p> <h4>Syntax</h4><p>从单选框选择</p> <h4>提示</h4><p>[安全建议] DH密钥交换比仅使用RSA密钥更安全。 ECDH和DH密钥安全性相同。<br/><br/> [x性能] 启用DH密钥交换将增加CPU负载,并且比ECDH密钥交换和RSA都慢。 如果可用,则首选ECDH密钥交换。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="DHParam"><h3>DH参数<span class="ls-permlink"><a href="#DHParam"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定DH密钥交换所需的Diffie-Hellman参数文件的位置。</p> <h4>Syntax</h4><p>文件名可以是绝对路径,也可以是相对于$SERVER_ROOT的相对路径。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="renegProtection"><h3>SSL密钥重新协商保护<span class="ls-permlink"><a href="#renegProtection"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否启用SSL密钥重新协商保护以 防御基于SSL握手的攻击。 默认值为“是”。</p> <h4>Syntax</h4><p>从单选框选择</p> <h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> 可以在侦听器和虚拟主机级别启用此设置。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslSessionCache"><h3>启用SSL会话缓存<span class="ls-permlink"><a href="#sslSessionCache"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>使用OpenSSL的默认设置启用会话ID缓存。 服务器级别设置必须设置为“是”才能使虚拟主机设置生效。<br/> 默认值:<br/> <b>服务器级别:</b> Yes<br/> <b>虚拟主机级别:</b> Yes</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslSessionTickets"><h3>启用会话记录单<span class="ls-permlink"><a href="#sslSessionTickets"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>使用OpenSSL的默认会话票证设置启用会话记录单。 服务器级别设置必须设置为“是”才能使虚拟主机设置生效。<br/> 默认值:<br/> <b>服务器级别:</b> Yes<br/> <b>虚拟主机级别:</b> Yes</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableSpdy"><h3>启用 SPDY/HTTP2/HTTP3<span class="ls-permlink"><a href="#enableSpdy"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>有选择地启用HTTP/3,HTTP/2和SPDY HTTP网络协议。<br/><br/> 如果要禁用SPDY,HTTP/2和HTTP3,请选中“无”,并取消选中所有其他框。<br/> Default value: All enabled</p> <h4>Syntax</h4><p>从复选框中选择</p> <h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> 可以在侦听器和虚拟主机级别上设置此设置。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="allowQuic"><h3>打开HTTP3/QUIC (UDP) 端口<span class="ls-permlink"><a href="#allowQuic"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>允许对映射到该监听器的虚拟主机使用HTTP3/QUIC网络协议. 为了使此设置生效,还必须在服务器级别将<span class="tagl"><a href="ServTuning_Help.html#quicEnable">启用HTTP3/QUIC</a></span>设置为<span class="val">是</span>。 默认值为<span class="val">是</span>。</p> <h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> 当此设置设置为<span class="val">是</span>时,仍可以通过<span class="tagl"><a href="VHSSL_Help.html#vhEnableQuic">Enable HTTP3/QUIC</a></span>设置在虚拟主机级别禁用HTTP3/QUIC。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="clientVerify"><h3>Client Verification<span class="ls-permlink"><a href="#clientVerify"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p> Specifies the type of client certifcate authentication. Available types are: <ul> <li><b>None:</b> No client certificate is required.</li> <li><b>Optional:</b> Client certificate is optional.</li> <li><b>Require:</b> The client must has valid certificate.</li> <li><b>Optional_no_ca:</b> Same as optional.</li> </ul> The default is "None".</p> <h4>Syntax</h4><p>从列表中选择</p> <h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> "None" or "Require" are recommended.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="verifyDepth"><h3>验证深度<span class="ls-permlink"><a href="#verifyDepth"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p> Specifies how deeply a certificate should be verified before determining that the client does not have a valid certificate. The default is "1".</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="crlPath"><h3>客户端吊销路径<span class="ls-permlink"><a href="#crlPath"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p> Specifies the directory containing PEM-encoded CA CRL files for revoked client certificates. The files in this directory have to be PEM-encoded. These files are accessed through hash filenames, hash-value.rN. Please refer to openSSL or Apache mod_ssl documentation regarding creating the hash filename.</p> <h4>Syntax</h4><p>path</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="crlFile"><h3>客户端吊销文件<span class="ls-permlink"><a href="#crlFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p> Specifies the file containing PEM-encoded CA CRL files enumerating revoked client certificates. This can be used as an alternative or in addition to <span class="tagl"><a href="#crlPath">客户端吊销路径</a></span>.</p> <h4>Syntax</h4><p>文件名可以是绝对路径,也可以是相对于$SERVER_ROOT的相对路径。</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> 版权所有.</footer> </div></div> </body> </html> ��������������������������������������������������������zh-CN/Module_Context.html���������������������������������������������������������������������������0000644�����������������00000035772�15027525531�0011325 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Module Handler Context</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Module Handler Context." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 3</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><span class="current"><a href="Module_Context.html">Module Handler Context</a></span></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="App_Server_Context.html">App Server Context</a></div><div class="center"><a href="Context_Help.html">Context</a></div><div class="next"> </div></div> <h1>Module Handler Context</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header><a href="#moduleContext">Module Handler Context</a></header><p> <a href="#expuri">URI</a> | <a href="#moduleNameSel">模块</a> | <a href="#extraHeaders">标头控制</a> | <a href="#realm">域</a> | <a href="#authName">认证名称</a> | <a href="#required">Require(授权的用户/组)</a> | <a href="#accessAllowed">允许访问列表</a> | <a href="#accessDenied">拒绝访问列表</a> | <a href="#extAuthorizer">Authorizer</a> | <a href="#addDefaultCharset">添加默认的字符集</a> | <a href="#defaultCharsetCustomized">自定义默认字符集</a> | <a href="#enableIpGeo">启用IP地理定位</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="moduleContext"><h3>Module Handler Context<span class="ls-permlink"><a href="#moduleContext"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>A module handler context will associate a URI with a registered module. Modules need to be registered at Server Module Configuration tab.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expuri"><h3>URI<span class="ls-permlink"><a href="#expuri"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the URI for this context.</p> <h4>Syntax</h4><p>指定此context下的URI。这个URI应该以"/"开始。 如果一个URI以"/"结束,那么该context将包含这个URI下的所有下级URI。如果context类型映射到系统目录上,则必须添加结尾的"/"</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#location">位置</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="moduleNameSel"><h3>模块<span class="ls-permlink"><a href="#moduleNameSel"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>模块名称。 该模块必须在“服务器模块配置”选项卡下配置。 配置后,模块名称将在侦听器和虚拟主机配置的下拉框中显示。</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extraHeaders"><h3>标头控制<span class="ls-permlink"><a href="#extraHeaders"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定要添加的附加响应/请求头。可以添加每行一个来添加多个头指令。"NONE "可以用来禁止父头继承。如果没有提供,则假定为 "Header"。</p> <h4>Syntax</h4><p>[Header]|RequestHeader [condition] set|append|merge|add|unset header [value] [early|env=[!]variable]</p> <h4>例子</h4><div class="ls-example">set Cache-control no-cache<br/> append Cache-control no-store<br/> Header set My-header cust_header_val<br/> RequestHeader set My-req-header cust_req_header_val</div><h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> 语法和用法类似于 <a href="https://httpd.apache.org/docs/2.2/mod/mod_headers.html#header" target="_blank" rel="noopener noreferrer">Apache's mod_headers directives</a><br/><br/> <span title="Information" class="ls-icon-info"></span> The 'Header' directive is is optional and can be excluded or left in when copying rules from elsewhere without issue.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="realm"><h3>域<span class="ls-permlink"><a href="#realm"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定这个context下的realm授权。 当指定时,必须提供有效的用户和用户名来访问这个context。 <span class="tagl"><a href="VHSecurity_Help.html#realms">Realms授权</a></span>需要在<span class="tagP"><a href="#VHSecurity_Help">虚拟主机安全</a></span>部分进行设置。 此设置使用每个realm的<span class="tagl"><a href="VHSecurity_Help.html#realmName">域名称</a></span>。</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="authName"><h3>认证名称<span class="ls-permlink"><a href="#authName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>为当前context下的realm认证指定一个替代的名称。 如果没有指定,原realm名称将被使用。 认证名称将显示在浏览器登陆弹出窗口。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="required"><h3>Require(授权的用户/组)<span class="ls-permlink"><a href="#required"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定哪些用户/用户组可以访问此context。 这里允许你使用一个用户/组数据库(在 <span class="tagl"><a href="#realm">域</a></span>中指定)访问多个context, 但只允许该数据库下特定的用户/组访问这个context。</p> <h4>Syntax</h4><p>Syntax is compatible with Apache's Require directive. For example: <ul> <li><span class="val">user username [username ...]</span><br/> Only listed users can access this context.</li> <li> <span class="val">group groupid [groupid ...]</span><br/> Only users belonging to the listed groups can access this context.</li> </ul> If this setting is not specified, all valid users will be allowed to access this resource.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessAllowed"><h3>允许访问列表<span class="ls-permlink"><a href="#accessAllowed"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定允许访问这个context下资源的IP地址或子网。综合 <span class="tagl"><a href="#accessDenied">拒绝访问列表</a></span>项的配置以及服务器/虚拟主机级别访问控制, 可访问性将以客户端IP所符合的最小范围来确定。</p> <h4>Syntax</h4><p>Comma-delimited list of IPs/sub-networks.</p> <h4>例子</h4><div class="ls-example">网络可以写成<span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span> 或<span class="val">192.168.1.*</span>。</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessDenied"><h3>拒绝访问列表<span class="ls-permlink"><a href="#accessDenied"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定哪个IP地址或子网不被允许访问这个context下的资源。 综合<span class="tagl"><a href="#accessAllowed">允许访问列表</a></span>项的配置以及服务器/虚拟主机级别访问控制, 可访问性将以客户端IP所符合的最小范围来确定。</p> <h4>Syntax</h4><p>Comma-delimited list of IPs/sub-networks.</p> <h4>例子</h4><div class="ls-example">子网络可以写成<span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span> 或<span class="val">192.168.1.*</span>。</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAuthorizer"><h3>Authorizer<span class="ls-permlink"><a href="#extAuthorizer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定可用于生成授权/未授权 decisions的外部应用程序。 目前,仅FastCGI授权器可用。 有关FastCGI授权者角色的更多详细信息, 请访问<a href="https://fastcgi-archives.github.io/" target="_blank" rel="noopener noreferrer">https://fastcgi-archives.github.io/</a>。</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="addDefaultCharset"><h3>添加默认的字符集<span class="ls-permlink"><a href="#addDefaultCharset"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>S指定当内容类型是"text/html"或"text/plain"且没有参数时,是否添加字符集标记到"Content-Type"响应报头中。当设置为<span class="val">Off</span>时,该功能禁用。当设置为<span class="val">On</span>时,将添加<span class="tagl"><a href="#defaultCharsetCustomized">自定义默认字符集</a></span>中指定的字符集,如果没有指定,将添加默认的"iso-8859-1"字符集。</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="defaultCharsetCustomized"><h3>自定义默认字符集<span class="ls-permlink"><a href="#defaultCharsetCustomized"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定一个字符集当<span class="tagl"><a href="#addDefaultCharset">添加默认的字符集</a></span>是<span class="val">On</span>时使用。这是可选的。默认值是<span class="val">iso-8859-1</span>。当<span class="tagl"><a href="#addDefaultCharset">添加默认的字符集</a></span>是<span class="val">Off</span>时本设置将不生效。</p> <h4>Syntax</h4><p>Name of a character set.</p> <h4>例子</h4><div class="ls-example">utf-8</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableIpGeo"><h3>启用IP地理定位<span class="ls-permlink"><a href="#enableIpGeo"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否启用IP地理定位查找。 可以在服务器级别,虚拟主机级别,或context级别设置。</p> <h4>Syntax</h4><p>从单选框选择</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="ServGeneral_Help.html#useIpInProxyHeader">使用报头中的客户端IP</a></span>, <span class="tagl"><a href="ServGeneral_Help.html#geoipDBFile">数据库文件路径</a></span>,</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> 版权所有.</footer> </div></div> </body> </html> ������zh-CN/webconsole.html�������������������������������������������������������������������������������0000644�����������������00000012556�15027525531�0010527 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Web Console</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Web Console." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 3</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><span class="current"><a href="webconsole.html">Web Console</a></span> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="config.html">Configuration</a></div><div class="center"><a href="index.html">主页</a></div><div class="next"><a href="CompilePHP_Help.html">编译PHP</a> »</div></div> <h1>Web Console</h1> <p>Web控制台可以控制一些Web控制台的设置. 其中包括:</p> <ul> <li>会话超时</li> <li>日志设定</li> <li>访问控制</li> <li>创建/删除管理员用户</li> <li>重置管理员密码</li> <li>WebAdmin侦听器和SSL设置</li> </ul></article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> 版权所有.</footer> </div></div> </body> </html> ��������������������������������������������������������������������������������������������������������������������������������������������������zh-CN/Listeners_SSL_Help.html�����������������������������������������������������������������������0000644�����������������00000054237�15027525531�0012032 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - 侦听器SSL</title> <meta name="description" content="OpenLiteSpeed Users' Manual - 侦听器SSL." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 3</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><span class="current"><a href="Listeners_SSL_Help.html">Listener SSL</a></span></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="Listeners_General_Help.html">侦听器设置</a></div><div class="center"><a href="config.html">Configuration</a></div><div class="next"><a href="Templates_Help.html">虚拟主机模板</a> »</div></div> <h1>侦听器SSL</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header><a href="#sslCert">SSL私钥和证书</a></header><p> <a href="#keyFile">私钥文件</a> | <a href="#certFile">证书文件</a> | <a href="#certChain">证书链</a> | <a href="#CACertPath">CA证书路径</a> | <a href="#CACertFile">CA证书文件</a></p></section> <section class="toc-row"><header><a href="#sslProtocolSetting">SSL协议</a></header><p> <a href="#ciphers">密码套件</a> | <a href="#enableECDHE">启用ECDH密钥交换</a> | <a href="#enableDHE">启用DH密钥交换</a> | <a href="#DHParam">DH参数</a></p></section> <section class="toc-row"><header>Security & Features</header><p> <a href="#renegProtection">SSL密钥重新协商保护</a> | <a href="#sslSessionCache">启用SSL会话缓存</a> | <a href="#sslSessionTickets">启用会话记录单</a> | <a href="#enableSpdy">启用 SPDY/HTTP2/HTTP3</a> | <a href="#allowQuic">打开HTTP3/QUIC (UDP) 端口</a></p></section> <section class="toc-row"><header><a href="#sslOCSP">OCSP装订</a></header><p> <a href="#enableStapling">启用 OCSP 装订</a> | <a href="#ocspRespMaxAge">OCSP响应最大有效时间(秒)</a> | <a href="#ocspResponder">OCSP响应服务器</a> | <a href="#ocspCACerts">OCSP CA证书</a></p></section> <section class="toc-row"><header>Client Verification</header><p> <a href="#clientVerify">Client Verification</a> | <a href="#verifyDepth">验证深度</a> | <a href="#crlPath">客户端吊销路径</a> | <a href="#crlFile">客户端吊销文件</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="sslCert"><h3>SSL私钥和证书<span class="ls-permlink"><a href="#sslCert"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>每个SSL侦听器都需要成对的SSL私钥和SSL证书。 多个SSL侦听器可以共享相同的密钥和证书。<br/> 您可以使用SSL软件包自行生成SSL私钥, 例如OpenSSL。 SSL证书也可以从授权证书颁发机构(如VeriSign或Thawte)购买。 您也可以自己签署证书。 自签名证书将不受Web浏览器的信任,并且不应在公共网站上使用。 但是,自签名证书足以供内部使用,例如 用于加密到LiteSpeed Web服务器的WebAdmin控制台的流量。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="keyFile"><h3>私钥文件<span class="ls-permlink"><a href="#keyFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>SSL私钥文件的文件名。 密钥文件不应被加密。</p> <h4>Syntax</h4><p>文件名可以是绝对路径,也可以是相对于$SERVER_ROOT的相对路径。</p> <h4>提示</h4><p>[安全建议] 私钥文件应放在一个安全的目录中,该目录应 允许对运行服务器的用户具有只读的访问权限。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="certFile"><h3>证书文件<span class="ls-permlink"><a href="#certFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>SSL证书文件的文件名。</p> <h4>Syntax</h4><p>文件名可以是绝对路径,也可以是相对于$SERVER_ROOT的相对路径。</p> <h4>提示</h4><p>[安全建议] 私钥文件应放在一个安全的目录中,该目录应 允许对运行服务器的用户具有只读的访问权限。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="certChain"><h3>证书链<span class="ls-permlink"><a href="#certChain"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定证书是否为证书链。 存储证书链的文件必须为PEM格式, 并且证书必须按照从最低级别(实际的客户端或服务器证书)到最高级别(Root)CA的链接顺序。</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="CACertPath"><h3>CA证书路径<span class="ls-permlink"><a href="#CACertPath"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定证书颁发机构(CA)证书的目录。 这些证书用于客户端证书身份验证和构建服务器证书链,除了服务器证书之外,这些证书还将发送到浏览器。</p> <h4>Syntax</h4><p>path</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="CACertFile"><h3>CA证书文件<span class="ls-permlink"><a href="#CACertFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定包含证书颁发机构(CA)证书的证书链文件。 按照优先顺序,此文件只是PEM编码的证书文件的串联。 这可以用作替代或 除了<span class="tagl"><a href="#CACertPath">CA证书路径</a></span>。 这些证书用于客户端证书身份验证和构建服务器证书链,除了服务器证书之外,这些证书还将发送到浏览器。</p> <h4>Syntax</h4><p>文件名可以是绝对路径,也可以是相对于$SERVER_ROOT的相对路径。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslProtocolSetting"><h3>SSL协议<span class="ls-permlink"><a href="#sslProtocolSetting"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>自定义侦听器接受的SSL协议。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="ciphers"><h3>密码套件<span class="ls-permlink"><a href="#ciphers"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the cipher suite to be used when negotiating the SSL handshake. LSWS supports cipher suites implemented in SSL v3.0, TLS v1.0, TLS v1.2, and TLS v1.3.</p> <h4>Syntax</h4><p>Colon-separated string of cipher specifications.</p> <h4>例子</h4><div class="ls-example">ECDHE-RSA-AES128-SHA256:RC4:HIGH:!MD5:!aNULL:!EDH</div><h4>提示</h4><p><span title="Security" class="ls-icon-security"></span> We recommend leaving this field blank to use our default cipher which follows SSL cipher best practices.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableECDHE"><h3>启用ECDH密钥交换<span class="ls-permlink"><a href="#enableECDHE"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>允许使用Diffie-Hellman密钥交换进行进一步的SSL加密。</p> <h4>Syntax</h4><p>从单选框选择</p> <h4>提示</h4><p>[安全建议] ECDH密钥交换比仅使用RSA密钥更安全。 ECDH和DH密钥交换安全性相同。<br/><br/> [性能] 启用ECDH密钥交换会增加CPU负载,并且比仅使用RSA密钥要慢。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableDHE"><h3>启用DH密钥交换<span class="ls-permlink"><a href="#enableDHE"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>允许使用Diffie-Hellman密钥交换进行进一步的SSL加密。</p> <h4>Syntax</h4><p>从单选框选择</p> <h4>提示</h4><p>[安全建议] DH密钥交换比仅使用RSA密钥更安全。 ECDH和DH密钥安全性相同。<br/><br/> [x性能] 启用DH密钥交换将增加CPU负载,并且比ECDH密钥交换和RSA都慢。 如果可用,则首选ECDH密钥交换。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="DHParam"><h3>DH参数<span class="ls-permlink"><a href="#DHParam"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定DH密钥交换所需的Diffie-Hellman参数文件的位置。</p> <h4>Syntax</h4><p>文件名可以是绝对路径,也可以是相对于$SERVER_ROOT的相对路径。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="renegProtection"><h3>SSL密钥重新协商保护<span class="ls-permlink"><a href="#renegProtection"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否启用SSL密钥重新协商保护以 防御基于SSL握手的攻击。 默认值为“是”。</p> <h4>Syntax</h4><p>从单选框选择</p> <h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> 可以在侦听器和虚拟主机级别启用此设置。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslSessionCache"><h3>启用SSL会话缓存<span class="ls-permlink"><a href="#sslSessionCache"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>使用OpenSSL的默认设置启用会话ID缓存。 服务器级别设置必须设置为“是”才能使虚拟主机设置生效。<br/> 默认值:<br/> <b>服务器级别:</b> Yes<br/> <b>虚拟主机级别:</b> Yes</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslSessionTickets"><h3>启用会话记录单<span class="ls-permlink"><a href="#sslSessionTickets"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>使用OpenSSL的默认会话票证设置启用会话记录单。 服务器级别设置必须设置为“是”才能使虚拟主机设置生效。<br/> 默认值:<br/> <b>服务器级别:</b> Yes<br/> <b>虚拟主机级别:</b> Yes</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableSpdy"><h3>启用 SPDY/HTTP2/HTTP3<span class="ls-permlink"><a href="#enableSpdy"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>有选择地启用HTTP/3,HTTP/2和SPDY HTTP网络协议。<br/><br/> 如果要禁用SPDY,HTTP/2和HTTP3,请选中“无”,并取消选中所有其他框。<br/> Default value: All enabled</p> <h4>Syntax</h4><p>从复选框中选择</p> <h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> 可以在侦听器和虚拟主机级别上设置此设置。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="allowQuic"><h3>打开HTTP3/QUIC (UDP) 端口<span class="ls-permlink"><a href="#allowQuic"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>允许对映射到该监听器的虚拟主机使用HTTP3/QUIC网络协议. 为了使此设置生效,还必须在服务器级别将<span class="tagl"><a href="ServTuning_Help.html#quicEnable">启用HTTP3/QUIC</a></span>设置为<span class="val">是</span>。 默认值为<span class="val">是</span>。</p> <h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> 当此设置设置为<span class="val">是</span>时,仍可以通过<span class="tagl"><a href="VHSSL_Help.html#vhEnableQuic">Enable HTTP3/QUIC</a></span>设置在虚拟主机级别禁用HTTP3/QUIC。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslOCSP"><h3>OCSP装订<span class="ls-permlink"><a href="#sslOCSP"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>在线证书状态协议(OCSP)是更加有效的检查数字证书是否有效的方式。 它通过与另一台服务器(OCSP响应服务器)通信,以获取证书有效的验证,而不是通过证书吊销列表(CRL)进行检查。<br/><br/> OCSP装订是对该协议的进一步改进,允许服务器以固定的时间间隔而不是每次请求证书时与OCSP响应程序进行检查。 有关更多详细信息,请参见<a href=" https://zh.wikipedia.org/wiki/%E5%9C%A8%E7%BA%BF%E8%AF%81%E4%B9%A6%E7%8A%B6%E6%80%81%E5%8D%8F%E8%AE%AE " target="_blank" rel="noopener noreferrer"> OCSP Wikipedia页面 </a>。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableStapling"><h3>启用 OCSP 装订<span class="ls-permlink"><a href="#enableStapling"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>确定是否启用OCSP装订,这是一种更有效的验证公钥证书的方式。</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="ocspRespMaxAge"><h3>OCSP响应最大有效时间(秒)<span class="ls-permlink"><a href="#ocspRespMaxAge"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>此选项设置OCSP响应的最大有效时间。 如果OCSP响应早于该最大使用期限,则服务器将与OCSP响应服务器联系以获取新的响应。 默认值为<span class="val">86400 </span>。 通过将此值设置为<span class="val">-1</span>,可以关闭最大有效时间。</p> <h4>Syntax</h4><p>Integer of seconds</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="ocspResponder"><h3>OCSP响应服务器<span class="ls-permlink"><a href="#ocspResponder"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定要使用的OCSP响应服务器的URL。 如果未设置,则服务器将尝试联系OCSP响应服务器 在证书颁发机构的颁发者证书中有详细说明。 某些颁发者证书可能未指定OCSP服务器URL。</p> <h4>Syntax</h4><p>URL starting with <span class="val">http://</span></p> <h4>例子</h4><div class="ls-example"><span class="val">http://rapidssl-ocsp.geotrust.com </span></div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="ocspCACerts"><h3>OCSP CA证书<span class="ls-permlink"><a href="#ocspCACerts"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定存储OCSP证书颁发机构(CA)证书的文件的位置。 这些证书用于检查OCSP响应服务器的响应(并确保这些响应不被欺骗或以其他方式被破坏)。 该文件应包含整个证书链。 如果该文件不包含根证书,则LSWS无需将根证书添加到文件中就应该能够在系统目录中找到该根证书, 但是,如果此验证失败,则应尝试将根证书添加到此文件中。<br/><br/> This setting is optional. If this setting is not set, the server will automatically check <span class="tagl"><a href="#CACertFile">CA证书文件</a></span>.</p> <h4>Syntax</h4><p>文件名可以是绝对路径,也可以是相对于$SERVER_ROOT的相对路径。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="clientVerify"><h3>Client Verification<span class="ls-permlink"><a href="#clientVerify"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p> Specifies the type of client certifcate authentication. Available types are: <ul> <li><b>None:</b> No client certificate is required.</li> <li><b>Optional:</b> Client certificate is optional.</li> <li><b>Require:</b> The client must has valid certificate.</li> <li><b>Optional_no_ca:</b> Same as optional.</li> </ul> The default is "None".</p> <h4>Syntax</h4><p>从列表中选择</p> <h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> "None" or "Require" are recommended.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="verifyDepth"><h3>验证深度<span class="ls-permlink"><a href="#verifyDepth"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p> Specifies how deeply a certificate should be verified before determining that the client does not have a valid certificate. The default is "1".</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="crlPath"><h3>客户端吊销路径<span class="ls-permlink"><a href="#crlPath"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p> Specifies the directory containing PEM-encoded CA CRL files for revoked client certificates. The files in this directory have to be PEM-encoded. These files are accessed through hash filenames, hash-value.rN. Please refer to openSSL or Apache mod_ssl documentation regarding creating the hash filename.</p> <h4>Syntax</h4><p>path</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="crlFile"><h3>客户端吊销文件<span class="ls-permlink"><a href="#crlFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p> Specifies the file containing PEM-encoded CA CRL files enumerating revoked client certificates. This can be used as an alternative or in addition to <span class="tagl"><a href="#crlPath">客户端吊销路径</a></span>.</p> <h4>Syntax</h4><p>文件名可以是绝对路径,也可以是相对于$SERVER_ROOT的相对路径。</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> 版权所有.</footer> </div></div> </body> </html> �����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������zh-CN/ExtApp_Help.html������������������������������������������������������������������������������0000644�����������������00000026715�15027525531�0010542 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - 外部应用</title> <meta name="description" content="OpenLiteSpeed Users' Manual - 外部应用." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 3</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><span class="current"><a href="ExtApp_Help.html">External Apps</a></span></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="ServSecurity_Help.html">服务器安全</a></div><div class="center"><a href="config.html">Configuration</a></div><div class="next"><a href="ScriptHandler_Help.html">脚本处理程序</a> »</div></div> <h1>外部应用</h1><section class="ls-spacer-small-bottom">LiteSpeed网络服务器可以转发外部应用程序的请求,以处理和生成动态内容。 从2.0版本起, LiteSpeed Web Server已经支持了7种外部应用: CGI, FastCGI, web server, servlet engine, LiteSpeed SAPI application, load balancer, and piped logger. <ul> <li> CGI是Common Gateway Interface的缩写. 目前的标准是 CGI/1.1. CGI应用程序在独立的进程中运行. 一个CGI进程将为每个请求启动,并且在完成请求后退出. </li> <li> FastCGI 是一个快速,开源,安全的web服务器接口,它解决了CGI固有的性能问题,而没有引入专有API(应用编程接口), 对于更多的信息,请访问 <a href="https://fastcgi-archives.github.io/">https://fastcgi-archives.github.io/</a>. 在 LiteSpeed Web Server, FastCGI 应用可以发挥两种作用: 创造动态响应 (响应者角色) 或者 授权请求 (授权者的角色). LiteSpeed Web Server进一步定义了两种类型的FastCGI应用程序:本地FastCGI和远程FastCGI. Web服务器可根据需要自动启动本地FastCGI应用程序. Web服务器不会启动远程FastCGI应用程序。 (它们可以在远程计算机或同一计算机上运行) </li> <li> Web服务器是指支持HTTP 1.0/1.1协议的服务器应用程序. LiteSpeed网络服务器可以作为一个透明的反向代理来加速和保护网络服务器和应用服务器. 在与后端网络服务器进行通信时,LiteSpeed将始终尝试利用持久连接,以实现最高性能。 </li> <li> 像Apache Tomcat和Jetty,servlet引擎是实现了Java servlets和Java Server Pages的应用程序. LiteSpeed可以通过AJPv1.3(Apache JServ协议1.3版)与servlet引擎进行通信. Servlet引擎不能由Web服务器启动,可以设置在远程机器上运行. </li> <li> A LiteSpeed SAPI (LiteSpeed Server Application Programming Interface) application is an application that communicates with LiteSpeed Web Server through LSAPI, a fast, scalable server interface specifically designed for LiteSpeed Web Server to achieve maximum efficiency. LSAPI's mechanism of action are similar to FastCGI, but LSAPI applications can be up to 30% faster than comparable FastCGI applications. LSAPI is highly recommended over FastCGI for supported applications. (LSAPI currently supports applications written in PHP, Ruby, and Python.) For more information about LSAPI, please visit <a href="https://www.litespeedtech.com/open-source/litespeed-sapi"> https://www.litespeedtech.com/open-source/litespeed-sapi </a>. </li> <li> A load balancer is a virtual external application, which assigns requests to backend worker applications based on workload. Worker applications can be CGI, FastCGI, web server, servlet engine, or LSAPI applications. Different types of applications can be mixed together under one load balancer. Load balancers and piped loggers cannot be used as worker applications. </li> <li> A piped logger is an application that can process access logs in real-time, writing an access log into database or performing real-time statistics calculations, for example. </li> </ul> Unlike CGI applications, FastCGI applications, LSAPI applications, and servlet engine do not exit after processing a request. The application process will stay/persist and serve as many requests as it can. The socket connection can be reused for multiple requests as well. External applications can be set up in the {PAGE=ExtApp_Help} section. External applications cannot, however, function on their own. Additional settings must be configured so that the web server knows which requests to send to which application. There are two ways to to configure this in LiteSpeed Web Server: <ol> <li> Set the external application as a handler for a specific context.</li> <li> Set the external application as a handler of a script language via file suffix binding.</li> </ol> FastCGI applications, LSAPI applications, web servers, servlet engines, and load balancers have to be defined in the {PAGE=ExtApp_Help} section before you can configure them to handle a context or script suffix. It is not necessary to define CGI applications in the {PAGE=ExtApp_Help} section. External applications can be configured at the server level or at the virtual host level. When configured at the server level, the application can be used by all virtual hosts. When configured at the virtual host level, it can only be used by that virtual host.</section> <h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header>新外部应用</header><p> <a href="#extAppType">类型</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="extAppType"><h3>类型<span class="ls-permlink"><a href="#extAppType"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定外部应用程序的类型。 应用程序类型根据它们提供的服务或与服务器通信所使用的协议而有所不同。 从中选择 <ul> <li><span class="val">FastCGI</span>: a FastCGI application with a <span class="val">Responder</span> role.</li> <li><span class="val">FastCGI Authorizer</span>: a FastCGI application with an <span class="val">Authorizer</span> role</li> <li><span class="val">Servlet Engine</span>: a servlet engine with an AJPv13 connector, such as Tomcat.</li> <li><span class="val">Web Server</span>: a web server or application server that supports HTTP protocol.</li> <li><span class="val">LiteSpeed SAPI App</span>: an application that communicates with the web server using LSAPI protocol.</li> <li><span class="val">Load Balancer</span>: a virtual application that can balance load among worker applications.</li> <li><span class="val">Piped Logger</span>: an application that can process access log entries received on its STDIN stream.</li> </ul></p> <h4>Syntax</h4><p>从列表中选择</p> <h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> Most applications will use either LSAPI or FastCGI protocol. LSAPI supports PHP, Ruby, and Python. Perl can be used with FastCGI. (PHP, Ruby, and Python can also be set up to run using FastCGI, but they run faster using LSAPI.) Java uses servlet engines.</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> 版权所有.</footer> </div></div> </body> </html> ���������������������������������������������������zh-CN/license.html����������������������������������������������������������������������������������0000644�����������������00000120243�15027525531�0010002 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - 许可</title> <meta name="description" content="OpenLiteSpeed Users' Manual - 许可." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 3</h3> <hr/> <div> <ul> <li><span class="current"><a href="license.html">License</a></span></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev"> </div><div class="center"><a href="index.html">主页</a></div><div class="next"><a href="intro.html">Introduction</a> »</div></div> <section class="ls-eula"> <h1>GNU GENERAL PUBLIC LICENSE v3</h1> <h3>GNU GENERAL PUBLIC LICENSE<br /> Version 3, 29 June 2007</h3> <p>Copyright (C) 2007 Free Software Foundation, Inc. <http://fsf.org/> Everyone is permitted to copy and distribute verbatim copies of this license document, but changing it is not allowed. </p> <h4>Preamble</h4> <p>The GNU General Public License is a free, copyleft license for software and other kinds of works. </p> <p>The licenses for most software and other practical works are designed to take away your freedom to share and change the works. By contrast, the GNU General Public License is intended to guarantee your freedom to share and change all versions of a program--to make sure it remains free software for all its users. We, the Free Software Foundation, use the GNU General Public License for most of our software; it applies also to any other work released this way by its authors. You can apply it to your programs, too. </p> <p>When we speak of free software, we are referring to freedom, not price. Our General Public Licenses are designed to make sure that you have the freedom to distribute copies of free software (and charge for them if you wish), that you receive source code or can get it if you want it, that you can change the software or use pieces of it in new free programs, and that you know you can do these things. </p> <p>To protect your rights, we need to prevent others from denying you these rights or asking you to surrender the rights. Therefore, you have certain responsibilities if you distribute copies of the software, or if you modify it: responsibilities to respect the freedom of others. </p> <p>For example, if you distribute copies of such a program, whether gratis or for a fee, you must pass on to the recipients the same freedoms that you received. You must make sure that they, too, receive or can get the source code. And you must show them these terms so they know their rights. </p> <p>Developers that use the GNU GPL protect your rights with two steps: (1) assert copyright on the software, and (2) offer you this License giving you legal permission to copy, distribute and/or modify it. </p> <p>For the developers' and authors' protection, the GPL clearly explains that there is no warranty for this free software. For both users' and authors' sake, the GPL requires that modified versions be marked as changed, so that their problems will not be attributed erroneously to authors of previous versions. </p> <p>Some devices are designed to deny users access to install or run modified versions of the software inside them, although the manufacturer can do so. This is fundamentally incompatible with the aim of protecting users' freedom to change the software. The systematic pattern of such abuse occurs in the area of products for individuals to use, which is precisely where it is most unacceptable. Therefore, we have designed this version of the GPL to prohibit the practice for those products. If such problems arise substantially in other domains, we stand ready to extend this provision to those domains in future versions of the GPL, as needed to protect the freedom of users. </p> <p>Finally, every program is threatened constantly by software patents. States should not allow patents to restrict development and use of software on general-purpose computers, but in those that do, we wish to avoid the special danger that patents applied to a free program could make it effectively proprietary. To prevent this, the GPL assures that patents cannot be used to render the program non-free. </p> <p>The precise terms and conditions for copying, distribution and modification follow. </p> <h3>TERMS AND CONDITIONS</h3> <h4>0. Definitions.<h/4> <p>"This License" refers to version 3 of the GNU General Public License. </p> <p>"Copyright" also means copyright-like laws that apply to other kinds of works, such as semiconductor masks. </p> <p>"The Program" refers to any copyrightable work licensed under this License. Each licensee is addressed as "you". "Licensees" and "recipients" may be individuals or organizations. </p> <p>To "modify" a work means to copy from or adapt all or part of the work in a fashion requiring copyright permission, other than the making of an exact copy. The resulting work is called a "modified version" of the earlier work or a work "based on" the earlier work. </p> <p>A "covered work" means either the unmodified Program or a work based on the Program. </p> <p>To "propagate" a work means to do anything with it that, without permission, would make you directly or secondarily liable for infringement under applicable copyright law, except executing it on a computer or modifying a private copy. Propagation includes copying, distribution (with or without modification), making available to the public, and in some countries other activities as well. </p> <p>To "convey" a work means any kind of propagation that enables other parties to make or receive copies. Mere interaction with a user through a computer network, with no transfer of a copy, is not conveying. </p> <p>An interactive user interface displays "Appropriate Legal Notices" to the extent that it includes a convenient and prominently visible feature that (1) displays an appropriate copyright notice, and (2) tells the user that there is no warranty for the work (except to the extent that warranties are provided), that licensees may convey the work under this License, and how to view a copy of this License. If the interface presents a list of user commands or options, such as a menu, a prominent item in the list meets this criterion. </p> <h4>1. Source Code.</h4> <p>The "source code" for a work means the preferred form of the work for making modifications to it. "Object code" means any non-source form of a work. </p> <p>A "Standard Interface" means an interface that either is an official standard defined by a recognized standards body, or, in the case of interfaces specified for a particular programming language, one that is widely used among developers working in that language. </p> <p>The "System Libraries" of an executable work include anything, other than the work as a whole, that (a) is included in the normal form of packaging a Major Component, but which is not part of that Major Component, and (b) serves only to enable use of the work with that Major Component, or to implement a Standard Interface for which an implementation is available to the public in source code form. A "Major Component", in this context, means a major essential component (kernel, window system, and so on) of the specific operating system (if any) on which the executable work runs, or a compiler used to produce the work, or an object code interpreter used to run it. </p> <p>The "Corresponding Source" for a work in object code form means all the source code needed to generate, install, and (for an executable work) run the object code and to modify the work, including scripts to control those activities. However, it does not include the work's System Libraries, or general-purpose tools or generally available free programs which are used unmodified in performing those activities but which are not part of the work. For example, Corresponding Source includes interface definition files associated with source files for the work, and the source code for shared libraries and dynamically linked subprograms that the work is specifically designed to require, such as by intimate data communication or control flow between those subprograms and other parts of the work. </p> <p>The Corresponding Source need not include anything that users can regenerate automatically from other parts of the Corresponding Source. </p> <p>The Corresponding Source for a work in source code form is that same work. </p> <h4>2. Basic Permissions.</h4> <p>All rights granted under this License are granted for the term of copyright on the Program, and are irrevocable provided the stated conditions are met. This License explicitly affirms your unlimited permission to run the unmodified Program. The output from running a covered work is covered by this License only if the output, given its content, constitutes a covered work. This License acknowledges your rights of fair use or other equivalent, as provided by copyright law. </p> <p>You may make, run and propagate covered works that you do not convey, without conditions so long as your license otherwise remains in force. You may convey covered works to others for the sole purpose of having them make modifications exclusively for you, or provide you with facilities for running those works, provided that you comply with the terms of this License in conveying all material for which you do not control copyright. Those thus making or running the covered works for you must do so exclusively on your behalf, under your direction and control, on terms that prohibit them from making any copies of your copyrighted material outside their relationship with you. </p> <p>Conveying under any other circumstances is permitted solely under the conditions stated below. Sublicensing is not allowed; section 10 makes it unnecessary. </p> <h4>3. Protecting Users' Legal Rights From Anti-Circumvention Law.</h4> <p>No covered work shall be deemed part of an effective technological measure under any applicable law fulfilling obligations under article 11 of the WIPO copyright treaty adopted on 20 December 1996, or similar laws prohibiting or restricting circumvention of such measures. </p> <p>When you convey a covered work, you waive any legal power to forbid circumvention of technological measures to the extent such circumvention is effected by exercising rights under this License with respect to the covered work, and you disclaim any intention to limit operation or modification of the work as a means of enforcing, against the work's users, your or third parties' legal rights to forbid circumvention of technological measures. </p> <h4>4. Conveying Verbatim Copies.</h4> <p>You may convey verbatim copies of the Program's source code as you receive it, in any medium, provided that you conspicuously and appropriately publish on each copy an appropriate copyright notice; keep intact all notices stating that this License and any non-permissive terms added in accord with section 7 apply to the code; keep intact all notices of the absence of any warranty; and give all recipients a copy of this License along with the Program. </p> <p>You may charge any price or no price for each copy that you convey, and you may offer support or warranty protection for a fee. </p> <h4>5. Conveying Modified Source Versions.</h4> <p>You may convey a work based on the Program, or the modifications to produce it from the Program, in the form of source code under the terms of section 4, provided that you also meet all of these conditions: </p> <ul> <li> a) The work must carry prominent notices stating that you modified it, and giving a relevant date. </li> <li> b) The work must carry prominent notices stating that it is released under this License and any conditions added under section 7. This requirement modifies the requirement in section 4 to "keep intact all notices". </li> <li> c) You must license the entire work, as a whole, under this License to anyone who comes into possession of a copy. This License will therefore apply, along with any applicable section 7 additional terms, to the whole of the work, and all its parts, regardless of how they are packaged. This License gives no permission to license the work in any other way, but it does not invalidate such permission if you have separately received it. </li> <li> d) If the work has interactive user interfaces, each must display Appropriate Legal Notices; however, if the Program has interactive interfaces that do not display Appropriate Legal Notices, your work need not make them do so. </li> </ul> <p>A compilation of a covered work with other separate and independent works, which are not by their nature extensions of the covered work, and which are not combined with it such as to form a larger program, in or on a volume of a storage or distribution medium, is called an "aggregate" if the compilation and its resulting copyright are not used to limit the access or legal rights of the compilation's users beyond what the individual works permit. Inclusion of a covered work in an aggregate does not cause this License to apply to the other parts of the aggregate. </p> <h4>6. Conveying Non-Source Forms.</h4> <p>You may convey a covered work in object code form under the terms of sections 4 and 5, provided that you also convey the machine-readable Corresponding Source under the terms of this License, in one of these ways: </p> <ul> <li> a) Convey the object code in, or embodied in, a physical product (including a physical distribution medium), accompanied by the Corresponding Source fixed on a durable physical medium customarily used for software interchange. </li> <li> b) Convey the object code in, or embodied in, a physical product (including a physical distribution medium), accompanied by a written offer, valid for at least three years and valid for as long as you offer spare parts or customer support for that product model, to give anyone who possesses the object code either (1) a copy of the Corresponding Source for all the software in the product that is covered by this License, on a durable physical medium customarily used for software interchange, for a price no more than your reasonable cost of physically performing this conveying of source, or (2) access to copy the Corresponding Source from a network server at no charge. </li> <li> c) Convey individual copies of the object code with a copy of the written offer to provide the Corresponding Source. This alternative is allowed only occasionally and noncommercially, and only if you received the object code with such an offer, in accord with subsection 6b. </li> <li> d) Convey the object code by offering access from a designated place (gratis or for a charge), and offer equivalent access to the Corresponding Source in the same way through the same place at no further charge. You need not require recipients to copy the Corresponding Source along with the object code. If the place to copy the object code is a network server, the Corresponding Source may be on a different server (operated by you or a third party) that supports equivalent copying facilities, provided you maintain clear directions next to the object code saying where to find the Corresponding Source. Regardless of what server hosts the Corresponding Source, you remain obligated to ensure that it is available for as long as needed to satisfy these requirements. </li> <li> e) Convey the object code using peer-to-peer transmission, provided you inform other peers where the object code and Corresponding Source of the work are being offered to the general public at no charge under subsection 6d. </li> </ul> <p>A separable portion of the object code, whose source code is excluded from the Corresponding Source as a System Library, need not be included in conveying the object code work. </p> <p>A "User Product" is either (1) a "consumer product", which means any tangible personal property which is normally used for personal, family, or household purposes, or (2) anything designed or sold for incorporation into a dwelling. In determining whether a product is a consumer product, doubtful cases shall be resolved in favor of coverage. For a particular product received by a particular user, "normally used" refers to a typical or common use of that class of product, regardless of the status of the particular user or of the way in which the particular user actually uses, or expects or is expected to use, the product. A product is a consumer product regardless of whether the product has substantial commercial, industrial or non-consumer uses, unless such uses represent the only significant mode of use of the product. </p> <p>"Installation Information" for a User Product means any methods, procedures, authorization keys, or other information required to install and execute modified versions of a covered work in that User Product from a modified version of its Corresponding Source. The information must suffice to ensure that the continued functioning of the modified object code is in no case prevented or interfered with solely because modification has been made. </p> <p>If you convey an object code work under this section in, or with, or specifically for use in, a User Product, and the conveying occurs as part of a transaction in which the right of possession and use of the User Product is transferred to the recipient in perpetuity or for a fixed term (regardless of how the transaction is characterized), the Corresponding Source conveyed under this section must be accompanied by the Installation Information. But this requirement does not apply if neither you nor any third party retains the ability to install modified object code on the User Product (for example, the work has been installed in ROM). </p> <p>The requirement to provide Installation Information does not include a requirement to continue to provide support service, warranty, or updates for a work that has been modified or installed by the recipient, or for the User Product in which it has been modified or installed. Access to a network may be denied when the modification itself materially and adversely affects the operation of the network or violates the rules and protocols for communication across the network. </p> <p>Corresponding Source conveyed, and Installation Information provided, in accord with this section must be in a format that is publicly documented (and with an implementation available to the public in source code form), and must require no special password or key for unpacking, reading or copying. </p> <h4>7. Additional Terms.</h4> <p>"Additional permissions" are terms that supplement the terms of this License by making exceptions from one or more of its conditions. Additional permissions that are applicable to the entire Program shall be treated as though they were included in this License, to the extent that they are valid under applicable law. If additional permissions apply only to part of the Program, that part may be used separately under those permissions, but the entire Program remains governed by this License without regard to the additional permissions. </p> <p>When you convey a copy of a covered work, you may at your option remove any additional permissions from that copy, or from any part of it. (Additional permissions may be written to require their own removal in certain cases when you modify the work.) You may place additional permissions on material, added by you to a covered work, for which you have or can give appropriate copyright permission. </p> <p>Notwithstanding any other provision of this License, for material you add to a covered work, you may (if authorized by the copyright holders of that material) supplement the terms of this License with terms: </p> <ul> <li> a) Disclaiming warranty or limiting liability differently from the terms of sections 15 and 16 of this License; or </li> <li> b) Requiring preservation of specified reasonable legal notices or author attributions in that material or in the Appropriate Legal Notices displayed by works containing it; or </li> <li> c) Prohibiting misrepresentation of the origin of that material, or requiring that modified versions of such material be marked in reasonable ways as different from the original version; or </li> <li> d) Limiting the use for publicity purposes of names of licensors or authors of the material; or </li> <li> e) Declining to grant rights under trademark law for use of some trade names, trademarks, or service marks; or </li> <li> f) Requiring indemnification of licensors and authors of that material by anyone who conveys the material (or modified versions of it) with contractual assumptions of liability to the recipient, for any liability that these contractual assumptions directly impose on those licensors and authors. </li> </ul> <p>All other non-permissive additional terms are considered "further restrictions" within the meaning of section 10. If the Program as you received it, or any part of it, contains a notice stating that it is governed by this License along with a term that is a further restriction, you may remove that term. If a license document contains a further restriction but permits relicensing or conveying under this License, you may add to a covered work material governed by the terms of that license document, provided that the further restriction does not survive such relicensing or conveying. </p> <p>If you add terms to a covered work in accord with this section, you must place, in the relevant source files, a statement of the additional terms that apply to those files, or a notice indicating where to find the applicable terms. </p> <p>Additional terms, permissive or non-permissive, may be stated in the form of a separately written license, or stated as exceptions; the above requirements apply either way. </p> <h4>8. Termination.</h4> <p>You may not propagate or modify a covered work except as expressly provided under this License. Any attempt otherwise to propagate or modify it is void, and will automatically terminate your rights under this License (including any patent licenses granted under the third paragraph of section 11). </p> <p>However, if you cease all violation of this License, then your license from a particular copyright holder is reinstated (a) provisionally, unless and until the copyright holder explicitly and finally terminates your license, and (b) permanently, if the copyright holder fails to notify you of the violation by some reasonable means prior to 60 days after the cessation. </p> <p>Moreover, your license from a particular copyright holder is reinstated permanently if the copyright holder notifies you of the violation by some reasonable means, this is the first time you have received notice of violation of this License (for any work) from that copyright holder, and you cure the violation prior to 30 days after your receipt of the notice. </p> <p>Termination of your rights under this section does not terminate the licenses of parties who have received copies or rights from you under this License. If your rights have been terminated and not permanently reinstated, you do not qualify to receive new licenses for the same material under section 10. </p> <h4>9. Acceptance Not Required for Having Copies.</h4> <p>You are not required to accept this License in order to receive or run a copy of the Program. Ancillary propagation of a covered work occurring solely as a consequence of using peer-to-peer transmission to receive a copy likewise does not require acceptance. However, nothing other than this License grants you permission to propagate or modify any covered work. These actions infringe copyright if you do not accept this License. Therefore, by modifying or propagating a covered work, you indicate your acceptance of this License to do so. </p> <h4>10. Automatic Licensing of Downstream Recipients.</h4> <p>Each time you convey a covered work, the recipient automatically receives a license from the original licensors, to run, modify and propagate that work, subject to this License. You are not responsible for enforcing compliance by third parties with this License. </p> <p>An "entity transaction" is a transaction transferring control of an organization, or substantially all assets of one, or subdividing an organization, or merging organizations. If propagation of a covered work results from an entity transaction, each party to that transaction who receives a copy of the work also receives whatever licenses to the work the party's predecessor in interest had or could give under the previous paragraph, plus a right to possession of the Corresponding Source of the work from the predecessor in interest, if the predecessor has it or can get it with reasonable efforts. </p> <p>You may not impose any further restrictions on the exercise of the rights granted or affirmed under this License. For example, you may not impose a license fee, royalty, or other charge for exercise of rights granted under this License, and you may not initiate litigation (including a cross-claim or counterclaim in a lawsuit) alleging that any patent claim is infringed by making, using, selling, offering for sale, or importing the Program or any portion of it. </p> <h4>11. Patents.</h4> <p>A "contributor" is a copyright holder who authorizes use under this License of the Program or a work on which the Program is based. The work thus licensed is called the contributor's "contributor version". </p> <p>A contributor's "essential patent claims" are all patent claims owned or controlled by the contributor, whether already acquired or hereafter acquired, that would be infringed by some manner, permitted by this License, of making, using, or selling its contributor version, but do not include claims that would be infringed only as a consequence of further modification of the contributor version. For purposes of this definition, "control" includes the right to grant patent sublicenses in a manner consistent with the requirements of this License. </p> <p>Each contributor grants you a non-exclusive, worldwide, royalty-free patent license under the contributor's essential patent claims, to make, use, sell, offer for sale, import and otherwise run, modify and propagate the contents of its contributor version. </p> <p>In the following three paragraphs, a "patent license" is any express agreement or commitment, however denominated, not to enforce a patent (such as an express permission to practice a patent or covenant not to sue for patent infringement). To "grant" such a patent license to a party means to make such an agreement or commitment not to enforce a patent against the party. </p> <p>If you convey a covered work, knowingly relying on a patent license, and the Corresponding Source of the work is not available for anyone to copy, free of charge and under the terms of this License, through a publicly available network server or other readily accessible means, then you must either (1) cause the Corresponding Source to be so available, or (2) arrange to deprive yourself of the benefit of the patent license for this particular work, or (3) arrange, in a manner consistent with the requirements of this License, to extend the patent license to downstream recipients. "Knowingly relying" means you have actual knowledge that, but for the patent license, your conveying the covered work in a country, or your recipient's use of the covered work in a country, would infringe one or more identifiable patents in that country that you have reason to believe are valid. </p> <p>If, pursuant to or in connection with a single transaction or arrangement, you convey, or propagate by procuring conveyance of, a covered work, and grant a patent license to some of the parties receiving the covered work authorizing them to use, propagate, modify or convey a specific copy of the covered work, then the patent license you grant is automatically extended to all recipients of the covered work and works based on it. </p> <p>A patent license is "discriminatory" if it does not include within the scope of its coverage, prohibits the exercise of, or is conditioned on the non-exercise of one or more of the rights that are specifically granted under this License. You may not convey a covered work if you are a party to an arrangement with a third party that is in the business of distributing software, under which you make payment to the third party based on the extent of your activity of conveying the work, and under which the third party grants, to any of the parties who would receive the covered work from you, a discriminatory patent license (a) in connection with copies of the covered work conveyed by you (or copies made from those copies), or (b) primarily for and in connection with specific products or compilations that contain the covered work, unless you entered into that arrangement, or that patent license was granted, prior to 28 March 2007. </p> <p>Nothing in this License shall be construed as excluding or limiting any implied license or other defenses to infringement that may otherwise be available to you under applicable patent law. </p> <h4>12. No Surrender of Others' Freedom.</h4> <p>If conditions are imposed on you (whether by court order, agreement or otherwise) that contradict the conditions of this License, they do not excuse you from the conditions of this License. If you cannot convey a covered work so as to satisfy simultaneously your obligations under this License and any other pertinent obligations, then as a consequence you may not convey it at all. For example, if you agree to terms that obligate you to collect a royalty for further conveying from those to whom you convey the Program, the only way you could satisfy both those terms and this License would be to refrain entirely from conveying the Program. </p> <h4>13. Use with the GNU Affero General Public License.</h4> <p>Notwithstanding any other provision of this License, you have permission to link or combine any covered work with a work licensed under version 3 of the GNU Affero General Public License into a single combined work, and to convey the resulting work. The terms of this License will continue to apply to the part which is the covered work, but the special requirements of the GNU Affero General Public License, section 13, concerning interaction through a network will apply to the combination as such. </p> <h4>14. Revised Versions of this License.</h4> <p>The Free Software Foundation may publish revised and/or new versions of the GNU General Public License from time to time. Such new versions will be similar in spirit to the present version, but may differ in detail to address new problems or concerns. </p> <p>Each version is given a distinguishing version number. If the Program specifies that a certain numbered version of the GNU General Public License "or any later version" applies to it, you have the option of following the terms and conditions either of that numbered version or of any later version published by the Free Software Foundation. If the Program does not specify a version number of the GNU General Public License, you may choose any version ever published by the Free Software Foundation. </p> <p>If the Program specifies that a proxy can decide which future versions of the GNU General Public License can be used, that proxy's public statement of acceptance of a version permanently authorizes you to choose that version for the Program. </p> <p>Later license versions may give you additional or different permissions. However, no additional obligations are imposed on any author or copyright holder as a result of your choosing to follow a later version. </p> <h4>15. Disclaimer of Warranty.</h4> <p>THERE IS NO WARRANTY FOR THE PROGRAM, TO THE EXTENT PERMITTED BY APPLICABLE LAW. EXCEPT WHEN OTHERWISE STATED IN WRITING THE COPYRIGHT HOLDERS AND/OR OTHER PARTIES PROVIDE THE PROGRAM "AS IS" WITHOUT WARRANTY OF ANY KIND, EITHER EXPRESSED OR IMPLIED, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. THE ENTIRE RISK AS TO THE QUALITY AND PERFORMANCE OF THE PROGRAM IS WITH YOU. SHOULD THE PROGRAM PROVE DEFECTIVE, YOU ASSUME THE COST OF ALL NECESSARY SERVICING, REPAIR OR CORRECTION. </p> <h4>16. Limitation of Liability.</h4> <p>IN NO EVENT UNLESS REQUIRED BY APPLICABLE LAW OR AGREED TO IN WRITING WILL ANY COPYRIGHT HOLDER, OR ANY OTHER PARTY WHO MODIFIES AND/OR CONVEYS THE PROGRAM AS PERMITTED ABOVE, BE LIABLE TO YOU FOR DAMAGES, INCLUDING ANY GENERAL, SPECIAL, INCIDENTAL OR CONSEQUENTIAL DAMAGES ARISING OUT OF THE USE OR INABILITY TO USE THE PROGRAM (INCLUDING BUT NOT LIMITED TO LOSS OF DATA OR DATA BEING RENDERED INACCURATE OR LOSSES SUSTAINED BY YOU OR THIRD PARTIES OR A FAILURE OF THE PROGRAM TO OPERATE WITH ANY OTHER PROGRAMS), EVEN IF SUCH HOLDER OR OTHER PARTY HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. </p> <h4>17. Interpretation of Sections 15 and 16.</h4> <p>If the disclaimer of warranty and limitation of liability provided above cannot be given local legal effect according to their terms, reviewing courts shall apply local law that most closely approximates an absolute waiver of all civil liability in connection with the Program, unless a warranty or assumption of liability accompanies a copy of the Program in return for a fee. </p> <h3>END OF TERMS AND CONDITIONS</h3> <h4>How to Apply These Terms to Your New Programs</h4> <p>If you develop a new program, and you want it to be of the greatest possible use to the public, the best way to achieve this is to make it free software which everyone can redistribute and change under these terms. </p> <p>To do so, attach the following notices to the program. It is safest to attach them to the start of each source file to most effectively state the exclusion of warranty; and each file should have at least the "copyright" line and a pointer to where the full notice is found. </p> <ul> <one line to give the program's name and a brief idea of what it does.> <li>Copyright (C) <year> <name of author> </li> <li> This program is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation, either version 3 of the License, or (at your option) any later version. </li> <li> This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. </li> <li> You should have received a copy of the GNU General Public License along with this program. If not, see <http://www.gnu.org/licenses/>. </li> </ul> <p>Also add information on how to contact you by electronic and paper mail. </p> <p>If the program does terminal interaction, make it output a short notice like this when it starts in an interactive mode: </p> <ul> <li> <program> Copyright (C) <year> <name of author> </li> <li> This program comes with ABSOLUTELY NO WARRANTY; for details type `show w'. </li> <li> This is free software, and you are welcome to redistribute it under certain conditions; type `show c' for details. </li> </ul> <p>The hypothetical commands `show w' and `show c' should show the appropriate parts of the General Public License. Of course, your program's commands might be different; for a GUI interface, you would use an "about box". </p> <p>You should also get your employer (if you work as a programmer) or school, if any, to sign a "copyright disclaimer" for the program, if necessary. For more information on this, and how to apply and follow the GNU GPL, see <http://www.gnu.org/licenses/>. </p> <p>The GNU General Public License does not permit incorporating your program into proprietary programs. If your program is a subroutine library, you may consider it more useful to permit linking proprietary applications with the library. If this is what you want to do, use the GNU Lesser General Public License instead of this License. But first, please read <http://www.gnu.org/philosophy/why-not-lgpl.html>. </p> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> 版权所有.</footer> </div></div> </body> </html> �������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������zh-CN/Servlet_Context.html��������������������������������������������������������������������������0000644�����������������00000036563�15027525531�0011523 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Servlet Context</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Servlet Context." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 3</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><span class="current"><a href="Servlet_Context.html">Servlet Context</a></span></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="Java_Web_App_Context.html">Java Web App Context</a></div><div class="center"><a href="Context_Help.html">Context</a></div><div class="next"><a href="FCGI_Context.html">Fast CGI Context</a> »</div></div> <h1>Servlet Context</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header><a href="#servletContext">Servlet Context</a></header><p> <a href="#expuri">URI</a> | <a href="#servletEngine">Servlet Engine</a> | <a href="#extraHeaders">标头控制</a> | <a href="#realm">域</a> | <a href="#authName">认证名称</a> | <a href="#required">Require(授权的用户/组)</a> | <a href="#accessAllowed">允许访问列表</a> | <a href="#accessDenied">拒绝访问列表</a> | <a href="#extAuthorizer">Authorizer</a> | <a href="#addDefaultCharset">添加默认的字符集</a> | <a href="#defaultCharsetCustomized">自定义默认字符集</a> | <a href="#enableIpGeo">启用IP地理定位</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="servletContext"><h3>Servlet Context<span class="ls-permlink"><a href="#servletContext"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Servlets can be imported individually through Servlet Contexts. A Servlet Context just specifies the URI for the servlet and the name of the servlet engine. You only need to use this when you do not want to import the whole web application or you want to protect different servlets with different authorization realms. This URI has the same requirements as for a <span class="tagl"><a href="#javaWebAppContext">Java Web App Context</a></span>.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expuri"><h3>URI<span class="ls-permlink"><a href="#expuri"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the URI for this context.</p> <h4>Syntax</h4><p>指定此context下的URI。这个URI应该以"/"开始。 如果一个URI以"/"结束,那么该context将包含这个URI下的所有下级URI。如果context类型映射到系统目录上,则必须添加结尾的"/"</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#location">位置</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="servletEngine"><h3>Servlet Engine<span class="ls-permlink"><a href="#servletEngine"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定为该Web应用程序提供服务的Servlet Engine的名称。 Servlet引擎必须在服务器或虚拟主机级别的<span class="tagP"><a href="#ExtApp_Help">外部应用</a></span>中定义。</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extraHeaders"><h3>标头控制<span class="ls-permlink"><a href="#extraHeaders"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定要添加的附加响应/请求头。可以添加每行一个来添加多个头指令。"NONE "可以用来禁止父头继承。如果没有提供,则假定为 "Header"。</p> <h4>Syntax</h4><p>[Header]|RequestHeader [condition] set|append|merge|add|unset header [value] [early|env=[!]variable]</p> <h4>例子</h4><div class="ls-example">set Cache-control no-cache<br/> append Cache-control no-store<br/> Header set My-header cust_header_val<br/> RequestHeader set My-req-header cust_req_header_val</div><h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> 语法和用法类似于 <a href="https://httpd.apache.org/docs/2.2/mod/mod_headers.html#header" target="_blank" rel="noopener noreferrer">Apache's mod_headers directives</a><br/><br/> <span title="Information" class="ls-icon-info"></span> The 'Header' directive is is optional and can be excluded or left in when copying rules from elsewhere without issue.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="realm"><h3>域<span class="ls-permlink"><a href="#realm"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定这个context下的realm授权。 当指定时,必须提供有效的用户和用户名来访问这个context。 <span class="tagl"><a href="VHSecurity_Help.html#realms">Realms授权</a></span>需要在<span class="tagP"><a href="#VHSecurity_Help">虚拟主机安全</a></span>部分进行设置。 此设置使用每个realm的<span class="tagl"><a href="VHSecurity_Help.html#realmName">域名称</a></span>。</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="authName"><h3>认证名称<span class="ls-permlink"><a href="#authName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>为当前context下的realm认证指定一个替代的名称。 如果没有指定,原realm名称将被使用。 认证名称将显示在浏览器登陆弹出窗口。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="required"><h3>Require(授权的用户/组)<span class="ls-permlink"><a href="#required"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定哪些用户/用户组可以访问此context。 这里允许你使用一个用户/组数据库(在 <span class="tagl"><a href="#realm">域</a></span>中指定)访问多个context, 但只允许该数据库下特定的用户/组访问这个context。</p> <h4>Syntax</h4><p>Syntax is compatible with Apache's Require directive. For example: <ul> <li><span class="val">user username [username ...]</span><br/> Only listed users can access this context.</li> <li> <span class="val">group groupid [groupid ...]</span><br/> Only users belonging to the listed groups can access this context.</li> </ul> If this setting is not specified, all valid users will be allowed to access this resource.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessAllowed"><h3>允许访问列表<span class="ls-permlink"><a href="#accessAllowed"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定允许访问这个context下资源的IP地址或子网。综合 <span class="tagl"><a href="#accessDenied">拒绝访问列表</a></span>项的配置以及服务器/虚拟主机级别访问控制, 可访问性将以客户端IP所符合的最小范围来确定。</p> <h4>Syntax</h4><p>Comma-delimited list of IPs/sub-networks.</p> <h4>例子</h4><div class="ls-example">网络可以写成<span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span> 或<span class="val">192.168.1.*</span>。</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessDenied"><h3>拒绝访问列表<span class="ls-permlink"><a href="#accessDenied"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定哪个IP地址或子网不被允许访问这个context下的资源。 综合<span class="tagl"><a href="#accessAllowed">允许访问列表</a></span>项的配置以及服务器/虚拟主机级别访问控制, 可访问性将以客户端IP所符合的最小范围来确定。</p> <h4>Syntax</h4><p>Comma-delimited list of IPs/sub-networks.</p> <h4>例子</h4><div class="ls-example">子网络可以写成<span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span> 或<span class="val">192.168.1.*</span>。</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAuthorizer"><h3>Authorizer<span class="ls-permlink"><a href="#extAuthorizer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定可用于生成授权/未授权 decisions的外部应用程序。 目前,仅FastCGI授权器可用。 有关FastCGI授权者角色的更多详细信息, 请访问<a href="https://fastcgi-archives.github.io/" target="_blank" rel="noopener noreferrer">https://fastcgi-archives.github.io/</a>。</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="addDefaultCharset"><h3>添加默认的字符集<span class="ls-permlink"><a href="#addDefaultCharset"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>S指定当内容类型是"text/html"或"text/plain"且没有参数时,是否添加字符集标记到"Content-Type"响应报头中。当设置为<span class="val">Off</span>时,该功能禁用。当设置为<span class="val">On</span>时,将添加<span class="tagl"><a href="#defaultCharsetCustomized">自定义默认字符集</a></span>中指定的字符集,如果没有指定,将添加默认的"iso-8859-1"字符集。</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="defaultCharsetCustomized"><h3>自定义默认字符集<span class="ls-permlink"><a href="#defaultCharsetCustomized"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定一个字符集当<span class="tagl"><a href="#addDefaultCharset">添加默认的字符集</a></span>是<span class="val">On</span>时使用。这是可选的。默认值是<span class="val">iso-8859-1</span>。当<span class="tagl"><a href="#addDefaultCharset">添加默认的字符集</a></span>是<span class="val">Off</span>时本设置将不生效。</p> <h4>Syntax</h4><p>Name of a character set.</p> <h4>例子</h4><div class="ls-example">utf-8</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableIpGeo"><h3>启用IP地理定位<span class="ls-permlink"><a href="#enableIpGeo"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否启用IP地理定位查找。 可以在服务器级别,虚拟主机级别,或context级别设置。</p> <h4>Syntax</h4><p>从单选框选择</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="ServGeneral_Help.html#useIpInProxyHeader">使用报头中的客户端IP</a></span>, <span class="tagl"><a href="ServGeneral_Help.html#geoipDBFile">数据库文件路径</a></span>,</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> 版权所有.</footer> </div></div> </body> </html> ���������������������������������������������������������������������������������������������������������������������������������������������zh-CN/External_FCGI_Auth.html�����������������������������������������������������������������������0000644�����������������00000055010�15027525531�0011712 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Fast CGI Authorizer</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Fast CGI Authorizer." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 3</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><span class="current"><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></span></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="External_FCGI.html">Fast CGI App</a></div><div class="center"><a href="ExtApp_Help.html">外部应用</a></div><div class="next"><a href="External_LSAPI.html">LiteSpeed SAPI App</a> »</div></div> <h1>Fast CGI Authorizer</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header>Fast CGI Authorizer</header><p> <a href="#extAppName">名称</a> | <a href="#extAppAddress">地址</a> | <a href="#maxConns">最大连接数</a> | <a href="#env">环境</a> | <a href="#initTimeout">初次请求超时时间 (secs)</a> | <a href="#retryTimeout">重试超时时间 (secs)</a> | <a href="#persistConn">持久连接</a> | <a href="#pcKeepAliveTimeout">持久连接超时时间</a> | <a href="#respBuffer">响应缓冲</a> | <a href="#autoStart">开机自启</a> | <a href="#extAppPath">命令</a> | <a href="#backlog">Back Log</a> | <a href="#instances">实例数</a> | <a href="#extUser">Run As User</a> | <a href="#extGroup">以特定组运行</a> | <a href="#extUmask">umask</a> | <a href="#runOnStartUp">开机自启</a> | <a href="#extMaxIdleTime">最大空闲时间</a> | <a href="#extAppPriority">优先级</a> | <a href="#memSoftLimit">内存软限制 (bytes)</a> | <a href="#memHardLimit">内存硬限制 (bytes)</a> | <a href="#procSoftLimit">进程软限制</a> | <a href="#procHardLimit">进程硬限制</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="extAppName"><h3>名称<span class="ls-permlink"><a href="#extAppName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>此外部应用程序的唯一名称。 在配置的其他部分中使用该名称时,将使用该名称进行引用。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAppAddress"><h3>地址<span class="ls-permlink"><a href="#extAppAddress"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>外部应用程序使用的唯一套接字地址。 支持IPv4/IPv6套接字和Unix域套接字(UDS)。 IPv4/IPv6套接字可用于网络通信。 只有当外部应用程序与服务器在同一台机器上时,才能使用UDS。</p> <h4>Syntax</h4><p>IPv4 或 IPV6 address:port 或者 UDS://path</p> <h4>例子</h4><div class="ls-example">127.0.0.1:5434<br/> UDS://tmp/lshttpd/php.sock.</div><h4>提示</h4><p>[安全建议] 如果外部应用程序在同一台机器上运行,则首选UDS。如果必须使用IPv4|IPV6, 将IP地址设置为<span class="val">localhost</span>或<span class="val">127.0.0.1</span>,这样外部应用就无法从其他机器上访问。 [性能建议] Unix域套接字一般比IPv4套接字拥有更高的性能。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxConns"><h3>最大连接数<span class="ls-permlink"><a href="#maxConns"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定服务器与外部应用之间可建立的最大并发连接数。该设置控制外部应用程序可同时处理多少个请求。 然而,真正的限制还取决于外部应用本身。如果外部的速度不够快,或者无法处理大量的并发请求,那么将这个值设置得更高也无济于事。</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p>[性能建议] 设置一个高值并不能直接变成高性能。设置为一个不会使外部应用程序过载的值,将提供最佳的性能/吞吐量。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="env"><h3>环境<span class="ls-permlink"><a href="#env"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>为外部应用程序指定额外的环境变量。</p> <h4>Syntax</h4><p>Key=value. Multiple variables can be separated by "ENTER"</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="initTimeout"><h3>初次请求超时时间 (secs)<span class="ls-permlink"><a href="#initTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定服务器等待外部应用响应新建立的连接的第一个请求的最大时间 如果服务器在这个限制时间内没有收到外部应用的任何数据,它将把这个连接标记为坏(Bad)。这有助于识别与外部应用程序的通信问题。 这有助于尽快发现与外部应用的通信问题。如果某些请求的处理时间较长,则增加这个限制以避免503错误信息。</p> <h4>Syntax</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="retryTimeout"><h3>重试超时时间 (secs)<span class="ls-permlink"><a href="#retryTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定服务器在重试之前,等待出现通信问题的外部应用程序的时间。</p> <h4>Syntax</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="persistConn"><h3>持久连接<span class="ls-permlink"><a href="#persistConn"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定在处理完请求后是否要保持连接 持久连接可以提高性能, 但某些FastCGI外部应用程序不完全支持持久连接。默认为 "On"。</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="pcKeepAliveTimeout"><h3>持久连接超时时间<span class="ls-permlink"><a href="#pcKeepAliveTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定保持持久连接的最大时间,以秒为单位。<br/><br/> 如果设置成"-1",连接将不会超时. 当设置成0或者更大, 连接将在这些秒数后被关闭。</p> <h4>Syntax</h4><p>int</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="respBuffer"><h3>响应缓冲<span class="ls-permlink"><a href="#respBuffer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否要从外部应用程序缓冲收到的响应。 如果nph-(Non-Parsed-Header)脚本被检测到,则关闭具有完整HTTP头的缓冲响应。</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="autoStart"><h3>开机自启<span class="ls-permlink"><a href="#autoStart"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否要Web服务器自动启动应用程序。只有运行在同一台机器上的FastCGI和LSAPI应用程序才能自动启动。 <span class="tagl"><a href="#extAppAddress">地址</a></span>中的IP必须是本地IP. 通过LiteSpeed CGI守护进程而不是主服务器进程启动,有助于减少系统开销。<br/><br/> Default value: Yes (Through CGI Daemon)</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAppPath"><h3>命令<span class="ls-permlink"><a href="#extAppPath"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定包含外部应用程序的执行参数在内的完整命令行。 需要<span class="tagl"><a href="#autoStart">开机自启</a></span>的值为enable.如果参数中包含空格或制表符,应使用双引号或单引号将其引起。</p> <h4>Syntax</h4><p>Full path to the executable with optional parameters.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#autoStart">开机自启</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="backlog"><h3>Back Log<span class="ls-permlink"><a href="#backlog"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the backlog of the listening socket. Required if <span class="tagl"><a href="#autoStart">开机自启</a></span> is enabled.</p> <h4>Syntax</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="instances"><h3>实例数<span class="ls-permlink"><a href="#instances"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定服务器创建的外部应用的最大实例数。这个选项需要<span class="tagl"><a href="#autoStart">开机自启</a></span>的值为enable. 大多数FastCGI/LSAPI应用程序每个进程实例只能处理一个请求,对于这种类型的应用,实例数应与<span class="tagl"><a href="#maxConns">最大连接数</a></span>的值相匹配。 而有些FastCGI/LSAPI应用程序可以生成多个子进程以同时处理多个请求. 对于这种类型的应用,应将实例设置为 "1",并使用环境变量来控制应用可以生成多少个子进程。</p> <h4>Syntax</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extUser"><h3>Run As User<span class="ls-permlink"><a href="#extUser"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The external application will run as this specified user name. If not set, Virtual Host level settings will be inherited.<br/><br/> Default value: Not Set</p> <h4>Syntax</h4><p>Valid username.</p> <h4>See Also</h4><p class="ls-text-small">extGroup</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extGroup"><h3>以特定组运行<span class="ls-permlink"><a href="#extGroup"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>外部应用程序将作为此指定的组名运行。如果未设置,将继承虚拟主机级别的设置。<br/><br/> Default value: Not Set</p> <h4>Syntax</h4><p>Valid group name.</p> <h4>See Also</h4><p class="ls-text-small">extUser</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extUmask"><h3>umask<span class="ls-permlink"><a href="#extUmask"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets default umask for this external application's processes. See <span class="cmd"> man 2 umask </span> for details. The default value taken from the server-level <span class="tagl"><a href="ServSecurity_Help.html#umask">umask</a></span> setting.</p> <h4>Syntax</h4><p>value valid range [000]-[777].</p> <h4>See Also</h4><p class="ls-text-small">CGI <span class="tagl"><a href="ServSecurity_Help.html#umask">umask</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="runOnStartUp"><h3>开机自启<span class="ls-permlink"><a href="#runOnStartUp"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否在服务器启动时启动外部应用程序. 只适用于可以管理自己子进程的外部应用程序,并且<span class="tagl"><a href="#instances">实例数</a></span>值设置为"1"。<br/><br/> 如果启用,将在服务器启动时而不是运行时创建外部进程.<br/><br/> When selecting "Yes (Detached mode)", all detached process can be restarted at the Server level or Virtual Host level by touching the '.lsphp_restart.txt' file under the $SERVER_ROOT/admin/tmp/ or $VH_ROOT/ directory respectively.<br/><br/> Default value: Yes (Detached mode)</p> <h4>Syntax</h4><p>从单选框选择</p> <h4>提示</h4><p>[性能建议] 如果配置的外部进程有很大的启动开销,比如Rails,那么应该启用这个选项来减少首页响应时间。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extMaxIdleTime"><h3>最大空闲时间<span class="ls-permlink"><a href="#extMaxIdleTime"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定服务器停止外部应用之前的最大空闲时间,以释放空闲资源。 当设置为"-1"时,服务器将不会停止外部应用,除非在ProcessGroup模式下运行, 而在ProcessGroup模式下,闲置的外部应用将在30秒后停止.<br/><br/> 默认值为: <span class="val">-1{/val}</p> <h4>Syntax</h4><p>Integer number</p> <h4>提示</h4><p><span title="Performance" class="ls-icon-performance"></span> This feature is especially useful in the mass hosting environment where, in order to prevent files owned by one virtual host from being accessed by the external application scripts of another virtual host, many different applications are run at the same time in SetUID mode. Set this value low to prevent these external applications from idling unnecessarily.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAppPriority"><h3>优先级<span class="ls-permlink"><a href="#extAppPriority"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定外部应用的优先级,值的范围是<span class="val">-20</span>到<span class="val">20</span>. 一个小的数字意味着高优先级.外部应用进程的优先级不能比Web服务器高. 如果该优先级设置一个比服务器的优先级小的数字,则将使用服务器的优先级。</p> <h4>Syntax</h4><p>int</p> <h4>See Also</h4><p class="ls-text-small">Server <span class="tagl"><a href="ServGeneral_Help.html#serverPriority">优先级</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="memSoftLimit"><h3>内存软限制 (bytes)<span class="ls-permlink"><a href="#memSoftLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>以字节为单位指定服务器启动的外部应用进程或程序的内存占用限制。<br/><br/> 此限制的目的主要是为了防范软件缺陷或蓄意攻击造成的过度内存使用, 而不是限制正常使用。确保留有足够的内存,否则您的应用程序可能故障并 返回503错误。限制可以在服务器级别或独立的外部应用程序级别设置。如 果未在独立的外部应用程序级别设定限制,将使用服务器级别的限制。<br/><br/> 如果在两个级别都没有设置该限制,或者限制值设为<span class="val">0</span>,将使用操 作系统的默认设置。</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p>[注意] 不要过度调整这个限制。如果您的应用程序需要更多的内存, 这可能会导致503错误。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="memHardLimit"><h3>内存硬限制 (bytes)<span class="ls-permlink"><a href="#memHardLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>与<span class="tagl"><a href="#memSoftLimit">内存软限制 (bytes)</a></span>非常相同,但是在一个用户进程中,软限制 可以被放宽到硬限制的数值。硬限制可以在服务器级别或独立的外部应用程序级别设 置。如果未在独立的外部应用程序级别设定限制,将使用服务器级别的限制。<br/><br/> 如果在两个级别都没有设置该限制,或者限制值设为<span class="val">0</span>,将使用操 作系统的默认设置。</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p>[注意] 不要过度调整这个限制。如果您的应用程序需要更多的内存, 这可能会导致503错误。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="procSoftLimit"><h3>进程软限制<span class="ls-permlink"><a href="#procSoftLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>限制用户可以创建的进程总数.所有现有的进程都将被计算在这个限制之内,而不仅仅是要启动的新进程。<br/><br/> 该限制可以在服务器级别或单个外部应用级别进行设置.如果未在应用级别设置,则将使用服务器级别的限制. 如果该值为0或服务器级和应用级都没有设置,将使用操作系统的默认设置</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> PHP scripts can call for forking processes. The main purpose of this limit is as a last line of defense to prevent fork bombs and other attacks caused by PHP processes creating other processes.<br/><br/> Setting this setting too low can severely hurt functionality. The setting will thus be ignored below certain levels.<br/><br/> When <b>Run On Start Up</b> is set to "Yes (Daemon mode)", the actual process limit will be higher than this setting to make sure parent processes are not limited.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="procHardLimit"><h3>进程硬限制<span class="ls-permlink"><a href="#procHardLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>与<span class="tagl"><a href="#procSoftLimit">进程软限制</a></span>非常相同,但是,在用户进程中软限制 可以被放宽到硬限制的数值。硬限制可以在服务器级别或独立的外部应用程序级别设 置。如果未在独立的外部应用程序级别设定限制,将使用服务器级别的限制。 如果在两个级别都没有设置该限制,或者限制值设为<span class="val">0</span>,将使用操 作系统的默认设置。</p> <h4>Syntax</h4><p>整数</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> 版权所有.</footer> </div></div> </body> </html> ������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������zh-CN/VHWebSocket_Help.html�������������������������������������������������������������������������0000644�����������������00000017730�15027525531�0011462 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - 网络套接字代理</title> <meta name="description" content="OpenLiteSpeed Users' Manual - 网络套接字代理." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 3</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><span class="current"><a href="VHWebSocket_Help.html">Web Socket Proxy</a></span></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="Context_Help.html">Context</a></div><div class="center"><a href="config.html">Configuration</a></div><div class="next"> </div></div> <h1>网络套接字代理</h1><section class="ls-spacer-small-bottom"><a href="http://en.wikipedia.org/wiki/WebSocket">WebSocket</a>是可以代替HTTP通过Internet进行用来提供实时,双向通信的协议 。 从版本1.1.1开始,OpenLiteSpeed通过使用WebSocket代理支持WebSocket后端。 这些代理会将WebSocket通信发送到{ITEM=wsaddr}字段中设定的后端。</section> <h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header>Web Socket</header><p> <a href="#wsuri">URI</a> | <a href="#wsaddr">地址</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="wsuri"><h3>URI<span class="ls-permlink"><a href="#wsuri"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定将使用此WebSocket后端的URI。 仅当该URI包含WebSocke协议升级请求时,才会将其流量转发到WebSocket后端。<br/><br/> 没有议升级请求的流量将自动转发到此URI所属的Context。 如果此URI不存在任何Context,则LSWS会将该流量视为访问位置为<span class="val">$DOC_ROOT/URI</span>的静态Context。</p> <h4>Syntax</h4><p>普通URI(以“/”开头)。 如果URI以“/”结尾,则此WebSocket后端将包括此URI下的所有子URI。</p> <h4>例子</h4><div class="ls-example">将WebSocket代理与Context结合使用,可以使您以不同的方式在同一页面上提供不同类型的流量,从而优化性能。 您可以将WebSocket流量发送到WebSocket后端,同时设置静态Context以使LSWS为页面的静态内容服务,或者可以设置LSAPI Context以使LSWS可以为PHP内容服务(这两个LSWS都比WebSocket后端更高效)。</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="wsaddr"><h3>地址<span class="ls-permlink"><a href="#wsaddr"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>WebSocket 后端使用的唯一网络套接字地址。 支持 IPv4 套接字、IPv6 套接字和 Unix 域套接字 (UDS)。 IPv4 和 IPv6 套接字可用于网络上的通信。 只有当 WebSocket 后端与服务器在同一台机器上时,才能使用 UDS。</p> <h4>Syntax</h4><p>IPv4/IPv6 address:port, UDS://path, or unix:path</p> <h4>例子</h4><div class="ls-example">127.0.0.1:5434 <br/> UDS://tmp/lshttpd/php.sock<br/> unix:/tmp/lshttpd/php.sock</div><h4>提示</h4><p><span title="Security" class="ls-icon-security"></span> If the WebSocket backend runs on the same machine, UDS is preferred. If you have to use an IPv4 or IPv6 socket, set the IP address to localhost or 127.0.0.1, so the WebSocket backend is inaccessible from other machines.<br/> <span title="Performance" class="ls-icon-performance"></span> Unix Domain Sockets generally provide higher performance than IPv4 or IPv6 sockets.</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> 版权所有.</footer> </div></div> </body> </html> ����������������������������������������zh-CN/ServerStat_Help.html��������������������������������������������������������������������������0000644�����������������00000047157�15027525531�0011446 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - WebAdmin Console - Service Manager</title> <meta name="description" content="OpenLiteSpeed Users' Manual - WebAdmin Console - Service Manager." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 3</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><span class="current"><a href="ServerStat_Help.html">Service Manager</a></span></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev"> </div><div class="center"><a href="admin.html">Administration</a></div><div class="next"><a href="Real_Time_Stats_Help.html">Real-Time Statistics</a> »</div></div> <h1>WebAdmin Console - Service Manager</h1><section class="ls-spacer-small-bottom">The Service Manager acts as a control room for monitoring the server and controlling certain top-level functions. It provides the following features: (The Service Manager can be accessed by clicking on the Actions menu or from home page.) <ul> <li>Monitor the current status of the server, listeners, and virtual hosts.</li> <li>Apply configuration changes with a graceful restart.</li> <li>Enable or disable a particular virtual host.</li> <li>View the server log through the log viewer.</li> <li>Monitor real-time server statistics.</li> </ul></section> <h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header>Server</header><p> <a href="#sname">Name - Server</a> | <a href="#pid">PID</a> | <a href="#servAction">Actions</a> | <a href="#restart">Apply Changes/Graceful Restart</a> | <a href="#viewlog">Server Log Viewer</a> | <a href="#realtimerpt">Real-Time Statistics</a> | <a href="#toggleDebugLog">Toggle Debug Logging</a></p></section> <section class="toc-row"><header>Listeners</header><p> <a href="#lname">Name - Listener</a> | <a href="#lstatus">Status - Listener</a> | <a href="#lmap">Virtual Hosts Mappings</a></p></section> <section class="toc-row"><header>Virtual Hosts</header><p> <a href="#vname">Name - Virtual Host</a> | <a href="#vstatus">Status - Virtual Host</a> | <a href="#vaction">Actions - Virtual Host</a> | <a href="#venable">Enable</a> | <a href="#vdisable">Disable</a> | <a href="#vreload">Restart - Virtual Host</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="sname"><h3>Name - Server<span class="ls-permlink"><a href="#sname"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The unique name that identifies this server. This is the <span class="tagl"><a href="ServGeneral_Help.html#serverName">服务器名称</a></span> specified in the general configuration.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="pid"><h3>PID<span class="ls-permlink"><a href="#pid"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>PID (Process ID) of the current server process.</p> <h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> The PID will change each time the server is restarted.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="servAction"><h3>Actions<span class="ls-permlink"><a href="#servAction"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Six actions are available from this menu: <span class="val">Graceful Restart</span>, <span class="val">Toggle Debug Logging</span>, <span class="val">Server Log Viewer</span>, <span class="val">Real-Time Statistics</span>, <span class="val">Version Manager</span>, and <span class="val">Compile PHP</span>. <ul><li><span class="tagl"><a href="#restart">Apply Changes/Graceful Restart</a></span> restarts server process gracefully without interrupting requests in process.</li> <li><span class="tagl"><a href="#toggleDebugLog">Toggle Debug Logging</a></span> turns debug logging on or off.</li> <li><span class="tagl"><a href="#viewlog">Server Log Viewer</a></span> allows you to view the server log through the log viewer.</li> <li><span class="tagl"><a href="#realtimerpt">Real-Time Statistics</a></span> allows you to view real-time server status.</li> <li><span class="tagl"><a href="#vermgr">Version Management</a></span> allows you to download new versions of LSWS and switch between different versions. <li>Compile PHP allows you to compile PHP for LiteSpeed Web Server. </ul></p> <h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> The shell utility <span class="cmd">$SERVER_ROOT/bin/lswsctrl</span> can be used to control the server processes as well, but requires a login shell.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="restart"><h3>Apply Changes/Graceful Restart<span class="ls-permlink"><a href="#restart"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>By clicking <span class="val">Graceful Restart</span>, a new server process will be started. For <span class="val">Graceful Restart</span>, the old server process will only exit after all requests to it have been finished (or the <span class="tagl"><a href="#gracefulRestartTimeout">平滑重启超时时长(secs)</a></span> limit has been reached). Configuration changes are applied at the next restart. <span class="val">Graceful Restart</span> will apply these changes without any server downtime.</p> <h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> Graceful restart takes less than 2 seconds to generate a new server process.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="viewlog"><h3>Server Log Viewer<span class="ls-permlink"><a href="#viewlog"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The Server Log Viewer is a convenient tool for browsing the current server log to check for errors or problems. The log viewer searches the server log file in blocks for the specified log level. The default block size is 20KB. You can use the <span class="val">Begin</span>, <span class="val">End</span>, <span class="val">Next</span>, and <span class="val">Prev</span> buttons to navigate a large log file.</p> <h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> The size of a dynamically generated page is limited by <span class="tagl"><a href="ServTuning_Help.html#maxDynRespSize">动态回应主内容最大大小(bytes)</a></span>. So if the block is too big, the page might be truncated.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="realtimerpt"><h3>Real-Time Statistics<span class="ls-permlink"><a href="#realtimerpt"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The Real-Time Statistics link leads to a page with a real-time server status report. This is a convenient tool to monitor the system. The report shows a snapshot of your server statistics. The refresh rate for this snapshot is controlled by the Refresh Interval drop-down list in the upper righthand corner. The report contains the following sections: <ul><li>Server Health shows the basic server statistics, uptime, load, and anti-DDoS blocked IPs.</li> <li>Server lists current traffic throughput, connections, and requests statistics.</li> <li>Virtual Host shows request processing statuses and external application statuses for each virtual host.</li> <li>External Application lists the external applications currently running and their usage statistics. The CGI daemon process lscgid is always running as an external application.</li> </ul> Many of the rows in the Real-Time Statistics feature a graph icon. Clicking on this icon will open a graph of that row's statistics updated in real-time. In the Server section, next to Requests, there is a link labeled (Details). This link takes you to the Requests Snapshot, where you can view detailed information on which clients are making certain kinds of requests or which aspects of your site are bottlenecking. The fields in the blue area allow you to filter the snapshot to isolate certain parts of your server or look for clients that are performing certain actions.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="toggleDebugLog"><h3>Toggle Debug Logging<span class="ls-permlink"><a href="#toggleDebugLog"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Toggle Debug Logging toggles the value of <span class="tagl"><a href="ServGeneral_Help.html#log_debugLevel">调试级别</a></span> between <span class="val">NONE</span> and <span class="val">HIGH</span>. As debug logging has an impact on performance and can fill up the hard drive quickly, so <span class="tagl"><a href="ServGeneral_Help.html#log_debugLevel">调试级别</a></span> should usually be set to <span class="val">NONE</span> on a production server. This feature can be used instead to turn debug logging on and off quickly in order to debug a problem on a production server. Debug logging turned on or off in this way will not change anything shown in your server configurations.</p> <h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> <span class="tagl"><a href="#toggleDebugLog">Toggle Debug Logging</a></span> will only work if <span class="tagl"><a href="ServGeneral_Help.html#log_logLevel">日志级别</a></span> is set to <span class="val">DEBUG</span>. <span title="Performance" class="ls-icon-performance"></span> Important! Debug logging includes detailed information for each request and response. Active debug logging will severely degrade service performance and potentially saturate disk space in a very short time. This feature should only be used for a short period of time when trying to diagnose server issues.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="ServGeneral_Help.html#log_debugLevel">调试级别</a></span>, <span class="tagl"><a href="ServGeneral_Help.html#log_logLevel">日志级别</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="lname"><h3>Name - Listener<span class="ls-permlink"><a href="#lname"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The unique name that identifies this listener. This is the <span class="tagl"><a href="Listeners_General_Help.html#listenerName">侦听器名称</a></span> you specified when setting up the listener.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="lstatus"><h3>Status - Listener<span class="ls-permlink"><a href="#lstatus"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The current status of this listener. The status is either <span class="val">Running</span> or <span class="val">Error</span>.</p> <h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> If the listener is in the <span class="val">Error</span> state, you can view the server log to find out why.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="lmap"><h3>Virtual Hosts Mappings<span class="ls-permlink"><a href="#lmap"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Shows currently established mappings to virtual hosts from a particular listener. The virtual host name appears in brackets and is followed by the matching domain name(s) for this listener.</p> <h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> If a virtual host has not been loaded successfully (fatal errors in the virtual host configuration), the mapping to that virtual host will not be displayed.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vname"><h3>Name - Virtual Host<span class="ls-permlink"><a href="#vname"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The unique name that identifies this virtual host. This is the <span class="tagl"><a href="VirtualHosts_Help.html#vhName">虚拟主机名</a></span> you specified when setting up this virtual host.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vstatus"><h3>Status - Virtual Host<span class="ls-permlink"><a href="#vstatus"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The current status of a virtual host. The status can be: <span class="val">Running</span>, <span class="val">Stopped</span>, <span class="val">Restart Required</span>, or <span class="val">Running - Removed from Configuration</span>. <ul> <li><span class="val">Running</span> means the virtual host is loaded and in service.</li> <li><span class="val">Stopped</span> means the virtual host is loaded but not in service (disabled). </li> <li><span class="val"> Restart Required</span> means this is a newly added virtual host and the server has not yet loaded its configuration. </li> <li><span class="val">Running - Removed from Configuration</span> means the virtual host has been deleted from the server's configuration but it is still in service. </li> </ul></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vaction"><h3>Actions - Virtual Host<span class="ls-permlink"><a href="#vaction"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>This field shows buttons to disable, enable, or restart the virtual host. Actions taken on one virtual host do not affect the rest of the web server.</p> <h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> It is good idea to disable a virtual host temporarily when updating its content.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="venable"><h3>Enable<span class="ls-permlink"><a href="#venable"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The <span class="val">Enable</span> action starts up a stopped virtual host. This allows new requests to be accepted.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vdisable"><h3>Disable<span class="ls-permlink"><a href="#vdisable"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The <span class="val">Disable</span> action stops a running virtual host. New requests will not be accepted, but requests being processed will finish as usual.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vreload"><h3>Restart - Virtual Host<span class="ls-permlink"><a href="#vreload"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The Restart action causes the web server to load the newest configuration for this virtual host. Requests being processed will finish with the old configuration. The new configuration will only apply for new requests. All changes to a virtual host can be applied on the fly this way.</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> 版权所有.</footer> </div></div> </body> </html> �����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������zh-CN/CGI_Context.html������������������������������������������������������������������������������0000644�����������������00000047542�15027525531�0010500 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - CGI Context</title> <meta name="description" content="OpenLiteSpeed Users' Manual - CGI Context." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 3</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><span class="current"><a href="CGI_Context.html">CGI Context</a></span></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="Proxy_Context.html">Proxy Context</a></div><div class="center"><a href="Context_Help.html">Context</a></div><div class="next"><a href="LB_Context.html">Load Balancer Context</a> »</div></div> <h1>CGI Context</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header><a href="#cgiContext">CGI Context</a></header><p> <a href="#expuri">URI</a> | <a href="#cgi_path">路径</a> | <a href="#extraHeaders">标头控制</a> | <a href="#allowSetUID">允许设置UID</a> | <a href="#realm">域</a> | <a href="#authName">认证名称</a> | <a href="#required">Require(授权的用户/组)</a> | <a href="#accessAllowed">允许访问列表</a> | <a href="#accessDenied">拒绝访问列表</a> | <a href="#extAuthorizer">Authorizer</a> | <a href="#addDefaultCharset">添加默认的字符集</a> | <a href="#defaultCharsetCustomized">自定义默认字符集</a> | <a href="#enableRewrite">启用重写</a> | <a href="#rewriteInherit">重写继承</a> | <a href="#rewriteBase">重写基准</a> | <a href="#rewriteRules">重写规则</a> | <a href="#enableIpGeo">启用IP地理定位</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="cgiContext"><h3>CGI Context<span class="ls-permlink"><a href="#cgiContext"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>A CGI context defines scripts in a particular directory as CGI scripts. This directory can be inside or outside of the document root. When a file under this directory is requested, the server will always try to execute it as a CGI script, no matter if it's executable or not. In this way, file content under a CGI Context is always protected and cannot be read as static content. It is recommended that you put all your CGI scripts in a directory and set up a CGI Context to access them.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expuri"><h3>URI<span class="ls-permlink"><a href="#expuri"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the URI for this context.</p> <h4>Syntax</h4><p>指定此context下的URI。这个URI应该以"/"开始。 如果一个URI以"/"结束,那么该context将包含这个URI下的所有下级URI。如果context类型映射到系统目录上,则必须添加结尾的"/"</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#location">位置</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="cgi_path"><h3>路径<span class="ls-permlink"><a href="#cgi_path"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定CGI脚本的位置.</p> <h4>Syntax</h4><p>The path can be a directory that contains a group of CGI scripts, like <span class="val">$VH_ROOT/myapp/cgi-bin/</span>. In this case, the context <span class="tagl"><a href="#expuri">URI</a></span> must end with "/", like <span class="val">/app1/cgi/</span>. The Path can also specify only one CGI script, like <span class="val">$VH_ROOT/myapp/myscript.pl</span>. This script should have the corresponding <span class="tagl"><a href="#expuri">URI</a></span> <span class="val">/myapp/myscript.pl</span>.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extraHeaders"><h3>标头控制<span class="ls-permlink"><a href="#extraHeaders"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定要添加的附加响应/请求头。可以添加每行一个来添加多个头指令。"NONE "可以用来禁止父头继承。如果没有提供,则假定为 "Header"。</p> <h4>Syntax</h4><p>[Header]|RequestHeader [condition] set|append|merge|add|unset header [value] [early|env=[!]variable]</p> <h4>例子</h4><div class="ls-example">set Cache-control no-cache<br/> append Cache-control no-store<br/> Header set My-header cust_header_val<br/> RequestHeader set My-req-header cust_req_header_val</div><h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> 语法和用法类似于 <a href="https://httpd.apache.org/docs/2.2/mod/mod_headers.html#header" target="_blank" rel="noopener noreferrer">Apache's mod_headers directives</a><br/><br/> <span title="Information" class="ls-icon-info"></span> The 'Header' directive is is optional and can be excluded or left in when copying rules from elsewhere without issue.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="allowSetUID"><h3>允许设置UID<span class="ls-permlink"><a href="#allowSetUID"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定CGI脚本是否允许设置UID。如果允许,并且为CGI脚本启用了设置UID,那么无论CGI脚本是代表哪个用户启动的,CGI进程的用户ID都将切换为CGI脚本所有者的用户ID。<br/>默认值是 "关"</p> <h4>Syntax</h4><p>从单选框选择</p> <h4>提示</h4><p>[安全建议] 尽可能不要允许CGI脚本设置UID,因为这存在着安全风险</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="realm"><h3>域<span class="ls-permlink"><a href="#realm"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定这个context下的realm授权。 当指定时,必须提供有效的用户和用户名来访问这个context。 <span class="tagl"><a href="VHSecurity_Help.html#realms">Realms授权</a></span>需要在<span class="tagP"><a href="#VHSecurity_Help">虚拟主机安全</a></span>部分进行设置。 此设置使用每个realm的<span class="tagl"><a href="VHSecurity_Help.html#realmName">域名称</a></span>。</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="authName"><h3>认证名称<span class="ls-permlink"><a href="#authName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>为当前context下的realm认证指定一个替代的名称。 如果没有指定,原realm名称将被使用。 认证名称将显示在浏览器登陆弹出窗口。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="required"><h3>Require(授权的用户/组)<span class="ls-permlink"><a href="#required"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定哪些用户/用户组可以访问此context。 这里允许你使用一个用户/组数据库(在 <span class="tagl"><a href="#realm">域</a></span>中指定)访问多个context, 但只允许该数据库下特定的用户/组访问这个context。</p> <h4>Syntax</h4><p>Syntax is compatible with Apache's Require directive. For example: <ul> <li><span class="val">user username [username ...]</span><br/> Only listed users can access this context.</li> <li> <span class="val">group groupid [groupid ...]</span><br/> Only users belonging to the listed groups can access this context.</li> </ul> If this setting is not specified, all valid users will be allowed to access this resource.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessAllowed"><h3>允许访问列表<span class="ls-permlink"><a href="#accessAllowed"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定允许访问这个context下资源的IP地址或子网。综合 <span class="tagl"><a href="#accessDenied">拒绝访问列表</a></span>项的配置以及服务器/虚拟主机级别访问控制, 可访问性将以客户端IP所符合的最小范围来确定。</p> <h4>Syntax</h4><p>Comma-delimited list of IPs/sub-networks.</p> <h4>例子</h4><div class="ls-example">网络可以写成<span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span> 或<span class="val">192.168.1.*</span>。</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessDenied"><h3>拒绝访问列表<span class="ls-permlink"><a href="#accessDenied"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定哪个IP地址或子网不被允许访问这个context下的资源。 综合<span class="tagl"><a href="#accessAllowed">允许访问列表</a></span>项的配置以及服务器/虚拟主机级别访问控制, 可访问性将以客户端IP所符合的最小范围来确定。</p> <h4>Syntax</h4><p>Comma-delimited list of IPs/sub-networks.</p> <h4>例子</h4><div class="ls-example">子网络可以写成<span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span> 或<span class="val">192.168.1.*</span>。</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAuthorizer"><h3>Authorizer<span class="ls-permlink"><a href="#extAuthorizer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定可用于生成授权/未授权 decisions的外部应用程序。 目前,仅FastCGI授权器可用。 有关FastCGI授权者角色的更多详细信息, 请访问<a href="https://fastcgi-archives.github.io/" target="_blank" rel="noopener noreferrer">https://fastcgi-archives.github.io/</a>。</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="addDefaultCharset"><h3>添加默认的字符集<span class="ls-permlink"><a href="#addDefaultCharset"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>S指定当内容类型是"text/html"或"text/plain"且没有参数时,是否添加字符集标记到"Content-Type"响应报头中。当设置为<span class="val">Off</span>时,该功能禁用。当设置为<span class="val">On</span>时,将添加<span class="tagl"><a href="#defaultCharsetCustomized">自定义默认字符集</a></span>中指定的字符集,如果没有指定,将添加默认的"iso-8859-1"字符集。</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="defaultCharsetCustomized"><h3>自定义默认字符集<span class="ls-permlink"><a href="#defaultCharsetCustomized"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定一个字符集当<span class="tagl"><a href="#addDefaultCharset">添加默认的字符集</a></span>是<span class="val">On</span>时使用。这是可选的。默认值是<span class="val">iso-8859-1</span>。当<span class="tagl"><a href="#addDefaultCharset">添加默认的字符集</a></span>是<span class="val">Off</span>时本设置将不生效。</p> <h4>Syntax</h4><p>Name of a character set.</p> <h4>例子</h4><div class="ls-example">utf-8</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableRewrite"><h3>启用重写<span class="ls-permlink"><a href="#enableRewrite"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否启用LiteSpeed的URL重写. 可以在虚拟主机或context级别上自定义此选项, 并且沿目录树继承该选项,直到被其他选项覆。</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="rewriteInherit"><h3>重写继承<span class="ls-permlink"><a href="#rewriteInherit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否从父级context继承重写规则。 如果启用重写但不继承,将启用本context的重写基准及重写规则。</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="rewriteBase"><h3>重写基准<span class="ls-permlink"><a href="#rewriteBase"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定重写规则的基准URL。</p> <h4>Syntax</h4><p>URL</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="rewriteRules"><h3>重写规则<span class="ls-permlink"><a href="#rewriteRules"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定虚拟主机级别的重写规则。<br/><br/> 请勿在此处添加任何目录级重写规则。 如果您在.htaccess有任何目录级的重写规则,则应该使用uri"/"创建一个静态context, 并在那里添加重写规则。 <br/><br/> 重写规则由一个<span class="val">RewriteRule</span>组成,并可可以在多个<span class="val">RewriteCond</span>之后。 <ul> <li>每行仅能有一条规则</li> <li> <span class="val">RewriteCond</span> 和 <span class="val">RewriteRule</span> 遵循Apache的rewrite语法。 只需从Apache配置文件中复制并粘贴重写规则即可。 </li> <li> LiteSpeed和Apache mod_rewrite之间有细微差别: <ul> <li> <span class="val">%\{LA-U:variable\}</span> and <span class="val">%\{LA-F:variable\}</span> 在Litespeed 重写中将被忽略 </li> <li> Litespeed中加入了两个新变量: <span class="val">%\{CURRENT_URI\}</span>表示正在处理的URL <span class="val">%\{SCRIPT_NAME\}</span>表示为相应的CGI环境变量。 </li> <li> Litespeed在遇到<span class="val">[L]</span>后为了避免循环将停止处理此及此后的重写规则 而Apache mod_rewrite将仅停止处理该条重写规则。此行为类似于apachemod_rewrite中的<span class="val">[END]</span>标志。 </li> </ul> </li> </ul><br/> LiteSpeed的重写规则遵循Apache的重写规范。 有关重写规则的更多详细信息,请参阅 <a href=" http://httpd.apache.org/docs/current/mod/mod_rewrite.html " target="_blank" rel="noopener noreferrer"> Apache's mod_rewrite document(英文文档) </a> 和 <a href=" http://httpd.apache.org/docs/current/rewrite/ " target="_blank" rel="noopener noreferrer"> Apache's URL rewriting guide(英文文档) </a>.</p> <h4>Syntax</h4><p>string</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableIpGeo"><h3>启用IP地理定位<span class="ls-permlink"><a href="#enableIpGeo"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否启用IP地理定位查找。 可以在服务器级别,虚拟主机级别,或context级别设置。</p> <h4>Syntax</h4><p>从单选框选择</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="ServGeneral_Help.html#useIpInProxyHeader">使用报头中的客户端IP</a></span>, <span class="tagl"><a href="ServGeneral_Help.html#geoipDBFile">数据库文件路径</a></span>,</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> 版权所有.</footer> </div></div> </body> </html> ��������������������������������������������������������������������������������������������������������������������������������������������������������������zh-CN/Module_Help.html������������������������������������������������������������������������������0000644�����������������00000076113�15027525531�0010563 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Module Configuration</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Module Configuration." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 3</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><span class="current"><a href="Module_Help.html">Module Configuration</a></span></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="App_Server_Help.html">App Server Settings</a></div><div class="center"><a href="config.html">Configuration</a></div><div class="next"><a href="Listeners_General_Help.html">侦听器设置</a> »</div></div> <h1>Module Configuration</h1><section class="ls-spacer-small-bottom">Module support is available in Openlitespeed 1.3 and LSWS Enterprise 5.0 and greater. All required modules must be registered under the Server Modules Configuration tab. Module files must be located in the server root/modules folder to be available for registering. On start up, the server loads all registered modules. The server must be restarted after new modules are registered. Modules can be configured globally under the Server Module configuration tab. The configuration data is then available to the Listener and Virtual Host Module Configurations to inherit or modify.</section> <h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header><a href="#servModules">Server Modules</a></header><p> <a href="#modulename">模块</a> | <a href="#internalmodule">内部的</a> | <a href="#modParams">模块参数</a> | <a href="#moduleEnabled">Enable Module</a> | <a href="#L4_BEGINSESSION">Hook::L4_BEGINSESSION Priority</a> | <a href="#L4_ENDSESSION">Hook::L4_ENDSESSION Priority</a> | <a href="#L4_RECVING">Hook::L4_RECVING Priority</a> | <a href="#L4_SENDING">Hook::L4_SENDING Priority</a> | <a href="#HTTP_BEGIN">Hook::HTTP_BEGIN Priority</a> | <a href="#RECV_REQ_HEADER">Hook::RECV_REQ_HEADER Priority</a> | <a href="#URI_MAP">Hook::URI_MAP Priority</a> | <a href="#HTTP_AUTH">Hook::HTTP_AUTH Priority</a> | <a href="#RECV_REQ_BODY">Hook::RECV_REQ_BODY Priority</a> | <a href="#RCVD_REQ_BODY">Hook::RCVD_REQ_BODY Priority</a> | <a href="#RECV_RESP_HEADER">Hook::RECV_RESP_HEADER Priority</a> | <a href="#RECV_RESP_BODY">Hook::RECV_RESP_BODY Priority</a> | <a href="#RCVD_RESP_BODY">Hook::RCVD_RESP_BODY Priority</a> | <a href="#HANDLER_RESTART">Hook::HANDLER_RESTART Priority</a> | <a href="#SEND_RESP_HEADER">Hook::SEND_RESP_HEADER Priority</a> | <a href="#SEND_RESP_BODY">Hook::SEND_RESP_BODY Priority</a> | <a href="#HTTP_END">Hook::HTTP_END Priority</a> | <a href="#MAIN_INITED">Hook::MAIN_INITED Priority</a> | <a href="#MAIN_PREFORK">Hook::MAIN_PREFORK Priority</a> | <a href="#MAIN_POSTFORK">Hook::MAIN_POSTFORK Priority</a> | <a href="#WORKER_POSTFORK">Hook::WORKER_POSTFORK Priority</a> | <a href="#WORKER_ATEXIT">Hook::WORKER_ATEXIT Priority</a> | <a href="#MAIN_ATEXIT">Hook::MAIN_ATEXIT Priority</a></p></section> <section class="toc-row"><header><a href="#listenerModules">Listener Modules</a></header><p> <a href="#modulename">模块</a> | <a href="#modParams">模块参数</a> | <a href="#moduleEnabled_lst">Enable Module</a></p></section> <section class="toc-row"><header><a href="#vhModules">Virtual Host Modules</a></header><p> <a href="#modulename">模块</a> | <a href="#modParams">模块参数</a> | <a href="#moduleEnabled_vh">Enable Module</a></p></section> <section class="toc-row"><header><a href="#vhModuleUrlFilters">Virtual Host Module Context</a></header><p> <a href="#expuri">URI</a> | <a href="#modParams">模块参数</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="servModules"><h3>Server Modules<span class="ls-permlink"><a href="#servModules"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The Server module configuration globally defines the module configuration data. Once defined, the Listeners and Virtual Hosts have access to the modules and module configurations. <br/><br/> All modules that are to be processed must be registered in the Server configuration. The Server configuration also defines the default values for module parameter data. These values can be inherited or overridden by the Listener and Virtual Host configuration data.<br/><br/> Module priority is only defined at server level and is inherited by the Listener and Virtual Host configurations.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="modulename"><h3>模块<span class="ls-permlink"><a href="#modulename"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>服务器启动时要加载的外部或内部模块的名称。<br/><br/> <b>外部模块</b><br/> 用于外部模块的值必须与 $SERVER_ROOT/modules/modulename.so 下的“.so”文件名匹配, 以便服务器应用程序加载该文件。 在注册新模块后需要重新启动服务器。<br/><br/> <b>内部模块</b><br/> 内部模块使用的值必须与构建模块时使用的名称匹配 例如,对于服务器附带的内部缓存模块,必须将其设置为“缓存”。</p> <h4>Syntax</h4><p>字符串</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="internalmodule"><h3>内部的<span class="ls-permlink"><a href="#internalmodule"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定模块是否为内部模块(静态链接),而不是动态链接库。</p> <h4>Syntax</h4><p>布尔值</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="modParams"><h3>模块参数<span class="ls-permlink"><a href="#modParams"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Set module parameters. The module parameters are defined by the module developer.<br/><br/> Set the value in the Server configuration to globally assign the default value. The user can override this setting at the Listener, Virtual Host or Context levels. If the 'Not Set' radio button is selected, it will be inherited from the upper level.</p> <h4>Syntax</h4><p>Specified by the module interface.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="moduleEnabled"><h3>Enable Module<span class="ls-permlink"><a href="#moduleEnabled"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Enables module hooks globally. This setting can be overridden at the Listener and Virtual Host levels.<br/><br/> Default value: <span class="val">Yes</span></p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="L4_BEGINSESSION"><h3>Hook::L4_BEGINSESSION Priority<span class="ls-permlink"><a href="#L4_BEGINSESSION"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets the priority for this module callback within the L4 Begin Session Hook.<br/> The L4 Begin Session Hook is triggered when the TCP/IP connection begins. <br/><br/> It will only take effect if the module has a hook point here. If it is not set, the priority will be the default value defined in the module.</p> <h4>Syntax</h4><p>Integer value from -6000 to 6000. Lower value means higher priority.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="L4_ENDSESSION"><h3>Hook::L4_ENDSESSION Priority<span class="ls-permlink"><a href="#L4_ENDSESSION"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets the priority for this module callback within the L4 End Session Hook.<br/> The L4 End Session Hook is triggered when the TCP/IP connection ends. <br/><br/> It will only take effect if the module has a hook point here. If it is not set, the priority will be the default value defined in the module.</p> <h4>Syntax</h4><p>Integer value from -6000 to 6000. Lower value means higher priority.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="L4_RECVING"><h3>Hook::L4_RECVING Priority<span class="ls-permlink"><a href="#L4_RECVING"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets the priority for this module callback within the L4 Receiving Hook.<br/> The L4 Receiving Hook is triggered when the TCP/IP connection receives data. <br/><br/> It will only take effect if the module has a hook point here. If it is not set, the priority will be the default value defined in the module.</p> <h4>Syntax</h4><p>Integer value from -6000 to 6000. Lower value means higher priority.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="L4_SENDING"><h3>Hook::L4_SENDING Priority<span class="ls-permlink"><a href="#L4_SENDING"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets the priority for this module callback within the L4 Sending Hook.<br/> The L4 Sending Hook is triggered when the TCP/IP connection sends data. <br/><br/> It will only take effect if the module has a hook point here. If it is not set, the priority will be the default value defined in the module.</p> <h4>Syntax</h4><p>Integer value from -6000 to 6000. Lower value means higher priority.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="HTTP_BEGIN"><h3>Hook::HTTP_BEGIN Priority<span class="ls-permlink"><a href="#HTTP_BEGIN"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets the priority for this module callback within the HTTP Begin Hook.<br/> The HTTP Begin Hook is triggered when the TCP/IP connection begins an HTTP Session. <br/><br/> It will only take effect if the module has a hook point here. If it is not set, the priority will be the default value defined in the module.</p> <h4>Syntax</h4><p>Integer value from -6000 to 6000. Lower value means higher priority.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="RECV_REQ_HEADER"><h3>Hook::RECV_REQ_HEADER Priority<span class="ls-permlink"><a href="#RECV_REQ_HEADER"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets the priority for this module callback within the HTTP Receive Request Header Hook.<br/> The HTTP Receive Request Header Hook is triggered when the web server receives a request header. <br/><br/> It will only take effect if the module has a hook point here. If it is not set, the priority will be the default value defined in the module.</p> <h4>Syntax</h4><p>Integer value from -6000 to 6000. Lower value means higher priority.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="URI_MAP"><h3>Hook::URI_MAP Priority<span class="ls-permlink"><a href="#URI_MAP"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets the priority for this module callback within the HTTP URI Map Hook.<br/> The HTTP URI Map Hook is triggered when the web server maps a URI request to a context. <br/><br/> It will only take effect if the module has a hook point here. If it is not set, the priority will be the default value defined in the module.</p> <h4>Syntax</h4><p>Integer value from -6000 to 6000. Lower value means higher priority.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="HTTP_AUTH"><h3>Hook::HTTP_AUTH Priority<span class="ls-permlink"><a href="#HTTP_AUTH"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets the priority for this module callback within the HTTP Authentication Hook.<br/> The HTTP Authentication Hook is triggered after resource mapping and before handler processing. It occurs after HTTP built-in authentication, and can be used to perform additional authentication checking. <br/><br/> It will only take effect if the module has a hook point here. If it is not set, the priority will be the default value defined in the module.</p> <h4>Syntax</h4><p>Integer value from -6000 to 6000. Lower value means higher priority.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="RECV_REQ_BODY"><h3>Hook::RECV_REQ_BODY Priority<span class="ls-permlink"><a href="#RECV_REQ_BODY"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets the priority for this module callback within the HTTP Receive Request Body Hook. <br/><br/> The HTTP Receive Request Body Hook is triggered when the web server receives request body data. <br/><br/> It will only take effect if the module has a hook point here. If it is not set, the priority will be the default value defined in the module.</p> <h4>Syntax</h4><p>Integer value from -6000 to 6000. Lower value means higher priority.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="RCVD_REQ_BODY"><h3>Hook::RCVD_REQ_BODY Priority<span class="ls-permlink"><a href="#RCVD_REQ_BODY"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets the priority for this module callback within the HTTP Received Request Body Hook. <br/><br/> The HTTP Received Request Body Hook is triggered when the web server finishes receiving request body data. <br/><br/> It will only take effect if the module has a hook point here. If it is not set, the priority will be the default value defined in the module.</p> <h4>Syntax</h4><p>Integer value from -6000 to 6000. Lower value means higher priority.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="RECV_RESP_HEADER"><h3>Hook::RECV_RESP_HEADER Priority<span class="ls-permlink"><a href="#RECV_RESP_HEADER"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets the priority for this module callback within the HTTP Receive Response Header Hook. <br/><br/> The HTTP Receive Response Header Hook is triggered when the web server creates the response header. <br/><br/> It will only take effect if the module has a hook point here. If it is not set, the priority will be the default value defined in the module.</p> <h4>Syntax</h4><p>Integer value from -6000 to 6000. Lower value means higher priority.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="RECV_RESP_BODY"><h3>Hook::RECV_RESP_BODY Priority<span class="ls-permlink"><a href="#RECV_RESP_BODY"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets the priority for this module callback within the HTTP Receive Response Body Hook. <br/><br/> The HTTP Receive Response Body Hook is triggered when the web server backend receives the response body. <br/><br/> It will only take effect if the module has a hook point here. If it is not set, the priority will be the default value defined in the module.</p> <h4>Syntax</h4><p>Integer value from -6000 to 6000. Lower value means higher priority.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="RCVD_RESP_BODY"><h3>Hook::RCVD_RESP_BODY Priority<span class="ls-permlink"><a href="#RCVD_RESP_BODY"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets the priority for this module callback within the HTTP Received Response Body Hook. <br/><br/> The HTTP Received Response Body Hook is triggered when the web server backend finishes receiving the response body. <br/><br/> It will only take effect if the module has a hook point here. If it is not set, the priority will be the default value defined in the module.</p> <h4>Syntax</h4><p>Integer value from -6000 to 6000. Lower value means higher priority.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="HANDLER_RESTART"><h3>Hook::HANDLER_RESTART Priority<span class="ls-permlink"><a href="#HANDLER_RESTART"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets the priority for this module callback within the HTTP Handler Restart Hook.<br/> The HTTP Handler Restart Hook is triggered when the web server needs to discard the current response and start processing from beginning, for example, when an internal redirect has been requested.<br/><br/> It will only take effect if the module has a hook point here. If it is not set, the priority will be the default value defined in the module.</p> <h4>Syntax</h4><p>Integer value from -6000 to 6000. Lower value means higher priority.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="SEND_RESP_HEADER"><h3>Hook::SEND_RESP_HEADER Priority<span class="ls-permlink"><a href="#SEND_RESP_HEADER"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets the priority for this module callback within the HTTP Send Response Header Hook. <br/><br/> The HTTP Send Response Header Hook is triggered when the web server is ready to send the response header. <br/><br/> It will only take effect if the module has a hook point here. If it is not set, the priority will be the default value defined in the module.</p> <h4>Syntax</h4><p>Integer value from -6000 to 6000. Lower value means higher priority.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="SEND_RESP_BODY"><h3>Hook::SEND_RESP_BODY Priority<span class="ls-permlink"><a href="#SEND_RESP_BODY"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets the priority for this module callback within the HTTP Send Response Body Hook. <br/><br/> The HTTP Send Response Body Hook is triggered when the web server is going to send the response body. <br/><br/> It will only take effect if the module has a hook point here. If it is not set, the priority will be the default value defined in the module.</p> <h4>Syntax</h4><p>Integer value from -6000 to 6000. Lower value means higher priority.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="HTTP_END"><h3>Hook::HTTP_END Priority<span class="ls-permlink"><a href="#HTTP_END"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets the priority for this module callback within the HTTP Session End Hook. <br/><br/> The HTTP Session End Hook is triggered when the HTTP connection has ended. <br/> It will only take effect if the module has a hook point here. If it is not set, the priority will be the default value defined in the module.</p> <h4>Syntax</h4><p>Integer value from -6000 to 6000. Lower value means higher priority.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="MAIN_INITED"><h3>Hook::MAIN_INITED Priority<span class="ls-permlink"><a href="#MAIN_INITED"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets the priority for this module callback within the Main Initialized Hook. <br/><br/> The Main Initialized Hook is triggered once upon startup, after the server configuration and initialization is completed by the main (controller) process, and before any requests are serviced. <br/> It will only take effect if the module has a hook point here. If it is not set, the priority will be the default value defined in the module.</p> <h4>Syntax</h4><p>Integer value from -6000 to 6000. Lower value means higher priority.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="MAIN_PREFORK"><h3>Hook::MAIN_PREFORK Priority<span class="ls-permlink"><a href="#MAIN_PREFORK"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets the priority for this module callback within the Main Prefork Hook. <br/><br/> The Main Prefork Hook is triggered by the main (controller) process immediately before a new worker process is started (forked). This is called for each worker, and may happen during system startup, or if a worker has been restarted. <br/> It will only take effect if the module has a hook point here. If it is not set, the priority will be the default value defined in the module.</p> <h4>Syntax</h4><p>Integer value from -6000 to 6000. Lower value means higher priority.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="MAIN_POSTFORK"><h3>Hook::MAIN_POSTFORK Priority<span class="ls-permlink"><a href="#MAIN_POSTFORK"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets the priority for this module callback within the Main Postfork Hook. <br/><br/> The Main Postfork Hook is triggered by the main (controller) process immediately after a new worker process has been started (forked). This is called for each worker, and may happen during system startup, or if a worker has been restarted. <br/> It will only take effect if the module has a hook point here. If it is not set, the priority will be the default value defined in the module.</p> <h4>Syntax</h4><p>Integer value from -6000 to 6000. Lower value means higher priority.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="WORKER_POSTFORK"><h3>Hook::WORKER_POSTFORK Priority<span class="ls-permlink"><a href="#WORKER_POSTFORK"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets the priority for this module callback within the Worker Postfork Hook. <br/><br/> The Worker Postfork Hook is triggered by a worker process after being created by the main (controller) process. Note that a corresponding Main Postfork Hook may be called by the main process either before or after this callback. <br/> It will only take effect if the module has a hook point here. If it is not set, the priority will be the default value defined in the module.</p> <h4>Syntax</h4><p>Integer value from -6000 to 6000. Lower value means higher priority.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="WORKER_ATEXIT"><h3>Hook::WORKER_ATEXIT Priority<span class="ls-permlink"><a href="#WORKER_ATEXIT"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets the priority for this module callback within the Worker At Exit Hook. <br/><br/> The Worker At Exit Hook is triggered by a worker process just prior to exiting. It is the last hook point to be called by a worker. <br/> It will only take effect if the module has a hook point here. If it is not set, the priority will be the default value defined in the module.</p> <h4>Syntax</h4><p>Integer value from -6000 to 6000. Lower value means higher priority.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="MAIN_ATEXIT"><h3>Hook::MAIN_ATEXIT Priority<span class="ls-permlink"><a href="#MAIN_ATEXIT"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets the priority for this module callback within the Main At Exit Hook. <br/><br/> The Main At Exit Hook is triggered by the main (controller) process just prior to exiting. It is the last hook point to be called by the main process. <br/> It will only take effect if the module has a hook point here. If it is not set, the priority will be the default value defined in the module.</p> <h4>Syntax</h4><p>Integer value from -6000 to 6000. Lower value means higher priority.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="listenerModules"><h3>Listener Modules<span class="ls-permlink"><a href="#listenerModules"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Listener module configuration data is, by default inherited from the Server module configuration. The Listener Modules are limited to the TCP/IP Layer 4 hooks.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="moduleEnabled_lst"><h3>Enable Module<span class="ls-permlink"><a href="#moduleEnabled_lst"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Enables module hooks at the Listener level. This setting will only take effect if the module has TCP/IP level hooks (L4_BEGSESSION, L4_ENDSESSION, L4_RECVING, L4_SENDING).<br/><br/> Default value: Inherit Server level setting</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vhModules"><h3>Virtual Host Modules<span class="ls-permlink"><a href="#vhModules"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Virtual Host module configuration data is, by default inherited from the Server module configuration. The Virtual Host Modules are limited to the HTTP level hooks.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="moduleEnabled_vh"><h3>Enable Module<span class="ls-permlink"><a href="#moduleEnabled_vh"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Enables module hooks at the Virtual Host level. This setting will only take effect if the module has HTTP level hooks.<br/><br/> Default value: Inherit Server level setting</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vhModuleUrlFilters"><h3>Virtual Host Module Context<span class="ls-permlink"><a href="#vhModuleUrlFilters"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>It's a centralized place to customize module settings for virtual host contexts. Settings for a context URI will override the virtual host or the server level settings.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expuri"><h3>URI<span class="ls-permlink"><a href="#expuri"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the URI for this context.</p> <h4>Syntax</h4><p>指定此context下的URI。这个URI应该以"/"开始。 如果一个URI以"/"结束,那么该context将包含这个URI下的所有下级URI。如果context类型映射到系统目录上,则必须添加结尾的"/"</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#location">位置</a></span></p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> 版权所有.</footer> </div></div> </body> </html> �����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������zh-CN/Real_Time_Stats_Help.html���������������������������������������������������������������������0000644�����������������00000015217�15027525531�0012353 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Real-Time Statistics</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Real-Time Statistics." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 3</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><span class="current"><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></span></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="ServerStat_Help.html">WebAdmin Console - Service Manager</a></div><div class="center"><a href="admin.html">Administration</a></div><div class="next"> </div></div> <h1>Real-Time Statistics</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header>Server Health</header><p> <a href="#antiddos_blocked_ip">Anti-DDoS Blocked IP</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="antiddos_blocked_ip"><h3>Anti-DDoS Blocked IP<span class="ls-permlink"><a href="#antiddos_blocked_ip"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>A comma-separated list of IP addresses blocked by Anti-DDoS protection, each ending with a semi-colon and reason code indicating why the IP address was blocked.<br/><br/> Potential Reason Codes: <ul> <li><span class="val">A</span>: BOT_UNKNOWN</li> <li><span class="val">B</span>: BOT_OVER_SOFT</li> <li><span class="val">C</span>: BOT_OVER_HARD</li> <li><span class="val">D</span>: BOT_TOO_MANY_BAD_REQ</li> <li><span class="val">E</span>: BOT_CAPTCHA</li> <li><span class="val">F</span>: BOT_FLOOD</li> <li><span class="val">G</span>: BOT_REWRITE_RULE</li> <li><span class="val">H</span>: BOT_TOO_MANY_BAD_STATUS</li> <li><span class="val">I</span>: BOT_BRUTE_FORCE</li> </ul><br/><br/> The full list of blocked IPs is also available in the Real-Time Stats report file set in <span class="tagl"><a href="ServGeneral_Help.html#statDir">统计输出目录</a></span>.</p> <h4>Syntax</h4><p><blocked_ip_address>;<reason_code></p> <h4>例子</h4><div class="ls-example">1.0.100.50;E, 1.0.100.60;D, 1.0.100.70;F</div></article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> 版权所有.</footer> </div></div> </body> </html> ���������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������zh-CN/LSAPI_Context.html����������������������������������������������������������������������������0000644�����������������00000036571�15027525531�0010746 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - LiteSpeed SAPI Context</title> <meta name="description" content="OpenLiteSpeed Users' Manual - LiteSpeed SAPI Context." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 3</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><span class="current"><a href="LSAPI_Context.html">LSAPI Context</a></span></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="FCGI_Context.html">Fast CGI Context</a></div><div class="center"><a href="Context_Help.html">Context</a></div><div class="next"><a href="Proxy_Context.html">Proxy Context</a> »</div></div> <h1>LiteSpeed SAPI Context</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header><a href="#lsapiContext">LiteSpeed SAPI Context</a></header><p> <a href="#expuri">URI</a> | <a href="#lsapiapp">LiteSpeed SAPI App</a> | <a href="#extraHeaders">标头控制</a> | <a href="#realm">域</a> | <a href="#authName">认证名称</a> | <a href="#required">Require(授权的用户/组)</a> | <a href="#accessAllowed">允许访问列表</a> | <a href="#accessDenied">拒绝访问列表</a> | <a href="#extAuthorizer">Authorizer</a> | <a href="#addDefaultCharset">添加默认的字符集</a> | <a href="#defaultCharsetCustomized">自定义默认字符集</a> | <a href="#enableIpGeo">启用IP地理定位</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="lsapiContext"><h3>LiteSpeed SAPI Context<span class="ls-permlink"><a href="#lsapiContext"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>External applications cannot be used directly. They must be either configured as a script handler or mapped to a URL through a context. An LiteSpeed SAPI Context will associate a URI with an LSAPI (LiteSpeed Server Application Programming Interface) application. Currently PHP, Ruby and Python have LSAPI modules. LSAPI, as it is developed specifically for LiteSpeed web server, is the most efficient way to communicate with LiteSpeed web server.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expuri"><h3>URI<span class="ls-permlink"><a href="#expuri"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the URI for this context.</p> <h4>Syntax</h4><p>指定此context下的URI。这个URI应该以"/"开始。 如果一个URI以"/"结束,那么该context将包含这个URI下的所有下级URI。如果context类型映射到系统目录上,则必须添加结尾的"/"</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#location">位置</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="lsapiapp"><h3>LiteSpeed SAPI App<span class="ls-permlink"><a href="#lsapiapp"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定要连接到此context的LiteSpeed SAPI应用程序。 此应用程序必须在服务器或虚拟主机级别的 <span class="tagP"><a href="#ExtApp_Help">外部应用</a></span>中定义。</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extraHeaders"><h3>标头控制<span class="ls-permlink"><a href="#extraHeaders"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定要添加的附加响应/请求头。可以添加每行一个来添加多个头指令。"NONE "可以用来禁止父头继承。如果没有提供,则假定为 "Header"。</p> <h4>Syntax</h4><p>[Header]|RequestHeader [condition] set|append|merge|add|unset header [value] [early|env=[!]variable]</p> <h4>例子</h4><div class="ls-example">set Cache-control no-cache<br/> append Cache-control no-store<br/> Header set My-header cust_header_val<br/> RequestHeader set My-req-header cust_req_header_val</div><h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> 语法和用法类似于 <a href="https://httpd.apache.org/docs/2.2/mod/mod_headers.html#header" target="_blank" rel="noopener noreferrer">Apache's mod_headers directives</a><br/><br/> <span title="Information" class="ls-icon-info"></span> The 'Header' directive is is optional and can be excluded or left in when copying rules from elsewhere without issue.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="realm"><h3>域<span class="ls-permlink"><a href="#realm"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定这个context下的realm授权。 当指定时,必须提供有效的用户和用户名来访问这个context。 <span class="tagl"><a href="VHSecurity_Help.html#realms">Realms授权</a></span>需要在<span class="tagP"><a href="#VHSecurity_Help">虚拟主机安全</a></span>部分进行设置。 此设置使用每个realm的<span class="tagl"><a href="VHSecurity_Help.html#realmName">域名称</a></span>。</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="authName"><h3>认证名称<span class="ls-permlink"><a href="#authName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>为当前context下的realm认证指定一个替代的名称。 如果没有指定,原realm名称将被使用。 认证名称将显示在浏览器登陆弹出窗口。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="required"><h3>Require(授权的用户/组)<span class="ls-permlink"><a href="#required"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定哪些用户/用户组可以访问此context。 这里允许你使用一个用户/组数据库(在 <span class="tagl"><a href="#realm">域</a></span>中指定)访问多个context, 但只允许该数据库下特定的用户/组访问这个context。</p> <h4>Syntax</h4><p>Syntax is compatible with Apache's Require directive. For example: <ul> <li><span class="val">user username [username ...]</span><br/> Only listed users can access this context.</li> <li> <span class="val">group groupid [groupid ...]</span><br/> Only users belonging to the listed groups can access this context.</li> </ul> If this setting is not specified, all valid users will be allowed to access this resource.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessAllowed"><h3>允许访问列表<span class="ls-permlink"><a href="#accessAllowed"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定允许访问这个context下资源的IP地址或子网。综合 <span class="tagl"><a href="#accessDenied">拒绝访问列表</a></span>项的配置以及服务器/虚拟主机级别访问控制, 可访问性将以客户端IP所符合的最小范围来确定。</p> <h4>Syntax</h4><p>Comma-delimited list of IPs/sub-networks.</p> <h4>例子</h4><div class="ls-example">网络可以写成<span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span> 或<span class="val">192.168.1.*</span>。</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessDenied"><h3>拒绝访问列表<span class="ls-permlink"><a href="#accessDenied"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定哪个IP地址或子网不被允许访问这个context下的资源。 综合<span class="tagl"><a href="#accessAllowed">允许访问列表</a></span>项的配置以及服务器/虚拟主机级别访问控制, 可访问性将以客户端IP所符合的最小范围来确定。</p> <h4>Syntax</h4><p>Comma-delimited list of IPs/sub-networks.</p> <h4>例子</h4><div class="ls-example">子网络可以写成<span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span> 或<span class="val">192.168.1.*</span>。</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAuthorizer"><h3>Authorizer<span class="ls-permlink"><a href="#extAuthorizer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定可用于生成授权/未授权 decisions的外部应用程序。 目前,仅FastCGI授权器可用。 有关FastCGI授权者角色的更多详细信息, 请访问<a href="https://fastcgi-archives.github.io/" target="_blank" rel="noopener noreferrer">https://fastcgi-archives.github.io/</a>。</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="addDefaultCharset"><h3>添加默认的字符集<span class="ls-permlink"><a href="#addDefaultCharset"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>S指定当内容类型是"text/html"或"text/plain"且没有参数时,是否添加字符集标记到"Content-Type"响应报头中。当设置为<span class="val">Off</span>时,该功能禁用。当设置为<span class="val">On</span>时,将添加<span class="tagl"><a href="#defaultCharsetCustomized">自定义默认字符集</a></span>中指定的字符集,如果没有指定,将添加默认的"iso-8859-1"字符集。</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="defaultCharsetCustomized"><h3>自定义默认字符集<span class="ls-permlink"><a href="#defaultCharsetCustomized"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定一个字符集当<span class="tagl"><a href="#addDefaultCharset">添加默认的字符集</a></span>是<span class="val">On</span>时使用。这是可选的。默认值是<span class="val">iso-8859-1</span>。当<span class="tagl"><a href="#addDefaultCharset">添加默认的字符集</a></span>是<span class="val">Off</span>时本设置将不生效。</p> <h4>Syntax</h4><p>Name of a character set.</p> <h4>例子</h4><div class="ls-example">utf-8</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableIpGeo"><h3>启用IP地理定位<span class="ls-permlink"><a href="#enableIpGeo"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否启用IP地理定位查找。 可以在服务器级别,虚拟主机级别,或context级别设置。</p> <h4>Syntax</h4><p>从单选框选择</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="ServGeneral_Help.html#useIpInProxyHeader">使用报头中的客户端IP</a></span>, <span class="tagl"><a href="ServGeneral_Help.html#geoipDBFile">数据库文件路径</a></span>,</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> 版权所有.</footer> </div></div> </body> </html> ���������������������������������������������������������������������������������������������������������������������������������������zh-CN/App_Server_Help.html��������������������������������������������������������������������������0000644�����������������00000051672�15027525531�0011407 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - App Server Settings</title> <meta name="description" content="OpenLiteSpeed Users' Manual - App Server Settings." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 3</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><span class="current"><a href="App_Server_Help.html">App Server Settings</a></span></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="ScriptHandler_Help.html">脚本处理程序</a></div><div class="center"><a href="config.html">Configuration</a></div><div class="next"><a href="Module_Help.html">Module Configuration</a> »</div></div> <h1>App Server Settings</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header><a href="#railsDefaults">Rack/Rails默认设置</a></header><p> <a href="#rubyBin">Ruby路径</a> | <a href="#appserverEnv">运行模式</a> | <a href="#maxConns">最大连接数</a> | <a href="#env">环境</a> | <a href="#initTimeout">初次请求超时时间 (secs)</a> | <a href="#retryTimeout">重试超时时间 (secs)</a> | <a href="#pcKeepAliveTimeout">持久连接超时时间</a> | <a href="#respBuffer">响应缓冲</a> | <a href="#extMaxIdleTime">最大空闲时间</a> | <a href="#backlog">Back Log</a> | <a href="#runOnStartUp">开机自启</a> | <a href="#extAppPriority">优先级</a> | <a href="#memSoftLimit">内存软限制 (bytes)</a> | <a href="#memHardLimit">内存硬限制 (bytes)</a> | <a href="#procSoftLimit">进程软限制</a> | <a href="#procHardLimit">进程硬限制</a></p></section> <section class="toc-row"><header><a href="#wsgiDefaults">Python WSGI Default Settings</a></header><p> <a href="#wsgiBin">WSGI路径</a> | <a href="#appserverEnv">运行模式</a> | <a href="#maxConns">最大连接数</a> | <a href="#env">环境</a> | <a href="#initTimeout">初次请求超时时间 (secs)</a> | <a href="#retryTimeout">重试超时时间 (secs)</a> | <a href="#pcKeepAliveTimeout">持久连接超时时间</a> | <a href="#respBuffer">响应缓冲</a> | <a href="#extMaxIdleTime">最大空闲时间</a> | <a href="#backlog">Back Log</a> | <a href="#runOnStartUp">开机自启</a> | <a href="#extAppPriority">优先级</a> | <a href="#memSoftLimit">内存软限制 (bytes)</a> | <a href="#memHardLimit">内存硬限制 (bytes)</a> | <a href="#procSoftLimit">进程软限制</a> | <a href="#procHardLimit">进程硬限制</a></p></section> <section class="toc-row"><header><a href="#nodeDefaults">Node.js App Default Settings</a></header><p> <a href="#nodeBin">Node路径</a> | <a href="#appserverEnv">运行模式</a> | <a href="#maxConns">最大连接数</a> | <a href="#env">环境</a> | <a href="#initTimeout">初次请求超时时间 (secs)</a> | <a href="#retryTimeout">重试超时时间 (secs)</a> | <a href="#pcKeepAliveTimeout">持久连接超时时间</a> | <a href="#respBuffer">响应缓冲</a> | <a href="#extMaxIdleTime">最大空闲时间</a> | <a href="#backlog">Back Log</a> | <a href="#runOnStartUp">开机自启</a> | <a href="#extAppPriority">优先级</a> | <a href="#memSoftLimit">内存软限制 (bytes)</a> | <a href="#memHardLimit">内存硬限制 (bytes)</a> | <a href="#procSoftLimit">进程软限制</a> | <a href="#procHardLimit">进程硬限制</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="railsDefaults"><h3>Rack/Rails默认设置<span class="ls-permlink"><a href="#railsDefaults"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Rack/Rails的默认配置. 这些设置可以被context级别覆盖.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="rubyBin"><h3>Ruby路径<span class="ls-permlink"><a href="#rubyBin"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Ruby可执行文件的路径。 通常是 /usr/bin/ruby 或 /usr/local/bin/ruby (取决于Ruby的安装文章)</p> <h4>Syntax</h4><p>绝对路径</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="appserverEnv"><h3>运行模式<span class="ls-permlink"><a href="#appserverEnv"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定Rack/Rails的运行模式:"发展", "生产"或者是"预发布". 默认为 "生产".</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxConns"><h3>最大连接数<span class="ls-permlink"><a href="#maxConns"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定服务器与外部应用之间可建立的最大并发连接数。该设置控制外部应用程序可同时处理多少个请求。 然而,真正的限制还取决于外部应用本身。如果外部的速度不够快,或者无法处理大量的并发请求,那么将这个值设置得更高也无济于事。</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p>[性能建议] 设置一个高值并不能直接变成高性能。设置为一个不会使外部应用程序过载的值,将提供最佳的性能/吞吐量。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="env"><h3>环境<span class="ls-permlink"><a href="#env"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>为外部应用程序指定额外的环境变量。</p> <h4>Syntax</h4><p>Key=value. Multiple variables can be separated by "ENTER"</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="initTimeout"><h3>初次请求超时时间 (secs)<span class="ls-permlink"><a href="#initTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定服务器等待外部应用响应新建立的连接的第一个请求的最大时间 如果服务器在这个限制时间内没有收到外部应用的任何数据,它将把这个连接标记为坏(Bad)。这有助于识别与外部应用程序的通信问题。 这有助于尽快发现与外部应用的通信问题。如果某些请求的处理时间较长,则增加这个限制以避免503错误信息。</p> <h4>Syntax</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="retryTimeout"><h3>重试超时时间 (secs)<span class="ls-permlink"><a href="#retryTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定服务器在重试之前,等待出现通信问题的外部应用程序的时间。</p> <h4>Syntax</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="pcKeepAliveTimeout"><h3>持久连接超时时间<span class="ls-permlink"><a href="#pcKeepAliveTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定保持持久连接的最大时间,以秒为单位。<br/><br/> 如果设置成"-1",连接将不会超时. 当设置成0或者更大, 连接将在这些秒数后被关闭。</p> <h4>Syntax</h4><p>int</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="respBuffer"><h3>响应缓冲<span class="ls-permlink"><a href="#respBuffer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否要从外部应用程序缓冲收到的响应。 如果nph-(Non-Parsed-Header)脚本被检测到,则关闭具有完整HTTP头的缓冲响应。</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extMaxIdleTime"><h3>最大空闲时间<span class="ls-permlink"><a href="#extMaxIdleTime"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定服务器停止外部应用之前的最大空闲时间,以释放空闲资源。 当设置为"-1"时,服务器将不会停止外部应用,除非在ProcessGroup模式下运行, 而在ProcessGroup模式下,闲置的外部应用将在30秒后停止.<br/><br/> 默认值为: <span class="val">-1{/val}</p> <h4>Syntax</h4><p>Integer number</p> <h4>提示</h4><p><span title="Performance" class="ls-icon-performance"></span> This feature is especially useful in the mass hosting environment where, in order to prevent files owned by one virtual host from being accessed by the external application scripts of another virtual host, many different applications are run at the same time in SetUID mode. Set this value low to prevent these external applications from idling unnecessarily.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="backlog"><h3>Back Log<span class="ls-permlink"><a href="#backlog"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the backlog of the listening socket. Required if <span class="tagl"><a href="#autoStart">开机自启</a></span> is enabled.</p> <h4>Syntax</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="runOnStartUp"><h3>开机自启<span class="ls-permlink"><a href="#runOnStartUp"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否在服务器启动时启动外部应用程序. 只适用于可以管理自己子进程的外部应用程序,并且<span class="tagl"><a href="#instances">实例数</a></span>值设置为"1"。<br/><br/> 如果启用,将在服务器启动时而不是运行时创建外部进程.<br/><br/> When selecting "Yes (Detached mode)", all detached process can be restarted at the Server level or Virtual Host level by touching the '.lsphp_restart.txt' file under the $SERVER_ROOT/admin/tmp/ or $VH_ROOT/ directory respectively.<br/><br/> Default value: Yes (Detached mode)</p> <h4>Syntax</h4><p>从单选框选择</p> <h4>提示</h4><p>[性能建议] 如果配置的外部进程有很大的启动开销,比如Rails,那么应该启用这个选项来减少首页响应时间。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAppPriority"><h3>优先级<span class="ls-permlink"><a href="#extAppPriority"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定外部应用的优先级,值的范围是<span class="val">-20</span>到<span class="val">20</span>. 一个小的数字意味着高优先级.外部应用进程的优先级不能比Web服务器高. 如果该优先级设置一个比服务器的优先级小的数字,则将使用服务器的优先级。</p> <h4>Syntax</h4><p>int</p> <h4>See Also</h4><p class="ls-text-small">Server <span class="tagl"><a href="ServGeneral_Help.html#serverPriority">优先级</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="memSoftLimit"><h3>内存软限制 (bytes)<span class="ls-permlink"><a href="#memSoftLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>以字节为单位指定服务器启动的外部应用进程或程序的内存占用限制。<br/><br/> 此限制的目的主要是为了防范软件缺陷或蓄意攻击造成的过度内存使用, 而不是限制正常使用。确保留有足够的内存,否则您的应用程序可能故障并 返回503错误。限制可以在服务器级别或独立的外部应用程序级别设置。如 果未在独立的外部应用程序级别设定限制,将使用服务器级别的限制。<br/><br/> 如果在两个级别都没有设置该限制,或者限制值设为<span class="val">0</span>,将使用操 作系统的默认设置。</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p>[注意] 不要过度调整这个限制。如果您的应用程序需要更多的内存, 这可能会导致503错误。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="memHardLimit"><h3>内存硬限制 (bytes)<span class="ls-permlink"><a href="#memHardLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>与<span class="tagl"><a href="#memSoftLimit">内存软限制 (bytes)</a></span>非常相同,但是在一个用户进程中,软限制 可以被放宽到硬限制的数值。硬限制可以在服务器级别或独立的外部应用程序级别设 置。如果未在独立的外部应用程序级别设定限制,将使用服务器级别的限制。<br/><br/> 如果在两个级别都没有设置该限制,或者限制值设为<span class="val">0</span>,将使用操 作系统的默认设置。</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p>[注意] 不要过度调整这个限制。如果您的应用程序需要更多的内存, 这可能会导致503错误。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="procSoftLimit"><h3>进程软限制<span class="ls-permlink"><a href="#procSoftLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>限制用户可以创建的进程总数.所有现有的进程都将被计算在这个限制之内,而不仅仅是要启动的新进程。<br/><br/> 该限制可以在服务器级别或单个外部应用级别进行设置.如果未在应用级别设置,则将使用服务器级别的限制. 如果该值为0或服务器级和应用级都没有设置,将使用操作系统的默认设置</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> PHP scripts can call for forking processes. The main purpose of this limit is as a last line of defense to prevent fork bombs and other attacks caused by PHP processes creating other processes.<br/><br/> Setting this setting too low can severely hurt functionality. The setting will thus be ignored below certain levels.<br/><br/> When <b>Run On Start Up</b> is set to "Yes (Daemon mode)", the actual process limit will be higher than this setting to make sure parent processes are not limited.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="procHardLimit"><h3>进程硬限制<span class="ls-permlink"><a href="#procHardLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>与<span class="tagl"><a href="#procSoftLimit">进程软限制</a></span>非常相同,但是,在用户进程中软限制 可以被放宽到硬限制的数值。硬限制可以在服务器级别或独立的外部应用程序级别设 置。如果未在独立的外部应用程序级别设定限制,将使用服务器级别的限制。 如果在两个级别都没有设置该限制,或者限制值设为<span class="val">0</span>,将使用操 作系统的默认设置。</p> <h4>Syntax</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="wsgiDefaults"><h3>Python WSGI Default Settings<span class="ls-permlink"><a href="#wsgiDefaults"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Default configurations for Python WSGI applications. These settings can be overriden at the context level.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="wsgiBin"><h3>WSGI路径<span class="ls-permlink"><a href="#wsgiBin"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>LiteSpeed Python Web服务器的可执行文件(lswsgi)的路径。<br/><br/> This 可执行文件是通过使用LiteSpeed的WSGI LSAPI模块编译Python生成的。</p> <h4>Syntax</h4><p>绝对路径</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="nodeDefaults"><h3>Node.js App Default Settings<span class="ls-permlink"><a href="#nodeDefaults"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Default configurations for Node.js applications. These settings can be overriden at the context level.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="nodeBin"><h3>Node路径<span class="ls-permlink"><a href="#nodeBin"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Node.js执行文件的路径.</p> <h4>Syntax</h4><p>绝对路径</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> 版权所有.</footer> </div></div> </body> </html> ����������������������������������������������������������������������zh-CN/VHGeneral_Help.html���������������������������������������������������������������������������0000644�����������������00000104634�15027525531�0011151 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - 虚拟主机一般设置</title> <meta name="description" content="OpenLiteSpeed Users' Manual - 虚拟主机一般设置." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 3</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><span class="current"><a href="VHGeneral_Help.html">Virtual Host General</a></span></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="VirtualHosts_Help.html">虚拟主机设置</a></div><div class="center"><a href="config.html">Configuration</a></div><div class="next"><a href="VHSecurity_Help.html">虚拟主机安全</a> »</div></div> <h1>虚拟主机一般设置</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header>一般</header><p> <a href="#docRoot">文档根目录</a> | <a href="#vhadminEmails">管理员邮箱</a> | <a href="#vhEnableGzip">启用 GZIP 压缩</a> | <a href="#vhEnableBr">Brotli 压缩</a> | <a href="#enableIpGeo">启用IP地理定位</a> | <a href="#cgroups">cgroups</a></p></section> <section class="toc-row"><header>虚拟主机日志</header><p> <a href="#logUseServer">使用服务器日志</a> | <a href="#vhlog_fileName">文件路径</a> | <a href="#vhlog_logLevel">日志级别</a> | <a href="#log_rollingSize">回滚大小 (bytes)</a> | <a href="#log_keepDays">保留天数</a> | <a href="#log_compressArchive">压缩存档</a></p></section> <section class="toc-row"><header>访问日志</header><p> <a href="#aclogUseServer">日志管理</a> | <a href="#vhaccessLog_fileName">文件名</a> | <a href="#accessLog_pipedLogger">管道日志记录</a> | <a href="#accessLog_logFormat">日志格式</a> | <a href="#accessLog_logHeader">记录头部</a> | <a href="#log_rollingSize">回滚大小 (bytes)</a> | <a href="#log_keepDays">保留天数</a> | <a href="#log_compressArchive">压缩存档</a> | <a href="#accessLog_bytesLog">字节记录</a></p></section> <section class="toc-row"><header>索引文件</header><p> <a href="#indexUseServer">使用服务器索引文件</a> | <a href="#indexFiles">索引文件</a> | <a href="#autoIndex">自动索引</a> | <a href="#autoIndexURI">自动索引URI</a></p></section> <section class="toc-row"><header><a href="#errPage">自定义错误页面</a></header><p> <a href="#errCode">错误代码</a> | <a href="#errURL">URL</a></p></section> <section class="toc-row"><header>Expires Settings</header><p> <a href="#enableExpires">启用过期</a> | <a href="#expiresDefault">默认过期</a> | <a href="#expiresByType">按类型过期</a></p></section> <section class="toc-row"><header><a href="#fileUpload">文件上传</a></header><p> <a href="#uploadTmpDir">临时文件路径</a> | <a href="#uploadTmpFilePermission">临时文件权限</a> | <a href="#uploadPassByPath">通过文件路径传递上传数据</a></p></section> <section class="toc-row"><header>脚本处理程序定义</header><p> <a href="#suffix">后缀</a> | <a href="#shType">类型</a> | <a href="#shHandlerName">处理器名称</a></p></section> <section class="toc-row"><header>Expire Settings</header><p> <a href="#enableExpires">启用过期</a> | <a href="#expiresDefault">默认过期</a> | <a href="#expiresByType">按类型过期</a></p></section> <section class="toc-row"><header>php.ini Override</header><p> <a href="#phpIniOverride">php.ini 重写</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="docRoot"><h3>文档根目录<span class="ls-permlink"><a href="#docRoot"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定此虚拟主机的文档根目录。 推荐使用<span class="val">$VH_ROOT/html</span>。在context中,此目录可以用$DOC_ROOT来引用。</p> <h4>Syntax</h4><p>可以说绝对路径,也可以是相对于$SERVER_ROOT或$VH_ROOT的相对路径。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vhadminEmails"><h3>管理员邮箱<span class="ls-permlink"><a href="#vhadminEmails"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定这个虚拟主机管理员的电子邮箱地址。</p> <h4>Syntax</h4><p>Comma separated list of email addresses</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vhEnableGzip"><h3>启用 GZIP 压缩<span class="ls-permlink"><a href="#vhEnableGzip"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否为此虚拟主机启用GZIP压缩。 这个设置仅在服务器级<span class="tagl"><a href="#enableGzipCompress">启用GZIP压缩</a></span> 设置为 <span class="val">Yes</span>时有效.</p> <h4>Syntax</h4><p>从单选框选择</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="ServTuning_Help.html#enableGzipCompress">启用GZIP压缩</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vhEnableBr"><h3>Brotli 压缩<span class="ls-permlink"><a href="#vhEnableBr"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否为此虚拟主机启用Brotli压缩。 这个设置仅在服务器级<span class="tagl"><a href="#brStaticCompressLevel">Brotli 压缩等级 (静态文件)</a></span>设置为一个非零值时有效.</p> <h4>Syntax</h4><p>从单选框选择</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="ServTuning_Help.html#brStaticCompressLevel">Brotli 压缩等级 (静态文件)</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableIpGeo"><h3>启用IP地理定位<span class="ls-permlink"><a href="#enableIpGeo"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否启用IP地理定位查找。 可以在服务器级别,虚拟主机级别,或context级别设置。</p> <h4>Syntax</h4><p>从单选框选择</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="ServGeneral_Help.html#useIpInProxyHeader">使用报头中的客户端IP</a></span>, <span class="tagl"><a href="ServGeneral_Help.html#geoipDBFile">数据库文件路径</a></span>,</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="cgroups"><h3>cgroups<span class="ls-permlink"><a href="#cgroups"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>如果当前操作系统支持(目前支持RedHat/Centos Linux v7.5+和Ubuntu 18.04+),则将cgroup设置应用于此CGI进程。 。 当前执行的用户将用于确定要应用的cgroup配置。<br/> 在服务器级别将此设置为<span class="val">Disabled</span>将在服务器范围内禁用此设置。 在其他情况下,可以在虚拟主机级别覆盖服务器级别的设置。<br/><br/> 默认值:<br/> <b>服务器级别:</b> Off<br/> <b>虚拟主机级别:</b> 继承服务器级别设置</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="logUseServer"><h3>使用服务器日志<span class="ls-permlink"><a href="#logUseServer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否将虚拟主机的日志信息放置到服务器日志文件中,而不是创建独自的日志文件。</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vhlog_fileName"><h3>文件路径<span class="ls-permlink"><a href="#vhlog_fileName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定日志文件的路径。</p> <h4>Syntax</h4><p>文件名可以是绝对路径,也可以是相对于$SERVER_ROOT,$VH_ROOT的相对路径。</p> <h4>提示</h4><p>[性能建议] 将日志文件放在单独的磁盘上。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vhlog_logLevel"><h3>日志级别<span class="ls-permlink"><a href="#vhlog_logLevel"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定日志记录级别。可用级别(从高到低)为<span class="val">ERROR</span>, <span class="val">WARNING</span>, <span class="val">NOTICE</span>, <span class="val">INFO</span>, 和 <span class="val">DEBUG</span>。 只有当消息等级高于或与当前设置相同时才被记录。 如果您希望将此设置为<span class="val">DEBUG</span>,您也需要设置服务器日志级别为<span class="val">DEBUG</span>。 调试的级别只能在服务器级别通过<span class="tagl"><a href="ServGeneral_Help.html#log_debugLevel">调试级别</a></span>控制。</p> <h4>Syntax</h4><p>从列表中选择</p> <h4>提示</h4><p>[性能建议] 除非<span class="tagl"><a href="ServGeneral_Help.html#log_debugLevel">调试级别</a></span>设置为<span class="val">NONE</span>以外的日志级别, 否则<span class="val">DEBUG</span>级别不会对性能产生任何影响,推荐采用。</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="ServGeneral_Help.html#log_debugLevel">调试级别</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="log_rollingSize"><h3>回滚大小 (bytes)<span class="ls-permlink"><a href="#log_rollingSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定何时日志文件需要回滚,也称为日志循环。 当文件大小超过回滚限制后,在使用的日志文件将在同一目录中被重命名 为log_name.mm_dd_yyyy(.sequence),一个新的日志文件将被创建。 回滚的日志文件的实际大小有时会比限制值稍微大一些。 将值设置为<span class="val">0</span>将禁用日志循环。</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> 请用“K”,“M”,“G”代表千字节,兆字节和千兆字节。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="log_keepDays"><h3>保留天数<span class="ls-permlink"><a href="#log_keepDays"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定访问日志文件将被保存在磁盘上多少天。 只有超出指定天数的回滚日志文件会被删除。 当前的日志文件不会被删除,无论它包含了多少天的数据。 如果你不想自动删除过时的、很旧的日志文件, 将该值设置为<span class="val">0</span>。</p> <h4>Syntax</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="log_compressArchive"><h3>压缩存档<span class="ls-permlink"><a href="#log_compressArchive"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否压缩回滚日志以节省磁盘空间。</p> <h4>Syntax</h4><p>从单选框选择</p> <h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> 日志文件是高度可压缩的,建议采取压缩以减少旧日志的磁盘占用量。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="aclogUseServer"><h3>日志管理<span class="ls-permlink"><a href="#aclogUseServer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定写入访问日志的地点。这里有三个选项: <ol> <li>写入到服务器的访问日志;</li> <li>为虚拟主机创建一个访问日志;</li> <li>禁用访问日志记录</li> </ol></p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vhaccessLog_fileName"><h3>文件名<span class="ls-permlink"><a href="#vhaccessLog_fileName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>访问日志的文件名</p> <h4>Syntax</h4><p>文件名可以是绝对路径,也可以是相对于$SERVER_ROOT,$VH_ROOT的相对路径。</p> <h4>提示</h4><p>[性能建议] 将访问日志文件放在单独的磁盘上。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessLog_pipedLogger"><h3>管道日志记录<span class="ls-permlink"><a href="#accessLog_pipedLogger"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定外部应用程序,该应用程序将通过其STDIN流(文件句柄为0)上的pipe接收LiteSpeed发送的访问日志数据。 指定此字段后,访问日志将仅发送到记录器应用程序,而不发送到上一个条目中指定的访问日志文件。<br/><br/> 首先必须在<span class="tagP"><a href="#ExtApp_Help">外部应用</a></span>中定义记录器应用程序。 服务器级别的访问日志记录只能使用在服务器级别定义的外部记录器应用程序。 虚拟主机级别的访问日志记录只能使用在虚拟主机级别定义的记录器应用程序。<br/><br/> 记录器进程的启动方式与其他外部进程相同 (CGI/FastCGI/LSAPI)过程。这意味着它将作为 在虚拟主机的<span class="tagl"><a href="VirtualHosts_Help.html#setUidMode">外部应用程序设置UID模式</a></span>设置中指定的用户ID,并且永远不会以特权用户运行。<br/><br/> 如果配置了多个记录器的实例,LiteSpeed web server将在多个记录器之间执行简单的负载均衡。LiteSpeed服务器始终尝试将记录器应用程序的数量保持在尽可能低的水平。只有当一个记录器应用程序未能及时处理访问日志条目时,服务器才会尝试启动记录器的另一个实例。<br/><br/> 如果记录器崩溃,Web服务器将启动另一个实例,但是流缓冲区中的日志数据将丢失。 如果外部记录器无法跟上日志流的速度和数量,则可能会丢失日志数据。</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessLog_logFormat"><h3>日志格式<span class="ls-permlink"><a href="#accessLog_logFormat"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p> 指定访问日志的格式。 设置之后,它将覆盖<span class="tagl"><a href="#accessLog_logHeader">记录头部</a></span> 的设定。</p> <h4>Syntax</h4><p>字符串。日志格式的语法与Apache 2.0自定义 <a href="http://httpd.apache.org/docs/current/mod/mod_log_config.html#formats" target="_blank" rel="noopener noreferrer">log format</a>.</p> <h4>例子</h4><div class="ls-example"><b>一般日志格式(CLF)</b><br/> "%h %l %u %t \"%r\" %>s %b"<br/><br/> <b>支持虚拟主机的一般日志格式</b><br/> "%v %h %l %u %t \"%r\" %>s %b"<br/><br/> <b>NCSA扩展/组合日志格式</b><br/> "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-agent}i\" <br/><br/> <b>记录Foobar的cookie值</b><br/> "%{Foobar}C"</div><h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#accessLog_logHeader">记录头部</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessLog_logHeader"><h3>记录头部<span class="ls-permlink"><a href="#accessLog_logHeader"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否记录HTTP请求头: <span class="val">Referer</span>、 <span class="val">UserAgent</span>和<span class="val">Host</span>。</p> <h4>Syntax</h4><p>从复选框中选择</p> <h4>提示</h4><p>[性能建议] 如果你不需要在访问日志中记录这些头部信息,关闭这个功能。</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#accessLog_logFormat">日志格式</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessLog_bytesLog"><h3>字节记录<span class="ls-permlink"><a href="#accessLog_bytesLog"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定带宽字节日志文件的路径。设置后,将创建一份兼容cPanel面板的带宽日志。这将记录 一个请求传输的总字节数,包括请求内容和响应内容。</p> <h4>Syntax</h4><p>文件名可以是绝对路径,也可以是相对于$SERVER_ROOT的相对路径。</p> <h4>提示</h4><p>[性能建议] 将日志文件放置在一个单独的磁盘上。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="indexUseServer"><h3>使用服务器索引文件<span class="ls-permlink"><a href="#indexUseServer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否使用服务器的索引文件。 如果设置为<span class="val">Yes</span>,那么只有服务器的设置将被使用。 如果设置为<span class="val">No</span>,那么服务器的设置将不会被使用。 如果设置为<span class="val">Addition</span>,那么附加的索引文件可以被添加到此虚拟主机服务器的索引文件列表中。 如果想要禁用此虚拟主机的索引文件,您可以将该值设置为<span class="val">No</span>,并将索引文件栏留空。 field empty.</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="indexFiles"><h3>索引文件<span class="ls-permlink"><a href="#indexFiles"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定URL映射到目录时顺序查找的索引文件名称。 您可以在服务器、虚拟主机和Context级别对其进行自定义。</p> <h4>Syntax</h4><p>Comma-delimited list of index filenames.</p> <h4>提示</h4><p>[性能建议] 只设置你需要的索引文件。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="autoIndex"><h3>自动索引<span class="ls-permlink"><a href="#autoIndex"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>在目录中,当<span class="tagl"><a href="#indexFiles">索引文件</a></span>中所列的索引文件不可用时,指定运行时是否即时生成目录索引。<br/> 此选项可以在虚拟主机级别和context级别中设置,并可以顺着目录树继承,直到被覆盖。 您可以自定义生成的索引页面。请访问在线百科了解如何操作。</p> <h4>Syntax</h4><p>从单选框选择</p> <h4>提示</h4><p>[安全建议] 建议关闭自动索引,从而尽可能防止泄露机密数据。</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#indexFiles">索引文件</a></span>, <span class="tagl"><a href="#autoIndexURI">自动索引URI</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="autoIndexURI"><h3>自动索引URI<span class="ls-permlink"><a href="#autoIndexURI"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>在目录中,当<span class="tagl"><a href="#indexFiles">索引文件</a></span>中所列出的索引文件(index)不可用时,指定用来生成索引页面的URI。 LiteSpeed Web服务器使用一个外部脚本来生成索引页面,从而为定制提供最大的灵活性。 默认的脚本生成一个类似于Apache的索引页面。 定制生成的索引页,请访问在线百科。 被索引的目录通过一个环境变量 "LS_AI_PATH"来传递给脚本。</p> <h4>Syntax</h4><p>URI</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#indexFiles">索引文件</a></span>, <span class="tagl"><a href="#autoIndex">自动索引</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="errPage"><h3>自定义错误页面<span class="ls-permlink"><a href="#errPage"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>当服务器在处理请求时遇到问题, 服务器将向网络客户端返回错误代码和html页面作为错误消息。 错误代码在HTTP协议中定义(请参阅RFC 2616)。 LiteSpeed Web服务器为每个错误代码都有一个内置的默认错误页面,但是也可以为每个错误代码配置一个自定义页面。 甚至可以进一步自定义这些错误页面,以使其对于每个虚拟主机都是唯独特的。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="errCode"><h3>错误代码<span class="ls-permlink"><a href="#errCode"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定错误页面的HTTP状态码。 只有特定的HTTP状态码才可以自定义错误页面。</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="errURL"><h3>URL<span class="ls-permlink"><a href="#errURL"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定自定义错误页的URL。 当返回相应HTTP状态时服务器会将请求转发到该URL。 如果此URL指向一个不存在的地址,自带的错误页面将被使用。 该URL可以是一个静态文件,动态生成的页面,或者其他网站的页面 (网址开头为"http(s): //")。 当转发到在其他网站上的页面时,客户端会收到一个重定向状态码 来替代原本的状态码。</p> <h4>Syntax</h4><p>URL</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableExpires"><h3>启用过期<span class="ls-permlink"><a href="#enableExpires"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否为静态文件生成Expires头。如果启用,将根据 <span class="tagl"><a href="#expiresDefault">默认过期</a></span>和<span class="tagl"><a href="#expiresByType">按类型过期</a></span>生成Expires头。<br/><br/> 这可以在服务器,虚拟主机和Context级别设置。低级别的设置将 覆盖高级别的设置。例如,Context级别的设置将覆盖虚拟主机级别的设置, 虚拟主机级别的设置将覆盖服务器级别的设置。</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expiresDefault"><h3>默认过期<span class="ls-permlink"><a href="#expiresDefault"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定生成Expires头的默认设置。该设置在<span class="tagl"><a href="#enableExpires">启用过期</a></span> 设为“启用”时有效。它可以被<span class="tagl"><a href="#expiresByType">按类型过期</a></span>覆盖。 除非必要,否则不要在服务器或虚拟主机级别设置该默认值。 因为它会为所有网页生成Expires头。大多数时候,应该是 为不常变动的某些目录在Context级别设置。如果没有默认设置,<span class="tagl"><a href="#expiresByType">按类型过期</a></span>中未指定的类型不会生成Expires头。</p> <h4>Syntax</h4><p>A|Mseconds<br/> 文件将在基准时间(A|M)加指定秒数的时间后失效。 “A”代表基准时间为客户端的访问时间,“M”代表文件的最后修改时间。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expiresByType"><h3>按类型过期<span class="ls-permlink"><a href="#expiresByType"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>为各个MIME类型分别指定Expires头设置。</p> <h4>Syntax</h4><p>逗号分隔的“MIME-类型=A|M秒数”的列表。 文件将在基准时间(A|M)加指定秒数的时间后失效。<br/><br/> “A”代表基准时间为客户端的访问时间,“M”代表文件的最后修改时间。 MIME-类型可使用通配符“*”,如image/*。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="fileUpload"><h3>文件上传<span class="ls-permlink"><a href="#fileUpload"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>通过使用请求正文解析器将文件解析到服务器本地目录中来上传文件时,提供了附加的安全功能。第三方模块可以轻松地在文件本地目录中扫描文件是否存在危害。 当启用<span class="tagl"><a href="#uploadPassByPath">通过文件路径传递上传数据</a></span>或模块在LSI_HKPT_HTTP_BEGIN级别调用LSIAPI的set_parse_req_body时,将使用请求正文解析器。 源代码包中提供的API示例。</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#HTTP_BEGIN">Hook::HTTP_BEGIN Priority</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="uploadTmpDir"><h3>临时文件路径<span class="ls-permlink"><a href="#uploadTmpDir"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>在扫描请求正文工作时,上传到服务器的文件将存放在临时目录中 默认值为<span class="val">/tmp/lshttpd/</span>.</p> <h4>Syntax</h4><p>Absolute path or path starting with $SERVER_ROOT (for Server and VHost levels) or $VH_ROOT (for VHost levels).</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="uploadTmpFilePermission"><h3>临时文件权限<span class="ls-permlink"><a href="#uploadTmpFilePermission"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>设置<b>临时文件路径</b>目录中的文件权限。 服务器级别是全局设置,可以被虚拟主机级别的设置覆盖。</p> <h4>Syntax</h4><p>3 digits octet number. Default value is 666.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="uploadPassByPath"><h3>通过文件路径传递上传数据<span class="ls-permlink"><a href="#uploadPassByPath"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否按文件路径传递上传数据。 如果启用,则上传时文件路径以及其他一些信息将发送到后端处理程序,而不是文件本身。 这样可以节省CPU资源和文件传输时间,但需要一些更新才能实现。 如果禁用,则文件内容将传输到后端处理程序,请求主体仍解析为文件。</p> <h4>Syntax</h4><p>从单选框选择</p> <h4>提示</h4><p>[性能] 如果向下兼容不是问题,启用此功能可加快文件上传处理速度。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="suffix"><h3>后缀<span class="ls-permlink"><a href="#suffix"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定将由此脚本处理程序处理的脚本文件后缀。 后缀必须是唯一的。</p> <h4>Syntax</h4><p>Comma delimited list with period "." character prohibited.</p> <h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> 服务器将为列表中的第一个后缀自动添加特殊的MIME类型 ("application/x-httpd-[suffix]") 。 例如,将为后缀“ php53”添加MIME类型“ application/x-httpd-php53”。 首先需要在<span class="tagl"><a href="#mime">MIME设置</a></span>设置中设置后缀。<br/> 尽管我们在此字段中列出了后缀,但是脚本处理程序使用MIME类型而非后缀来确定要处理的脚本。<br/> [性能和安全建议] 仅指定您真正需要的后缀。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="shType"><h3>类型<span class="ls-permlink"><a href="#shType"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定处理这些脚本文件的外部程序类型。 可用类型有:<span class="val">CGI</span>, <span class="val">FastCGI</span>, <span class="val">Web服务器</span>, <span class="val">LSAPI应用程序</span>, <span class="val">负载均衡器</span>, 或 <span class="val">Servlet引擎</span>。 对于FastCGI, Web服务器和Servlet引擎,需要指定<span class="tagl"><a href="#shHandlerName">处理器名称</a></span>。 这是在<span class="tagP"><a href="#ExtApp_Help">外部应用</a></span>部分预设定的外部程序名称。</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="shHandlerName"><h3>处理器名称<span class="ls-permlink"><a href="#shHandlerName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>当处理器类型为FastCGI,Web服务器,LSAPI,负载均衡器或Servlet引擎时, 指定处理脚本文件的外部程序名称。</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="phpIniOverride"><h3>php.ini 重写<span class="ls-permlink"><a href="#phpIniOverride"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>用于覆盖当前context(虚拟主机级别或context级别)中的php.ini设置。<br/><br/> 支持的指令是:<br/> php_value<br/> php_flag<br/> php_admin_value<br/> php_admin_flag<br/><br/> 所有其他行/指令将被忽略。</p> <h4>Syntax</h4><p>Override syntax is similar to Apache, a newline separated list of directives and their values with each directive being prepended by php_value, php_flag, php_admin_value, or php_admin_flag appropriately.</p> <h4>例子</h4><div class="ls-example">php_value include_path ".:/usr/local/lib/php"<br/> php_admin_flag engine on<br/> php_admin_value open_basedir "/home"</div></article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> 版权所有.</footer> </div></div> </body> </html> ����������������������������������������������������������������������������������������������������zh-CN/External_LSAPI.html���������������������������������������������������������������������������0000644�����������������00000055012�15027525531�0011073 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - LiteSpeed SAPI App</title> <meta name="description" content="OpenLiteSpeed Users' Manual - LiteSpeed SAPI App." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 3</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><span class="current"><a href="External_LSAPI.html">LSAPI App</a></span></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></div><div class="center"><a href="ExtApp_Help.html">外部应用</a></div><div class="next"><a href="External_Servlet.html">Servlet Engine</a> »</div></div> <h1>LiteSpeed SAPI App</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header>LiteSpeed SAPI</header><p> <a href="#extAppName">名称</a> | <a href="#extAppAddress">地址</a> | <a href="#maxConns">最大连接数</a> | <a href="#env">环境</a> | <a href="#initTimeout">初次请求超时时间 (secs)</a> | <a href="#retryTimeout">重试超时时间 (secs)</a> | <a href="#persistConn">持久连接</a> | <a href="#pcKeepAliveTimeout">持久连接超时时间</a> | <a href="#respBuffer">响应缓冲</a> | <a href="#autoStart">开机自启</a> | <a href="#extAppPath">命令</a> | <a href="#backlog">Back Log</a> | <a href="#instances">实例数</a> | <a href="#extUser">Run As User</a> | <a href="#extGroup">以特定组运行</a> | <a href="#extUmask">umask</a> | <a href="#runOnStartUp">开机自启</a> | <a href="#extMaxIdleTime">最大空闲时间</a> | <a href="#extAppPriority">优先级</a> | <a href="#memSoftLimit">内存软限制 (bytes)</a> | <a href="#memHardLimit">内存硬限制 (bytes)</a> | <a href="#procSoftLimit">进程软限制</a> | <a href="#procHardLimit">进程硬限制</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="extAppName"><h3>名称<span class="ls-permlink"><a href="#extAppName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>此外部应用程序的唯一名称。 在配置的其他部分中使用该名称时,将使用该名称进行引用。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAppAddress"><h3>地址<span class="ls-permlink"><a href="#extAppAddress"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>外部应用程序使用的唯一套接字地址。 支持IPv4/IPv6套接字和Unix域套接字(UDS)。 IPv4/IPv6套接字可用于网络通信。 只有当外部应用程序与服务器在同一台机器上时,才能使用UDS。</p> <h4>Syntax</h4><p>IPv4 或 IPV6 address:port 或者 UDS://path</p> <h4>例子</h4><div class="ls-example">127.0.0.1:5434<br/> UDS://tmp/lshttpd/php.sock.</div><h4>提示</h4><p>[安全建议] 如果外部应用程序在同一台机器上运行,则首选UDS。如果必须使用IPv4|IPV6, 将IP地址设置为<span class="val">localhost</span>或<span class="val">127.0.0.1</span>,这样外部应用就无法从其他机器上访问。 [性能建议] Unix域套接字一般比IPv4套接字拥有更高的性能。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxConns"><h3>最大连接数<span class="ls-permlink"><a href="#maxConns"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定服务器与外部应用之间可建立的最大并发连接数。该设置控制外部应用程序可同时处理多少个请求。 然而,真正的限制还取决于外部应用本身。如果外部的速度不够快,或者无法处理大量的并发请求,那么将这个值设置得更高也无济于事。</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p>[性能建议] 设置一个高值并不能直接变成高性能。设置为一个不会使外部应用程序过载的值,将提供最佳的性能/吞吐量。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="env"><h3>环境<span class="ls-permlink"><a href="#env"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>为外部应用程序指定额外的环境变量。</p> <h4>Syntax</h4><p>Key=value. Multiple variables can be separated by "ENTER"</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="initTimeout"><h3>初次请求超时时间 (secs)<span class="ls-permlink"><a href="#initTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定服务器等待外部应用响应新建立的连接的第一个请求的最大时间 如果服务器在这个限制时间内没有收到外部应用的任何数据,它将把这个连接标记为坏(Bad)。这有助于识别与外部应用程序的通信问题。 这有助于尽快发现与外部应用的通信问题。如果某些请求的处理时间较长,则增加这个限制以避免503错误信息。</p> <h4>Syntax</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="retryTimeout"><h3>重试超时时间 (secs)<span class="ls-permlink"><a href="#retryTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定服务器在重试之前,等待出现通信问题的外部应用程序的时间。</p> <h4>Syntax</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="persistConn"><h3>持久连接<span class="ls-permlink"><a href="#persistConn"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定在处理完请求后是否要保持连接 持久连接可以提高性能, 但某些FastCGI外部应用程序不完全支持持久连接。默认为 "On"。</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="pcKeepAliveTimeout"><h3>持久连接超时时间<span class="ls-permlink"><a href="#pcKeepAliveTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定保持持久连接的最大时间,以秒为单位。<br/><br/> 如果设置成"-1",连接将不会超时. 当设置成0或者更大, 连接将在这些秒数后被关闭。</p> <h4>Syntax</h4><p>int</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="respBuffer"><h3>响应缓冲<span class="ls-permlink"><a href="#respBuffer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否要从外部应用程序缓冲收到的响应。 如果nph-(Non-Parsed-Header)脚本被检测到,则关闭具有完整HTTP头的缓冲响应。</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="autoStart"><h3>开机自启<span class="ls-permlink"><a href="#autoStart"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否要Web服务器自动启动应用程序。只有运行在同一台机器上的FastCGI和LSAPI应用程序才能自动启动。 <span class="tagl"><a href="#extAppAddress">地址</a></span>中的IP必须是本地IP. 通过LiteSpeed CGI守护进程而不是主服务器进程启动,有助于减少系统开销。<br/><br/> Default value: Yes (Through CGI Daemon)</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAppPath"><h3>命令<span class="ls-permlink"><a href="#extAppPath"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定包含外部应用程序的执行参数在内的完整命令行。 需要<span class="tagl"><a href="#autoStart">开机自启</a></span>的值为enable.如果参数中包含空格或制表符,应使用双引号或单引号将其引起。</p> <h4>Syntax</h4><p>Full path to the executable with optional parameters.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#autoStart">开机自启</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="backlog"><h3>Back Log<span class="ls-permlink"><a href="#backlog"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the backlog of the listening socket. Required if <span class="tagl"><a href="#autoStart">开机自启</a></span> is enabled.</p> <h4>Syntax</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="instances"><h3>实例数<span class="ls-permlink"><a href="#instances"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定服务器创建的外部应用的最大实例数。这个选项需要<span class="tagl"><a href="#autoStart">开机自启</a></span>的值为enable. 大多数FastCGI/LSAPI应用程序每个进程实例只能处理一个请求,对于这种类型的应用,实例数应与<span class="tagl"><a href="#maxConns">最大连接数</a></span>的值相匹配。 而有些FastCGI/LSAPI应用程序可以生成多个子进程以同时处理多个请求. 对于这种类型的应用,应将实例设置为 "1",并使用环境变量来控制应用可以生成多少个子进程。</p> <h4>Syntax</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extUser"><h3>Run As User<span class="ls-permlink"><a href="#extUser"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The external application will run as this specified user name. If not set, Virtual Host level settings will be inherited.<br/><br/> Default value: Not Set</p> <h4>Syntax</h4><p>Valid username.</p> <h4>See Also</h4><p class="ls-text-small">extGroup</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extGroup"><h3>以特定组运行<span class="ls-permlink"><a href="#extGroup"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>外部应用程序将作为此指定的组名运行。如果未设置,将继承虚拟主机级别的设置。<br/><br/> Default value: Not Set</p> <h4>Syntax</h4><p>Valid group name.</p> <h4>See Also</h4><p class="ls-text-small">extUser</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extUmask"><h3>umask<span class="ls-permlink"><a href="#extUmask"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets default umask for this external application's processes. See <span class="cmd"> man 2 umask </span> for details. The default value taken from the server-level <span class="tagl"><a href="ServSecurity_Help.html#umask">umask</a></span> setting.</p> <h4>Syntax</h4><p>value valid range [000]-[777].</p> <h4>See Also</h4><p class="ls-text-small">CGI <span class="tagl"><a href="ServSecurity_Help.html#umask">umask</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="runOnStartUp"><h3>开机自启<span class="ls-permlink"><a href="#runOnStartUp"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否在服务器启动时启动外部应用程序. 只适用于可以管理自己子进程的外部应用程序,并且<span class="tagl"><a href="#instances">实例数</a></span>值设置为"1"。<br/><br/> 如果启用,将在服务器启动时而不是运行时创建外部进程.<br/><br/> When selecting "Yes (Detached mode)", all detached process can be restarted at the Server level or Virtual Host level by touching the '.lsphp_restart.txt' file under the $SERVER_ROOT/admin/tmp/ or $VH_ROOT/ directory respectively.<br/><br/> Default value: Yes (Detached mode)</p> <h4>Syntax</h4><p>从单选框选择</p> <h4>提示</h4><p>[性能建议] 如果配置的外部进程有很大的启动开销,比如Rails,那么应该启用这个选项来减少首页响应时间。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extMaxIdleTime"><h3>最大空闲时间<span class="ls-permlink"><a href="#extMaxIdleTime"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定服务器停止外部应用之前的最大空闲时间,以释放空闲资源。 当设置为"-1"时,服务器将不会停止外部应用,除非在ProcessGroup模式下运行, 而在ProcessGroup模式下,闲置的外部应用将在30秒后停止.<br/><br/> 默认值为: <span class="val">-1{/val}</p> <h4>Syntax</h4><p>Integer number</p> <h4>提示</h4><p><span title="Performance" class="ls-icon-performance"></span> This feature is especially useful in the mass hosting environment where, in order to prevent files owned by one virtual host from being accessed by the external application scripts of another virtual host, many different applications are run at the same time in SetUID mode. Set this value low to prevent these external applications from idling unnecessarily.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAppPriority"><h3>优先级<span class="ls-permlink"><a href="#extAppPriority"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定外部应用的优先级,值的范围是<span class="val">-20</span>到<span class="val">20</span>. 一个小的数字意味着高优先级.外部应用进程的优先级不能比Web服务器高. 如果该优先级设置一个比服务器的优先级小的数字,则将使用服务器的优先级。</p> <h4>Syntax</h4><p>int</p> <h4>See Also</h4><p class="ls-text-small">Server <span class="tagl"><a href="ServGeneral_Help.html#serverPriority">优先级</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="memSoftLimit"><h3>内存软限制 (bytes)<span class="ls-permlink"><a href="#memSoftLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>以字节为单位指定服务器启动的外部应用进程或程序的内存占用限制。<br/><br/> 此限制的目的主要是为了防范软件缺陷或蓄意攻击造成的过度内存使用, 而不是限制正常使用。确保留有足够的内存,否则您的应用程序可能故障并 返回503错误。限制可以在服务器级别或独立的外部应用程序级别设置。如 果未在独立的外部应用程序级别设定限制,将使用服务器级别的限制。<br/><br/> 如果在两个级别都没有设置该限制,或者限制值设为<span class="val">0</span>,将使用操 作系统的默认设置。</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p>[注意] 不要过度调整这个限制。如果您的应用程序需要更多的内存, 这可能会导致503错误。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="memHardLimit"><h3>内存硬限制 (bytes)<span class="ls-permlink"><a href="#memHardLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>与<span class="tagl"><a href="#memSoftLimit">内存软限制 (bytes)</a></span>非常相同,但是在一个用户进程中,软限制 可以被放宽到硬限制的数值。硬限制可以在服务器级别或独立的外部应用程序级别设 置。如果未在独立的外部应用程序级别设定限制,将使用服务器级别的限制。<br/><br/> 如果在两个级别都没有设置该限制,或者限制值设为<span class="val">0</span>,将使用操 作系统的默认设置。</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p>[注意] 不要过度调整这个限制。如果您的应用程序需要更多的内存, 这可能会导致503错误。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="procSoftLimit"><h3>进程软限制<span class="ls-permlink"><a href="#procSoftLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>限制用户可以创建的进程总数.所有现有的进程都将被计算在这个限制之内,而不仅仅是要启动的新进程。<br/><br/> 该限制可以在服务器级别或单个外部应用级别进行设置.如果未在应用级别设置,则将使用服务器级别的限制. 如果该值为0或服务器级和应用级都没有设置,将使用操作系统的默认设置</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> PHP scripts can call for forking processes. The main purpose of this limit is as a last line of defense to prevent fork bombs and other attacks caused by PHP processes creating other processes.<br/><br/> Setting this setting too low can severely hurt functionality. The setting will thus be ignored below certain levels.<br/><br/> When <b>Run On Start Up</b> is set to "Yes (Daemon mode)", the actual process limit will be higher than this setting to make sure parent processes are not limited.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="procHardLimit"><h3>进程硬限制<span class="ls-permlink"><a href="#procHardLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>与<span class="tagl"><a href="#procSoftLimit">进程软限制</a></span>非常相同,但是,在用户进程中软限制 可以被放宽到硬限制的数值。硬限制可以在服务器级别或独立的外部应用程序级别设 置。如果未在独立的外部应用程序级别设定限制,将使用服务器级别的限制。 如果在两个级别都没有设置该限制,或者限制值设为<span class="val">0</span>,将使用操 作系统的默认设置。</p> <h4>Syntax</h4><p>整数</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> 版权所有.</footer> </div></div> </body> </html> ����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������zh-CN/LB_Context.html�������������������������������������������������������������������������������0000644�����������������00000036223�15027525531�0010365 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Load Balancer Context</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Load Balancer Context." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 3</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><span class="current"><a href="LB_Context.html">Load Balancer Context</a></span></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="CGI_Context.html">CGI Context</a></div><div class="center"><a href="Context_Help.html">Context</a></div><div class="next"><a href="Redirect_Context.html">Redirect Context</a> »</div></div> <h1>Load Balancer Context</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header><a href="#lbContext">负载均衡 Context</a></header><p> <a href="#expuri">URI</a> | <a href="#lbapp">负载均衡</a> | <a href="#extraHeaders">标头控制</a> | <a href="#realm">域</a> | <a href="#authName">认证名称</a> | <a href="#required">Require(授权的用户/组)</a> | <a href="#accessAllowed">允许访问列表</a> | <a href="#accessDenied">拒绝访问列表</a> | <a href="#extAuthorizer">Authorizer</a> | <a href="#addDefaultCharset">添加默认的字符集</a> | <a href="#defaultCharsetCustomized">自定义默认字符集</a> | <a href="#enableIpGeo">启用IP地理定位</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="lbContext"><h3>负载均衡 Context<span class="ls-permlink"><a href="#lbContext"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Like other external applications, load balancer worker applications cannot be used directly. They must be mapped to a URL through a context. A Load Balancer Context will associate a URI to be load balanced by the load balancer workers.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expuri"><h3>URI<span class="ls-permlink"><a href="#expuri"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the URI for this context.</p> <h4>Syntax</h4><p>指定此context下的URI。这个URI应该以"/"开始。 如果一个URI以"/"结束,那么该context将包含这个URI下的所有下级URI。如果context类型映射到系统目录上,则必须添加结尾的"/"</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#location">位置</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="lbapp"><h3>负载均衡<span class="ls-permlink"><a href="#lbapp"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定要与此context关联的负载均衡器。 此负载均衡是一个虚拟应用程序,必须在服务器或虚拟主机级别的<span class="tagP"><a href="#ExtApp_Help">外部应用</a></span>中定义。</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extraHeaders"><h3>标头控制<span class="ls-permlink"><a href="#extraHeaders"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定要添加的附加响应/请求头。可以添加每行一个来添加多个头指令。"NONE "可以用来禁止父头继承。如果没有提供,则假定为 "Header"。</p> <h4>Syntax</h4><p>[Header]|RequestHeader [condition] set|append|merge|add|unset header [value] [early|env=[!]variable]</p> <h4>例子</h4><div class="ls-example">set Cache-control no-cache<br/> append Cache-control no-store<br/> Header set My-header cust_header_val<br/> RequestHeader set My-req-header cust_req_header_val</div><h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> 语法和用法类似于 <a href="https://httpd.apache.org/docs/2.2/mod/mod_headers.html#header" target="_blank" rel="noopener noreferrer">Apache's mod_headers directives</a><br/><br/> <span title="Information" class="ls-icon-info"></span> The 'Header' directive is is optional and can be excluded or left in when copying rules from elsewhere without issue.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="realm"><h3>域<span class="ls-permlink"><a href="#realm"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定这个context下的realm授权。 当指定时,必须提供有效的用户和用户名来访问这个context。 <span class="tagl"><a href="VHSecurity_Help.html#realms">Realms授权</a></span>需要在<span class="tagP"><a href="#VHSecurity_Help">虚拟主机安全</a></span>部分进行设置。 此设置使用每个realm的<span class="tagl"><a href="VHSecurity_Help.html#realmName">域名称</a></span>。</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="authName"><h3>认证名称<span class="ls-permlink"><a href="#authName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>为当前context下的realm认证指定一个替代的名称。 如果没有指定,原realm名称将被使用。 认证名称将显示在浏览器登陆弹出窗口。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="required"><h3>Require(授权的用户/组)<span class="ls-permlink"><a href="#required"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定哪些用户/用户组可以访问此context。 这里允许你使用一个用户/组数据库(在 <span class="tagl"><a href="#realm">域</a></span>中指定)访问多个context, 但只允许该数据库下特定的用户/组访问这个context。</p> <h4>Syntax</h4><p>Syntax is compatible with Apache's Require directive. For example: <ul> <li><span class="val">user username [username ...]</span><br/> Only listed users can access this context.</li> <li> <span class="val">group groupid [groupid ...]</span><br/> Only users belonging to the listed groups can access this context.</li> </ul> If this setting is not specified, all valid users will be allowed to access this resource.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessAllowed"><h3>允许访问列表<span class="ls-permlink"><a href="#accessAllowed"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定允许访问这个context下资源的IP地址或子网。综合 <span class="tagl"><a href="#accessDenied">拒绝访问列表</a></span>项的配置以及服务器/虚拟主机级别访问控制, 可访问性将以客户端IP所符合的最小范围来确定。</p> <h4>Syntax</h4><p>Comma-delimited list of IPs/sub-networks.</p> <h4>例子</h4><div class="ls-example">网络可以写成<span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span> 或<span class="val">192.168.1.*</span>。</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessDenied"><h3>拒绝访问列表<span class="ls-permlink"><a href="#accessDenied"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定哪个IP地址或子网不被允许访问这个context下的资源。 综合<span class="tagl"><a href="#accessAllowed">允许访问列表</a></span>项的配置以及服务器/虚拟主机级别访问控制, 可访问性将以客户端IP所符合的最小范围来确定。</p> <h4>Syntax</h4><p>Comma-delimited list of IPs/sub-networks.</p> <h4>例子</h4><div class="ls-example">子网络可以写成<span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span> 或<span class="val">192.168.1.*</span>。</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAuthorizer"><h3>Authorizer<span class="ls-permlink"><a href="#extAuthorizer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定可用于生成授权/未授权 decisions的外部应用程序。 目前,仅FastCGI授权器可用。 有关FastCGI授权者角色的更多详细信息, 请访问<a href="https://fastcgi-archives.github.io/" target="_blank" rel="noopener noreferrer">https://fastcgi-archives.github.io/</a>。</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="addDefaultCharset"><h3>添加默认的字符集<span class="ls-permlink"><a href="#addDefaultCharset"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>S指定当内容类型是"text/html"或"text/plain"且没有参数时,是否添加字符集标记到"Content-Type"响应报头中。当设置为<span class="val">Off</span>时,该功能禁用。当设置为<span class="val">On</span>时,将添加<span class="tagl"><a href="#defaultCharsetCustomized">自定义默认字符集</a></span>中指定的字符集,如果没有指定,将添加默认的"iso-8859-1"字符集。</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="defaultCharsetCustomized"><h3>自定义默认字符集<span class="ls-permlink"><a href="#defaultCharsetCustomized"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定一个字符集当<span class="tagl"><a href="#addDefaultCharset">添加默认的字符集</a></span>是<span class="val">On</span>时使用。这是可选的。默认值是<span class="val">iso-8859-1</span>。当<span class="tagl"><a href="#addDefaultCharset">添加默认的字符集</a></span>是<span class="val">Off</span>时本设置将不生效。</p> <h4>Syntax</h4><p>Name of a character set.</p> <h4>例子</h4><div class="ls-example">utf-8</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableIpGeo"><h3>启用IP地理定位<span class="ls-permlink"><a href="#enableIpGeo"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否启用IP地理定位查找。 可以在服务器级别,虚拟主机级别,或context级别设置。</p> <h4>Syntax</h4><p>从单选框选择</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="ServGeneral_Help.html#useIpInProxyHeader">使用报头中的客户端IP</a></span>, <span class="tagl"><a href="ServGeneral_Help.html#geoipDBFile">数据库文件路径</a></span>,</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> 版权所有.</footer> </div></div> </body> </html> �����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������zh-CN/External_PL.html������������������������������������������������������������������������������0000644�����������������00000030170�15027525531�0010534 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Piped Logger</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Piped Logger." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 3</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><span class="current"><a href="External_PL.html">Piped logger</a></span></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="External_WS.html">Web Server</a></div><div class="center"><a href="ExtApp_Help.html">外部应用</a></div><div class="next"><a href="External_LB.html">Load Balancer</a> »</div></div> <h1>Piped Logger</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header>Piped Logger</header><p> <a href="#extAppName">名称</a> | <a href="#extAppAddress">地址</a> | <a href="#maxConns">最大连接数</a> | <a href="#env">环境</a> | <a href="#extAppPath">命令</a> | <a href="#instances">实例数</a> | <a href="#extUser">Run As User</a> | <a href="#extGroup">以特定组运行</a> | <a href="#extUmask">umask</a> | <a href="#extAppPriority">优先级</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="extAppName"><h3>名称<span class="ls-permlink"><a href="#extAppName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>此外部应用程序的唯一名称。 在配置的其他部分中使用该名称时,将使用该名称进行引用。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAppAddress"><h3>地址<span class="ls-permlink"><a href="#extAppAddress"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>外部应用程序使用的唯一套接字地址。 支持IPv4/IPv6套接字和Unix域套接字(UDS)。 IPv4/IPv6套接字可用于网络通信。 只有当外部应用程序与服务器在同一台机器上时,才能使用UDS。</p> <h4>Syntax</h4><p>IPv4 或 IPV6 address:port 或者 UDS://path</p> <h4>例子</h4><div class="ls-example">127.0.0.1:5434<br/> UDS://tmp/lshttpd/php.sock.</div><h4>提示</h4><p>[安全建议] 如果外部应用程序在同一台机器上运行,则首选UDS。如果必须使用IPv4|IPV6, 将IP地址设置为<span class="val">localhost</span>或<span class="val">127.0.0.1</span>,这样外部应用就无法从其他机器上访问。 [性能建议] Unix域套接字一般比IPv4套接字拥有更高的性能。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxConns"><h3>最大连接数<span class="ls-permlink"><a href="#maxConns"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定服务器与外部应用之间可建立的最大并发连接数。该设置控制外部应用程序可同时处理多少个请求。 然而,真正的限制还取决于外部应用本身。如果外部的速度不够快,或者无法处理大量的并发请求,那么将这个值设置得更高也无济于事。</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p>[性能建议] 设置一个高值并不能直接变成高性能。设置为一个不会使外部应用程序过载的值,将提供最佳的性能/吞吐量。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="env"><h3>环境<span class="ls-permlink"><a href="#env"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>为外部应用程序指定额外的环境变量。</p> <h4>Syntax</h4><p>Key=value. Multiple variables can be separated by "ENTER"</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAppPath"><h3>命令<span class="ls-permlink"><a href="#extAppPath"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定包含外部应用程序的执行参数在内的完整命令行。 需要<span class="tagl"><a href="#autoStart">开机自启</a></span>的值为enable.如果参数中包含空格或制表符,应使用双引号或单引号将其引起。</p> <h4>Syntax</h4><p>Full path to the executable with optional parameters.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#autoStart">开机自启</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="instances"><h3>实例数<span class="ls-permlink"><a href="#instances"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定服务器创建的外部应用的最大实例数。这个选项需要<span class="tagl"><a href="#autoStart">开机自启</a></span>的值为enable. 大多数FastCGI/LSAPI应用程序每个进程实例只能处理一个请求,对于这种类型的应用,实例数应与<span class="tagl"><a href="#maxConns">最大连接数</a></span>的值相匹配。 而有些FastCGI/LSAPI应用程序可以生成多个子进程以同时处理多个请求. 对于这种类型的应用,应将实例设置为 "1",并使用环境变量来控制应用可以生成多少个子进程。</p> <h4>Syntax</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extUser"><h3>Run As User<span class="ls-permlink"><a href="#extUser"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The external application will run as this specified user name. If not set, Virtual Host level settings will be inherited.<br/><br/> Default value: Not Set</p> <h4>Syntax</h4><p>Valid username.</p> <h4>See Also</h4><p class="ls-text-small">extGroup</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extGroup"><h3>以特定组运行<span class="ls-permlink"><a href="#extGroup"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>外部应用程序将作为此指定的组名运行。如果未设置,将继承虚拟主机级别的设置。<br/><br/> Default value: Not Set</p> <h4>Syntax</h4><p>Valid group name.</p> <h4>See Also</h4><p class="ls-text-small">extUser</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extUmask"><h3>umask<span class="ls-permlink"><a href="#extUmask"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets default umask for this external application's processes. See <span class="cmd"> man 2 umask </span> for details. The default value taken from the server-level <span class="tagl"><a href="ServSecurity_Help.html#umask">umask</a></span> setting.</p> <h4>Syntax</h4><p>value valid range [000]-[777].</p> <h4>See Also</h4><p class="ls-text-small">CGI <span class="tagl"><a href="ServSecurity_Help.html#umask">umask</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAppPriority"><h3>优先级<span class="ls-permlink"><a href="#extAppPriority"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定外部应用的优先级,值的范围是<span class="val">-20</span>到<span class="val">20</span>. 一个小的数字意味着高优先级.外部应用进程的优先级不能比Web服务器高. 如果该优先级设置一个比服务器的优先级小的数字,则将使用服务器的优先级。</p> <h4>Syntax</h4><p>int</p> <h4>See Also</h4><p class="ls-text-small">Server <span class="tagl"><a href="ServGeneral_Help.html#serverPriority">优先级</a></span></p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> 版权所有.</footer> </div></div> </body> </html> ��������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������zh-CN/Templates_Help.html���������������������������������������������������������������������������0000644�����������������00000033672�15027525531�0011277 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - 虚拟主机模板</title> <meta name="description" content="OpenLiteSpeed Users' Manual - 虚拟主机模板." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 3</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><span class="current"><a href="Templates_Help.html">Virtual Host Templates</a></span></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="Listeners_SSL_Help.html">侦听器SSL</a></div><div class="center"><a href="config.html">Configuration</a></div><div class="next"><a href="VirtualHosts_Help.html">虚拟主机设置</a> »</div></div> <h1>虚拟主机模板</h1><section class="ls-spacer-small-bottom">虚拟主机模板使创建具有相似配置的新虚拟主机变得容易。 每个模板都包含一个模板配置文件,一个映射的侦听器列表以及一个成员虚拟主机列表。 要添加基于模板的虚拟主机,管理员只需将具有唯一的虚拟主机名和域名添加到模板成员列表。 模板映射的侦听器列表中的所有侦听器将自动添加到虚拟主机的映射。 稍后,如果您需要为特定虚拟主机自定义配置,只需“实例化”该成员虚拟主机,然后将自动创建一个独立的虚拟主机配置。 即使在设置自定义虚拟主机时,仍然可以用模板快速建立。</section> <h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header>模板位置</header><p> <a href="#templateName">模板名称</a> | <a href="#templateFile">模板文件</a> | <a href="#mappedListeners">映射的侦听器</a></p></section> <section class="toc-row"><header>Member Virtual Hosts</header><p> <a href="#templateVHName">虚拟主机名</a> | <a href="#templateVHDomain">域名</a> | <a href="#templateVHAliases">别名</a> | <a href="#memberVHRoot">成员虚拟主机根目录</a></p></section> <section class="toc-row"><header>模板设置</header><p> <a href="#templateVHRoot">默认虚拟主机根</a> | <a href="#templateVHConfigFile">Instantiated VHost Config file</a> | <a href="#templateVHDocRoot">文件根目标</a> | <a href="#templateFileRef">模板中的文件名</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="templateName"><h3>模板名称<span class="ls-permlink"><a href="#templateName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>模板的唯一名称。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="templateFile"><h3>模板文件<span class="ls-permlink"><a href="#templateFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定此模板配置文件的路径。 该文件必须位于$SERVER_ROOT/conf/templates/中,且文件名带有“ .conf”。 如果您指定的文件不存在,则在尝试保存模板后,将出现错误,为“CLICK TO CREATE”。 点击该链接将生成一个新的空模板文件。 当您删除模板时,该条目将从您的配置中删除,但实际的模板配置文件不会被删除。</p> <h4>Syntax</h4><p>path</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="mappedListeners"><h3>映射的侦听器<span class="ls-permlink"><a href="#mappedListeners"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the names of all listeners that this template maps to. A listener-to-virtual host mapping for this template's member virtual hosts will be added to the listeners specified in this field. This mapping will map listeners to virtual hosts based on the domain names and aliases set in the member virtual hosts' individual configurations.</p> <h4>Syntax</h4><p>comma-separated list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="templateVHName"><h3>虚拟主机名<span class="ls-permlink"><a href="#templateVHName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>此虚拟主机的唯一名称。 该名称在所有的虚拟主机模板和虚拟主机中不得重复。 在目录路径配置中,此名称可以由变量<span class="val">$VH_NAME</span>引用。<br/><br/> 如果还配置了具有相同名称的虚拟主机,则虚拟主机的配置将被忽略。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="templateVHDomain"><h3>域名<span class="ls-permlink"><a href="#templateVHDomain"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定该成员虚拟主机的主域名。 如果留白,将使用成员虚拟主机名, 这应该是符合标准的域名,但是您也可以使用IP地址。 对于不在端口80上的网站,建议附加<span class="val">:<port></span> 对于包含域名的配置,可以使用变量<span class="val">$VH_DOMAIN</span>来引用此域。<br/><br/> 该域名将在以下情况下使用: <ol> <li>在处理请求时匹配主机标头中的主机名。</li> <li>作为诸如FrontPage或AWstats之类的域名配置.</li> <li>基于虚拟主机模板配置侦听器到虚拟主机的映射。</li> </ol></p> <h4>Syntax</h4><p>domain name</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="templateVHAliases"><h3>别名<span class="ls-permlink"><a href="#templateVHAliases"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定虚拟主机的备用名称。 所有可能的主机名和IP地址都应添加到此列表中。 名称中允许使用通配符 <span class="val">*</span> 和 <span class="val">?</span>。 为不在端口80上的网站附加<span class="val">:<port></span>。<br/><br/> 别名将在以下情况下使用: <ol> <li>在处理请求时匹配主机标头中的主机名。</li> <li>作为诸如FrontPage或AWstats之类的域名配置.</li> <li>基于虚拟主机模板配置侦听器到虚拟主机的映射。</li> </ol></p> <h4>Syntax</h4><p>Comma-separated list of domain names.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="memberVHRoot"><h3>成员虚拟主机根目录<span class="ls-permlink"><a href="#memberVHRoot"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定此虚拟主机的根目录。 如果留空,将使用此模板的默认虚拟主机根目录.<br/><br/> Note: 这<b>不是</b>文档根。 建议将与虚拟主机相关的所有文件(如虚拟主机配置,日志文件,html文件,CGI脚本等)放置在此目录下。 虚拟主机根目录可以以变量$VH_ROOT来引用。</p> <h4>Syntax</h4><p>path</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="templateVHRoot"><h3>默认虚拟主机根<span class="ls-permlink"><a href="#templateVHRoot"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定使用此模板的成员虚拟主机的默认根目录。. Variable <span class="val">$VH_NAME</span> must appear in the path. This will allow each member template to be automatically assigned a separate root directory based on its name.</p> <h4>Syntax</h4><p>path</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="templateVHConfigFile"><h3>Instantiated VHost Config file<span class="ls-permlink"><a href="#templateVHConfigFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the location of the config file generated when you instantiate a member virtual host. Variable <span class="val">$VH_NAME</span> must appear in the path so each virtual host will have its own file. Must be located under $SERVER_ROOT/conf/vhosts/. This config file will be created only after you move a member vhost out of the template through instantiation.</p> <h4>Syntax</h4><p>String with $VH_NAME variable and .conf suffix</p> <h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> $VH_NAME/vhconf.conf is recommended for easy management.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="templateVHDocRoot"><h3>文件根目标<span class="ls-permlink"><a href="#templateVHDocRoot"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the unique path for each member virtual host's document root. Variable <span class="val">$VH_NAME</span> or <span class="val">$VH_ROOT</span> must appear in the path so each member virtual host will have its own document root.</p> <h4>Syntax</h4><p>path with $VH_NAME or $VH_ROOT variable</p> <h4>例子</h4><div class="ls-example">$VH_ROOT/public_html/ or $SERVER_ROOT/$VH_NAME/public_html.</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="templateFileRef"><h3>模板中的文件名<span class="ls-permlink"><a href="#templateFileRef"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies a path for the file to be used for member virtual hosts. Variable <span class="val">$VH_NAME</span> or <span class="val">$VH_ROOT</span> must appear in the path so each member virtual host will have its own file.</p> <h4>Syntax</h4><p>string</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> 版权所有.</footer> </div></div> </body> </html> ����������������������������������������������������������������������zh-CN/index.html������������������������������������������������������������������������������������0000644�����������������00000013114�15027525531�0007465 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - 主页</title> <meta name="description" content="OpenLiteSpeed Users' Manual - 主页." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <span class="current"><a href="index.html"> Users' Manual</a></span> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 3</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><section class="ls-index"> <header> <h1> OpenLiteSpeed Web Server 1.8 <br /><br /> Users' Manual <br /><br /> — Rev. 3 </h1> </header> <hr /> <header><h2>目录</h2></header> <ol> <li><span><a href="license.html">许可</a></span></li> <li><span><a href="intro.html">介绍</a></span></li> <li> <span><a href="install.html">安装/卸载</a></span> </li> <li><span><a href="admin.html">管理</a></span></li> <li><span><a href="security.html">安全</a></span></li> <li><span><a href="config.html">配置</a></span></li> </ol> <p> 有关更多信息,请访问我们的 <a href="https://openlitespeed.org/kb/">OpenLiteSpeed知识库</a> </p> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> 版权所有.</footer> </div></div> </body> </html> ����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������zh-CN/AdminGeneral_Help.html������������������������������������������������������������������������0000644�����������������00000042633�15027525531�0011664 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - 管理控制台设置</title> <meta name="description" content="OpenLiteSpeed Users' Manual - 管理控制台设置." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 3</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><span class="current"><a href="AdminGeneral_Help.html">Admin Console General</a></span></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev"> </div><div class="center"><a href="webconsole.html">Web Console</a></div><div class="next"><a href="AdminSecurity_Help.html">Admin Console Security</a> »</div></div> <h1>管理控制台设置</h1><section class="ls-spacer-small-bottom">A中控服务器是专门用于WebAdmin控制台的虚拟主机。确保中控服务器只允许管理员终端登入或者采用加密的SSL连接是十分必要的。</section> <h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header>常规选项</header><p> <a href="#enableCoreDump">启用Core Dump</a> | <a href="#consoleSessionTimeout">会话超时时长(秒)</a></p></section> <section class="toc-row"><header>虚拟主机日志</header><p> <a href="#logUseServer">使用服务器日志</a> | <a href="#vhlog_fileName">文件路径</a> | <a href="#vhlog_logLevel">日志级别</a> | <a href="#log_rollingSize">回滚大小 (bytes)</a> | <a href="#log_keepDays">保留天数</a> | <a href="#log_compressArchive">压缩存档</a></p></section> <section class="toc-row"><header>访问日志</header><p> <a href="#aclogUseServer">日志管理</a> | <a href="#vhaccessLog_fileName">文件名</a> | <a href="#accessLog_pipedLogger">管道日志记录</a> | <a href="#accessLog_logFormat">日志格式</a> | <a href="#accessLog_logHeader">记录头部</a> | <a href="#log_rollingSize">回滚大小 (bytes)</a> | <a href="#log_keepDays">保留天数</a> | <a href="#log_compressArchive">压缩存档</a> | <a href="#accessLog_bytesLog">字节记录</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="enableCoreDump"><h3>启用Core Dump<span class="ls-permlink"><a href="#enableCoreDump"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定当服务由root用户启动时是否启用core dump。 对大多数现代的Unix系统,会更改用户ID或组ID的进程出于安全考虑不被允许产生core文件。但是core dump文件对于排查故障非常有用。 这个选项只能在Linux Kernel 2.4或更高版本中可用。 Solaris用户应当使用<span class="cmd">coreadm</span>命令来控制这个功能。</p> <h4>Syntax</h4><p>从单选框选择</p> <h4>提示</h4><p>[安全建议] 仅在当你在服务器日志中看到<span class="val">没有创建core文件</span>时启用。当产生core文件后立即关闭。Core文件产生后请提交bug报告。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="consoleSessionTimeout"><h3>会话超时时长(秒)<span class="ls-permlink"><a href="#consoleSessionTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>自定义WebAdmin控制台会话超时时间。 如果未设置任何值,则默认值60秒生效。</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p>[安全建议] 在生产环境中一般设置一个不超过300秒的合适值。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="logUseServer"><h3>使用服务器日志<span class="ls-permlink"><a href="#logUseServer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否将虚拟主机的日志信息放置到服务器日志文件中,而不是创建独自的日志文件。</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vhlog_fileName"><h3>文件路径<span class="ls-permlink"><a href="#vhlog_fileName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定日志文件的路径。</p> <h4>Syntax</h4><p>文件名可以是绝对路径,也可以是相对于$SERVER_ROOT,$VH_ROOT的相对路径。</p> <h4>提示</h4><p>[性能建议] 将日志文件放在单独的磁盘上。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vhlog_logLevel"><h3>日志级别<span class="ls-permlink"><a href="#vhlog_logLevel"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定日志记录级别。可用级别(从高到低)为<span class="val">ERROR</span>, <span class="val">WARNING</span>, <span class="val">NOTICE</span>, <span class="val">INFO</span>, 和 <span class="val">DEBUG</span>。 只有当消息等级高于或与当前设置相同时才被记录。 如果您希望将此设置为<span class="val">DEBUG</span>,您也需要设置服务器日志级别为<span class="val">DEBUG</span>。 调试的级别只能在服务器级别通过<span class="tagl"><a href="ServGeneral_Help.html#log_debugLevel">调试级别</a></span>控制。</p> <h4>Syntax</h4><p>从列表中选择</p> <h4>提示</h4><p>[性能建议] 除非<span class="tagl"><a href="ServGeneral_Help.html#log_debugLevel">调试级别</a></span>设置为<span class="val">NONE</span>以外的日志级别, 否则<span class="val">DEBUG</span>级别不会对性能产生任何影响,推荐采用。</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="ServGeneral_Help.html#log_debugLevel">调试级别</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="log_rollingSize"><h3>回滚大小 (bytes)<span class="ls-permlink"><a href="#log_rollingSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定何时日志文件需要回滚,也称为日志循环。 当文件大小超过回滚限制后,在使用的日志文件将在同一目录中被重命名 为log_name.mm_dd_yyyy(.sequence),一个新的日志文件将被创建。 回滚的日志文件的实际大小有时会比限制值稍微大一些。 将值设置为<span class="val">0</span>将禁用日志循环。</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> 请用“K”,“M”,“G”代表千字节,兆字节和千兆字节。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="log_keepDays"><h3>保留天数<span class="ls-permlink"><a href="#log_keepDays"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定访问日志文件将被保存在磁盘上多少天。 只有超出指定天数的回滚日志文件会被删除。 当前的日志文件不会被删除,无论它包含了多少天的数据。 如果你不想自动删除过时的、很旧的日志文件, 将该值设置为<span class="val">0</span>。</p> <h4>Syntax</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="log_compressArchive"><h3>压缩存档<span class="ls-permlink"><a href="#log_compressArchive"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否压缩回滚日志以节省磁盘空间。</p> <h4>Syntax</h4><p>从单选框选择</p> <h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> 日志文件是高度可压缩的,建议采取压缩以减少旧日志的磁盘占用量。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="aclogUseServer"><h3>日志管理<span class="ls-permlink"><a href="#aclogUseServer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定写入访问日志的地点。这里有三个选项: <ol> <li>写入到服务器的访问日志;</li> <li>为虚拟主机创建一个访问日志;</li> <li>禁用访问日志记录</li> </ol></p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vhaccessLog_fileName"><h3>文件名<span class="ls-permlink"><a href="#vhaccessLog_fileName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>访问日志的文件名</p> <h4>Syntax</h4><p>文件名可以是绝对路径,也可以是相对于$SERVER_ROOT,$VH_ROOT的相对路径。</p> <h4>提示</h4><p>[性能建议] 将访问日志文件放在单独的磁盘上。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessLog_pipedLogger"><h3>管道日志记录<span class="ls-permlink"><a href="#accessLog_pipedLogger"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定外部应用程序,该应用程序将通过其STDIN流(文件句柄为0)上的pipe接收LiteSpeed发送的访问日志数据。 指定此字段后,访问日志将仅发送到记录器应用程序,而不发送到上一个条目中指定的访问日志文件。<br/><br/> 首先必须在<span class="tagP"><a href="#ExtApp_Help">外部应用</a></span>中定义记录器应用程序。 服务器级别的访问日志记录只能使用在服务器级别定义的外部记录器应用程序。 虚拟主机级别的访问日志记录只能使用在虚拟主机级别定义的记录器应用程序。<br/><br/> 记录器进程的启动方式与其他外部进程相同 (CGI/FastCGI/LSAPI)过程。这意味着它将作为 在虚拟主机的<span class="tagl"><a href="VirtualHosts_Help.html#setUidMode">外部应用程序设置UID模式</a></span>设置中指定的用户ID,并且永远不会以特权用户运行。<br/><br/> 如果配置了多个记录器的实例,LiteSpeed web server将在多个记录器之间执行简单的负载均衡。LiteSpeed服务器始终尝试将记录器应用程序的数量保持在尽可能低的水平。只有当一个记录器应用程序未能及时处理访问日志条目时,服务器才会尝试启动记录器的另一个实例。<br/><br/> 如果记录器崩溃,Web服务器将启动另一个实例,但是流缓冲区中的日志数据将丢失。 如果外部记录器无法跟上日志流的速度和数量,则可能会丢失日志数据。</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessLog_logFormat"><h3>日志格式<span class="ls-permlink"><a href="#accessLog_logFormat"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p> 指定访问日志的格式。 设置之后,它将覆盖<span class="tagl"><a href="#accessLog_logHeader">记录头部</a></span> 的设定。</p> <h4>Syntax</h4><p>字符串。日志格式的语法与Apache 2.0自定义 <a href="http://httpd.apache.org/docs/current/mod/mod_log_config.html#formats" target="_blank" rel="noopener noreferrer">log format</a>.</p> <h4>例子</h4><div class="ls-example"><b>一般日志格式(CLF)</b><br/> "%h %l %u %t \"%r\" %>s %b"<br/><br/> <b>支持虚拟主机的一般日志格式</b><br/> "%v %h %l %u %t \"%r\" %>s %b"<br/><br/> <b>NCSA扩展/组合日志格式</b><br/> "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-agent}i\" <br/><br/> <b>记录Foobar的cookie值</b><br/> "%{Foobar}C"</div><h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#accessLog_logHeader">记录头部</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessLog_logHeader"><h3>记录头部<span class="ls-permlink"><a href="#accessLog_logHeader"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否记录HTTP请求头: <span class="val">Referer</span>、 <span class="val">UserAgent</span>和<span class="val">Host</span>。</p> <h4>Syntax</h4><p>从复选框中选择</p> <h4>提示</h4><p>[性能建议] 如果你不需要在访问日志中记录这些头部信息,关闭这个功能。</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#accessLog_logFormat">日志格式</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessLog_bytesLog"><h3>字节记录<span class="ls-permlink"><a href="#accessLog_bytesLog"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定带宽字节日志文件的路径。设置后,将创建一份兼容cPanel面板的带宽日志。这将记录 一个请求传输的总字节数,包括请求内容和响应内容。</p> <h4>Syntax</h4><p>文件名可以是绝对路径,也可以是相对于$SERVER_ROOT的相对路径。</p> <h4>提示</h4><p>[性能建议] 将日志文件放置在一个单独的磁盘上。</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> 版权所有.</footer> </div></div> </body> </html> �����������������������������������������������������������������������������������������������������zh-CN/Context_Help.html�����������������������������������������������������������������������������0000644�����������������00000017017�15027525531�0010760 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Context</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Context." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 3</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><span class="current"><a href="Context_Help.html">Context</a></span></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="Rewrite_Help.html">重写帮助</a></div><div class="center"><a href="config.html">Configuration</a></div><div class="next"><a href="VHWebSocket_Help.html">网络套接字代理</a> »</div></div> <h1>Context</h1><section class="ls-spacer-small-bottom">In LiteSpeed Web Server terminology, a "context" is a virtual location, a common parent URL, that identifies a group of resources. Contexts can be thought of as different directories in your website's directory tree. For example, "/" is the root context mapped to the document root of a website. "/cgi-bin/" is a context farther up on the tree, dedicated to the CGI applications for this site. A context can be explicitly defined in LiteSpeed's WebAdmin console for the following purposes: <ul> <li>To make a file system outside of the document root accessible.</li> <li>To block access to certain resources.</li> <li>To setup user-level authentication for certain resources.</li> <li>To create mount points for external applications.</li> <li>To redirect requests to another location.</li> </ul></section> <h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header>Context属性</header><p> <a href="#ctxType">Context类型</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="ctxType"><h3>Context类型<span class="ls-permlink"><a href="#ctxType"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The type of context created determines it's usage.<br><br><b>Static</b> context can be used to map a URI to a directory either outside document root or within it.<br> <b>Java Web App</b> context is used to automatically import a predefined Java Application in an AJPv13 compilant Java servlet engine.<br> <b>Servlet</b> context is used to import a specific servlet under a web application.<br> <b>Fast CGI</b> context is a mount point of Fast CGI application.<br> <b>LiteSpeed SAPI</b> context can be used to associate a URI with an LSAPI application.<br> <b>Proxy</b> context enables this virtual host to serve as a transparant reverse proxy server to an external web server or application server.<br> <b>CGI</b> context can be used to specify a directory only contains CGI scripts.<br> <b>Load Balancer</b> context can be used to assign a different cluster for that context.<br> <b>Redirect</b> context can set up an internal or external redirect URI.<br> <b>App Server</b> context is specifically used for Rack/Rails, WSGI, and Node.js applications.<br> <b>Module handler</b> context is a mount point of hander type modules.<br></p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> 版权所有.</footer> </div></div> </body> </html> �����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������zh-CN/FCGI_Context.html�����������������������������������������������������������������������������0000644�����������������00000036154�15027525531�0010603 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Fast CGI Context</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Fast CGI Context." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 3</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><span class="current"><a href="FCGI_Context.html">Fast CGI Context</a></span></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="Servlet_Context.html">Servlet Context</a></div><div class="center"><a href="Context_Help.html">Context</a></div><div class="next"><a href="LSAPI_Context.html">LiteSpeed SAPI Context</a> »</div></div> <h1>Fast CGI Context</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header><a href="#fcgiContext">FastCGI Context</a></header><p> <a href="#expuri">URI</a> | <a href="#fcgiapp">FastCGI 应用程序</a> | <a href="#extraHeaders">标头控制</a> | <a href="#realm">域</a> | <a href="#authName">认证名称</a> | <a href="#required">Require(授权的用户/组)</a> | <a href="#accessAllowed">允许访问列表</a> | <a href="#accessDenied">拒绝访问列表</a> | <a href="#extAuthorizer">Authorizer</a> | <a href="#addDefaultCharset">添加默认的字符集</a> | <a href="#defaultCharsetCustomized">自定义默认字符集</a> | <a href="#enableIpGeo">启用IP地理定位</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="fcgiContext"><h3>FastCGI Context<span class="ls-permlink"><a href="#fcgiContext"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>FastCGI applications cannot be used directly. A FastCGI application must be either configured as a script handler or mapped to a URL through FastCGI context. A FastCGI context will associate a URI with a FastCGI application.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expuri"><h3>URI<span class="ls-permlink"><a href="#expuri"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the URI for this context.</p> <h4>Syntax</h4><p>指定此context下的URI。这个URI应该以"/"开始。 如果一个URI以"/"结束,那么该context将包含这个URI下的所有下级URI。如果context类型映射到系统目录上,则必须添加结尾的"/"</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#location">位置</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="fcgiapp"><h3>FastCGI 应用程序<span class="ls-permlink"><a href="#fcgiapp"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定FastCGI应用程序的名称。 必须在服务器或虚拟主机级别的<span class="tagP"><a href="#ExtApp_Help">外部应用</a></span>中定义此应用程序。</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extraHeaders"><h3>标头控制<span class="ls-permlink"><a href="#extraHeaders"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定要添加的附加响应/请求头。可以添加每行一个来添加多个头指令。"NONE "可以用来禁止父头继承。如果没有提供,则假定为 "Header"。</p> <h4>Syntax</h4><p>[Header]|RequestHeader [condition] set|append|merge|add|unset header [value] [early|env=[!]variable]</p> <h4>例子</h4><div class="ls-example">set Cache-control no-cache<br/> append Cache-control no-store<br/> Header set My-header cust_header_val<br/> RequestHeader set My-req-header cust_req_header_val</div><h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> 语法和用法类似于 <a href="https://httpd.apache.org/docs/2.2/mod/mod_headers.html#header" target="_blank" rel="noopener noreferrer">Apache's mod_headers directives</a><br/><br/> <span title="Information" class="ls-icon-info"></span> The 'Header' directive is is optional and can be excluded or left in when copying rules from elsewhere without issue.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="realm"><h3>域<span class="ls-permlink"><a href="#realm"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定这个context下的realm授权。 当指定时,必须提供有效的用户和用户名来访问这个context。 <span class="tagl"><a href="VHSecurity_Help.html#realms">Realms授权</a></span>需要在<span class="tagP"><a href="#VHSecurity_Help">虚拟主机安全</a></span>部分进行设置。 此设置使用每个realm的<span class="tagl"><a href="VHSecurity_Help.html#realmName">域名称</a></span>。</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="authName"><h3>认证名称<span class="ls-permlink"><a href="#authName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>为当前context下的realm认证指定一个替代的名称。 如果没有指定,原realm名称将被使用。 认证名称将显示在浏览器登陆弹出窗口。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="required"><h3>Require(授权的用户/组)<span class="ls-permlink"><a href="#required"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定哪些用户/用户组可以访问此context。 这里允许你使用一个用户/组数据库(在 <span class="tagl"><a href="#realm">域</a></span>中指定)访问多个context, 但只允许该数据库下特定的用户/组访问这个context。</p> <h4>Syntax</h4><p>Syntax is compatible with Apache's Require directive. For example: <ul> <li><span class="val">user username [username ...]</span><br/> Only listed users can access this context.</li> <li> <span class="val">group groupid [groupid ...]</span><br/> Only users belonging to the listed groups can access this context.</li> </ul> If this setting is not specified, all valid users will be allowed to access this resource.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessAllowed"><h3>允许访问列表<span class="ls-permlink"><a href="#accessAllowed"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定允许访问这个context下资源的IP地址或子网。综合 <span class="tagl"><a href="#accessDenied">拒绝访问列表</a></span>项的配置以及服务器/虚拟主机级别访问控制, 可访问性将以客户端IP所符合的最小范围来确定。</p> <h4>Syntax</h4><p>Comma-delimited list of IPs/sub-networks.</p> <h4>例子</h4><div class="ls-example">网络可以写成<span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span> 或<span class="val">192.168.1.*</span>。</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessDenied"><h3>拒绝访问列表<span class="ls-permlink"><a href="#accessDenied"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定哪个IP地址或子网不被允许访问这个context下的资源。 综合<span class="tagl"><a href="#accessAllowed">允许访问列表</a></span>项的配置以及服务器/虚拟主机级别访问控制, 可访问性将以客户端IP所符合的最小范围来确定。</p> <h4>Syntax</h4><p>Comma-delimited list of IPs/sub-networks.</p> <h4>例子</h4><div class="ls-example">子网络可以写成<span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span> 或<span class="val">192.168.1.*</span>。</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAuthorizer"><h3>Authorizer<span class="ls-permlink"><a href="#extAuthorizer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定可用于生成授权/未授权 decisions的外部应用程序。 目前,仅FastCGI授权器可用。 有关FastCGI授权者角色的更多详细信息, 请访问<a href="https://fastcgi-archives.github.io/" target="_blank" rel="noopener noreferrer">https://fastcgi-archives.github.io/</a>。</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="addDefaultCharset"><h3>添加默认的字符集<span class="ls-permlink"><a href="#addDefaultCharset"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>S指定当内容类型是"text/html"或"text/plain"且没有参数时,是否添加字符集标记到"Content-Type"响应报头中。当设置为<span class="val">Off</span>时,该功能禁用。当设置为<span class="val">On</span>时,将添加<span class="tagl"><a href="#defaultCharsetCustomized">自定义默认字符集</a></span>中指定的字符集,如果没有指定,将添加默认的"iso-8859-1"字符集。</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="defaultCharsetCustomized"><h3>自定义默认字符集<span class="ls-permlink"><a href="#defaultCharsetCustomized"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定一个字符集当<span class="tagl"><a href="#addDefaultCharset">添加默认的字符集</a></span>是<span class="val">On</span>时使用。这是可选的。默认值是<span class="val">iso-8859-1</span>。当<span class="tagl"><a href="#addDefaultCharset">添加默认的字符集</a></span>是<span class="val">Off</span>时本设置将不生效。</p> <h4>Syntax</h4><p>Name of a character set.</p> <h4>例子</h4><div class="ls-example">utf-8</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableIpGeo"><h3>启用IP地理定位<span class="ls-permlink"><a href="#enableIpGeo"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否启用IP地理定位查找。 可以在服务器级别,虚拟主机级别,或context级别设置。</p> <h4>Syntax</h4><p>从单选框选择</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="ServGeneral_Help.html#useIpInProxyHeader">使用报头中的客户端IP</a></span>, <span class="tagl"><a href="ServGeneral_Help.html#geoipDBFile">数据库文件路径</a></span>,</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> 版权所有.</footer> </div></div> </body> </html> ��������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������zh-CN/Java_Web_App_Context.html���������������������������������������������������������������������0000644�����������������00000052536�15027525531�0012353 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Java Web App Context</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Java Web App Context." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 3</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <span class="current"><a href="Java_Web_App_Context.html">Java Web App Context</a></span> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="Static_Context.html">Static Context</a></div><div class="center"><a href="Context_Help.html">Context</a></div><div class="next"><a href="Servlet_Context.html">Servlet Context</a> »</div></div> <h1>Java Web App Context</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header><a href="#javaWebAppContext">Java Web App Context</a></header><p> <a href="#uri">URI</a> | <a href="#javaWebApp_location">伪造</a> | <a href="#javaServletEngine">Servlet Engine</a> | <a href="#enableExpires">启用过期</a> | <a href="#expiresDefault">默认过期</a> | <a href="#expiresByType">按类型过期</a> | <a href="#extraHeaders">标头控制</a> | <a href="#autoIndex">自动索引</a> | <a href="#indexFiles">索引文件</a> | <a href="#realm">域</a> | <a href="#authName">认证名称</a> | <a href="#required">Require(授权的用户/组)</a> | <a href="#accessAllowed">允许访问列表</a> | <a href="#accessDenied">拒绝访问列表</a> | <a href="#extAuthorizer">Authorizer</a> | <a href="#addDefaultCharset">添加默认的字符集</a> | <a href="#defaultCharsetCustomized">自定义默认字符集</a> | <a href="#enableIpGeo">启用IP地理定位</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="javaWebAppContext"><h3>Java Web App Context<span class="ls-permlink"><a href="#javaWebAppContext"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Many people running Java applications use the servlet engine to serve static content as well. But no servlet engine is nearly as efficient as LiteSpeed Web Server for these processes. In order to improve the overall performance, LiteSpeed Web Server can be configured as a gateway server, which serves static content and forwards dynamic Java page requests to the servlet engine.<br/><br/> LiteSpeed Web Server requires certain contexts to be defined in order to run a Java application. A Java Web App Context automatically creates all required contexts based on the Java web application's configuration file (WEB-INF/web.xml).<br/><br/> There are a few points you need to keep in mind when setting up a Java Web App Context:<br/> <ul> <li>A <span class="val">Servlet Engine</span> external application must be set up in <span class="tagP"><a href="#ExtApp_Help">外部应用</a></span> before Java Web App Context can be set up.</li> <li>A <span class="tagP"><a href="#ScriptHandler_Help">脚本处理程序</a></span> for .jsp files should be defined as well.</li> <li>If the web application is packed into a .war file, the .war file must be expanded. The server cannot access compressed archive files.</li> <li>For the same resources, the same URL should be used no matter whether it is accessed through LiteSpeed Web Server or through the servlet engine's built-in HTTP server.<br/> For example, Tomcat 4.1 is installed under /opt/tomcat. Files for the "examples" web application are located at /opt/tomcat/webapps/examples/. Through Tomcat's built-in HTTP server, the "examples" web application is thus accessed with a URI like "/examples/***". The corresponding Java Web App Context should thus be configured: <span class="tagl"><a href="#expuri">URI</a></span> = <span class="val">/examples/</span>, <span class="tagl"><a href="#javaWebApp_location">伪造</a></span> = <span class="val">/opt/tomcat/webapps/examples/</span>.</li> </ul></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="uri"><h3>URI<span class="ls-permlink"><a href="#uri"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定此context下的URI。这个URI应该以"/"开始。 如果一个URI以"/"结束,那么该context将包含这个URI下的所有下级URI。</p> <h4>Syntax</h4><p>URI</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="javaWebApp_location"><h3>伪造<span class="ls-permlink"><a href="#javaWebApp_location"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定包含此Web应用程序的目录。 应包含以下文件 "WEB-INF/web.xml".<br/><br/> 默认值:$DOC_ROOT + <span class="tagl"><a href="#uri">URI</a></span></p> <h4>Syntax</h4><p>path</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="javaServletEngine"><h3>Servlet Engine<span class="ls-permlink"><a href="#javaServletEngine"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定为该Web应用程序提供服务的Servlet Engine的名称。 Servlet引擎必须在服务器或虚拟主机级别的<span class="tagP"><a href="#ExtApp_Help">外部应用</a></span>中定义。</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableExpires"><h3>启用过期<span class="ls-permlink"><a href="#enableExpires"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否为静态文件生成Expires头。如果启用,将根据 <span class="tagl"><a href="#expiresDefault">默认过期</a></span>和<span class="tagl"><a href="#expiresByType">按类型过期</a></span>生成Expires头。<br/><br/> 这可以在服务器,虚拟主机和Context级别设置。低级别的设置将 覆盖高级别的设置。例如,Context级别的设置将覆盖虚拟主机级别的设置, 虚拟主机级别的设置将覆盖服务器级别的设置。</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expiresDefault"><h3>默认过期<span class="ls-permlink"><a href="#expiresDefault"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定生成Expires头的默认设置。该设置在<span class="tagl"><a href="#enableExpires">启用过期</a></span> 设为“启用”时有效。它可以被<span class="tagl"><a href="#expiresByType">按类型过期</a></span>覆盖。 除非必要,否则不要在服务器或虚拟主机级别设置该默认值。 因为它会为所有网页生成Expires头。大多数时候,应该是 为不常变动的某些目录在Context级别设置。如果没有默认设置,<span class="tagl"><a href="#expiresByType">按类型过期</a></span>中未指定的类型不会生成Expires头。</p> <h4>Syntax</h4><p>A|Mseconds<br/> 文件将在基准时间(A|M)加指定秒数的时间后失效。 “A”代表基准时间为客户端的访问时间,“M”代表文件的最后修改时间。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expiresByType"><h3>按类型过期<span class="ls-permlink"><a href="#expiresByType"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>为各个MIME类型分别指定Expires头设置。</p> <h4>Syntax</h4><p>逗号分隔的“MIME-类型=A|M秒数”的列表。 文件将在基准时间(A|M)加指定秒数的时间后失效。<br/><br/> “A”代表基准时间为客户端的访问时间,“M”代表文件的最后修改时间。 MIME-类型可使用通配符“*”,如image/*。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extraHeaders"><h3>标头控制<span class="ls-permlink"><a href="#extraHeaders"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定要添加的附加响应/请求头。可以添加每行一个来添加多个头指令。"NONE "可以用来禁止父头继承。如果没有提供,则假定为 "Header"。</p> <h4>Syntax</h4><p>[Header]|RequestHeader [condition] set|append|merge|add|unset header [value] [early|env=[!]variable]</p> <h4>例子</h4><div class="ls-example">set Cache-control no-cache<br/> append Cache-control no-store<br/> Header set My-header cust_header_val<br/> RequestHeader set My-req-header cust_req_header_val</div><h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> 语法和用法类似于 <a href="https://httpd.apache.org/docs/2.2/mod/mod_headers.html#header" target="_blank" rel="noopener noreferrer">Apache's mod_headers directives</a><br/><br/> <span title="Information" class="ls-icon-info"></span> The 'Header' directive is is optional and can be excluded or left in when copying rules from elsewhere without issue.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="autoIndex"><h3>自动索引<span class="ls-permlink"><a href="#autoIndex"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>在目录中,当<span class="tagl"><a href="#indexFiles">索引文件</a></span>中所列的索引文件不可用时,指定运行时是否即时生成目录索引。<br/> 此选项可以在虚拟主机级别和context级别中设置,并可以顺着目录树继承,直到被覆盖。 您可以自定义生成的索引页面。请访问在线百科了解如何操作。</p> <h4>Syntax</h4><p>从单选框选择</p> <h4>提示</h4><p>[安全建议] 建议关闭自动索引,从而尽可能防止泄露机密数据。</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#indexFiles">索引文件</a></span>, <span class="tagl"><a href="#autoIndexURI">自动索引URI</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="indexFiles"><h3>索引文件<span class="ls-permlink"><a href="#indexFiles"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定URL映射到目录时顺序查找的索引文件名称。 您可以在服务器、虚拟主机和Context级别对其进行自定义。</p> <h4>Syntax</h4><p>Comma-delimited list of index filenames.</p> <h4>提示</h4><p>[性能建议] 只设置你需要的索引文件。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="realm"><h3>域<span class="ls-permlink"><a href="#realm"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定这个context下的realm授权。 当指定时,必须提供有效的用户和用户名来访问这个context。 <span class="tagl"><a href="VHSecurity_Help.html#realms">Realms授权</a></span>需要在<span class="tagP"><a href="#VHSecurity_Help">虚拟主机安全</a></span>部分进行设置。 此设置使用每个realm的<span class="tagl"><a href="VHSecurity_Help.html#realmName">域名称</a></span>。</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="authName"><h3>认证名称<span class="ls-permlink"><a href="#authName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>为当前context下的realm认证指定一个替代的名称。 如果没有指定,原realm名称将被使用。 认证名称将显示在浏览器登陆弹出窗口。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="required"><h3>Require(授权的用户/组)<span class="ls-permlink"><a href="#required"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定哪些用户/用户组可以访问此context。 这里允许你使用一个用户/组数据库(在 <span class="tagl"><a href="#realm">域</a></span>中指定)访问多个context, 但只允许该数据库下特定的用户/组访问这个context。</p> <h4>Syntax</h4><p>Syntax is compatible with Apache's Require directive. For example: <ul> <li><span class="val">user username [username ...]</span><br/> Only listed users can access this context.</li> <li> <span class="val">group groupid [groupid ...]</span><br/> Only users belonging to the listed groups can access this context.</li> </ul> If this setting is not specified, all valid users will be allowed to access this resource.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessAllowed"><h3>允许访问列表<span class="ls-permlink"><a href="#accessAllowed"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定允许访问这个context下资源的IP地址或子网。综合 <span class="tagl"><a href="#accessDenied">拒绝访问列表</a></span>项的配置以及服务器/虚拟主机级别访问控制, 可访问性将以客户端IP所符合的最小范围来确定。</p> <h4>Syntax</h4><p>Comma-delimited list of IPs/sub-networks.</p> <h4>例子</h4><div class="ls-example">网络可以写成<span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span> 或<span class="val">192.168.1.*</span>。</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessDenied"><h3>拒绝访问列表<span class="ls-permlink"><a href="#accessDenied"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定哪个IP地址或子网不被允许访问这个context下的资源。 综合<span class="tagl"><a href="#accessAllowed">允许访问列表</a></span>项的配置以及服务器/虚拟主机级别访问控制, 可访问性将以客户端IP所符合的最小范围来确定。</p> <h4>Syntax</h4><p>Comma-delimited list of IPs/sub-networks.</p> <h4>例子</h4><div class="ls-example">子网络可以写成<span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span> 或<span class="val">192.168.1.*</span>。</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAuthorizer"><h3>Authorizer<span class="ls-permlink"><a href="#extAuthorizer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定可用于生成授权/未授权 decisions的外部应用程序。 目前,仅FastCGI授权器可用。 有关FastCGI授权者角色的更多详细信息, 请访问<a href="https://fastcgi-archives.github.io/" target="_blank" rel="noopener noreferrer">https://fastcgi-archives.github.io/</a>。</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="addDefaultCharset"><h3>添加默认的字符集<span class="ls-permlink"><a href="#addDefaultCharset"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>S指定当内容类型是"text/html"或"text/plain"且没有参数时,是否添加字符集标记到"Content-Type"响应报头中。当设置为<span class="val">Off</span>时,该功能禁用。当设置为<span class="val">On</span>时,将添加<span class="tagl"><a href="#defaultCharsetCustomized">自定义默认字符集</a></span>中指定的字符集,如果没有指定,将添加默认的"iso-8859-1"字符集。</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="defaultCharsetCustomized"><h3>自定义默认字符集<span class="ls-permlink"><a href="#defaultCharsetCustomized"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定一个字符集当<span class="tagl"><a href="#addDefaultCharset">添加默认的字符集</a></span>是<span class="val">On</span>时使用。这是可选的。默认值是<span class="val">iso-8859-1</span>。当<span class="tagl"><a href="#addDefaultCharset">添加默认的字符集</a></span>是<span class="val">Off</span>时本设置将不生效。</p> <h4>Syntax</h4><p>Name of a character set.</p> <h4>例子</h4><div class="ls-example">utf-8</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableIpGeo"><h3>启用IP地理定位<span class="ls-permlink"><a href="#enableIpGeo"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否启用IP地理定位查找。 可以在服务器级别,虚拟主机级别,或context级别设置。</p> <h4>Syntax</h4><p>从单选框选择</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="ServGeneral_Help.html#useIpInProxyHeader">使用报头中的客户端IP</a></span>, <span class="tagl"><a href="ServGeneral_Help.html#geoipDBFile">数据库文件路径</a></span>,</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> 版权所有.</footer> </div></div> </body> </html> ������������������������������������������������������������������������������������������������������������������������������������������������������������������zh-CN/External_FCGI.html����������������������������������������������������������������������������0000644�����������������00000054670�15027525531�0010744 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Fast CGI App</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Fast CGI App." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 3</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><span class="current"><a href="External_FCGI.html">Fast CGI App</a></span></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev"> </div><div class="center"><a href="ExtApp_Help.html">外部应用</a></div><div class="next"><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a> »</div></div> <h1>Fast CGI App</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header></header><p> <a href="#extAppName">名称</a> | <a href="#extAppAddress">地址</a> | <a href="#maxConns">最大连接数</a> | <a href="#env">环境</a> | <a href="#initTimeout">初次请求超时时间 (secs)</a> | <a href="#retryTimeout">重试超时时间 (secs)</a> | <a href="#persistConn">持久连接</a> | <a href="#pcKeepAliveTimeout">持久连接超时时间</a> | <a href="#respBuffer">响应缓冲</a> | <a href="#autoStart">开机自启</a> | <a href="#extAppPath">命令</a> | <a href="#backlog">Back Log</a> | <a href="#instances">实例数</a> | <a href="#extUser">Run As User</a> | <a href="#extGroup">以特定组运行</a> | <a href="#extUmask">umask</a> | <a href="#runOnStartUp">开机自启</a> | <a href="#extMaxIdleTime">最大空闲时间</a> | <a href="#extAppPriority">优先级</a> | <a href="#memSoftLimit">内存软限制 (bytes)</a> | <a href="#memHardLimit">内存硬限制 (bytes)</a> | <a href="#procSoftLimit">进程软限制</a> | <a href="#procHardLimit">进程硬限制</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="extAppName"><h3>名称<span class="ls-permlink"><a href="#extAppName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>此外部应用程序的唯一名称。 在配置的其他部分中使用该名称时,将使用该名称进行引用。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAppAddress"><h3>地址<span class="ls-permlink"><a href="#extAppAddress"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>外部应用程序使用的唯一套接字地址。 支持IPv4/IPv6套接字和Unix域套接字(UDS)。 IPv4/IPv6套接字可用于网络通信。 只有当外部应用程序与服务器在同一台机器上时,才能使用UDS。</p> <h4>Syntax</h4><p>IPv4 或 IPV6 address:port 或者 UDS://path</p> <h4>例子</h4><div class="ls-example">127.0.0.1:5434<br/> UDS://tmp/lshttpd/php.sock.</div><h4>提示</h4><p>[安全建议] 如果外部应用程序在同一台机器上运行,则首选UDS。如果必须使用IPv4|IPV6, 将IP地址设置为<span class="val">localhost</span>或<span class="val">127.0.0.1</span>,这样外部应用就无法从其他机器上访问。 [性能建议] Unix域套接字一般比IPv4套接字拥有更高的性能。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxConns"><h3>最大连接数<span class="ls-permlink"><a href="#maxConns"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定服务器与外部应用之间可建立的最大并发连接数。该设置控制外部应用程序可同时处理多少个请求。 然而,真正的限制还取决于外部应用本身。如果外部的速度不够快,或者无法处理大量的并发请求,那么将这个值设置得更高也无济于事。</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p>[性能建议] 设置一个高值并不能直接变成高性能。设置为一个不会使外部应用程序过载的值,将提供最佳的性能/吞吐量。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="env"><h3>环境<span class="ls-permlink"><a href="#env"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>为外部应用程序指定额外的环境变量。</p> <h4>Syntax</h4><p>Key=value. Multiple variables can be separated by "ENTER"</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="initTimeout"><h3>初次请求超时时间 (secs)<span class="ls-permlink"><a href="#initTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定服务器等待外部应用响应新建立的连接的第一个请求的最大时间 如果服务器在这个限制时间内没有收到外部应用的任何数据,它将把这个连接标记为坏(Bad)。这有助于识别与外部应用程序的通信问题。 这有助于尽快发现与外部应用的通信问题。如果某些请求的处理时间较长,则增加这个限制以避免503错误信息。</p> <h4>Syntax</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="retryTimeout"><h3>重试超时时间 (secs)<span class="ls-permlink"><a href="#retryTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定服务器在重试之前,等待出现通信问题的外部应用程序的时间。</p> <h4>Syntax</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="persistConn"><h3>持久连接<span class="ls-permlink"><a href="#persistConn"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定在处理完请求后是否要保持连接 持久连接可以提高性能, 但某些FastCGI外部应用程序不完全支持持久连接。默认为 "On"。</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="pcKeepAliveTimeout"><h3>持久连接超时时间<span class="ls-permlink"><a href="#pcKeepAliveTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定保持持久连接的最大时间,以秒为单位。<br/><br/> 如果设置成"-1",连接将不会超时. 当设置成0或者更大, 连接将在这些秒数后被关闭。</p> <h4>Syntax</h4><p>int</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="respBuffer"><h3>响应缓冲<span class="ls-permlink"><a href="#respBuffer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否要从外部应用程序缓冲收到的响应。 如果nph-(Non-Parsed-Header)脚本被检测到,则关闭具有完整HTTP头的缓冲响应。</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="autoStart"><h3>开机自启<span class="ls-permlink"><a href="#autoStart"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否要Web服务器自动启动应用程序。只有运行在同一台机器上的FastCGI和LSAPI应用程序才能自动启动。 <span class="tagl"><a href="#extAppAddress">地址</a></span>中的IP必须是本地IP. 通过LiteSpeed CGI守护进程而不是主服务器进程启动,有助于减少系统开销。<br/><br/> Default value: Yes (Through CGI Daemon)</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAppPath"><h3>命令<span class="ls-permlink"><a href="#extAppPath"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定包含外部应用程序的执行参数在内的完整命令行。 需要<span class="tagl"><a href="#autoStart">开机自启</a></span>的值为enable.如果参数中包含空格或制表符,应使用双引号或单引号将其引起。</p> <h4>Syntax</h4><p>Full path to the executable with optional parameters.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#autoStart">开机自启</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="backlog"><h3>Back Log<span class="ls-permlink"><a href="#backlog"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the backlog of the listening socket. Required if <span class="tagl"><a href="#autoStart">开机自启</a></span> is enabled.</p> <h4>Syntax</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="instances"><h3>实例数<span class="ls-permlink"><a href="#instances"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定服务器创建的外部应用的最大实例数。这个选项需要<span class="tagl"><a href="#autoStart">开机自启</a></span>的值为enable. 大多数FastCGI/LSAPI应用程序每个进程实例只能处理一个请求,对于这种类型的应用,实例数应与<span class="tagl"><a href="#maxConns">最大连接数</a></span>的值相匹配。 而有些FastCGI/LSAPI应用程序可以生成多个子进程以同时处理多个请求. 对于这种类型的应用,应将实例设置为 "1",并使用环境变量来控制应用可以生成多少个子进程。</p> <h4>Syntax</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extUser"><h3>Run As User<span class="ls-permlink"><a href="#extUser"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The external application will run as this specified user name. If not set, Virtual Host level settings will be inherited.<br/><br/> Default value: Not Set</p> <h4>Syntax</h4><p>Valid username.</p> <h4>See Also</h4><p class="ls-text-small">extGroup</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extGroup"><h3>以特定组运行<span class="ls-permlink"><a href="#extGroup"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>外部应用程序将作为此指定的组名运行。如果未设置,将继承虚拟主机级别的设置。<br/><br/> Default value: Not Set</p> <h4>Syntax</h4><p>Valid group name.</p> <h4>See Also</h4><p class="ls-text-small">extUser</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extUmask"><h3>umask<span class="ls-permlink"><a href="#extUmask"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets default umask for this external application's processes. See <span class="cmd"> man 2 umask </span> for details. The default value taken from the server-level <span class="tagl"><a href="ServSecurity_Help.html#umask">umask</a></span> setting.</p> <h4>Syntax</h4><p>value valid range [000]-[777].</p> <h4>See Also</h4><p class="ls-text-small">CGI <span class="tagl"><a href="ServSecurity_Help.html#umask">umask</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="runOnStartUp"><h3>开机自启<span class="ls-permlink"><a href="#runOnStartUp"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否在服务器启动时启动外部应用程序. 只适用于可以管理自己子进程的外部应用程序,并且<span class="tagl"><a href="#instances">实例数</a></span>值设置为"1"。<br/><br/> 如果启用,将在服务器启动时而不是运行时创建外部进程.<br/><br/> When selecting "Yes (Detached mode)", all detached process can be restarted at the Server level or Virtual Host level by touching the '.lsphp_restart.txt' file under the $SERVER_ROOT/admin/tmp/ or $VH_ROOT/ directory respectively.<br/><br/> Default value: Yes (Detached mode)</p> <h4>Syntax</h4><p>从单选框选择</p> <h4>提示</h4><p>[性能建议] 如果配置的外部进程有很大的启动开销,比如Rails,那么应该启用这个选项来减少首页响应时间。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extMaxIdleTime"><h3>最大空闲时间<span class="ls-permlink"><a href="#extMaxIdleTime"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定服务器停止外部应用之前的最大空闲时间,以释放空闲资源。 当设置为"-1"时,服务器将不会停止外部应用,除非在ProcessGroup模式下运行, 而在ProcessGroup模式下,闲置的外部应用将在30秒后停止.<br/><br/> 默认值为: <span class="val">-1{/val}</p> <h4>Syntax</h4><p>Integer number</p> <h4>提示</h4><p><span title="Performance" class="ls-icon-performance"></span> This feature is especially useful in the mass hosting environment where, in order to prevent files owned by one virtual host from being accessed by the external application scripts of another virtual host, many different applications are run at the same time in SetUID mode. Set this value low to prevent these external applications from idling unnecessarily.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAppPriority"><h3>优先级<span class="ls-permlink"><a href="#extAppPriority"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定外部应用的优先级,值的范围是<span class="val">-20</span>到<span class="val">20</span>. 一个小的数字意味着高优先级.外部应用进程的优先级不能比Web服务器高. 如果该优先级设置一个比服务器的优先级小的数字,则将使用服务器的优先级。</p> <h4>Syntax</h4><p>int</p> <h4>See Also</h4><p class="ls-text-small">Server <span class="tagl"><a href="ServGeneral_Help.html#serverPriority">优先级</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="memSoftLimit"><h3>内存软限制 (bytes)<span class="ls-permlink"><a href="#memSoftLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>以字节为单位指定服务器启动的外部应用进程或程序的内存占用限制。<br/><br/> 此限制的目的主要是为了防范软件缺陷或蓄意攻击造成的过度内存使用, 而不是限制正常使用。确保留有足够的内存,否则您的应用程序可能故障并 返回503错误。限制可以在服务器级别或独立的外部应用程序级别设置。如 果未在独立的外部应用程序级别设定限制,将使用服务器级别的限制。<br/><br/> 如果在两个级别都没有设置该限制,或者限制值设为<span class="val">0</span>,将使用操 作系统的默认设置。</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p>[注意] 不要过度调整这个限制。如果您的应用程序需要更多的内存, 这可能会导致503错误。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="memHardLimit"><h3>内存硬限制 (bytes)<span class="ls-permlink"><a href="#memHardLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>与<span class="tagl"><a href="#memSoftLimit">内存软限制 (bytes)</a></span>非常相同,但是在一个用户进程中,软限制 可以被放宽到硬限制的数值。硬限制可以在服务器级别或独立的外部应用程序级别设 置。如果未在独立的外部应用程序级别设定限制,将使用服务器级别的限制。<br/><br/> 如果在两个级别都没有设置该限制,或者限制值设为<span class="val">0</span>,将使用操 作系统的默认设置。</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p>[注意] 不要过度调整这个限制。如果您的应用程序需要更多的内存, 这可能会导致503错误。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="procSoftLimit"><h3>进程软限制<span class="ls-permlink"><a href="#procSoftLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>限制用户可以创建的进程总数.所有现有的进程都将被计算在这个限制之内,而不仅仅是要启动的新进程。<br/><br/> 该限制可以在服务器级别或单个外部应用级别进行设置.如果未在应用级别设置,则将使用服务器级别的限制. 如果该值为0或服务器级和应用级都没有设置,将使用操作系统的默认设置</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> PHP scripts can call for forking processes. The main purpose of this limit is as a last line of defense to prevent fork bombs and other attacks caused by PHP processes creating other processes.<br/><br/> Setting this setting too low can severely hurt functionality. The setting will thus be ignored below certain levels.<br/><br/> When <b>Run On Start Up</b> is set to "Yes (Daemon mode)", the actual process limit will be higher than this setting to make sure parent processes are not limited.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="procHardLimit"><h3>进程硬限制<span class="ls-permlink"><a href="#procHardLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>与<span class="tagl"><a href="#procSoftLimit">进程软限制</a></span>非常相同,但是,在用户进程中软限制 可以被放宽到硬限制的数值。硬限制可以在服务器级别或独立的外部应用程序级别设 置。如果未在独立的外部应用程序级别设定限制,将使用服务器级别的限制。 如果在两个级别都没有设置该限制,或者限制值设为<span class="val">0</span>,将使用操 作系统的默认设置。</p> <h4>Syntax</h4><p>整数</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> 版权所有.</footer> </div></div> </body> </html> ������������������������������������������������������������������������zh-CN/intro.html������������������������������������������������������������������������������������0000644�����������������00000021622�15027525531�0007514 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Introduction</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Introduction." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 3</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><span class="current"><a href="intro.html">Introduction</a></span></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="license.html">许可</a></div><div class="center"><a href="index.html">主页</a></div><div class="next"><a href="install.html">Installation</a> »</div></div> <h1>Introduction</h1> <h3>Overview</h3> <p>LiteSpeed Web Server is a high performance, secure, easy-to-use web server. It can handle thousands of concurrent connections with a small memory footprint. Its security features also make it much less vulnerable to various attacks. </p> <h3>Basic Features</h3> <ul> <li><p><strong>HTTP/1.1</strong></p> <ul> <li>Chunked transfer encoding</li> <li>Basic authentication (password file and LDAP backend)</li> <li>Entity tag</li> <li>Single and multiple ranges requests</li> <li>Static/dynamic response compression (gzip)</li> <li>Apache-compatible URL rewrite</li> <li>IPv6 support</li> <li>Apache mod_geoip compatible geotargeting support</li> </ul> </li> <li><p><strong>Dynamic Content Generation</strong></p> <p>LiteSpeed Web Server supports the following dynamic content generation methods:</p> <ul> <li>CGI/1.1 with suEXEC</li> <li>Fast CGI with suEXEC</li> <li>PHP with suEXEC through LiteSpeed PHP SAPI (top-of-the-line PHP performance with a mod_php equivalent feature set) <li>JSP/servlets (interface with AJP v1.3 compatible backend servlet engine)</li> <li>Proxy (interface with any web server/application server that supports HTTP protocol)</li> <li>Ruby on Rails with suEXEC through Ruby LSAPI module (best-in-class performance, easy deployment, supports dynamic spawning) </ul> </li> <li><p><strong>Virtual Hosting</strong></p> <ul> <li>Supports IP-based and name-based virtual hosting</li> <li>Virtual host templates make virtual hosting configuration easy</li> </ul> </li> </ul> <h3>Security</h3> <p>LiteSpeed Web Server provides the following security features:</p> <ul> <li><strong>SSL</strong> <p>Supports SSLv3/TLSv1. <i>This product includes software developed by the OpenSSL Project for use in the OpenSSL Toolkit (http://www.openssl.org/)</i></p></li> <li><strong>IP Level Throttling</strong> <p>Network bandwidth and request rate for a single IP address can be limited regardless of the number of connections. </p></li> <li><strong>Comprehensive Connection Accounting</strong> <p>Comprehensive control of concurrent connections allowed from a single IP address.</p></li> <li><strong>Access Control</strong> <p>Access control rules can be set at server, virtual host, and per-directory (context) levels.</p> </li> <li><strong>External Application Shield</strong> <p>LiteSpeed Web Server shields CGI, Fast CGI and servlet engines from talking directly to web clients to ensure maximum reliability and performance. </p></li> <li><strong>CGI Resources Consumption Limit</strong> <p>LiteSpeed Web Server prevents bad CGI scripts from overloading the server by limiting the system resources CGI applications can consume.</p></li> <li><strong>DoS Attack Prevention</strong> <p>LiteSpeed Web Server is much less vulnerable to HTTP Denial of Service(DoS) and Distributed Denial of Service (DDoS) attacks thanks to IP-level throttling, connection accounting, and its outstanding performance and scalability. </p></li> </ul> <h3>Reliability</h3> <p>LiteSpeed Web Server recovers from crashes instantly. LiteSpeed Web Server also runs completely in user space. Thus the server can easily switch between different versions without affecting the reliability of the operating system. </p> <p>CGI, Fast CGI and Servlet engine run in their standalone processes, the reliability of web server is not affected by the quality of third party software.</p> <h3>User Friendly</h3> <ul> <li>No need to build the executable yourself.</li> <li>Easy to install.</li> <li>Easy to control and configure through the WebAdmin interface.</li> <li>Sets up PHP and PHP accelerators automatically.</li> <li>Applies most changes without restarting the server.</li> </ul> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> 版权所有.</footer> </div></div> </body> </html> ��������������������������������������������������������������������������������������������������������������zh-CN/VHSSL_Help.html�������������������������������������������������������������������������������0000644�����������������00000054750�15027525531�0010240 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - 虚拟主机SSL</title> <meta name="description" content="OpenLiteSpeed Users' Manual - 虚拟主机SSL." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 3</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><span class="current"><a href="VHSSL_Help.html">Virtual Host SSL</a></span></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="VHSecurity_Help.html">虚拟主机安全</a></div><div class="center"><a href="config.html">Configuration</a></div><div class="next"><a href="Rewrite_Help.html">重写帮助</a> »</div></div> <h1>虚拟主机SSL</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header><a href="#sslCert">SSL私钥和证书</a></header><p> <a href="#keyFile">私钥文件</a> | <a href="#certFile">证书文件</a> | <a href="#certChain">证书链</a> | <a href="#CACertPath">CA证书路径</a> | <a href="#CACertFile">CA证书文件</a></p></section> <section class="toc-row"><header><a href="#sslProtocolSetting">SSL协议</a></header><p> <a href="#ciphers">密码套件</a> | <a href="#enableECDHE">启用ECDH密钥交换</a> | <a href="#enableDHE">启用DH密钥交换</a> | <a href="#DHParam">DH参数</a></p></section> <section class="toc-row"><header>安全与功能</header><p> <a href="#renegProtection">SSL密钥重新协商保护</a> | <a href="#sslSessionCache">启用SSL会话缓存</a> | <a href="#sslSessionTickets">启用会话记录单</a> | <a href="#enableSpdy">启用 SPDY/HTTP2/HTTP3</a> | <a href="#vhEnableQuic">Enable HTTP3/QUIC</a></p></section> <section class="toc-row"><header><a href="#sslOCSP">OCSP装订</a></header><p> <a href="#enableStapling">启用 OCSP 装订</a> | <a href="#ocspRespMaxAge">OCSP响应最大有效时间(秒)</a> | <a href="#ocspResponder">OCSP响应服务器</a> | <a href="#ocspCACerts">OCSP CA证书</a></p></section> <section class="toc-row"><header>Client Verification</header><p> <a href="#clientVerify">Client Verification</a> | <a href="#verifyDepth">验证深度</a> | <a href="#crlPath">客户端吊销路径</a> | <a href="#crlFile">客户端吊销文件</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="sslCert"><h3>SSL私钥和证书<span class="ls-permlink"><a href="#sslCert"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>每个SSL侦听器都需要成对的SSL私钥和SSL证书。 多个SSL侦听器可以共享相同的密钥和证书。<br/> 您可以使用SSL软件包自行生成SSL私钥, 例如OpenSSL。 SSL证书也可以从授权证书颁发机构(如VeriSign或Thawte)购买。 您也可以自己签署证书。 自签名证书将不受Web浏览器的信任,并且不应在公共网站上使用。 但是,自签名证书足以供内部使用,例如 用于加密到LiteSpeed Web服务器的WebAdmin控制台的流量。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="keyFile"><h3>私钥文件<span class="ls-permlink"><a href="#keyFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>SSL私钥文件的文件名。 密钥文件不应被加密。</p> <h4>Syntax</h4><p>文件名可以是绝对路径,也可以是相对于$SERVER_ROOT的相对路径。</p> <h4>提示</h4><p>[安全建议] 私钥文件应放在一个安全的目录中,该目录应 允许对运行服务器的用户具有只读的访问权限。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="certFile"><h3>证书文件<span class="ls-permlink"><a href="#certFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>SSL证书文件的文件名。</p> <h4>Syntax</h4><p>文件名可以是绝对路径,也可以是相对于$SERVER_ROOT的相对路径。</p> <h4>提示</h4><p>[安全建议] 私钥文件应放在一个安全的目录中,该目录应 允许对运行服务器的用户具有只读的访问权限。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="certChain"><h3>证书链<span class="ls-permlink"><a href="#certChain"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定证书是否为证书链。 存储证书链的文件必须为PEM格式, 并且证书必须按照从最低级别(实际的客户端或服务器证书)到最高级别(Root)CA的链接顺序。</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="CACertPath"><h3>CA证书路径<span class="ls-permlink"><a href="#CACertPath"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定证书颁发机构(CA)证书的目录。 这些证书用于客户端证书身份验证和构建服务器证书链,除了服务器证书之外,这些证书还将发送到浏览器。</p> <h4>Syntax</h4><p>path</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="CACertFile"><h3>CA证书文件<span class="ls-permlink"><a href="#CACertFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定包含证书颁发机构(CA)证书的证书链文件。 按照优先顺序,此文件只是PEM编码的证书文件的串联。 这可以用作替代或 除了<span class="tagl"><a href="#CACertPath">CA证书路径</a></span>。 这些证书用于客户端证书身份验证和构建服务器证书链,除了服务器证书之外,这些证书还将发送到浏览器。</p> <h4>Syntax</h4><p>文件名可以是绝对路径,也可以是相对于$SERVER_ROOT的相对路径。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslProtocolSetting"><h3>SSL协议<span class="ls-permlink"><a href="#sslProtocolSetting"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>自定义侦听器接受的SSL协议。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="ciphers"><h3>密码套件<span class="ls-permlink"><a href="#ciphers"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the cipher suite to be used when negotiating the SSL handshake. LSWS supports cipher suites implemented in SSL v3.0, TLS v1.0, TLS v1.2, and TLS v1.3.</p> <h4>Syntax</h4><p>Colon-separated string of cipher specifications.</p> <h4>例子</h4><div class="ls-example">ECDHE-RSA-AES128-SHA256:RC4:HIGH:!MD5:!aNULL:!EDH</div><h4>提示</h4><p><span title="Security" class="ls-icon-security"></span> We recommend leaving this field blank to use our default cipher which follows SSL cipher best practices.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableECDHE"><h3>启用ECDH密钥交换<span class="ls-permlink"><a href="#enableECDHE"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>允许使用Diffie-Hellman密钥交换进行进一步的SSL加密。</p> <h4>Syntax</h4><p>从单选框选择</p> <h4>提示</h4><p>[安全建议] ECDH密钥交换比仅使用RSA密钥更安全。 ECDH和DH密钥交换安全性相同。<br/><br/> [性能] 启用ECDH密钥交换会增加CPU负载,并且比仅使用RSA密钥要慢。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableDHE"><h3>启用DH密钥交换<span class="ls-permlink"><a href="#enableDHE"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>允许使用Diffie-Hellman密钥交换进行进一步的SSL加密。</p> <h4>Syntax</h4><p>从单选框选择</p> <h4>提示</h4><p>[安全建议] DH密钥交换比仅使用RSA密钥更安全。 ECDH和DH密钥安全性相同。<br/><br/> [x性能] 启用DH密钥交换将增加CPU负载,并且比ECDH密钥交换和RSA都慢。 如果可用,则首选ECDH密钥交换。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="DHParam"><h3>DH参数<span class="ls-permlink"><a href="#DHParam"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定DH密钥交换所需的Diffie-Hellman参数文件的位置。</p> <h4>Syntax</h4><p>文件名可以是绝对路径,也可以是相对于$SERVER_ROOT的相对路径。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="renegProtection"><h3>SSL密钥重新协商保护<span class="ls-permlink"><a href="#renegProtection"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否启用SSL密钥重新协商保护以 防御基于SSL握手的攻击。 默认值为“是”。</p> <h4>Syntax</h4><p>从单选框选择</p> <h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> 可以在侦听器和虚拟主机级别启用此设置。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslSessionCache"><h3>启用SSL会话缓存<span class="ls-permlink"><a href="#sslSessionCache"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>使用OpenSSL的默认设置启用会话ID缓存。 服务器级别设置必须设置为“是”才能使虚拟主机设置生效。<br/> 默认值:<br/> <b>服务器级别:</b> Yes<br/> <b>虚拟主机级别:</b> Yes</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslSessionTickets"><h3>启用会话记录单<span class="ls-permlink"><a href="#sslSessionTickets"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>使用OpenSSL的默认会话票证设置启用会话记录单。 服务器级别设置必须设置为“是”才能使虚拟主机设置生效。<br/> 默认值:<br/> <b>服务器级别:</b> Yes<br/> <b>虚拟主机级别:</b> Yes</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableSpdy"><h3>启用 SPDY/HTTP2/HTTP3<span class="ls-permlink"><a href="#enableSpdy"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>有选择地启用HTTP/3,HTTP/2和SPDY HTTP网络协议。<br/><br/> 如果要禁用SPDY,HTTP/2和HTTP3,请选中“无”,并取消选中所有其他框。<br/> Default value: All enabled</p> <h4>Syntax</h4><p>从复选框中选择</p> <h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> 可以在侦听器和虚拟主机级别上设置此设置。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vhEnableQuic"><h3>Enable HTTP3/QUIC<span class="ls-permlink"><a href="#vhEnableQuic"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Enables the HTTP3/QUIC network protocol for this virtual host. For this setting to take effect, both <span class="tagl"><a href="ServTuning_Help.html#quicEnable">启用HTTP3/QUIC</a></span> and <span class="tagl"><a href="Listeners_SSL_Help.html#allowQuic">打开HTTP3/QUIC (UDP) 端口</a></span> must also be set to <span class="val">Yes</span> at the server and listener levels respectively. Default value is <span class="val">Yes</span>.</p> <h4>Syntax</h4><p>从单选框选择</p> <h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> When this setting is set to <span class="val">No</span>, the HTTP3/QUIC advertisement will no longer be sent. If a browser still contains cached HTTP3/QUIC information and HTTP3/QUIC is still enabled at the server and listener levels, an HTTP3/QUIC connection will continue to be used until this information is no longer cached or an HTTP3/QUIC protocol error is encountered.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslOCSP"><h3>OCSP装订<span class="ls-permlink"><a href="#sslOCSP"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>在线证书状态协议(OCSP)是更加有效的检查数字证书是否有效的方式。 它通过与另一台服务器(OCSP响应服务器)通信,以获取证书有效的验证,而不是通过证书吊销列表(CRL)进行检查。<br/><br/> OCSP装订是对该协议的进一步改进,允许服务器以固定的时间间隔而不是每次请求证书时与OCSP响应程序进行检查。 有关更多详细信息,请参见<a href=" https://zh.wikipedia.org/wiki/%E5%9C%A8%E7%BA%BF%E8%AF%81%E4%B9%A6%E7%8A%B6%E6%80%81%E5%8D%8F%E8%AE%AE " target="_blank" rel="noopener noreferrer"> OCSP Wikipedia页面 </a>。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableStapling"><h3>启用 OCSP 装订<span class="ls-permlink"><a href="#enableStapling"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>确定是否启用OCSP装订,这是一种更有效的验证公钥证书的方式。</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="ocspRespMaxAge"><h3>OCSP响应最大有效时间(秒)<span class="ls-permlink"><a href="#ocspRespMaxAge"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>此选项设置OCSP响应的最大有效时间。 如果OCSP响应早于该最大使用期限,则服务器将与OCSP响应服务器联系以获取新的响应。 默认值为<span class="val">86400 </span>。 通过将此值设置为<span class="val">-1</span>,可以关闭最大有效时间。</p> <h4>Syntax</h4><p>Integer of seconds</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="ocspResponder"><h3>OCSP响应服务器<span class="ls-permlink"><a href="#ocspResponder"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定要使用的OCSP响应服务器的URL。 如果未设置,则服务器将尝试联系OCSP响应服务器 在证书颁发机构的颁发者证书中有详细说明。 某些颁发者证书可能未指定OCSP服务器URL。</p> <h4>Syntax</h4><p>URL starting with <span class="val">http://</span></p> <h4>例子</h4><div class="ls-example"><span class="val">http://rapidssl-ocsp.geotrust.com </span></div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="ocspCACerts"><h3>OCSP CA证书<span class="ls-permlink"><a href="#ocspCACerts"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定存储OCSP证书颁发机构(CA)证书的文件的位置。 这些证书用于检查OCSP响应服务器的响应(并确保这些响应不被欺骗或以其他方式被破坏)。 该文件应包含整个证书链。 如果该文件不包含根证书,则LSWS无需将根证书添加到文件中就应该能够在系统目录中找到该根证书, 但是,如果此验证失败,则应尝试将根证书添加到此文件中。<br/><br/> This setting is optional. If this setting is not set, the server will automatically check <span class="tagl"><a href="#CACertFile">CA证书文件</a></span>.</p> <h4>Syntax</h4><p>文件名可以是绝对路径,也可以是相对于$SERVER_ROOT的相对路径。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="clientVerify"><h3>Client Verification<span class="ls-permlink"><a href="#clientVerify"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p> Specifies the type of client certifcate authentication. Available types are: <ul> <li><b>None:</b> No client certificate is required.</li> <li><b>Optional:</b> Client certificate is optional.</li> <li><b>Require:</b> The client must has valid certificate.</li> <li><b>Optional_no_ca:</b> Same as optional.</li> </ul> The default is "None".</p> <h4>Syntax</h4><p>从列表中选择</p> <h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> "None" or "Require" are recommended.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="verifyDepth"><h3>验证深度<span class="ls-permlink"><a href="#verifyDepth"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p> Specifies how deeply a certificate should be verified before determining that the client does not have a valid certificate. The default is "1".</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="crlPath"><h3>客户端吊销路径<span class="ls-permlink"><a href="#crlPath"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p> Specifies the directory containing PEM-encoded CA CRL files for revoked client certificates. The files in this directory have to be PEM-encoded. These files are accessed through hash filenames, hash-value.rN. Please refer to openSSL or Apache mod_ssl documentation regarding creating the hash filename.</p> <h4>Syntax</h4><p>path</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="crlFile"><h3>客户端吊销文件<span class="ls-permlink"><a href="#crlFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p> Specifies the file containing PEM-encoded CA CRL files enumerating revoked client certificates. This can be used as an alternative or in addition to <span class="tagl"><a href="#crlPath">客户端吊销路径</a></span>.</p> <h4>Syntax</h4><p>文件名可以是绝对路径,也可以是相对于$SERVER_ROOT的相对路径。</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> 版权所有.</footer> </div></div> </body> </html> ������������������������zh-CN/admin.html������������������������������������������������������������������������������������0000644�����������������00000016632�15027525531�0007456 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Administration</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Administration." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 3</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <span class="current"><a href="admin.html">Administration</a></span> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="install.html">Installation</a></div><div class="center"><a href="index.html">主页</a></div><div class="next"><a href="security.html">Security</a> »</div></div> <h1>Administration</h1> <p>可以通过三种方式控制LiteSpeed Web服务器:通过WebAdmin控制台,从命令行或通过发送信号进行控制.</p> <ol> <li><h3>通过WebAdmin控制台:</h3> <p>WebAdmin控制台是一个集中式控制面板,用于控制和配置所有LiteSpeed Web服务器设置.</p> <p>登录到WebAdmin控制台 (默认: http://[您的服务器IP]:7080/). 选择“服务管理”,您将找到一个包含执行常见任务的控制面板的链接: 重新启动服务器,重新加载服务器配置,查看日志,实时监控, 虚拟主机重新加载,以及虚拟主机启用/禁用。</p> <p><strong>有关如何通过WebAdmin控制台控制LiteSpeed Web Server的更多信息 - <a href="ServerStat_Help.html">服务管理</a></strong></p> <p>要更改WebAdmin界面的登录名和密码,请从shell运行以下命令:<br> <span class="cmd">[your install dir]/admin/misc/admpass.sh</span> </p> </li> <li><h3>通过命令行界面:</h3> <p>假设Web服务器安装在 /usr/local/lsws.</p> <p>使用 <span class="tag">lswsctrl</span> /usr/local/lsws/bin/中的控制脚本. </p> <p>启动Web服务器:<br> <span class="cmd">/usr/local/lsws/bin/lswsctrl start</span> </p> <p>停止Web服务器:<br> <span class="cmd">/usr/local/lsws/bin/lswsctrl stop</span> </p> <p>重启Web服务器:<br> <span class="cmd">/usr/local/lsws/bin/lswsctrl restart</span> </p> <p>重新加载配置:<br> <span class="cmd">/usr/local/lsws/bin/lswsctrl reload</span> </p> </li> <li><h3>通过发送信号:</h3> <p>您可以通过向服务器进程发送信号来停止服务器进程,重新加载配置。</p> <p>首先,您需要知道服务器的进程ID,可以通过PID文件或通过运行 "ps" 命令.</p> <p>读取PID文件:<br> <span class="cmd">cat /tmp/lshttpd/lshttpd.pid</span></p> <p>通过使用 "ps" 命令:<br> FreeBSD: <span class="cmd">ps -x | grep lshttpd</span><br> Others: <span class="cmd">ps -ef | grep lshttpd</span><br> <br> 如果列出了多个进程,请使用PPID等于1的进程。 </p> <p>停止Web服务器: <span class="cmd">kill XXXX</span> (XXXX 是PID)<br> 如果服务器没有停止使用: <span class="cmd">kill -9 XXXX</span> </p> <p>要重新加载配置,请使用: <span class="cmd">kill -HUP XXXX</span> </p> </li> </ol> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> 版权所有.</footer> </div></div> </body> </html> ������������������������������������������������������������������������������������������������������zh-CN/ServSecurity_Help.html������������������������������������������������������������������������0000644�����������������00000145034�15027525531�0012004 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - 服务器安全</title> <meta name="description" content="OpenLiteSpeed Users' Manual - 服务器安全." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 3</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><span class="current"><a href="ServSecurity_Help.html">Server Security</a></span></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="ServTuning_Help.html">服务器调节</a></div><div class="center"><a href="config.html">Configuration</a></div><div class="next"><a href="ExtApp_Help.html">外部应用</a> »</div></div> <h1>服务器安全</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header>File Access</header><p> <a href="#followSymbolLink">跟随符号链接</a> | <a href="#checkSymbolLink">检查符号链接</a> | <a href="#forceStrictOwnership">强制严格属主检查</a> | <a href="#requiredPermissionMask">必需的权限掩码</a> | <a href="#restrictedPermissionMask">限制权限掩码</a> | <a href="#restrictedScriptPermissionMask">脚本限制权限掩码</a> | <a href="#restrictedDirPermissionMask">脚本目录限制权限掩码</a></p></section> <section class="toc-row"><header><a href="#perClientConnLimit">客户端流量限制</a></header><p> <a href="#staticReqPerSec">静态请求/秒</a> | <a href="#dynReqPerSec">动态请求/秒</a> | <a href="#outBandwidth">出口带宽 (bytes/sec)</a> | <a href="#inBandwidth">入口带宽 (bytes/sec)</a> | <a href="#softLimit">连接软限制</a> | <a href="#hardLimit">连接硬限制</a> | <a href="#blockBadReq">封锁坏请求</a> | <a href="#gracePeriod">宽限期(秒)</a> | <a href="#banPeriod">禁止期(秒)</a></p></section> <section class="toc-row"><header><a href="#cgiResource">CGI Settings</a></header><p> <a href="#cgidSock">CGI守护进程套接字</a> | <a href="#maxCGIInstances">最大CGI实例数量</a> | <a href="#minUID">最小的UID</a> | <a href="#minGID">最小的GID</a> | <a href="#forceGID">强制GID</a> | <a href="#umask">umask</a> | <a href="#CGIPriority">CGI优先级</a> | <a href="#CPUSoftLimit">CPU软限制(秒)</a> | <a href="#CPUHardLimit">CPU硬限制</a> | <a href="#memSoftLimit">内存软限制 (bytes)</a> | <a href="#memHardLimit">内存硬限制 (bytes)</a> | <a href="#procSoftLimit">进程软限制</a> | <a href="#procHardLimit">进程硬限制</a> | <a href="#cgroups">cgroups</a></p></section> <section class="toc-row"><header><a href="#lsrecaptcha">reCAPTCHA保护</a></header><p> <a href="#enableRecaptcha">启用reCAPTCHA</a> | <a href="#recaptchaSiteKey">网站密匙</a> | <a href="#recaptchaSecretKey">密匙</a> | <a href="#recaptchaType">reCAPTCHA类型</a> | <a href="#recaptchaMaxTries">最大尝试次数</a> | <a href="#recaptchaAllowedRobotHits">允许的机器人点击</a> | <a href="#recaptchaBotWhiteList">Bot白名单</a> | <a href="#recaptchaRegConnLimit">连接限制</a> | <a href="#recaptchaSslConnLimit">SSL连接限制</a></p></section> <section class="toc-row"><header>Containers</header><p> <a href="#bubbleWrap">Bubblewrap Container</a> | <a href="#bubbleWrapCmd">Bubblewrap Command</a> | <a href="#namespace">Namespace Container</a> | <a href="#namespaceConf">Namespace Template File</a></p></section> <section class="toc-row"><header>Access Denied Directories</header><p> <a href="#accessDenyDir">拒绝访问的目录</a></p></section> <section class="toc-row"><header><a href="#accessControl">登入限制</a></header><p> <a href="#accessControl_allow">允许列表</a> | <a href="#accessControl_deny">拒绝列表</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="followSymbolLink"><h3>跟随符号链接<span class="ls-permlink"><a href="#followSymbolLink"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定服务静态文件时跟踪符号链接的服务器级别默认设置。<br/><br/> 选项有<span class="val">Yes</span>、<span class="val">If Owner Match</span>和<span class="val">No</span>。<br/><br/> <span class="val">Yes</span>设置服务器始终跟踪符号链接。 <span class="val">If Owner Match</span>设置服务器只有在链接和目标属主一致时才跟踪符号链接。 <span class="val">No</span>表示服务器永远不会跟踪符号链接。 该设置可以在虚拟主机配置中覆盖,但不能通过.htaccess文件覆盖。</p> <h4>Syntax</h4><p>从列表中选择</p> <h4>提示</h4><p>[性能和安全建议] 要获得最佳安全性,选择{VAL}No</span>或<span class="val">If Owner Match</span>。 要获得最佳性能,选择{VAL}Yes</span>。</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#checkSymbolLink">检查符号链接</a></span>.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="checkSymbolLink"><h3>检查符号链接<span class="ls-permlink"><a href="#checkSymbolLink"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定在启用了<span class="tagl"><a href="#followSymbolLink">跟随符号链接</a></span>时,是否检查符号链接在不在<span class="tagl"><a href="#accessDenyDir">拒绝访问的目录</a></span>中。 如果启用检查,将检查网址对应的真正的资源路径是否在配置的禁止访问目录中。 如果在禁止访问目录中,访问将被禁止。</p> <h4>Syntax</h4><p>从单选框选择</p> <h4>提示</h4><p>[性能和安全] 要获得最佳的安全性,启用该选项。要获得最佳性能,禁用该选项。</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#followSymbolLink">跟随符号链接</a></span>, <span class="tagl"><a href="#accessDenyDir">拒绝访问的目录</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="forceStrictOwnership"><h3>强制严格属主检查<span class="ls-permlink"><a href="#forceStrictOwnership"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否执行严格的文件所有权检查。 如果启用,Web服务器将检查正在服务的文件的所有者与虚拟主机的所有者是否相同。 如果不同,将返回403拒绝访问错误。 该功能默认是关闭的。</p> <h4>Syntax</h4><p>从单选框选择</p> <h4>提示</h4><p>[安全建议] 对于共享主机,启用此检查以得到更好的安全性。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="requiredPermissionMask"><h3>必需的权限掩码<span class="ls-permlink"><a href="#requiredPermissionMask"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>为静态文件指定必需的权限掩码。 例如,如果只允许所有人都可读的文件可以被输出,将该值设置为<span class="val">0004</span>。 用<span class="cmd">man 2 stat</span>命令了解所有可选值。</p> <h4>Syntax</h4><p>octal numbers</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#restrictedPermissionMask">限制权限掩码</a></span>.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="restrictedPermissionMask"><h3>限制权限掩码<span class="ls-permlink"><a href="#restrictedPermissionMask"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>为不能输出的静态文件指定限制权限掩码。 例如,要禁止服务可执行文件,将掩码设置为<span class="val">0111</span>。<br/><br/> 用<span class="cmd">man 2 stat</span>命令了解所有可选值。</p> <h4>Syntax</h4><p>octal numbers</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#requiredPermissionMask">必需的权限掩码</a></span>.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="restrictedScriptPermissionMask"><h3>脚本限制权限掩码<span class="ls-permlink"><a href="#restrictedScriptPermissionMask"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>为不能服务的脚本文件指定限制权限掩码。 例如,要禁止服务属组可写和全局可写的PHP脚本, 设置掩码为<span class="val">022</span>。默认值是<span class="val">000</span>。<br/><br/> 用<span class="cmd">man 2 stat</span>命令了解所有可选值。</p> <h4>Syntax</h4><p>octal numbers</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#restrictedDirPermissionMask">脚本目录限制权限掩码</a></span>.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="restrictedDirPermissionMask"><h3>脚本目录限制权限掩码<span class="ls-permlink"><a href="#restrictedDirPermissionMask"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the restricted permission mask of parent directories of script files that the server will not serve. For example, to prohibit serving PHP scripts in a directory that is group and world writable, set the mask to <span class="val">022</span>. Default value is <span class="val">000</span>. This option can be used to prevent serving scripts under a directory of uploaded files.<br/><br/> See <span class="cmd">man 2 stat</span> for all values.</p> <h4>Syntax</h4><p>octal numbers</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#restrictedScriptPermissionMask">脚本限制权限掩码</a></span>.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="perClientConnLimit"><h3>客户端流量限制<span class="ls-permlink"><a href="#perClientConnLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>这些是基于客户端IP的连接控制设置。 这些设置有助于缓解DoS(拒绝服务)和DDoS(分布式拒绝服务)攻击。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="staticReqPerSec"><h3>静态请求/秒<span class="ls-permlink"><a href="#staticReqPerSec"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定每秒可处理的来自单个IP的静态内容请求数量(无论与该IP之间建立了多少个连接)。<br/><br/> 当达到此限制时,所有后来的请求将被延滞到下一秒。 对于动态内容请求的限制与本限制无关。 每个客户端的请求限制可以在服务器或虚拟主机级别设置。 虚拟主机级别的设置将覆盖服务器级别的设置。</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p>[安全] 受信任的IP或子网不受影响。</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#dynReqPerSec">动态请求/秒</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="dynReqPerSec"><h3>动态请求/秒<span class="ls-permlink"><a href="#dynReqPerSec"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定每秒可处理的来自单个IP的动态请求的数量(无论与该IP之间建立了多少个连接) 当达到此限制时,所有后来的请求将被延滞到下一秒。<br/><br/> 静态内容的请求限制与此限制无关。 可以在服务器或虚拟主机级别设置每个客户端请求的限制。 虚拟主机级别的设置将覆盖服务器级别的设置。</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p>[安全] 受信任的IP或子网不受影响。</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#staticReqPerSec">静态请求/秒</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="outBandwidth"><h3>出口带宽 (bytes/sec)<span class="ls-permlink"><a href="#outBandwidth"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定对单个IP地址允许的最大传出吞吐量(无论与该IP之间建立了多少个连接)。 为提高效率,真正的带宽可能最终会略高于设定值。 带宽按4KB为单位分配。设定值为<span class="val">0</span>可禁用限制。 每个客户端的带宽限制(字节/秒)可以在服务器或虚拟主机级别设置。 虚拟主机级别的设置将覆盖服务器级别的设置。</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p>[性能建议] 按8KB单位设置带宽可获得更好的性能。<br/> [安全建议] 受信任的IP或子网不受影响。</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#inBandwidth">入口带宽 (bytes/sec)</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="inBandwidth"><h3>入口带宽 (bytes/sec)<span class="ls-permlink"><a href="#inBandwidth"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定对单个IP地址允许的最大传入吞吐量(无论与该IP之间建立了多少个连接)。 为提高效率,真正的带宽可能最终会略高于设定值。 带宽是按1KB单位分配。设定值为<span class="val">0</span>可禁用限制。 每个客户端的带宽限制(字节/秒)可以在服务器或虚拟主机级别设置。 虚拟主机级别的设置将覆盖服务器级别的设置。</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p>[安全] 受信任的IP或子网不受影响。</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#outBandwidth">出口带宽 (bytes/sec)</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="softLimit"><h3>连接软限制<span class="ls-permlink"><a href="#softLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定来自单个IP的并发连接的软限制。 并发连接数低于<span class="tagl"><a href="#hardLimit">连接硬限制</a></span>时,此软限制可以在<span class="tagl"><a href="#gracePeriod">宽限期(秒)</a></span>期间临时超过, 但Keep-Alive连接将被尽快断开,直到连接数低于软限制。 如果<span class="tagl"><a href="#gracePeriod">宽限期(秒)</a></span>之后,连接数仍然超过软限制,相应的IP将被封锁 <span class="tagl"><a href="#banPeriod">禁止期(秒)</a></span>所设置的时长。<br/> 例如,如果页面包含许多小图像,浏览器可能会尝试同时建立许多连接,尤其是HTTP/1.0客户端。你应当在短时间内允许这些连接。<br/><br/> HTTP/1.1客户端还可能建立多个连接,以加快下载,另外SSL需要为非SSL连接建立单独的连接。确保限制设置正确, 以免影响正常服务。建议限制在<span class="val">5</span>与<span class="val">10</span>之间。</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> 安全建议] 一个较低的数字将使得服务器可以服务更多独立的客户。<br/> [安全建议] 受信任的IP或子网不受影响。<br/> [性能建议] 使用大量并发客户端进行性能评测时,请设置一个较高的值。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="hardLimit"><h3>连接硬限制<span class="ls-permlink"><a href="#hardLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定来自单个IP的并发连接的硬限制。 此限制是永远执行的,客户端将永远无法超过这个限制。 HTTP/1.0客户端通常会尝试建立尽可能多的连接,因为它们需要同时下载嵌入的内容。此限制应设置得足够高,以使HTTP/1.0客户端仍然可以访问相应的网站。 使用<span class="tagl"><a href="#softLimit">连接软限制</a></span>设置期望的连接限制。<br/><br/> 建议根据你的网页内容和流量负载,限制在<span class="val">20</span>与<span class="val">50</span>之间。</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p>[安全] 一个较低的数字将使得服务器可以服务更多独立的客户。<br/> [安全] 受信任的IP或子网不受影响。<br/> [性能] 使用大量并发客户端进行基准测试时,设置一个较高的值。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="blockBadReq"><h3>封锁坏请求<span class="ls-permlink"><a href="#blockBadReq"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>封锁持续发送坏HTTP请求的IP<span class="tagl"><a href="#banPeriod">禁止期(秒)</a></span>所设置的时长。默认为{VAL}Yes</span>。 这有助于封锁反复发送垃圾请求的僵尸网络攻击。</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="gracePeriod"><h3>宽限期(秒)<span class="ls-permlink"><a href="#gracePeriod"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定来自一个IP的连接数超过<span class="tagl"><a href="#softLimit">连接软限制</a></span>之后, 多长时间之内可以继续接受新连接。在此期间,如果总连接数仍然 低于<span class="tagl"><a href="#hardLimit">连接硬限制</a></span>,将继续接受新连接。之后,如果连接数 仍然高于<span class="tagl"><a href="#softLimit">连接软限制</a></span>,相应的IP将被封锁<span class="tagl"><a href="#banPeriod">禁止期(秒)</a></span>里设置的时长。</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p>[性能与安全建议] 设置为足够大的数量,以便下载完整网页, 但也要足够低以防范蓄意攻击。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="banPeriod"><h3>禁止期(秒)<span class="ls-permlink"><a href="#banPeriod"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定在<span class="tagl"><a href="#gracePeriod">宽限期(秒)</a></span>之后,如果连接数仍然高于 <span class="tagl"><a href="#softLimit">连接软限制</a></span>,来自该IP的新连接将被拒绝多长时间。如果IP 经常被屏蔽,我们建议您延长禁止期以更强硬地惩罚滥用.</p> <h4>Syntax</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="cgiResource"><h3>CGI Settings<span class="ls-permlink"><a href="#cgiResource"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The following settings control CGI processes. Memory and process limits also serve as the default for other external applications if limits have not been set explicitly for those applications.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="cgidSock"><h3>CGI守护进程套接字<span class="ls-permlink"><a href="#cgidSock"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>用于与CGI守护进程沟通的唯一套接字地址。为了 最佳性能和安全性,LiteSpeed服务器使用一个独立的CGI 守护进程来产生CGI脚本的子进程。 默认套接字是<span class="val">uds://$SERVER_ROOT/admin/lscgid/.cgid.sock</span>。 如果你需要放置在另一个位置,在这里指定一个Unix域套接字。</p> <h4>Syntax</h4><p>UDS://path</p> <h4>例子</h4><div class="ls-example">UDS://tmp/lshttpd/cgid.sock</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxCGIInstances"><h3>最大CGI实例数量<span class="ls-permlink"><a href="#maxCGIInstances"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>S指定服务器可以启动的CGI进程最大并发数量。 对于每个对CGI脚本的请求,服务器需要启动一个独立的CGI进程。 在Unix系统中,并发进程的数量是有限的。过多的并发进程会降 低整个系统的性能,也是一种进行拒绝服务攻击的方法。 LiteSpeed服务器将对CGI脚本的请求放入管道队列,限制并发 CGI进程数量,以确保最优性能和可靠性。 硬限制为<span class="val">2000</span>。</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p>[安全和性能建议] 更高的数量并不一定转化为更快的性能。 在大多数情况下,更低的数量提供更好的性能和安全性。更高的数量 只在CGI处理过程中读写延迟过高时有帮助。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="minUID"><h3>最小的UID<span class="ls-permlink"><a href="#minUID"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定外部应用程序的最小用户ID。 如果用户ID比这里指定的值更低。其外部脚本的执行将被拒绝。 如果的LiteSpeed Web服务器由“Root”用户启动,它可以在“suEXEC” 模式运行外部应用程序,类似Apache(可以切换到与Web服务器不同的用户/组ID)。</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p><span title="Security" class="ls-icon-security"></span> Set it high enough to exclude all system/privileged users.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="minGID"><h3>最小的GID<span class="ls-permlink"><a href="#minGID"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定外部应用程序的最小组ID。 如果组ID比这里指定的值更小,其外部脚本的执行将被拒绝。 如果的LiteSpeed Web服务器是由“Root”用户启动,它可以在“suEXEC” 模式运行外部应用程序,类似Apache(可以切换到与Web服务器不同的用户/组ID)。</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p>[安全] 设置足够高的值以排除所有系统用户所属的组。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="forceGID"><h3>强制GID<span class="ls-permlink"><a href="#forceGID"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定一组ID,以用于所有在suEXEC模式下启动的外部应用程序。 当设置为非零值时,所有suEXEC的外部应用程序(CGI、FastCGI、 LSAPI)都将使用该组ID。这可以用来防止外部应用程序访问其他用 户拥有的文件。<br/><br/> 例如,在共享主机环境,LiteSpeed以“www-data”用户、“www-data”组 身份运行。每个文件根目录是由用户帐户所有,属组为“www-data”,权限 为0750。如果强制GID被设置为“nogroup”(或“www-data”之外的任何一 个组),所有suEXEC外部应用程序都将以特定用户身份运行,但属组为 “nogroup”。这些外部应用程序的进程依然能够访问属于相应用户的文件( 因为他们的用户ID),但没有组权限访问其他人的文件。另一方面,服务器 仍然可以服务在任何用户文件根目录下的文件(因为它的组ID)。</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p>[安全建议] 设置足够高的值以排除所有系统用户所在的组。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="umask"><h3>umask<span class="ls-permlink"><a href="#umask"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>设置CGI进程默认的umask。 通过<span class="cmd"> man 2 umask</span>命令了解详细信息。这也可作为外部应用程序<span class="tagl"><a href="ExtApp_Help.html#extUmask">umask</a></span>的默认值。</p> <h4>Syntax</h4><p>数值有效范围为[000] - [777]</p> <h4>See Also</h4><p class="ls-text-small">ExtApp <span class="tagl"><a href="ExtApp_Help.html#extUmask">umask</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="CGIPriority"><h3>CGI优先级<span class="ls-permlink"><a href="#CGIPriority"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定外部应用程序进程的优先级。数值范围从<span class="val">-20</span>到<span class="val">20</span>。数值越小,优先级越高。<br/><br/> CGI进程不能拥有比Web服务器更高的优先级。如果这个优先级数值被设置为低于 服务器的优先级数值,则将使用服务器优先级作为替代。</p> <h4>Syntax</h4><p>int</p> <h4>See Also</h4><p class="ls-text-small">Server <span class="tagl"><a href="ServGeneral_Help.html#serverPriority">优先级</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="CPUSoftLimit"><h3>CPU软限制(秒)<span class="ls-permlink"><a href="#CPUSoftLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>以秒为单位,指定CGI进程的CPU占用时间限制。当进程达到 软限制时,将收到通知信号。如果没有设置该限制,或者限制设为<span class="val">0</span>, 将使用操作系统的默认设置。</p> <h4>Syntax</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="CPUHardLimit"><h3>CPU硬限制<span class="ls-permlink"><a href="#CPUHardLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>以秒为单位,指定CGI进程的CPU占用时间限制。 如果进程持续占用CPU时间,达到硬限制,则进程将被强制杀死。如果没有设置该限制,或者限制设为<span class="val">0</span>, 操作系统的默认设置将被使用。</p> <h4>Syntax</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="memSoftLimit"><h3>内存软限制 (bytes)<span class="ls-permlink"><a href="#memSoftLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>以字节为单位指定服务器启动的外部应用进程或程序的内存占用限制。<br/><br/> 此限制的目的主要是为了防范软件缺陷或蓄意攻击造成的过度内存使用, 而不是限制正常使用。确保留有足够的内存,否则您的应用程序可能故障并 返回503错误。限制可以在服务器级别或独立的外部应用程序级别设置。如 果未在独立的外部应用程序级别设定限制,将使用服务器级别的限制。<br/><br/> 如果在两个级别都没有设置该限制,或者限制值设为<span class="val">0</span>,将使用操 作系统的默认设置。</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p>[注意] 不要过度调整这个限制。如果您的应用程序需要更多的内存, 这可能会导致503错误。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="memHardLimit"><h3>内存硬限制 (bytes)<span class="ls-permlink"><a href="#memHardLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>与<span class="tagl"><a href="#memSoftLimit">内存软限制 (bytes)</a></span>非常相同,但是在一个用户进程中,软限制 可以被放宽到硬限制的数值。硬限制可以在服务器级别或独立的外部应用程序级别设 置。如果未在独立的外部应用程序级别设定限制,将使用服务器级别的限制。<br/><br/> 如果在两个级别都没有设置该限制,或者限制值设为<span class="val">0</span>,将使用操 作系统的默认设置。</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p>[注意] 不要过度调整这个限制。如果您的应用程序需要更多的内存, 这可能会导致503错误。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="procSoftLimit"><h3>进程软限制<span class="ls-permlink"><a href="#procSoftLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>限制用户可以创建的进程总数.所有现有的进程都将被计算在这个限制之内,而不仅仅是要启动的新进程。<br/><br/> 该限制可以在服务器级别或单个外部应用级别进行设置.如果未在应用级别设置,则将使用服务器级别的限制. 如果该值为0或服务器级和应用级都没有设置,将使用操作系统的默认设置</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> PHP scripts can call for forking processes. The main purpose of this limit is as a last line of defense to prevent fork bombs and other attacks caused by PHP processes creating other processes.<br/><br/> Setting this setting too low can severely hurt functionality. The setting will thus be ignored below certain levels.<br/><br/> When <b>Run On Start Up</b> is set to "Yes (Daemon mode)", the actual process limit will be higher than this setting to make sure parent processes are not limited.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="procHardLimit"><h3>进程硬限制<span class="ls-permlink"><a href="#procHardLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>与<span class="tagl"><a href="#procSoftLimit">进程软限制</a></span>非常相同,但是,在用户进程中软限制 可以被放宽到硬限制的数值。硬限制可以在服务器级别或独立的外部应用程序级别设 置。如果未在独立的外部应用程序级别设定限制,将使用服务器级别的限制。 如果在两个级别都没有设置该限制,或者限制值设为<span class="val">0</span>,将使用操 作系统的默认设置。</p> <h4>Syntax</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="cgroups"><h3>cgroups<span class="ls-permlink"><a href="#cgroups"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>如果当前操作系统支持(目前支持RedHat/Centos Linux v7.5+和Ubuntu 18.04+),则将cgroup设置应用于此CGI进程。 。 当前执行的用户将用于确定要应用的cgroup配置。<br/> 在服务器级别将此设置为<span class="val">Disabled</span>将在服务器范围内禁用此设置。 在其他情况下,可以在虚拟主机级别覆盖服务器级别的设置。<br/><br/> 默认值:<br/> <b>服务器级别:</b> Off<br/> <b>虚拟主机级别:</b> 继承服务器级别设置</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="lsrecaptcha"><h3>reCAPTCHA保护<span class="ls-permlink"><a href="#lsrecaptcha"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>reCAPTCHA 保护是一种减轻服务器负载的服务。在下列情况发生后,reCAPTCHA保护将激活 激活后,所以不受信任的客户端(可自定)发出的请求将被重定向到reCAPTCHA验证页面 验证完成后客户端将被重定向到其所需的页面<br/><br/> 下列情况将启用reCAPTCHA保护: 1. 服务器或虚拟主机并发请求计数超过连接限制。<br/> 2. 启用了Anti-DDoS,并且客户端以可疑的方式访问了URL。 客户端将首先重定向到reCAPTCHA,而不是在触发时被拒绝。<br/> 3. 提供了新的重写规则,以通过重写规则激活reCAPTCHA。可以设置“verifycaptcha”将客户端重定向到reCAPTCHA。可以设置一个特殊值':deny'以在客户端失败太多次时拒绝它。例如,[E=verifycaptcha]将始终重定向到reCAPTCHA,直到通过验证。 [E=verifycaptcha: deny]将重定向到reCAPTCHA,如果客户端达到最大尝试次数,将被拒绝。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableRecaptcha"><h3>启用reCAPTCHA<span class="ls-permlink"><a href="#enableRecaptcha"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>必须先在服务器级别将此设置设置为<span class="val">是</span>,才能在当前级别启用并使用reCAPTCHA保护功能。 <br/><br/> 默认值:<br/> <b>服务器级别:</b> 是<br/> <b>虚拟主机级别:</b> 继承服务器级别设置</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="recaptchaSiteKey"><h3>网站密匙<span class="ls-permlink"><a href="#recaptchaSiteKey"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>站点密钥是Google通过其reCAPTCHA服务提供的公共密钥。 如果未设置,将使用默认的站点密钥。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="recaptchaSecretKey"><h3>密匙<span class="ls-permlink"><a href="#recaptchaSecretKey"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>密匙是Google通过其reCAPTCHA服务提供的私钥。 如未设置将使用默认的密匙</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="recaptchaType"><h3>reCAPTCHA类型<span class="ls-permlink"><a href="#recaptchaType"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定要与密钥对一起使用的reCAPTCHA类型。 如果未提供密钥对,并且此设置设置为 <span class="val">未设置</span>,将使用<span class="val">隐形</span>类型的默认密钥对。<br/> <span class="val">复选框</span>将显示一个复选框reCAPTCHA,以供访问者验证。<br/> <span class="val">隐形</span>将尝试自动验证reCAPTCHA,如果成功,将重定向到所需的页面。<br/><br/> 默认值为<span class="val">隐形</span>。</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="recaptchaMaxTries"><h3>最大尝试次数<span class="ls-permlink"><a href="#recaptchaMaxTries"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>“最大尝试次数”指定在拒绝访客之前允许的最大reCAPTCHA次尝试次数。<br/> 默认值是 <span class="val">3</span>.</p> <h4>Syntax</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="recaptchaAllowedRobotHits"><h3>允许的机器人点击<span class="ls-permlink"><a href="#recaptchaAllowedRobotHits"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>设置每10秒允许“好机器人”通过的点击次数。 当服务器处于高负载状态时,僵尸程序仍会受到限制。<br/><br/> 默认值是<span class="val">3</span>.</p> <h4>Syntax</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="recaptchaBotWhiteList"><h3>Bot白名单<span class="ls-permlink"><a href="#recaptchaBotWhiteList"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>自定义允许访问的用户代理列表。 将受到“好机器人”的限制,包括allowedRobotHits。</p> <h4>Syntax</h4><p>用户代理列表,每行一个。 支持正则表达式。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="recaptchaRegConnLimit"><h3>连接限制<span class="ls-permlink"><a href="#recaptchaRegConnLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>激活reCAPTCHA所需的并发连接数(SSL和非SSL)。 在并发连接数高于该数字之前,将使用reCAPTCHA。<br/><br/> 默认值是<span class="val">15000</span>.</p> <h4>Syntax</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="recaptchaSslConnLimit"><h3>SSL连接限制<span class="ls-permlink"><a href="#recaptchaSslConnLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>激活reCAPTCHA所需的并发SSL连接数。在并发连接数高于该数字之前,将使用reCAPTCHA。<br/><br/> 默认值是 <span class="val">10000</span>.</p> <h4>Syntax</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="bubbleWrap"><h3>Bubblewrap Container<span class="ls-permlink"><a href="#bubbleWrap"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Set to <span class="val">Enabled</span> if you wish to start CGI processes (including PHP programs) in a bubblewrap sandbox. See <a href=" https://wiki.archlinux.org/title/Bubblewrap " target="_blank" rel="noopener noreferrer"> https://wiki.archlinux.org/title/Bubblewrap </a> for details on using bubblewrap. Bubblewrap must be installed on your system prior to using this setting.<br/><br/> This setting cannot be turned on at the Virtual Host level if set to "Disabled" at the Server level.<br/><br/> Default values:<br/> <b>Server level:</b> Disabled<br/> <b>VH level:</b> Inherit Server level setting</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="bubbleWrapCmd"><h3>Bubblewrap Command<span class="ls-permlink"><a href="#bubbleWrapCmd"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>bubblewraps使用的完整的命令, 包括bubblewrap程序本身。 有关配置此命令的更多信息,请参见: <a href=" https://openlitespeed.org/kb/bubblewrap-in-openlitespeed/ " target="_blank" rel="noopener noreferrer"> https://openlitespeed.org/kb/bubblewrap-in-openlitespeed/ </a>. 如果未指定,将使用下面列出的默认命令。<br/><br/> 默认值: <span class="cmd">/bin/bwrap --ro-bind /usr /usr --ro-bind /lib /lib --ro-bind-try /lib64 /lib64 --ro-bind /bin /bin --ro-bind /sbin /sbin --dir /var --dir /tmp --proc /proc --symlink../tmp var/tmp --dev /dev --ro-bind-try /etc/localtime /etc/localtime --ro-bind-try /etc/ld.so.cache /etc/ld.so.cache --ro-bind-try /etc/resolv.conf /etc/resolv.conf --ro-bind-try /etc/ssl /etc/ssl --ro-bind-try /etc/pki /etc/pki --ro-bind-try /etc/man_db.conf /etc/man_db.conf --ro-bind-try /home/$USER /home/$USER --bind-try /var/lib/mysql/mysql.sock /var/lib/mysql/mysql.sock --bind-try /home/mysql/mysql.sock /home/mysql/mysql.sock --bind-try /tmp/mysql.sock /tmp/mysql.sock --unshare-all --share-net --die-with-parent --dir /run/user/$UID ‘$PASSWD 65534’ ‘$GROUP 65534’</span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="namespace"><h3>Namespace Container<span class="ls-permlink"><a href="#namespace"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Set to <span class="val">Enabled</span> if you wish to start CGI processes (including PHP programs) in a namespace container sandbox. Only used when <span class="tagl"><a href="ServSecurity_Help.html#bubbleWrap">Bubblewrap Container</a></span> is set to <span class="val">Disabled</span>.<br/><br/> When not <span class="val">Disabled</span> at the Server level, this settings value can be overridden at the Virtual Host level.<br/><br/> Default values:<br/> <b>Server level:</b> <span class="val">Disabled</span><br/> <b>Virtual Host Level:</b> Inherit Server level setting</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="namespaceConf"><h3>Namespace Template File<span class="ls-permlink"><a href="#namespaceConf"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Path to an existing configuration file containing a list of directories to be mounted along with the methods used to mount them. When <span class="tagl"><a href="ServSecurity_Help.html#namespace">Namespace Container</a></span> is set to <span class="val">Enabled</span> and this value is not set, the following secure default configuration settings will be used:<br/><br/> <span class="val"> $HOMEDIR/.lsns/tmp /tmp,tmp<br/> /usr,ro-bind<br/> /lib,ro-bind<br/> /lib64,ro-bind-try<br/> /bin,ro-bind<br/> /sbin,ro-bind<br/> /var,dir<br/> /var/www,ro-bind-try<br/> /proc,proc<br/> ../tmp var/tmp,symlink<br/> /dev,dev<br/> /etc/localtime,ro-bind-try<br/> /etc/ld.so.cache,ro-bind-try<br/> /etc/resolv.conf,ro-bind-try<br/> /etc/ssl,ro-bind-try<br/> /etc/pki,ro-bind-try<br/> /etc/man_db.conf,ro-bind-try<br/> /usr/local/bin/msmtp /etc/alternatives/mta,ro-bind-try<br/> /usr/local/bin/msmtp /usr/sbin/exim,ro-bind-try<br/> $HOMEDIR,bind-try<br/> /var/lib/mysql/mysql.sock,bind-try<br/> /home/mysql/mysql.sock,bind-try<br/> /tmp/mysql.sock,bind-try<br/> /run/mysqld/mysqld.sock,bind-try<br/> /var/run/mysqld.sock,bind-try<br/> /run/user/$UID,bind-try<br/> $PASSWD<br/> $GROUP<br/> /etc/exim.jail/$USER.conf $HOMEDIR/.msmtprc,copy-try<br/> /etc/php.ini,ro-bind-try<br/> /etc/php-fpm.conf,ro-bind-try<br/> /etc/php-fpm.d,ro-bind-try<br/> /var/run,ro-bind-try<br/> /var/lib,ro-bind-try<br/> /etc/imunify360/user_config/,ro-bind-try<br/> /etc/sysconfig/imunify360,ro-bind-try<br/> /opt/plesk/php,ro-bind-try<br/> /opt/alt,bind-try<br/> /opt/cpanel,bind-try<br/> /opt/psa,bind-try<br/> /var/lib/php/sessions,bind-try </span></p> <h4>Syntax</h4><p>绝对路径或相对于$SERVER_ROOT的相对路径。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessDenyDir"><h3>拒绝访问的目录<span class="ls-permlink"><a href="#accessDenyDir"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定应该拒绝访问的目录。 将包含敏感数据的目录加入到这个列表,以防止向客户端意外泄露敏感文件。 在路径后加一个“*”,可包含所有子目录。 如果<span class="tagl"><a href="#followSymbolLink">跟随符号链接</a></span>和<span class="tagl"><a href="#checkSymbolLink">检查符号链接</a></span>都被启用, 符号链接也将被检查是否在被拒绝访问目录中。</p> <h4>Syntax</h4><p>Comma-delimited list of directories</p> <h4>提示</h4><p>[安全建议] 至关重要: 此设置只能防止服务这些目录中的静态文件。 这不能防止外部脚本如PHP、Ruby、CGI造成的泄露。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessControl"><h3>登入限制<span class="ls-permlink"><a href="#accessControl"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定哪些子网络和/或IP地址可以访问该服务器。 这是影响所有的虚拟主机的服务器级别设置。您还可以为每个虚拟主机设置登入限制。虚拟主机的设置不会覆盖服务器设置。<br/><br/> 是否阻止/允许一个IP是由允许列表与阻止列表共同决定。 如果你想阻止某个特定IP或子网,请在<span class="tagl"><a href="#accessControl_allow">允许列表</a></span>中写入<span class="val">*</span> 或 <span class="val">ALL</span>,并在<span class="tagl"><a href="#accessControl_deny">拒绝列表</a></span>中写入需要阻止的IP或子网。 如果你想允许某个特定的IP或子网,请在<span class="tagl"><a href="#accessControl_deny">拒绝列表</a></span>中写入<span class="val">*</span> 或 <span class="val">ALL</span>,并在<span class="tagl"><a href="#accessControl_allow">允许列表</a></span>中写入需要允许的IP或子网。 单个IP地址是被允许访问还是禁止访问取决于该IP符合的最小限制范围。<br/><br/> 信任的IP或子网络可以在<span class="tagl"><a href="#accessControl_allow">允许列表</a></span>列表中添加后缀“T”来指定。受信任的IP或子网不受连接数/流量限制。 只有服务器级别的登入限制才可以设置受信任的IP或子网。</p> <h4>提示</h4><p>[安全建议] 用此项设置适用于所有虚拟主机的常规限制。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessControl_allow"><h3>允许列表<span class="ls-permlink"><a href="#accessControl_allow"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定允许的IP地址或子网的列表。 可以使用{VAL}*</span>或{VAL}ALL</span>。</p> <h4>Syntax</h4><p>逗号分隔的IP地址或子网列表。 结尾加上“T”可以用来表示一个受信任的IP或子网,如{VAL}192.168.1.*T</span>。</p> <h4>例子</h4><div class="ls-example">子网: <span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1.0/24</span>, <span class="val">192.168.1</span> 或 <span class="val">192.168.1.*</span>. <br/> IPv6 地址: <span class="val">::1</span> 或 <span class="val">[::1]</span> <br/> IPv6 子网: <span class="val">3ffe:302:11:2:20f:1fff:fe29:717c/64</span> 或 <span class="val">[3ffe:302:11:2:20f:1fff:fe29:717c]/64</span>.</div><h4>提示</h4><p>[安全建议] 在服务器级别设置的受信任的IP或子网不受连接/节流限制。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessControl_deny"><h3>拒绝列表<span class="ls-permlink"><a href="#accessControl_deny"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定不允许的IP地址或子网的列表。</p> <h4>Syntax</h4><p>逗号分隔的IP地址或子网列表。 可以使用{VAL}*</span>或{VAL}ALL</span>。</p> <h4>例子</h4><div class="ls-example">子网: <span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1.0/24</span>, <span class="val">192.168.1</span> 或 <span class="val">192.168.1.*</span>. <br/> IPv6 地址: <span class="val">::1</span> 或 <span class="val">[::1]</span> <br/> IPv6 子网: <span class="val">3ffe:302:11:2:20f:1fff:fe29:717c/64</span> 或 <span class="val">[3ffe:302:11:2:20f:1fff:fe29:717c]/64</span>.</div></article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> 版权所有.</footer> </div></div> </body> </html> ����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������zh-CN/Proxy_Context.html����������������������������������������������������������������������������0000644�����������������00000036364�15027525531�0011217 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Proxy Context</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Proxy Context." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 3</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><span class="current"><a href="Proxy_Context.html">Proxy Context</a></span></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="LSAPI_Context.html">LiteSpeed SAPI Context</a></div><div class="center"><a href="Context_Help.html">Context</a></div><div class="next"><a href="CGI_Context.html">CGI Context</a> »</div></div> <h1>Proxy Context</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header><a href="#proxyContext">Proxy Context</a></header><p> <a href="#expuri">URI</a> | <a href="#proxyWebServer">Web服务器</a> | <a href="#extraHeaders">标头控制</a> | <a href="#realm">域</a> | <a href="#authName">认证名称</a> | <a href="#required">Require(授权的用户/组)</a> | <a href="#accessAllowed">允许访问列表</a> | <a href="#accessDenied">拒绝访问列表</a> | <a href="#extAuthorizer">Authorizer</a> | <a href="#addDefaultCharset">添加默认的字符集</a> | <a href="#defaultCharsetCustomized">自定义默认字符集</a> | <a href="#enableIpGeo">启用IP地理定位</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="proxyContext"><h3>Proxy Context<span class="ls-permlink"><a href="#proxyContext"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>A Proxy Context enables this virtual host as a transparent reverse proxy server. This proxy server can run in front of any web servers or application servers that support HTTP protocol. The External web server that this virtual host proxies for has to be defined in <span class="tagP"><a href="#ExtApp_Help">外部应用</a></span> before you can set up a Proxy Context.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expuri"><h3>URI<span class="ls-permlink"><a href="#expuri"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the URI for this context.</p> <h4>Syntax</h4><p>指定此context下的URI。这个URI应该以"/"开始。 如果一个URI以"/"结束,那么该context将包含这个URI下的所有下级URI。如果context类型映射到系统目录上,则必须添加结尾的"/"</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#location">位置</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="proxyWebServer"><h3>Web服务器<span class="ls-permlink"><a href="#proxyWebServer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定外部Web服务器的名称。 此外部Web服务器必须在服务器或虚拟主机级别的<span class="tagP"><a href="#ExtApp_Help">外部应用</a></span>中定义</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extraHeaders"><h3>标头控制<span class="ls-permlink"><a href="#extraHeaders"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定要添加的附加响应/请求头。可以添加每行一个来添加多个头指令。"NONE "可以用来禁止父头继承。如果没有提供,则假定为 "Header"。</p> <h4>Syntax</h4><p>[Header]|RequestHeader [condition] set|append|merge|add|unset header [value] [early|env=[!]variable]</p> <h4>例子</h4><div class="ls-example">set Cache-control no-cache<br/> append Cache-control no-store<br/> Header set My-header cust_header_val<br/> RequestHeader set My-req-header cust_req_header_val</div><h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> 语法和用法类似于 <a href="https://httpd.apache.org/docs/2.2/mod/mod_headers.html#header" target="_blank" rel="noopener noreferrer">Apache's mod_headers directives</a><br/><br/> <span title="Information" class="ls-icon-info"></span> The 'Header' directive is is optional and can be excluded or left in when copying rules from elsewhere without issue.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="realm"><h3>域<span class="ls-permlink"><a href="#realm"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定这个context下的realm授权。 当指定时,必须提供有效的用户和用户名来访问这个context。 <span class="tagl"><a href="VHSecurity_Help.html#realms">Realms授权</a></span>需要在<span class="tagP"><a href="#VHSecurity_Help">虚拟主机安全</a></span>部分进行设置。 此设置使用每个realm的<span class="tagl"><a href="VHSecurity_Help.html#realmName">域名称</a></span>。</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="authName"><h3>认证名称<span class="ls-permlink"><a href="#authName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>为当前context下的realm认证指定一个替代的名称。 如果没有指定,原realm名称将被使用。 认证名称将显示在浏览器登陆弹出窗口。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="required"><h3>Require(授权的用户/组)<span class="ls-permlink"><a href="#required"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定哪些用户/用户组可以访问此context。 这里允许你使用一个用户/组数据库(在 <span class="tagl"><a href="#realm">域</a></span>中指定)访问多个context, 但只允许该数据库下特定的用户/组访问这个context。</p> <h4>Syntax</h4><p>Syntax is compatible with Apache's Require directive. For example: <ul> <li><span class="val">user username [username ...]</span><br/> Only listed users can access this context.</li> <li> <span class="val">group groupid [groupid ...]</span><br/> Only users belonging to the listed groups can access this context.</li> </ul> If this setting is not specified, all valid users will be allowed to access this resource.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessAllowed"><h3>允许访问列表<span class="ls-permlink"><a href="#accessAllowed"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定允许访问这个context下资源的IP地址或子网。综合 <span class="tagl"><a href="#accessDenied">拒绝访问列表</a></span>项的配置以及服务器/虚拟主机级别访问控制, 可访问性将以客户端IP所符合的最小范围来确定。</p> <h4>Syntax</h4><p>Comma-delimited list of IPs/sub-networks.</p> <h4>例子</h4><div class="ls-example">网络可以写成<span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span> 或<span class="val">192.168.1.*</span>。</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessDenied"><h3>拒绝访问列表<span class="ls-permlink"><a href="#accessDenied"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定哪个IP地址或子网不被允许访问这个context下的资源。 综合<span class="tagl"><a href="#accessAllowed">允许访问列表</a></span>项的配置以及服务器/虚拟主机级别访问控制, 可访问性将以客户端IP所符合的最小范围来确定。</p> <h4>Syntax</h4><p>Comma-delimited list of IPs/sub-networks.</p> <h4>例子</h4><div class="ls-example">子网络可以写成<span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span> 或<span class="val">192.168.1.*</span>。</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAuthorizer"><h3>Authorizer<span class="ls-permlink"><a href="#extAuthorizer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定可用于生成授权/未授权 decisions的外部应用程序。 目前,仅FastCGI授权器可用。 有关FastCGI授权者角色的更多详细信息, 请访问<a href="https://fastcgi-archives.github.io/" target="_blank" rel="noopener noreferrer">https://fastcgi-archives.github.io/</a>。</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="addDefaultCharset"><h3>添加默认的字符集<span class="ls-permlink"><a href="#addDefaultCharset"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>S指定当内容类型是"text/html"或"text/plain"且没有参数时,是否添加字符集标记到"Content-Type"响应报头中。当设置为<span class="val">Off</span>时,该功能禁用。当设置为<span class="val">On</span>时,将添加<span class="tagl"><a href="#defaultCharsetCustomized">自定义默认字符集</a></span>中指定的字符集,如果没有指定,将添加默认的"iso-8859-1"字符集。</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="defaultCharsetCustomized"><h3>自定义默认字符集<span class="ls-permlink"><a href="#defaultCharsetCustomized"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定一个字符集当<span class="tagl"><a href="#addDefaultCharset">添加默认的字符集</a></span>是<span class="val">On</span>时使用。这是可选的。默认值是<span class="val">iso-8859-1</span>。当<span class="tagl"><a href="#addDefaultCharset">添加默认的字符集</a></span>是<span class="val">Off</span>时本设置将不生效。</p> <h4>Syntax</h4><p>Name of a character set.</p> <h4>例子</h4><div class="ls-example">utf-8</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableIpGeo"><h3>启用IP地理定位<span class="ls-permlink"><a href="#enableIpGeo"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否启用IP地理定位查找。 可以在服务器级别,虚拟主机级别,或context级别设置。</p> <h4>Syntax</h4><p>从单选框选择</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="ServGeneral_Help.html#useIpInProxyHeader">使用报头中的客户端IP</a></span>, <span class="tagl"><a href="ServGeneral_Help.html#geoipDBFile">数据库文件路径</a></span>,</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> 版权所有.</footer> </div></div> </body> </html> ����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������zh-CN/security.html���������������������������������������������������������������������������������0000644�����������������00000021262�15027525531�0010230 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Security</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Security." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 3</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><span class="current"><a href="security.html">Security</a></span></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="admin.html">Administration</a></div><div class="center"><a href="index.html">主页</a></div><div class="next"><a href="config.html">Configuration</a> »</div></div> <h1>安全</h1> <p>LiteSpeed Web Server在设计安全性时是首要考虑因素。 LSWS支持SSL,具有服务器和虚拟主机级别的访问控制, 以及特定于context的领域保护。 除了这些标准功能, LSWS还具有以下特殊安全功能: </p> <ol> <li><h3>连接级别限制:</h3> <ul> <li>IP级限制限制了与单个IP地址之间的网络带宽,而与连接数无关。</li> <li> IP级别的连接限制了与单个IP地址的并发连接数。 您可以通过WebAdmin控制台中的软连接限制,硬连接限制,宽限期和禁止期设置来控制。 </li> </ul> </li> <li><h3> 请求检查:</h3> <p> LiteSpeed Web服务器将审核每个HTTP请求。 “ /” 不允许在URL编码中, 因此拒绝访问隐藏文件和其父目录。.</p> <p>请求大小受LiteSpeed Web服务器的最大请求URL长度,最大请求标头长度和最大请求正文长度的限制。 </p> </li> <li><h3>静态文件检查:</h3> <p>只有满足以下条件,LiteSpeed Web Server才会提供静态文件: </p> <ul> <li>每个人都可以读取该文件。</li> <li>该文件不可执行.</li> <li>该文件不在拒绝访问目录列表中.</li> <li>如果不允许符号链接,那么文件不应包含符号链接。 </li> <li>默认情况下,LiteSpeed Web Server不会通过列出目录文件来索引目录,除非明确的启用它.</li> </ul> </li> <li><h3>外部应用防火墙:</h3> <p>LiteSpeed Web Server将请求转发到外部应用程序以处理/生成动态内容。 这些应用程序会占用大量系统资源. 当系统资源消耗达到一定程度时,整个系统的性能将严重降低-例如当必须使用交换空间时. 进行DoS攻击的一种方法是将大量并发请求发送给Web服务器, 使外部程序忙于处理对繁琐的请求。</p> <p>LiteSpeed Web Server可以限制请求并控制外部应用程序的并发数量,以防止系统资源过度使用. LSWSh会缓存请求,并仅将完成的请求转发到外部应用程序. 这意味着当服务器接收请求时,外部应用程序将不会等待. LSWS还缓存了外部应用程序的响应,以便可以在响应完成后立即释放外部应用程序,而不必等待客户端收到完整的响应。 这样服务器可以使用更少的外部应用程序进程来服务更多的请求并获得更高的性能和可扩展性。 LiteSpeed Web Server还使用虚拟内存来缓存请求和响应正文,以在不牺牲性能的情况下最大程度地减少系统内存的使用. </p></li> <li><h3>CGI资源消耗限制:</h3> <p>LiteSpeed Web Server限制了CGI应用程序可以消耗的系统资源量。 对于每个对CGI脚本的请求,Web服务器都需要启动一个独立的CGI进程来处理它 在Unix系统上,并发进程数是有限的。 使用CGI资源消耗限制,可以配置Web服务器可以启动的并发CGI进程的最大数量。 过多的并发进程将降低整个系统的性能。 (CGI进程是DoS攻击的常用武器。),可以为每个用户指定系统进程限制,以控制CGI应用程序最多可以产生的进程数,每个进程都受到CPU和内存限制的限制</p> </li> <li><h3>suEXEC增强CGI/FastCGI的安全性:</h3> <p>为了降低CGI或Fast CGI脚本的安全风险,LiteSpeed Web Server可以通过以“suEXEC”模式运行,来限制CGI脚本可以使用的系统资源。 "suEXEC”会使用与Web服务器不同的用户ID启动CGI或Fast CGI脚本. 通过防止一个用户的CGI脚本访问其他用户的文件,这大大提高了共享托管环境中的安全性。</p> </li> </ol> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> 版权所有.</footer> </div></div> </body> </html> ����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������zh-CN/config.html�����������������������������������������������������������������������������������0000644�����������������00000022437�15027525531�0007633 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Configuration</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Configuration." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 3</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <span class="current"><a href="config.html">Configuration</a></span> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="security.html">Security</a></div><div class="center"><a href="index.html">主页</a></div><div class="next"><a href="webconsole.html">Web Console</a> »</div></div> <h1>配置</h1> <section> <a name="con"></a><h3><b>Concepts</b></h3> <p>在配置之前,您需要了解以下一些基本概念.</p> <a name="vh"></a><h3>虚拟主机</h3> <p>LiteSpeed Web服务器可以通过一个服务器托管多个网站(虚拟主机).</p> <p>传统上,虚拟主机分为两种:基于IP的虚拟主机和 基于域的虚拟主机。 基于IP的虚拟主机是具有自己唯一IP地址的网站. 基于域的虚拟主机是通过域名区分的, 因此可以与其他网站共享IP地址。在LiteSpeed Web Server中的这两个类别之间没有明显区别. 基于IP的虚拟主机只是一种特殊的基于域的虚拟主机。 它们都可以轻松配置,甚至可以混合.</p> <p>与其他Web服务器不同,LiteSpeed Web Server没有默认网站。 即使仅托管一个网站,每个网站都被配置为虚拟主机。</p> <a name="l"></a><h3>侦听器</h3> <p>在LiteSpeed Web Server中,侦听器是一个服务器套接字,用于侦听特定的IP地址和TCP端口. 如果您将Web服务器想象为建筑物,那么侦听器就是门(每个都有自己的IP地址和端口) 客户(浏览器)必须经过一扇门(侦听器)才能提交他们的请求。</p> <p>对于每个侦听器,需要指定IP地址和端口号。 IP地址可以是任何有效的本地IP地址, 也可以设置一个通配符IP(*)来引用该计算机上的所有可用IP地址。 端口是0到65535之间的整数。 HTTP的默认端口是80,HTTPS的默认端口是443。 其他端口也可以使用,但是在UNIX机器上,只有超级用户 "root" 才有权使用1024以下的端口。</p> <p>每个IP和端口组合只允许一个侦听器。 因此,如果将侦听器配置为一个具有通配符IP地址的端口 即使指定了特定的IP,也不能将另一个侦听器配置到同一端口。 例如, 如果web服务器上有多个IP地址, 所有IP地址的8080端口都需要允许HTTP通信, 有两种方式: 使用通配符IP(*)和端口8080设置一个侦听器, 或者设置多个侦听器, 每个IP一个,全部监听端口8080. 这两种方法不能在一个端口上混合使用。</p> <p>LiteSpeed Web Server中有两种类型的侦听器: 简单和安全(SSL). 每个安全侦听器都需要成对的SSL私钥和SSL证书。 私钥可以使用SSL工具包生成,例如OpenSSL. SSL证书可以是自签名的,也可以从 SSL证书颁发者购买,例如VeriSign或Thawte。 您可以在多个侦听器之间共享相同的私钥和证书。 </p> <a name="map"></a><h3>虚拟主机映射的侦听器</h3> <p>LiteSpeed的虚拟主机映射侦听器的灵活性,使您能够:</p> <ul> <li>将一个侦听器映射到一个虚拟主机.</li> <li>将一个侦听器映射到不同域名的不同虚拟主机。</li> <li>将多个侦听器映射到同一虚拟主机.</li> <li>根据其域名将多个侦听器映射到多个虚拟主机.</li> </ul> <p>在虚拟主机映射的侦听器中,每个侦听器都有一个虚拟主机查找表, 该表具有键值对,这些键值对为特定的虚拟主机(值)指定域名(键)。</p> <p>当浏览器尝试从Web服务器检索网页时, 它首先使用DNS查找来查找与该域名关联的IP地址. 然后,它发送一个请求,以在特定IP和端口上与Web服务器建立TCP连接。 如果有分配给该IP和端口的侦听器,则建立连接。 然后浏览器发送HTTP请求, 请求在标头种含有的域名.网络服务器检查与该侦听器关联的查找表中请求中的域名. 如果找到匹配项,则将请求路由到虚拟主机进行处理。</p> <p>为了使虚拟主机可以通过特定的侦听器访问,您必须确保:</p> <ol> <li>DNS已正确配置为网站域名映射到的侦听器的IP。 如何配置DNS超出了本文档的范围.</li> <li>侦听器的查找表中存在该域名到虚拟主机的映射.</li> </ol> <p>可以为一个侦听器使用通配符域名“*”指定一个默认虚拟主机。 当服务器找不到匹配的虚拟主机时,请求将被路由到默认虚拟主机。 如果没有配置这样的的虚拟主机,则Web服务器将返回错误代码404。</p> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> 版权所有.</footer> </div></div> </body> </html> ���������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������zh-CN/External_WS.html������������������������������������������������������������������������������0000644�����������������00000024361�15027525531�0010557 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Web Server</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Web Server." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 3</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><span class="current"><a href="External_WS.html">Web Server</a></span></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="External_Servlet.html">Servlet Engine</a></div><div class="center"><a href="ExtApp_Help.html">外部应用</a></div><div class="next"><a href="External_PL.html">Piped Logger</a> »</div></div> <h1>Web Server</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header>Web Server</header><p> <a href="#extAppName">名称</a> | <a href="#expWSAddress">地址</a> | <a href="#maxConns">最大连接数</a> | <a href="#pcKeepAliveTimeout">持久连接超时时间</a> | <a href="#env">环境</a> | <a href="#initTimeout">初次请求超时时间 (secs)</a> | <a href="#retryTimeout">重试超时时间 (secs)</a> | <a href="#respBuffer">响应缓冲</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="extAppName"><h3>名称<span class="ls-permlink"><a href="#extAppName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>此外部应用程序的唯一名称。 在配置的其他部分中使用该名称时,将使用该名称进行引用。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expWSAddress"><h3>地址<span class="ls-permlink"><a href="#expWSAddress"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>外部网络服务器使用的HTTP,HTTPS或Unix域套接字(UDS)地址。</p> <h4>Syntax</h4><p>IPv4 或 IPV6 地址(:端口),UDS://path或unix:path 如果外部Web服务器使用HTTPS,则在前面加上 "https://"。 如果外部Web服务器使用标准端口80或443,则端口是可选的。</p> <h4>例子</h4><div class="ls-example">192.168.0.10<br/> 127.0.0.1:5434<br/> https://10.0.8.9<br/> https://127.0.0.1:5438<br/> UDS://tmp/lshttpd/php.sock<br/> unix:/tmp/lshttpd/php.sock</div><h4>提示</h4><p>[安全建议] 如果代理到同一台机器上运行的另一台Web服务器,请将IP地址设置为<span class="val">localhost</span>或<span class="val">127.0.0.1</span>,这样从其他机器上就无法访问外部应用程序。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxConns"><h3>最大连接数<span class="ls-permlink"><a href="#maxConns"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定服务器与外部应用之间可建立的最大并发连接数。该设置控制外部应用程序可同时处理多少个请求。 然而,真正的限制还取决于外部应用本身。如果外部的速度不够快,或者无法处理大量的并发请求,那么将这个值设置得更高也无济于事。</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p>[性能建议] 设置一个高值并不能直接变成高性能。设置为一个不会使外部应用程序过载的值,将提供最佳的性能/吞吐量。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="pcKeepAliveTimeout"><h3>持久连接超时时间<span class="ls-permlink"><a href="#pcKeepAliveTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定保持持久连接的最大时间,以秒为单位。<br/><br/> 如果设置成"-1",连接将不会超时. 当设置成0或者更大, 连接将在这些秒数后被关闭。</p> <h4>Syntax</h4><p>int</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="env"><h3>环境<span class="ls-permlink"><a href="#env"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>为外部应用程序指定额外的环境变量。</p> <h4>Syntax</h4><p>Key=value. Multiple variables can be separated by "ENTER"</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="initTimeout"><h3>初次请求超时时间 (secs)<span class="ls-permlink"><a href="#initTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定服务器等待外部应用响应新建立的连接的第一个请求的最大时间 如果服务器在这个限制时间内没有收到外部应用的任何数据,它将把这个连接标记为坏(Bad)。这有助于识别与外部应用程序的通信问题。 这有助于尽快发现与外部应用的通信问题。如果某些请求的处理时间较长,则增加这个限制以避免503错误信息。</p> <h4>Syntax</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="retryTimeout"><h3>重试超时时间 (secs)<span class="ls-permlink"><a href="#retryTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定服务器在重试之前,等待出现通信问题的外部应用程序的时间。</p> <h4>Syntax</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="respBuffer"><h3>响应缓冲<span class="ls-permlink"><a href="#respBuffer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否要从外部应用程序缓冲收到的响应。 如果nph-(Non-Parsed-Header)脚本被检测到,则关闭具有完整HTTP头的缓冲响应。</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> 版权所有.</footer> </div></div> </body> </html> �������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������zh-CN/Redirect_Context.html�������������������������������������������������������������������������0000644�����������������00000034243�15027525531�0011631 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Redirect Context</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Redirect Context." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 3</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><span class="current"><a href="Redirect_Context.html">Redirect Context</a></span></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="LB_Context.html">Load Balancer Context</a></div><div class="center"><a href="Context_Help.html">Context</a></div><div class="next"><a href="App_Server_Context.html">App Server Context</a> »</div></div> <h1>Redirect Context</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header><a href="#redirectContext">重定向 Context</a></header><p> <a href="#expuri">URI</a> | <a href="#externalredirect">外部重定向</a> | <a href="#statuscode">状态码</a> | <a href="#destinationuri">目标URI</a> | <a href="#extraHeaders">标头控制</a> | <a href="#realm">域</a> | <a href="#authName">认证名称</a> | <a href="#required">Require(授权的用户/组)</a> | <a href="#accessAllowed">允许访问列表</a> | <a href="#accessDenied">拒绝访问列表</a> | <a href="#extAuthorizer">Authorizer</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="redirectContext"><h3>重定向 Context<span class="ls-permlink"><a href="#redirectContext"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>A Redirect Context can be used to forward one URI or a group of URIs to another location. The destination URI can be either on the same web site (an internal redirect) or an absolute URI pointing to another web site (an external redirect).</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expuri"><h3>URI<span class="ls-permlink"><a href="#expuri"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the URI for this context.</p> <h4>Syntax</h4><p>指定此context下的URI。这个URI应该以"/"开始。 如果一个URI以"/"结束,那么该context将包含这个URI下的所有下级URI。如果context类型映射到系统目录上,则必须添加结尾的"/"</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#location">位置</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="externalredirect"><h3>外部重定向<span class="ls-permlink"><a href="#externalredirect"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定此重定向是否为外部重定向。 对于外部重定向,可以指定<span class="tagl"><a href="#statuscode">状态码</a></span>,并且<span class="tagl"><a href="#destinationuri">目标URI</a></span>可以以“/”或“ http(s)://”开头。 对于内部重定向, <span class="tagl"><a href="#destinationuri">目标URI</a></span>必须以"/"开始</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="statuscode"><h3>状态码<span class="ls-permlink"><a href="#statuscode"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定外部重定向响应状态码。 如果状态码在300和399之间,可以指定<span class="tagl"><a href="#destinationuri">目标URI</a></span>。</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="destinationuri"><h3>目标URI<span class="ls-permlink"><a href="#destinationuri"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定重定向的目标位置。 如果被重定向的URI映射到另一个重定向URI时,将再次被重定向。</p> <h4>Syntax</h4><p>这个URI可以是一个在同一个网站上以"/"开始的相对URI, 或者是一个指向其他网站以"http(s): //"开始的绝对URI。 如果<span class="tagl"><a href="#expuri">URI</a></span>包含正则表达式,目标地址可以匹配变量,如$1或$2。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extraHeaders"><h3>标头控制<span class="ls-permlink"><a href="#extraHeaders"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定要添加的附加响应/请求头。可以添加每行一个来添加多个头指令。"NONE "可以用来禁止父头继承。如果没有提供,则假定为 "Header"。</p> <h4>Syntax</h4><p>[Header]|RequestHeader [condition] set|append|merge|add|unset header [value] [early|env=[!]variable]</p> <h4>例子</h4><div class="ls-example">set Cache-control no-cache<br/> append Cache-control no-store<br/> Header set My-header cust_header_val<br/> RequestHeader set My-req-header cust_req_header_val</div><h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> 语法和用法类似于 <a href="https://httpd.apache.org/docs/2.2/mod/mod_headers.html#header" target="_blank" rel="noopener noreferrer">Apache's mod_headers directives</a><br/><br/> <span title="Information" class="ls-icon-info"></span> The 'Header' directive is is optional and can be excluded or left in when copying rules from elsewhere without issue.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="realm"><h3>域<span class="ls-permlink"><a href="#realm"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定这个context下的realm授权。 当指定时,必须提供有效的用户和用户名来访问这个context。 <span class="tagl"><a href="VHSecurity_Help.html#realms">Realms授权</a></span>需要在<span class="tagP"><a href="#VHSecurity_Help">虚拟主机安全</a></span>部分进行设置。 此设置使用每个realm的<span class="tagl"><a href="VHSecurity_Help.html#realmName">域名称</a></span>。</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="authName"><h3>认证名称<span class="ls-permlink"><a href="#authName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>为当前context下的realm认证指定一个替代的名称。 如果没有指定,原realm名称将被使用。 认证名称将显示在浏览器登陆弹出窗口。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="required"><h3>Require(授权的用户/组)<span class="ls-permlink"><a href="#required"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定哪些用户/用户组可以访问此context。 这里允许你使用一个用户/组数据库(在 <span class="tagl"><a href="#realm">域</a></span>中指定)访问多个context, 但只允许该数据库下特定的用户/组访问这个context。</p> <h4>Syntax</h4><p>Syntax is compatible with Apache's Require directive. For example: <ul> <li><span class="val">user username [username ...]</span><br/> Only listed users can access this context.</li> <li> <span class="val">group groupid [groupid ...]</span><br/> Only users belonging to the listed groups can access this context.</li> </ul> If this setting is not specified, all valid users will be allowed to access this resource.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessAllowed"><h3>允许访问列表<span class="ls-permlink"><a href="#accessAllowed"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定允许访问这个context下资源的IP地址或子网。综合 <span class="tagl"><a href="#accessDenied">拒绝访问列表</a></span>项的配置以及服务器/虚拟主机级别访问控制, 可访问性将以客户端IP所符合的最小范围来确定。</p> <h4>Syntax</h4><p>Comma-delimited list of IPs/sub-networks.</p> <h4>例子</h4><div class="ls-example">网络可以写成<span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span> 或<span class="val">192.168.1.*</span>。</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessDenied"><h3>拒绝访问列表<span class="ls-permlink"><a href="#accessDenied"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定哪个IP地址或子网不被允许访问这个context下的资源。 综合<span class="tagl"><a href="#accessAllowed">允许访问列表</a></span>项的配置以及服务器/虚拟主机级别访问控制, 可访问性将以客户端IP所符合的最小范围来确定。</p> <h4>Syntax</h4><p>Comma-delimited list of IPs/sub-networks.</p> <h4>例子</h4><div class="ls-example">子网络可以写成<span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span> 或<span class="val">192.168.1.*</span>。</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAuthorizer"><h3>Authorizer<span class="ls-permlink"><a href="#extAuthorizer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定可用于生成授权/未授权 decisions的外部应用程序。 目前,仅FastCGI授权器可用。 有关FastCGI授权者角色的更多详细信息, 请访问<a href="https://fastcgi-archives.github.io/" target="_blank" rel="noopener noreferrer">https://fastcgi-archives.github.io/</a>。</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> 版权所有.</footer> </div></div> </body> </html> �������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������zh-CN/AdminListeners_General_Help.html��������������������������������������������������������������0000644�����������������00000017405�15027525531�0013713 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Admin Listeners General</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Admin Listeners General." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 3</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <span class="current"><a href="AdminListeners_General_Help.html"> Admin Listener General </a></span> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="AdminSecurity_Help.html">Admin Console Security</a></div><div class="center"><a href="webconsole.html">Web Console</a></div><div class="next"><a href="AdminListeners_SSL_Help.html">Admin Listeners SSL</a> »</div></div> <h1>Admin Listeners General</h1><section class="ls-spacer-small-bottom">Admin Listeners are dedicated to the Admin Server. Secure (SSL) listeners are recommended for the Admin Server.</section> <h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header>General</header><p> <a href="#listenerName">侦听器名称</a> | <a href="#listenerIP">IP Address</a> | <a href="#listenerPort">端口</a> | <a href="#listenerSecure">安全</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="listenerName"><h3>侦听器名称<span class="ls-permlink"><a href="#listenerName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>此侦听器的唯一名称。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="listenerIP"><h3>IP Address<span class="ls-permlink"><a href="#listenerIP"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定此监听器的IP地址.所有可用的IP地址都列出了. IPv6地址应包含"[ ]".<br/><br/> 如果要监听所有IPV4地址, 选择 <span class="val">ANY</span>. 要监听所有IPV4和IPV6地址,选择 <span class="val">[ANY]</span>.<br/><br/> 为了同时为IPv4和IPv6客户端提供服务,应使用IPv4映射的IPv6地址代替纯IPv4地址。 IPv4映射的IPv6地址应写为[::FFFF:x.x.x.x].</p> <h4>Syntax</h4><p>从列表中选择</p> <h4>提示</h4><p>[安全建议] 如果您的计算机在不同的子网中具有多个IP, 您可以选择特定的IP以仅允许来自相应子网的流量。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="listenerPort"><h3>端口<span class="ls-permlink"><a href="#listenerPort"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定侦听器的TCP端口。 只有超级用户(root)可以使用低于<span class="val">1024</span>的端口。 端口<span class="val">80</span>是默认的HTTP端口。 端口<span class="val">443</span>是默认的HTTPS端口。</p> <h4>Syntax</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="listenerSecure"><h3>安全<span class="ls-permlink"><a href="#listenerSecure"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定这是否是安全(SSL)侦听器。 对于安全的侦听器,需要正确设置其他SSL设置。</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> 版权所有.</footer> </div></div> </body> </html> �����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������zh-CN/External_Servlet.html�������������������������������������������������������������������������0000644�����������������00000024412�15027525531�0011647 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Servlet Engine</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Servlet Engine." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 3</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><span class="current"><a href="External_Servlet.html">Servlet Engine</a></span></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="External_LSAPI.html">LiteSpeed SAPI App</a></div><div class="center"><a href="ExtApp_Help.html">外部应用</a></div><div class="next"><a href="External_WS.html">Web Server</a> »</div></div> <h1>Servlet Engine</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header>Servlet Engine</header><p> <a href="#extAppName">名称</a> | <a href="#extAppAddress">地址</a> | <a href="#maxConns">最大连接数</a> | <a href="#pcKeepAliveTimeout">持久连接超时时间</a> | <a href="#env">环境</a> | <a href="#initTimeout">初次请求超时时间 (secs)</a> | <a href="#retryTimeout">重试超时时间 (secs)</a> | <a href="#respBuffer">响应缓冲</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="extAppName"><h3>名称<span class="ls-permlink"><a href="#extAppName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>此外部应用程序的唯一名称。 在配置的其他部分中使用该名称时,将使用该名称进行引用。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAppAddress"><h3>地址<span class="ls-permlink"><a href="#extAppAddress"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>外部应用程序使用的唯一套接字地址。 支持IPv4/IPv6套接字和Unix域套接字(UDS)。 IPv4/IPv6套接字可用于网络通信。 只有当外部应用程序与服务器在同一台机器上时,才能使用UDS。</p> <h4>Syntax</h4><p>IPv4 或 IPV6 address:port 或者 UDS://path</p> <h4>例子</h4><div class="ls-example">127.0.0.1:5434<br/> UDS://tmp/lshttpd/php.sock.</div><h4>提示</h4><p>[安全建议] 如果外部应用程序在同一台机器上运行,则首选UDS。如果必须使用IPv4|IPV6, 将IP地址设置为<span class="val">localhost</span>或<span class="val">127.0.0.1</span>,这样外部应用就无法从其他机器上访问。 [性能建议] Unix域套接字一般比IPv4套接字拥有更高的性能。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxConns"><h3>最大连接数<span class="ls-permlink"><a href="#maxConns"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定服务器与外部应用之间可建立的最大并发连接数。该设置控制外部应用程序可同时处理多少个请求。 然而,真正的限制还取决于外部应用本身。如果外部的速度不够快,或者无法处理大量的并发请求,那么将这个值设置得更高也无济于事。</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p>[性能建议] 设置一个高值并不能直接变成高性能。设置为一个不会使外部应用程序过载的值,将提供最佳的性能/吞吐量。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="pcKeepAliveTimeout"><h3>持久连接超时时间<span class="ls-permlink"><a href="#pcKeepAliveTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定保持持久连接的最大时间,以秒为单位。<br/><br/> 如果设置成"-1",连接将不会超时. 当设置成0或者更大, 连接将在这些秒数后被关闭。</p> <h4>Syntax</h4><p>int</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="env"><h3>环境<span class="ls-permlink"><a href="#env"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>为外部应用程序指定额外的环境变量。</p> <h4>Syntax</h4><p>Key=value. Multiple variables can be separated by "ENTER"</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="initTimeout"><h3>初次请求超时时间 (secs)<span class="ls-permlink"><a href="#initTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定服务器等待外部应用响应新建立的连接的第一个请求的最大时间 如果服务器在这个限制时间内没有收到外部应用的任何数据,它将把这个连接标记为坏(Bad)。这有助于识别与外部应用程序的通信问题。 这有助于尽快发现与外部应用的通信问题。如果某些请求的处理时间较长,则增加这个限制以避免503错误信息。</p> <h4>Syntax</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="retryTimeout"><h3>重试超时时间 (secs)<span class="ls-permlink"><a href="#retryTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定服务器在重试之前,等待出现通信问题的外部应用程序的时间。</p> <h4>Syntax</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="respBuffer"><h3>响应缓冲<span class="ls-permlink"><a href="#respBuffer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否要从外部应用程序缓冲收到的响应。 如果nph-(Non-Parsed-Header)脚本被检测到,则关闭具有完整HTTP头的缓冲响应。</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> 版权所有.</footer> </div></div> </body> </html> ������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������zh-CN/ServLog_Help.html�����������������������������������������������������������������������������0000644�����������������00000041773�15027525531�0010723 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - 服务器日志</title> <meta name="description" content="OpenLiteSpeed Users' Manual - 服务器日志." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 3</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><span class="current"><a href="ServLog_Help.html">Server Log</a></span></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="ServGeneral_Help.html">服务器常规</a></div><div class="center"><a href="config.html">Configuration</a></div><div class="next"><a href="ServTuning_Help.html">服务器调节</a> »</div></div> <h1>服务器日志</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header>服务器日志</header><p> <a href="#log_fileName">文件名</a> | <a href="#log_logLevel">日志级别</a> | <a href="#log_debugLevel">调试级别</a> | <a href="#log_rollingSize">回滚大小 (bytes)</a> | <a href="#log_keepDays">保留天数</a> | <a href="#log_compressArchive">压缩存档</a> | <a href="#log_enableStderrLog">启用标准错误日志(stderr)</a></p></section> <section class="toc-row"><header>访问日志</header><p> <a href="#accessLog_fileName">文件名</a> | <a href="#accessLog_pipedLogger">管道日志记录</a> | <a href="#accessLog_logFormat">日志格式</a> | <a href="#accessLog_logHeader">记录头部</a> | <a href="#log_rollingSize">回滚大小 (bytes)</a> | <a href="#log_keepDays">保留天数</a> | <a href="#log_compressArchive">压缩存档</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="log_fileName"><h3>文件名<span class="ls-permlink"><a href="#log_fileName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定日志文件的路径。</p> <h4>Syntax</h4><p>文件名可以是绝对路径,也可以是相对于$SERVER_ROOT的相对路径。</p> <h4>提示</h4><p>[性能建议] 将日志文件放置在一个单独的磁盘上。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="log_logLevel"><h3>日志级别<span class="ls-permlink"><a href="#log_logLevel"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定日志文件中记录的日志级别。 可用级别(由高到低)为: <span class="val">ERROR</span>、 <span class="val">WARNING</span>、<span class="val">NOTICE</span>、<span class="val">INFO</span>和<span class="val">DEBUG</span>。 只有级别与当前设置相同或更高的消息将被记录(级别越低记录越详细)。 be logged.</p> <h4>Syntax</h4><p>从列表中选择</p> <h4>提示</h4><p>[性能建议] 使用<span class="val">DEBUG</span>日志级别对 性能没有任何影响,除非<span class="tagl"><a href="#log_debugLevel">调试级别</a></span>没有被设置为<span class="val">NONE</span>.。我们推荐将日志级别设置为<span class="val">DEBUG</span>,将 调试级别值设置为<span class="val">NONE</span>。这样设置意味着你的磁盘不会被调试日志塞满,但是你可以使用<span class="tagl"><a href="ServerStat_Help.html#toggleDebugLog">Toggle Debug Logging</a></span> 控制调试输出。这个操作可以实时启用或关闭调试记录, 对于调试繁忙的生产服务器非常有用。</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#log_debugLevel">调试级别</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="log_debugLevel"><h3>调试级别<span class="ls-permlink"><a href="#log_debugLevel"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定调试日志级别。 要使用此功能,<span class="tagl"><a href="#log_logLevel">日志级别</a></span>必须设置为<span class="val">DEBUG</span>。 在“调试级别”设置为<span class="val">NONE</span>时,即使<span class="tagl"><a href="#log_logLevel">日志级别</a></span> 设置为<span class="val">DEBUG</span>,调试日志也是被禁用的。 在正在运行的服务器上,<span class="tagl"><a href="ServerStat_Help.html#toggleDebugLog">Toggle Debug Logging</a></span>可以被用于 控制调试级别而无需重启。</p> <h4>Syntax</h4><p>从列表中选择</p> <h4>提示</h4><p>[性能建议] 重要!如果你不需要详细的调试日志记录, 应始终将其设置为<span class="val">NONE</span>。启用调试日志记录将严重降低服务性能 ,且可能在很短时间耗尽磁盘空间。 调试日志记录包括每个请求和响应的详细信息。<br/><br/> 我们推荐将日志级别设置为<span class="val">DEBUG</span>,调试级别设置为<span class="val">NONE</span>。 这些设置意味着你的磁盘不会被调试日志塞满, 但是你可以使用<span class="tagl"><a href="ServerStat_Help.html#toggleDebugLog">Toggle Debug Logging</a></span> 控制调试输出。这个动作可以实时启用或关闭调试记录, 对于调试繁忙的生产服务器非常有用。</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#log_logLevel">日志级别</a></span>, <span class="tagl"><a href="ServerStat_Help.html#toggleDebugLog">Toggle Debug Logging</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="log_rollingSize"><h3>回滚大小 (bytes)<span class="ls-permlink"><a href="#log_rollingSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定何时日志文件需要回滚,也称为日志循环。 当文件大小超过回滚限制后,在使用的日志文件将在同一目录中被重命名 为log_name.mm_dd_yyyy(.sequence),一个新的日志文件将被创建。 回滚的日志文件的实际大小有时会比限制值稍微大一些。 将值设置为<span class="val">0</span>将禁用日志循环。</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> 请用“K”,“M”,“G”代表千字节,兆字节和千兆字节。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="log_keepDays"><h3>保留天数<span class="ls-permlink"><a href="#log_keepDays"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定访问日志文件将被保存在磁盘上多少天。 只有超出指定天数的回滚日志文件会被删除。 当前的日志文件不会被删除,无论它包含了多少天的数据。 如果你不想自动删除过时的、很旧的日志文件, 将该值设置为<span class="val">0</span>。</p> <h4>Syntax</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="log_compressArchive"><h3>压缩存档<span class="ls-permlink"><a href="#log_compressArchive"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否压缩回滚日志以节省磁盘空间。</p> <h4>Syntax</h4><p>从单选框选择</p> <h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> 日志文件是高度可压缩的,建议采取压缩以减少旧日志的磁盘占用量。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="log_enableStderrLog"><h3>启用标准错误日志(stderr)<span class="ls-permlink"><a href="#log_enableStderrLog"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定在接受到服务器启动的进程输出的标准错误时,是否写入到日志。 如果启用,标准错误信息将记录到服务器日志所在目录内的固定名为“stderr.log”的文件。如果禁用,所有的标准错误输出都将被丢弃。 弃。<br/> 诸如PHP的error_log()之类的函数不会直接写入标准错误日志(文件句柄2),所以不会受到此设置的影响,它们会写入PHP ini指令'error_log'中设置的文件或带有标签“ error.log”的文件中 如果未设置该指令,则为“[STDERR]”。</p> <h4>Syntax</h4><p>从单选框选择</p> <h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> 如果您需要调试配置的外部应用程序,如PHP、Ruby、Java、Python、Perl,请开启该功能。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessLog_fileName"><h3>文件名<span class="ls-permlink"><a href="#accessLog_fileName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定访问日志文件的文件名。</p> <h4>Syntax</h4><p>文件名可以是绝对路径,也可以是相对于$SERVER_ROOT的相对路径。</p> <h4>提示</h4><p>[性能建议] 将访问日志文件放置在一个单独的磁盘上。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessLog_pipedLogger"><h3>管道日志记录<span class="ls-permlink"><a href="#accessLog_pipedLogger"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定外部应用程序,该应用程序将通过其STDIN流(文件句柄为0)上的pipe接收LiteSpeed发送的访问日志数据。 指定此字段后,访问日志将仅发送到记录器应用程序,而不发送到上一个条目中指定的访问日志文件。<br/><br/> 首先必须在<span class="tagP"><a href="#ExtApp_Help">外部应用</a></span>中定义记录器应用程序。 服务器级别的访问日志记录只能使用在服务器级别定义的外部记录器应用程序。 虚拟主机级别的访问日志记录只能使用在虚拟主机级别定义的记录器应用程序。<br/><br/> 记录器进程的启动方式与其他外部进程相同 (CGI/FastCGI/LSAPI)过程。这意味着它将作为 在虚拟主机的<span class="tagl"><a href="VirtualHosts_Help.html#setUidMode">外部应用程序设置UID模式</a></span>设置中指定的用户ID,并且永远不会以特权用户运行。<br/><br/> 如果配置了多个记录器的实例,LiteSpeed web server将在多个记录器之间执行简单的负载均衡。LiteSpeed服务器始终尝试将记录器应用程序的数量保持在尽可能低的水平。只有当一个记录器应用程序未能及时处理访问日志条目时,服务器才会尝试启动记录器的另一个实例。<br/><br/> 如果记录器崩溃,Web服务器将启动另一个实例,但是流缓冲区中的日志数据将丢失。 如果外部记录器无法跟上日志流的速度和数量,则可能会丢失日志数据。</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessLog_logFormat"><h3>日志格式<span class="ls-permlink"><a href="#accessLog_logFormat"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p> 指定访问日志的格式。 设置之后,它将覆盖<span class="tagl"><a href="#accessLog_logHeader">记录头部</a></span> 的设定。</p> <h4>Syntax</h4><p>字符串。日志格式的语法与Apache 2.0自定义 <a href="http://httpd.apache.org/docs/current/mod/mod_log_config.html#formats" target="_blank" rel="noopener noreferrer">log format</a>.</p> <h4>例子</h4><div class="ls-example"><b>一般日志格式(CLF)</b><br/> "%h %l %u %t \"%r\" %>s %b"<br/><br/> <b>支持虚拟主机的一般日志格式</b><br/> "%v %h %l %u %t \"%r\" %>s %b"<br/><br/> <b>NCSA扩展/组合日志格式</b><br/> "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-agent}i\" <br/><br/> <b>记录Foobar的cookie值</b><br/> "%{Foobar}C"</div><h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#accessLog_logHeader">记录头部</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessLog_logHeader"><h3>记录头部<span class="ls-permlink"><a href="#accessLog_logHeader"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否记录HTTP请求头: <span class="val">Referer</span>、 <span class="val">UserAgent</span>和<span class="val">Host</span>。</p> <h4>Syntax</h4><p>从复选框中选择</p> <h4>提示</h4><p>[性能建议] 如果你不需要在访问日志中记录这些头部信息,关闭这个功能。</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#accessLog_logFormat">日志格式</a></span></p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> 版权所有.</footer> </div></div> </body> </html> �����zh-CN/CompilePHP_Help.html��������������������������������������������������������������������������0000644�����������������00000020376�15027525531�0011276 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - 编译PHP</title> <meta name="description" content="OpenLiteSpeed Users' Manual - 编译PHP." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 3</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="webconsole.html">Web Console</a></div><div class="center"><a href="index.html">主页</a></div><div class="next"> </div></div> <h1>编译PHP</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header>编译PHP</header><p> <a href="#extrapathenv">额外的PATH环境变量</a> | <a href="#installpathprefix">安装路径前缀</a> | <a href="#compilerflags">编译器标志</a> | <a href="#configureparams">配置参数</a> | <a href="#addonmodules">附加模块</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="extrapathenv"><h3>额外的PATH环境变量<span class="ls-permlink"><a href="#extrapathenv"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>将其他用于构建脚本的路径附加到当前PATH环境变量中。</p> <h4>Syntax</h4><p>多个路径以“:”分隔</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="installpathprefix"><h3>安装路径前缀<span class="ls-permlink"><a href="#installpathprefix"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>设置“--prefix”配置选项的值。 默认安装位置在LiteSpeed Web服务器的安装目录。</p> <h4>Syntax</h4><p>路径</p> <h4>例子</h4><div class="ls-example">/usr/local/lsws/lsphp5</div><h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> LiteSpeed Web Server可以同时使用多个PHP版本。 如果要安装多个版本,则 应该给他们不同的前缀。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="compilerflags"><h3>编译器标志<span class="ls-permlink"><a href="#compilerflags"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>添加其他编译器标志,例如优化的编译器选项。</p> <h4>Syntax</h4><p>支持的标志有CFLAGS, CXXFLAGS, CPPFLAGS, LDFLAGS.使用空格分隔不同的标志。 对于标志值,请使用单引号(而不是双引号)</p> <h4>例子</h4><div class="ls-example">CFLAGS='-O3 -msse2 -msse3 -msse4.1 -msse4.2 -msse4 -mavx'</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="configureparams"><h3>配置参数<span class="ls-permlink"><a href="#configureparams"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>为PHP构建配置参数。当您单击下一步时,Apache特定的参数和“--prefix”值将被自动删除,并且“--with-litespeed”将自动追加。(前缀可以在上面的字段中设置)通过这种方式,您可以简单地复制并粘贴现有PHP的phpinfo()输出的配置参数。</p> <h4>Syntax</h4><p>空格分隔多个选项(带或不带双引号)</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="addonmodules"><h3>附加模块<span class="ls-permlink"><a href="#addonmodules"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>选择您想使用的附加模块。 如果你想使用一个没有在这里列出的版本,你可以手动更新源代码。(源代码的位置会在PHP构建的这一步中显示出来。)</p> <h4>Syntax</h4><p>从复选框中选择</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> 版权所有.</footer> </div></div> </body> </html> ������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������zh-CN/ScriptHandler_Help.html�����������������������������������������������������������������������0000644�����������������00000021116�15027525531�0012071 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - 脚本处理程序</title> <meta name="description" content="OpenLiteSpeed Users' Manual - 脚本处理程序." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 3</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><span class="current"><a href="ScriptHandler_Help.html">Script Handler</a></span></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="ExtApp_Help.html">外部应用</a></div><div class="center"><a href="config.html">Configuration</a></div><div class="next"><a href="App_Server_Help.html">App Server Settings</a> »</div></div> <h1>脚本处理程序</h1><section class="ls-spacer-small-bottom">LiteSpeed Web Server支持所有脚本语言,包括Perl,PHP,Ruby,Python,Java等。用这些不同语言编写的脚本必须使用适当的外部应用程序中进行处理。 LiteSpeed Web Server使用脚本处理程序来确定脚本应使用哪个外部应用程序处理。 这些脚本处理程序通过使用文件后缀将文件转到外部应用程序。 (实际上,后缀用于确定MIME 类型,然后将其转到相应的外部应用程序。)必须先在“外部应用程序”选项卡中设置外部应用程序,然后才能选择它们在合适的脚本处理程序中处理。 <br/> <br/> 您可以在服务器或虚拟主机级别设置脚本处理程序。服务器级脚本处理程序应用于所有虚拟主机,除非该设置在虚拟主机级别被覆盖。 虚拟主机级别的脚本处理程序仅适用于该虚拟主机。</section> <h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header>脚本处理程序定义</header><p> <a href="#suffix">后缀</a> | <a href="#shType">类型</a> | <a href="#shHandlerName">处理器名称</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="suffix"><h3>后缀<span class="ls-permlink"><a href="#suffix"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定将由此脚本处理程序处理的脚本文件后缀。 后缀必须是唯一的。</p> <h4>Syntax</h4><p>Comma delimited list with period "." character prohibited.</p> <h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> 服务器将为列表中的第一个后缀自动添加特殊的MIME类型 ("application/x-httpd-[suffix]") 。 例如,将为后缀“ php53”添加MIME类型“ application/x-httpd-php53”。 首先需要在<span class="tagl"><a href="#mime">MIME设置</a></span>设置中设置后缀。<br/> 尽管我们在此字段中列出了后缀,但是脚本处理程序使用MIME类型而非后缀来确定要处理的脚本。<br/> [性能和安全建议] 仅指定您真正需要的后缀。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="shType"><h3>类型<span class="ls-permlink"><a href="#shType"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定处理这些脚本文件的外部程序类型。 可用类型有:<span class="val">CGI</span>, <span class="val">FastCGI</span>, <span class="val">Web服务器</span>, <span class="val">LSAPI应用程序</span>, <span class="val">负载均衡器</span>, 或 <span class="val">Servlet引擎</span>。 对于FastCGI, Web服务器和Servlet引擎,需要指定<span class="tagl"><a href="#shHandlerName">处理器名称</a></span>。 这是在<span class="tagP"><a href="#ExtApp_Help">外部应用</a></span>部分预设定的外部程序名称。</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="shHandlerName"><h3>处理器名称<span class="ls-permlink"><a href="#shHandlerName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>当处理器类型为FastCGI,Web服务器,LSAPI,负载均衡器或Servlet引擎时, 指定处理脚本文件的外部程序名称。</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> 版权所有.</footer> </div></div> </body> </html> ��������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������zh-CN/install.html����������������������������������������������������������������������������������0000644�����������������00000023536�15027525531�0010035 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Installation</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Installation." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 3</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><span class="current"><a href="install.html">Installation</a></span></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="intro.html">Introduction</a></div><div class="center"><a href="index.html">主页</a></div><div class="next"><a href="admin.html">Administration</a> »</div></div> <h1>安装/卸载</h1> <h2>最低系统要求</h2> <ul> <li> <strong>操作系统:</strong> <ul> <li>Linux(i386): kernel 2.4或更高, glibc-2.2 或更高</li> <li>CentOS: 5 或更高</li> <li>Ubuntu: 8.04 或更高</li> <li>Debian: 4 或更高</li> <li>FreeBSD(i386): 4.5 and up</li> <li>MacOSX: 10.3 and up</li> </ul> </li> <li> <strong>CPU:</strong> <ul> <li>Intel: 80486 或更高</li> <li>PowerPC: PowerPC G4</li> </ul> </li> <li><strong>内存:</strong> 32MB 或更高</li> <li> <strong>硬盘:</strong> <ul> <li>安装时: 200MB</li> <li>运行时: 300MB或更高, 交换空间取决于使用情况。</li> </ul> </li> </ul> <h2>安装</h2> <p> 安装必须在命令行终端中执行。 出于测试目的, 非特权用户可以将LiteSpeed Web Server安装到主目录中。 对于生产用途,应将其安装到系统目录中。 </p> <p> 在Mac OS X中,默认情况下禁用root用户。 可以使用Apple网站上的详述操作来启用它. 您也可以使用sudo命令在不启用root用户的情况下将LSWS安装到系统目录中, 但是系统文件夹仍然只能由root用户操作。 这意味着每次您要从命令行终端控制LSWS时(例如,启动或停止LSWS时), 都必须使用sudo命令。 </p> <h3>安装步骤:</h3> <p> 访问 <a href="https://openlitespeed.org/kb/" target="_blank" rel="noopener"> OpenLiteSpeed知识库 </a> 查看有关安装方法的列表。 </p> <h2>开始</h2> <ol> <li> <p> 有关控制服务器进程的详细信息,请参阅《管理指南》。 </p> <p> 要启动LSWS,只需运行 [您的安装文件夹]/bin/lswsctrl. (停止请运行 [您的安装文件夹]/bin/lswsctrl.) </p> </li> <li> <p>示例站点应在服务器上运行.</p> <p> 如果想访问您的网站,请访问 http://[address]:8088/, [address] 是您的Web服务器的IP地址或域名。 如果服务器在您使用的计算机上,使用"localhost" "8088"是默认的端口. 如果在安装过程中为LiteSpeed选择了另一个端口,请使用您指定的端口。 </p> <p> 当访问上述地址时,应为祝贺的测试页面。 如果不是,请尝试访问WebAdmin控制台界面。 </p> </li> <li> <p>WebAdmin控制台的默认端口是 7080.</p> <p> 访问http://[address]:7080/来进入WebAdmin. (如果在安装过程中更改了WebAdmin的端口,请改用该端口。) </p> <p> 记住对于[address],如果服务器在您使用的计算机上你可以使用 "localhost" </p> <p> TWebAdmin欢迎页面应该加载。 点击 "Log on" 链接, 并使用安装期间指定的管理员用户名和密码登录。 </p> <p> 有关配置的详细信息,请参阅我们的配置指南,或单击顶部的“帮助”。 </p> </li> <li> <p> 如果您的服务器使用防火墙,请确保本地主机受信任。 </p> <p> 例如,带有IPTables的Linux应该包括LO的ALLOW INPUT规则。 </p> </li> <li> <p> 如果您的网站和WebAdmin Console无法访问,请查看错误日志 [your_install_dir]/logs/error.log. </p> <p> 如果与其他服务器应用程序存在TCP端口冲突,则应使用可用端口重新安装Web服务器。 可以使用以下命令查找可用端口: <span class="cmd">netstat -an | grep XXXX </span> XXXX是端口号。 如果端口可用,该命令将不产生任何输出。 </p> <p> 如果交换目录不可写,则可以将交换目录的写权限授予运行Web服务器的用户,也可以手动更改交换目录的配置。 交换目录在服务器的XML配置文件中配置: [your_install_dir]/conf/httpd_config.xml. 在XML文件中搜索swappingDir。 交换目录的默认位置是/tmp/lshttpd/swap。 </p> <p> 如果您仍然有安装问题,请查看我们的Wiki或将您的问题发布在我们的支持论坛上。 </p> </li> </ol> <h2>Notes</h2> <ul> <li> OpenLiteSpeed支持本机LiteSpeed XML配置文件和纯文本配置文件(用于编辑Apache的httpd.conf的文件) 运行 [your_install_dir]/conf/switch_config.sh l来在这些格式之间切换。 </li> <li> 在FreeBSD,Mac OS X,Ubuntu和Debian上,附带的PHP(对于CentOS)将无法运行。 您将需要为OpenLiteSpeed构建新的PHP,以便使用OpenLiteSpeed运行PHP应用程序。 </li> </ul> <h2>卸载步骤</h2> <ol> <li> 如果OpenLiteSpeed正在运行,则停止它: [your_install_dir]/bin/lswsctrl stop </li> <li>删除安装文件夹: rm -rf [your_install_dir]</li> </ol></article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> 版权所有.</footer> </div></div> </body> </html> ������������������������������������������������������������������������������������������������������������������������������������������������������������������zh-CN/App_Server_Context.html�����������������������������������������������������������������������0000644�����������������00000066233�15027525531�0012142 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - App Server Context</title> <meta name="description" content="OpenLiteSpeed Users' Manual - App Server Context." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 3</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><span class="current"><a href="App_Server_Context.html">App Server Context</a></span></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="Redirect_Context.html">Redirect Context</a></div><div class="center"><a href="Context_Help.html">Context</a></div><div class="next"><a href="Module_Context.html">Module Handler Context</a> »</div></div> <h1>App Server Context</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header><a href="#appServerContext">App Server Context</a></header><p> <a href="#expuri">URI</a> | <a href="#as_location">Location</a> | <a href="#binPath">二进制文件路径</a> | <a href="#appType">应用类型</a> | <a href="#as_startupfile">启动文件</a> | <a href="#appserverEnv">运行模式</a> | <a href="#maxConns">最大连接数</a> | <a href="#env">环境</a> | <a href="#enableExpires">启用过期</a> | <a href="#expiresDefault">默认过期</a> | <a href="#expiresByType">按类型过期</a> | <a href="#extraHeaders">标头控制</a> | <a href="#indexFiles">索引文件</a> | <a href="#autoIndex">自动索引</a> | <a href="#realm">域</a> | <a href="#authName">认证名称</a> | <a href="#required">Require(授权的用户/组)</a> | <a href="#accessAllowed">允许访问列表</a> | <a href="#accessDenied">拒绝访问列表</a> | <a href="#extAuthorizer">Authorizer</a> | <a href="#enableRewrite">启用重写</a> | <a href="#rewriteInherit">重写继承</a> | <a href="#rewriteBase">重写基准</a> | <a href="#rewriteRules">重写规则</a> | <a href="#addDefaultCharset">添加默认的字符集</a> | <a href="#defaultCharsetCustomized">自定义默认字符集</a> | <a href="#enableIpGeo">启用IP地理定位</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="appServerContext"><h3>App Server Context<span class="ls-permlink"><a href="#appServerContext"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>An App Server Context provides an easy way to configure a Ruby Rack/Rails, WSGI, or Node.js application. To add a an application through an App Server Context, only mounting the URL and the application's root directory is required. There is no need to go through all the trouble to define an external application, add a 404 handler, and rewrite rules, etc.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expuri"><h3>URI<span class="ls-permlink"><a href="#expuri"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the URI for this context.</p> <h4>Syntax</h4><p>指定此context下的URI。这个URI应该以"/"开始。 如果一个URI以"/"结束,那么该context将包含这个URI下的所有下级URI。如果context类型映射到系统目录上,则必须添加结尾的"/"</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#location">位置</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="as_location"><h3>Location<span class="ls-permlink"><a href="#as_location"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定此context在文件系统中的对应位置。<br/><br/> Default value: $DOC_ROOT + <span class="tagl"><a href="#expuri">URI</a></span></p> <h4>Syntax</h4><p>It can be an absolute path or path relative to $SERVER_ROOT, $VH_ROOT, or $DOC_ROOT. $DOC_ROOT is the default relative path, and can be omitted.<br/><br/> If the <span class="tagl"><a href="#expuri">URI</a></span> is a regular expression, then the matched sub-string can be used to form the "Root" string. The matched sub-string can be referenced with the values "$1" - "$9". "$0" and "&" can be used to reference the whole matched string. Additionally, a query string can be set by appending a "?" followed by the query string. Be careful. "&" should be escaped as "\&" in the query string.</p> <h4>例子</h4><div class="ls-example">A plain URI like <span class="val">/examples/</span> with <span class="tagl"><a href="#location">位置</a></span> set to <span class="val">/home/john/web_examples</span> will map the request "/examples/foo/bar.html" to file "/home/john/web_examples/foo/bar.html".<br/> To simulate Apache's mod_userdir, set URI to <span class="val">exp: ^/~([A-Za-z0-9]+)(.*)</span>, set <span class="tagl"><a href="#location">位置</a></span> to <span class="val">/home/$1/public_html$2</span>. With these settings, a request of URI /~john/foo/bar.html will map to file /home/john/public_html/foo/bar.html.</div><h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#expuri">URI</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="binPath"><h3>二进制文件路径<span class="ls-permlink"><a href="#binPath"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>App Server的二进制文件的位置。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="appType"><h3>应用类型<span class="ls-permlink"><a href="#appType"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>用于此context的应用程序类型。 支持Rack/Rails, WSGI, 和 Node.js。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="as_startupfile"><h3>启动文件<span class="ls-permlink"><a href="#as_startupfile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>用于启动应用程序的文件,路径应相对于应用程序根目录。<br/><br/> 默认的启动文件包括Rack/Rails的'config.ru', WSGI的'wsgi.py'和'passenger_wsgi.py', NodeJS的'app.js'.</p> <h4>Syntax</h4><p>Path relative to application root directory</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="appserverEnv"><h3>运行模式<span class="ls-permlink"><a href="#appserverEnv"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定Rack/Rails的运行模式:"发展", "生产"或者是"预发布". 默认为 "生产".</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxConns"><h3>最大连接数<span class="ls-permlink"><a href="#maxConns"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定服务器与外部应用之间可建立的最大并发连接数。该设置控制外部应用程序可同时处理多少个请求。 然而,真正的限制还取决于外部应用本身。如果外部的速度不够快,或者无法处理大量的并发请求,那么将这个值设置得更高也无济于事。</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p>[性能建议] 设置一个高值并不能直接变成高性能。设置为一个不会使外部应用程序过载的值,将提供最佳的性能/吞吐量。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="env"><h3>环境<span class="ls-permlink"><a href="#env"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>为外部应用程序指定额外的环境变量。</p> <h4>Syntax</h4><p>Key=value. Multiple variables can be separated by "ENTER"</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableExpires"><h3>启用过期<span class="ls-permlink"><a href="#enableExpires"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否为静态文件生成Expires头。如果启用,将根据 <span class="tagl"><a href="#expiresDefault">默认过期</a></span>和<span class="tagl"><a href="#expiresByType">按类型过期</a></span>生成Expires头。<br/><br/> 这可以在服务器,虚拟主机和Context级别设置。低级别的设置将 覆盖高级别的设置。例如,Context级别的设置将覆盖虚拟主机级别的设置, 虚拟主机级别的设置将覆盖服务器级别的设置。</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expiresDefault"><h3>默认过期<span class="ls-permlink"><a href="#expiresDefault"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定生成Expires头的默认设置。该设置在<span class="tagl"><a href="#enableExpires">启用过期</a></span> 设为“启用”时有效。它可以被<span class="tagl"><a href="#expiresByType">按类型过期</a></span>覆盖。 除非必要,否则不要在服务器或虚拟主机级别设置该默认值。 因为它会为所有网页生成Expires头。大多数时候,应该是 为不常变动的某些目录在Context级别设置。如果没有默认设置,<span class="tagl"><a href="#expiresByType">按类型过期</a></span>中未指定的类型不会生成Expires头。</p> <h4>Syntax</h4><p>A|Mseconds<br/> 文件将在基准时间(A|M)加指定秒数的时间后失效。 “A”代表基准时间为客户端的访问时间,“M”代表文件的最后修改时间。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expiresByType"><h3>按类型过期<span class="ls-permlink"><a href="#expiresByType"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>为各个MIME类型分别指定Expires头设置。</p> <h4>Syntax</h4><p>逗号分隔的“MIME-类型=A|M秒数”的列表。 文件将在基准时间(A|M)加指定秒数的时间后失效。<br/><br/> “A”代表基准时间为客户端的访问时间,“M”代表文件的最后修改时间。 MIME-类型可使用通配符“*”,如image/*。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extraHeaders"><h3>标头控制<span class="ls-permlink"><a href="#extraHeaders"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定要添加的附加响应/请求头。可以添加每行一个来添加多个头指令。"NONE "可以用来禁止父头继承。如果没有提供,则假定为 "Header"。</p> <h4>Syntax</h4><p>[Header]|RequestHeader [condition] set|append|merge|add|unset header [value] [early|env=[!]variable]</p> <h4>例子</h4><div class="ls-example">set Cache-control no-cache<br/> append Cache-control no-store<br/> Header set My-header cust_header_val<br/> RequestHeader set My-req-header cust_req_header_val</div><h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> 语法和用法类似于 <a href="https://httpd.apache.org/docs/2.2/mod/mod_headers.html#header" target="_blank" rel="noopener noreferrer">Apache's mod_headers directives</a><br/><br/> <span title="Information" class="ls-icon-info"></span> The 'Header' directive is is optional and can be excluded or left in when copying rules from elsewhere without issue.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="indexFiles"><h3>索引文件<span class="ls-permlink"><a href="#indexFiles"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定URL映射到目录时顺序查找的索引文件名称。 您可以在服务器、虚拟主机和Context级别对其进行自定义。</p> <h4>Syntax</h4><p>Comma-delimited list of index filenames.</p> <h4>提示</h4><p>[性能建议] 只设置你需要的索引文件。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="autoIndex"><h3>自动索引<span class="ls-permlink"><a href="#autoIndex"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>在目录中,当<span class="tagl"><a href="#indexFiles">索引文件</a></span>中所列的索引文件不可用时,指定运行时是否即时生成目录索引。<br/> 此选项可以在虚拟主机级别和context级别中设置,并可以顺着目录树继承,直到被覆盖。 您可以自定义生成的索引页面。请访问在线百科了解如何操作。</p> <h4>Syntax</h4><p>从单选框选择</p> <h4>提示</h4><p>[安全建议] 建议关闭自动索引,从而尽可能防止泄露机密数据。</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#indexFiles">索引文件</a></span>, <span class="tagl"><a href="#autoIndexURI">自动索引URI</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="realm"><h3>域<span class="ls-permlink"><a href="#realm"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定这个context下的realm授权。 当指定时,必须提供有效的用户和用户名来访问这个context。 <span class="tagl"><a href="VHSecurity_Help.html#realms">Realms授权</a></span>需要在<span class="tagP"><a href="#VHSecurity_Help">虚拟主机安全</a></span>部分进行设置。 此设置使用每个realm的<span class="tagl"><a href="VHSecurity_Help.html#realmName">域名称</a></span>。</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="authName"><h3>认证名称<span class="ls-permlink"><a href="#authName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>为当前context下的realm认证指定一个替代的名称。 如果没有指定,原realm名称将被使用。 认证名称将显示在浏览器登陆弹出窗口。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="required"><h3>Require(授权的用户/组)<span class="ls-permlink"><a href="#required"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定哪些用户/用户组可以访问此context。 这里允许你使用一个用户/组数据库(在 <span class="tagl"><a href="#realm">域</a></span>中指定)访问多个context, 但只允许该数据库下特定的用户/组访问这个context。</p> <h4>Syntax</h4><p>Syntax is compatible with Apache's Require directive. For example: <ul> <li><span class="val">user username [username ...]</span><br/> Only listed users can access this context.</li> <li> <span class="val">group groupid [groupid ...]</span><br/> Only users belonging to the listed groups can access this context.</li> </ul> If this setting is not specified, all valid users will be allowed to access this resource.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessAllowed"><h3>允许访问列表<span class="ls-permlink"><a href="#accessAllowed"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定允许访问这个context下资源的IP地址或子网。综合 <span class="tagl"><a href="#accessDenied">拒绝访问列表</a></span>项的配置以及服务器/虚拟主机级别访问控制, 可访问性将以客户端IP所符合的最小范围来确定。</p> <h4>Syntax</h4><p>Comma-delimited list of IPs/sub-networks.</p> <h4>例子</h4><div class="ls-example">网络可以写成<span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span> 或<span class="val">192.168.1.*</span>。</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessDenied"><h3>拒绝访问列表<span class="ls-permlink"><a href="#accessDenied"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定哪个IP地址或子网不被允许访问这个context下的资源。 综合<span class="tagl"><a href="#accessAllowed">允许访问列表</a></span>项的配置以及服务器/虚拟主机级别访问控制, 可访问性将以客户端IP所符合的最小范围来确定。</p> <h4>Syntax</h4><p>Comma-delimited list of IPs/sub-networks.</p> <h4>例子</h4><div class="ls-example">子网络可以写成<span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span> 或<span class="val">192.168.1.*</span>。</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAuthorizer"><h3>Authorizer<span class="ls-permlink"><a href="#extAuthorizer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定可用于生成授权/未授权 decisions的外部应用程序。 目前,仅FastCGI授权器可用。 有关FastCGI授权者角色的更多详细信息, 请访问<a href="https://fastcgi-archives.github.io/" target="_blank" rel="noopener noreferrer">https://fastcgi-archives.github.io/</a>。</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableRewrite"><h3>启用重写<span class="ls-permlink"><a href="#enableRewrite"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否启用LiteSpeed的URL重写. 可以在虚拟主机或context级别上自定义此选项, 并且沿目录树继承该选项,直到被其他选项覆。</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="rewriteInherit"><h3>重写继承<span class="ls-permlink"><a href="#rewriteInherit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否从父级context继承重写规则。 如果启用重写但不继承,将启用本context的重写基准及重写规则。</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="rewriteBase"><h3>重写基准<span class="ls-permlink"><a href="#rewriteBase"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定重写规则的基准URL。</p> <h4>Syntax</h4><p>URL</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="rewriteRules"><h3>重写规则<span class="ls-permlink"><a href="#rewriteRules"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定虚拟主机级别的重写规则。<br/><br/> 请勿在此处添加任何目录级重写规则。 如果您在.htaccess有任何目录级的重写规则,则应该使用uri"/"创建一个静态context, 并在那里添加重写规则。 <br/><br/> 重写规则由一个<span class="val">RewriteRule</span>组成,并可可以在多个<span class="val">RewriteCond</span>之后。 <ul> <li>每行仅能有一条规则</li> <li> <span class="val">RewriteCond</span> 和 <span class="val">RewriteRule</span> 遵循Apache的rewrite语法。 只需从Apache配置文件中复制并粘贴重写规则即可。 </li> <li> LiteSpeed和Apache mod_rewrite之间有细微差别: <ul> <li> <span class="val">%\{LA-U:variable\}</span> and <span class="val">%\{LA-F:variable\}</span> 在Litespeed 重写中将被忽略 </li> <li> Litespeed中加入了两个新变量: <span class="val">%\{CURRENT_URI\}</span>表示正在处理的URL <span class="val">%\{SCRIPT_NAME\}</span>表示为相应的CGI环境变量。 </li> <li> Litespeed在遇到<span class="val">[L]</span>后为了避免循环将停止处理此及此后的重写规则 而Apache mod_rewrite将仅停止处理该条重写规则。此行为类似于apachemod_rewrite中的<span class="val">[END]</span>标志。 </li> </ul> </li> </ul><br/> LiteSpeed的重写规则遵循Apache的重写规范。 有关重写规则的更多详细信息,请参阅 <a href=" http://httpd.apache.org/docs/current/mod/mod_rewrite.html " target="_blank" rel="noopener noreferrer"> Apache's mod_rewrite document(英文文档) </a> 和 <a href=" http://httpd.apache.org/docs/current/rewrite/ " target="_blank" rel="noopener noreferrer"> Apache's URL rewriting guide(英文文档) </a>.</p> <h4>Syntax</h4><p>string</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="addDefaultCharset"><h3>添加默认的字符集<span class="ls-permlink"><a href="#addDefaultCharset"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>S指定当内容类型是"text/html"或"text/plain"且没有参数时,是否添加字符集标记到"Content-Type"响应报头中。当设置为<span class="val">Off</span>时,该功能禁用。当设置为<span class="val">On</span>时,将添加<span class="tagl"><a href="#defaultCharsetCustomized">自定义默认字符集</a></span>中指定的字符集,如果没有指定,将添加默认的"iso-8859-1"字符集。</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="defaultCharsetCustomized"><h3>自定义默认字符集<span class="ls-permlink"><a href="#defaultCharsetCustomized"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定一个字符集当<span class="tagl"><a href="#addDefaultCharset">添加默认的字符集</a></span>是<span class="val">On</span>时使用。这是可选的。默认值是<span class="val">iso-8859-1</span>。当<span class="tagl"><a href="#addDefaultCharset">添加默认的字符集</a></span>是<span class="val">Off</span>时本设置将不生效。</p> <h4>Syntax</h4><p>Name of a character set.</p> <h4>例子</h4><div class="ls-example">utf-8</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableIpGeo"><h3>启用IP地理定位<span class="ls-permlink"><a href="#enableIpGeo"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否启用IP地理定位查找。 可以在服务器级别,虚拟主机级别,或context级别设置。</p> <h4>Syntax</h4><p>从单选框选择</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="ServGeneral_Help.html#useIpInProxyHeader">使用报头中的客户端IP</a></span>, <span class="tagl"><a href="ServGeneral_Help.html#geoipDBFile">数据库文件路径</a></span>,</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> 版权所有.</footer> </div></div> </body> </html> ���������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������zh-CN/Static_Context.html���������������������������������������������������������������������������0000644�����������������00000066752�15027525531�0011331 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Static Context</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Static Context." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 3</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><span class="current"><a href="Static_Context.html">Static Context</a></span></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev"> </div><div class="center"><a href="Context_Help.html">Context</a></div><div class="next"><a href="Java_Web_App_Context.html">Java Web App Context</a> »</div></div> <h1>Static Context</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header><a href="#generalContext">静态Context</a></header><p> <a href="#expuri">URI</a> | <a href="#location">位置</a> | <a href="#allowBrowse">访问权限</a> | <a href="#enableExpires">启用过期</a> | <a href="#expiresDefault">默认过期</a> | <a href="#expiresByType">按类型过期</a> | <a href="#extraHeaders">标头控制</a> | <a href="#addMIMEType">MIME类型</a> | <a href="#forceType">强制MIME类型</a> | <a href="#defaultType">默认MIME类型</a> | <a href="#indexFiles">索引文件</a> | <a href="#autoIndex">自动索引</a> | <a href="#realm">域</a> | <a href="#authName">认证名称</a> | <a href="#required">Require(授权的用户/组)</a> | <a href="#accessAllowed">允许访问列表</a> | <a href="#accessDenied">拒绝访问列表</a> | <a href="#extAuthorizer">Authorizer</a> | <a href="#addDefaultCharset">添加默认的字符集</a> | <a href="#defaultCharsetCustomized">自定义默认字符集</a> | <a href="#enableRewrite">启用重写</a> | <a href="#rewriteInherit">重写继承</a> | <a href="#rewriteBase">重写基准</a> | <a href="#rewriteRules">重写规则</a> | <a href="#enableIpGeo">启用IP地理定位</a> | <a href="#phpIniOverride">php.ini 重写</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="generalContext"><h3>静态Context<span class="ls-permlink"><a href="#generalContext"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Context settings are used to specify special settings for files in a certain location. These settings can be used to bring in files outside of the document root (like Apache's Alias or AliasMatch directives), to protect a particular directory using authorization realms, or to block or restrict access to a particular directory within the document root.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expuri"><h3>URI<span class="ls-permlink"><a href="#expuri"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the URI for this context.</p> <h4>Syntax</h4><p>指定此context下的URI。这个URI应该以"/"开始。 如果一个URI以"/"结束,那么该context将包含这个URI下的所有下级URI。如果context类型映射到系统目录上,则必须添加结尾的"/"</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#location">位置</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="location"><h3>位置<span class="ls-permlink"><a href="#location"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定此context在文件系统中的对应位置。<br/><br/> Default value: $DOC_ROOT + <span class="tagl"><a href="#expuri">URI</a></span></p> <h4>Syntax</h4><p>It can be an absolute path or path relative to $SERVER_ROOT, $VH_ROOT, or $DOC_ROOT. $DOC_ROOT is the default relative path, and can be omitted.<br/><br/> If the <span class="tagl"><a href="#expuri">URI</a></span> is a regular expression, then the matched sub-string can be used to form the "Root" string. The matched sub-string can be referenced with the values "$1" - "$9". "$0" and "&" can be used to reference the whole matched string. Additionally, a query string can be set by appending a "?" followed by the query string. Be careful. "&" should be escaped as "\&" in the query string.</p> <h4>例子</h4><div class="ls-example">A plain URI like <span class="val">/examples/</span> with <span class="tagl"><a href="#location">位置</a></span> set to <span class="val">/home/john/web_examples</span> will map the request "/examples/foo/bar.html" to file "/home/john/web_examples/foo/bar.html".<br/> To simulate Apache's mod_userdir, set URI to <span class="val">exp: ^/~([A-Za-z0-9]+)(.*)</span>, set <span class="tagl"><a href="#location">位置</a></span> to <span class="val">/home/$1/public_html$2</span>. With these settings, a request of URI /~john/foo/bar.html will map to file /home/john/public_html/foo/bar.html.</div><h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#expuri">URI</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="allowBrowse"><h3>访问权限<span class="ls-permlink"><a href="#allowBrowse"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否可以访问此context 。 设置为<span class="val">否</span>以拒绝访问。 您可以使用此功能来防止访问指定目录。 您可以在更新此context内容或此目录中有特殊数据时使用它。</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableExpires"><h3>启用过期<span class="ls-permlink"><a href="#enableExpires"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否为静态文件生成Expires头。如果启用,将根据 <span class="tagl"><a href="#expiresDefault">默认过期</a></span>和<span class="tagl"><a href="#expiresByType">按类型过期</a></span>生成Expires头。<br/><br/> 这可以在服务器,虚拟主机和Context级别设置。低级别的设置将 覆盖高级别的设置。例如,Context级别的设置将覆盖虚拟主机级别的设置, 虚拟主机级别的设置将覆盖服务器级别的设置。</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expiresDefault"><h3>默认过期<span class="ls-permlink"><a href="#expiresDefault"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定生成Expires头的默认设置。该设置在<span class="tagl"><a href="#enableExpires">启用过期</a></span> 设为“启用”时有效。它可以被<span class="tagl"><a href="#expiresByType">按类型过期</a></span>覆盖。 除非必要,否则不要在服务器或虚拟主机级别设置该默认值。 因为它会为所有网页生成Expires头。大多数时候,应该是 为不常变动的某些目录在Context级别设置。如果没有默认设置,<span class="tagl"><a href="#expiresByType">按类型过期</a></span>中未指定的类型不会生成Expires头。</p> <h4>Syntax</h4><p>A|Mseconds<br/> 文件将在基准时间(A|M)加指定秒数的时间后失效。 “A”代表基准时间为客户端的访问时间,“M”代表文件的最后修改时间。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expiresByType"><h3>按类型过期<span class="ls-permlink"><a href="#expiresByType"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>为各个MIME类型分别指定Expires头设置。</p> <h4>Syntax</h4><p>逗号分隔的“MIME-类型=A|M秒数”的列表。 文件将在基准时间(A|M)加指定秒数的时间后失效。<br/><br/> “A”代表基准时间为客户端的访问时间,“M”代表文件的最后修改时间。 MIME-类型可使用通配符“*”,如image/*。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extraHeaders"><h3>标头控制<span class="ls-permlink"><a href="#extraHeaders"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定要添加的附加响应/请求头。可以添加每行一个来添加多个头指令。"NONE "可以用来禁止父头继承。如果没有提供,则假定为 "Header"。</p> <h4>Syntax</h4><p>[Header]|RequestHeader [condition] set|append|merge|add|unset header [value] [early|env=[!]variable]</p> <h4>例子</h4><div class="ls-example">set Cache-control no-cache<br/> append Cache-control no-store<br/> Header set My-header cust_header_val<br/> RequestHeader set My-req-header cust_req_header_val</div><h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> 语法和用法类似于 <a href="https://httpd.apache.org/docs/2.2/mod/mod_headers.html#header" target="_blank" rel="noopener noreferrer">Apache's mod_headers directives</a><br/><br/> <span title="Information" class="ls-icon-info"></span> The 'Header' directive is is optional and can be excluded or left in when copying rules from elsewhere without issue.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="addMIMEType"><h3>MIME类型<span class="ls-permlink"><a href="#addMIMEType"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>为此context指定的其他MIME类型的映射. 新映射将覆盖此context及其子context下的现有映射。<br/> 如果要将PHP脚本显示为文本文件而不是作为脚本执行,则只需覆盖.php映射到MIME类型"text/plain"</p> <h4>Syntax</h4><p>MIME-type1 extension extension ..., MIME-type2 extension ... Use comma to separate between MIME types, use space to separate multiple extensions.</p> <h4>例子</h4><div class="ls-example"><span class="val">image/jpg jpeg jpg, image/gif gif</span></div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="forceType"><h3>强制MIME类型<span class="ls-permlink"><a href="#forceType"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定后,无论文件后缀如何, 此context下的所有文件都将用作具有指定MIME类型的静态文件。 设置为<span class="val">NONE</span>时,将禁用强制MIME类型。</p> <h4>Syntax</h4><p>MIME type or NONE.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="defaultType"><h3>默认MIME类型<span class="ls-permlink"><a href="#defaultType"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>定后,当MIME类型映射不能由文档的后缀确定或没有后缀时,将使用此类型。如果未指定,将使用默认值<span class="val">application/octet-stream</span>。</p> <h4>Syntax</h4><p>MIME-type</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="indexFiles"><h3>索引文件<span class="ls-permlink"><a href="#indexFiles"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定URL映射到目录时顺序查找的索引文件名称。 您可以在服务器、虚拟主机和Context级别对其进行自定义。</p> <h4>Syntax</h4><p>Comma-delimited list of index filenames.</p> <h4>提示</h4><p>[性能建议] 只设置你需要的索引文件。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="autoIndex"><h3>自动索引<span class="ls-permlink"><a href="#autoIndex"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>在目录中,当<span class="tagl"><a href="#indexFiles">索引文件</a></span>中所列的索引文件不可用时,指定运行时是否即时生成目录索引。<br/> 此选项可以在虚拟主机级别和context级别中设置,并可以顺着目录树继承,直到被覆盖。 您可以自定义生成的索引页面。请访问在线百科了解如何操作。</p> <h4>Syntax</h4><p>从单选框选择</p> <h4>提示</h4><p>[安全建议] 建议关闭自动索引,从而尽可能防止泄露机密数据。</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#indexFiles">索引文件</a></span>, <span class="tagl"><a href="#autoIndexURI">自动索引URI</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="realm"><h3>域<span class="ls-permlink"><a href="#realm"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定这个context下的realm授权。 当指定时,必须提供有效的用户和用户名来访问这个context。 <span class="tagl"><a href="VHSecurity_Help.html#realms">Realms授权</a></span>需要在<span class="tagP"><a href="#VHSecurity_Help">虚拟主机安全</a></span>部分进行设置。 此设置使用每个realm的<span class="tagl"><a href="VHSecurity_Help.html#realmName">域名称</a></span>。</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="authName"><h3>认证名称<span class="ls-permlink"><a href="#authName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>为当前context下的realm认证指定一个替代的名称。 如果没有指定,原realm名称将被使用。 认证名称将显示在浏览器登陆弹出窗口。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="required"><h3>Require(授权的用户/组)<span class="ls-permlink"><a href="#required"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定哪些用户/用户组可以访问此context。 这里允许你使用一个用户/组数据库(在 <span class="tagl"><a href="#realm">域</a></span>中指定)访问多个context, 但只允许该数据库下特定的用户/组访问这个context。</p> <h4>Syntax</h4><p>Syntax is compatible with Apache's Require directive. For example: <ul> <li><span class="val">user username [username ...]</span><br/> Only listed users can access this context.</li> <li> <span class="val">group groupid [groupid ...]</span><br/> Only users belonging to the listed groups can access this context.</li> </ul> If this setting is not specified, all valid users will be allowed to access this resource.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessAllowed"><h3>允许访问列表<span class="ls-permlink"><a href="#accessAllowed"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定允许访问这个context下资源的IP地址或子网。综合 <span class="tagl"><a href="#accessDenied">拒绝访问列表</a></span>项的配置以及服务器/虚拟主机级别访问控制, 可访问性将以客户端IP所符合的最小范围来确定。</p> <h4>Syntax</h4><p>Comma-delimited list of IPs/sub-networks.</p> <h4>例子</h4><div class="ls-example">网络可以写成<span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span> 或<span class="val">192.168.1.*</span>。</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessDenied"><h3>拒绝访问列表<span class="ls-permlink"><a href="#accessDenied"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定哪个IP地址或子网不被允许访问这个context下的资源。 综合<span class="tagl"><a href="#accessAllowed">允许访问列表</a></span>项的配置以及服务器/虚拟主机级别访问控制, 可访问性将以客户端IP所符合的最小范围来确定。</p> <h4>Syntax</h4><p>Comma-delimited list of IPs/sub-networks.</p> <h4>例子</h4><div class="ls-example">子网络可以写成<span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span> 或<span class="val">192.168.1.*</span>。</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAuthorizer"><h3>Authorizer<span class="ls-permlink"><a href="#extAuthorizer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定可用于生成授权/未授权 decisions的外部应用程序。 目前,仅FastCGI授权器可用。 有关FastCGI授权者角色的更多详细信息, 请访问<a href="https://fastcgi-archives.github.io/" target="_blank" rel="noopener noreferrer">https://fastcgi-archives.github.io/</a>。</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="addDefaultCharset"><h3>添加默认的字符集<span class="ls-permlink"><a href="#addDefaultCharset"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>S指定当内容类型是"text/html"或"text/plain"且没有参数时,是否添加字符集标记到"Content-Type"响应报头中。当设置为<span class="val">Off</span>时,该功能禁用。当设置为<span class="val">On</span>时,将添加<span class="tagl"><a href="#defaultCharsetCustomized">自定义默认字符集</a></span>中指定的字符集,如果没有指定,将添加默认的"iso-8859-1"字符集。</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="defaultCharsetCustomized"><h3>自定义默认字符集<span class="ls-permlink"><a href="#defaultCharsetCustomized"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定一个字符集当<span class="tagl"><a href="#addDefaultCharset">添加默认的字符集</a></span>是<span class="val">On</span>时使用。这是可选的。默认值是<span class="val">iso-8859-1</span>。当<span class="tagl"><a href="#addDefaultCharset">添加默认的字符集</a></span>是<span class="val">Off</span>时本设置将不生效。</p> <h4>Syntax</h4><p>Name of a character set.</p> <h4>例子</h4><div class="ls-example">utf-8</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableRewrite"><h3>启用重写<span class="ls-permlink"><a href="#enableRewrite"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否启用LiteSpeed的URL重写. 可以在虚拟主机或context级别上自定义此选项, 并且沿目录树继承该选项,直到被其他选项覆。</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="rewriteInherit"><h3>重写继承<span class="ls-permlink"><a href="#rewriteInherit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否从父级context继承重写规则。 如果启用重写但不继承,将启用本context的重写基准及重写规则。</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="rewriteBase"><h3>重写基准<span class="ls-permlink"><a href="#rewriteBase"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定重写规则的基准URL。</p> <h4>Syntax</h4><p>URL</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="rewriteRules"><h3>重写规则<span class="ls-permlink"><a href="#rewriteRules"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定虚拟主机级别的重写规则。<br/><br/> 请勿在此处添加任何目录级重写规则。 如果您在.htaccess有任何目录级的重写规则,则应该使用uri"/"创建一个静态context, 并在那里添加重写规则。 <br/><br/> 重写规则由一个<span class="val">RewriteRule</span>组成,并可可以在多个<span class="val">RewriteCond</span>之后。 <ul> <li>每行仅能有一条规则</li> <li> <span class="val">RewriteCond</span> 和 <span class="val">RewriteRule</span> 遵循Apache的rewrite语法。 只需从Apache配置文件中复制并粘贴重写规则即可。 </li> <li> LiteSpeed和Apache mod_rewrite之间有细微差别: <ul> <li> <span class="val">%\{LA-U:variable\}</span> and <span class="val">%\{LA-F:variable\}</span> 在Litespeed 重写中将被忽略 </li> <li> Litespeed中加入了两个新变量: <span class="val">%\{CURRENT_URI\}</span>表示正在处理的URL <span class="val">%\{SCRIPT_NAME\}</span>表示为相应的CGI环境变量。 </li> <li> Litespeed在遇到<span class="val">[L]</span>后为了避免循环将停止处理此及此后的重写规则 而Apache mod_rewrite将仅停止处理该条重写规则。此行为类似于apachemod_rewrite中的<span class="val">[END]</span>标志。 </li> </ul> </li> </ul><br/> LiteSpeed的重写规则遵循Apache的重写规范。 有关重写规则的更多详细信息,请参阅 <a href=" http://httpd.apache.org/docs/current/mod/mod_rewrite.html " target="_blank" rel="noopener noreferrer"> Apache's mod_rewrite document(英文文档) </a> 和 <a href=" http://httpd.apache.org/docs/current/rewrite/ " target="_blank" rel="noopener noreferrer"> Apache's URL rewriting guide(英文文档) </a>.</p> <h4>Syntax</h4><p>string</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableIpGeo"><h3>启用IP地理定位<span class="ls-permlink"><a href="#enableIpGeo"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否启用IP地理定位查找。 可以在服务器级别,虚拟主机级别,或context级别设置。</p> <h4>Syntax</h4><p>从单选框选择</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="ServGeneral_Help.html#useIpInProxyHeader">使用报头中的客户端IP</a></span>, <span class="tagl"><a href="ServGeneral_Help.html#geoipDBFile">数据库文件路径</a></span>,</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="phpIniOverride"><h3>php.ini 重写<span class="ls-permlink"><a href="#phpIniOverride"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>用于覆盖当前context(虚拟主机级别或context级别)中的php.ini设置。<br/><br/> 支持的指令是:<br/> php_value<br/> php_flag<br/> php_admin_value<br/> php_admin_flag<br/><br/> 所有其他行/指令将被忽略。</p> <h4>Syntax</h4><p>Override syntax is similar to Apache, a newline separated list of directives and their values with each directive being prepended by php_value, php_flag, php_admin_value, or php_admin_flag appropriately.</p> <h4>例子</h4><div class="ls-example">php_value include_path ".:/usr/local/lib/php"<br/> php_admin_flag engine on<br/> php_admin_value open_basedir "/home"</div></article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> 版权所有.</footer> </div></div> </body> </html> ����������������������zh-CN/ServGeneral_Help.html�������������������������������������������������������������������������0000644�����������������00000104430�15027525531�0011545 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - 服务器常规</title> <meta name="description" content="OpenLiteSpeed Users' Manual - 服务器常规." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 3</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><span class="current"><a href="ServGeneral_Help.html">Server General</a></span></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev"> </div><div class="center"><a href="config.html">Configuration</a></div><div class="next"><a href="ServLog_Help.html">服务器日志</a> »</div></div> <h1>服务器常规</h1><section class="ls-spacer-small-bottom">整个服务器的常规设置。 当设置中需要路径信息时,它可以是绝对路径,也可以相对于$SERVER_ROOT。 $SERVER_ROOT是LiteSpeed Web服务器的安装位置(例如,your_home_dir/lsws或/opt/lsws)。 服务器可执行文件位于$SERVER_ROOT/bin下。</section> <h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header>服务器进程</header><p> <a href="#serverName">服务器名称</a> | <a href="#httpdWorkers">工具人(Workers)的数量</a> | <a href="#runningAs">运行方式</a> | <a href="#serverPriority">优先级</a> | <a href="#cpuAffinity">处理器亲和性</a> | <a href="#enableLVE">Cloud-Linux</a> | <a href="#inMemBufSize">最大的读写缓冲区大小</a> | <a href="#swappingDir">交换目录</a> | <a href="#autoFix503">自动修复503错误</a> | <a href="#enableh2c">启用 明文TCP上的HTTP/2</a> | <a href="#gracefulRestartTimeout">平滑重启超时时长(secs)</a> | <a href="#statDir">统计输出目录</a> | <a href="#jsonReports">Output JSON reports</a></p></section> <section class="toc-row"><header>常规设置</header><p> <a href="#mime">MIME设置</a> | <a href="#mimesuffix">后缀</a> | <a href="#mimetype">MIME类型</a> | <a href="#disableInitLogRotation">禁用初始日志轮换</a> | <a href="#showVersionNumber">服务器签名</a> | <a href="#enableIpGeo">启用IP地理定位</a> | <a href="#useIpInProxyHeader">使用报头中的客户端IP</a> | <a href="#adminEmails">管理员电子邮箱</a></p></section> <section class="toc-row"><header>索引文件</header><p> <a href="#indexFiles">索引文件</a> | <a href="#autoIndex">自动索引</a> | <a href="#autoIndexURI">自动索引URI</a></p></section> <section class="toc-row"><header>Expires Settings</header><p> <a href="#enableExpires">启用过期</a> | <a href="#expiresDefault">默认过期</a> | <a href="#expiresByType">按类型过期</a></p></section> <section class="toc-row"><header>Rewrite Control</header><p> <a href="#autoLoadHtaccess">自动加载.htaccess</a></p></section> <section class="toc-row"><header><a href="#fileUpload">文件上传</a></header><p> <a href="#uploadTmpDir">临时文件路径</a> | <a href="#uploadTmpFilePermission">临时文件权限</a> | <a href="#uploadPassByPath">通过文件路径传递上传数据</a></p></section> <section class="toc-row"><header><a href="#geolocationDB">IP地理定位数据库</a></header><p> <a href="#geoipDBFile">数据库文件路径</a> | <a href="#geoipDBName">数据库名称</a> | <a href="#maxMindDBEnv">环境变量</a></p></section> <section class="toc-row"><header>IP2Location 数据库</header><p> <a href="#ip2locDBFile">IP2Location数据库文件路径</a> | <a href="#ip2locDBCache">数据库缓存类型</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="serverName"><h3>服务器名称<span class="ls-permlink"><a href="#serverName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>该服务器的唯一名称。您可以在此填写 $HOSTNAME 。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="httpdWorkers"><h3>工具人(Workers)的数量<span class="ls-permlink"><a href="#httpdWorkers"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定httpd工作程序的数量.</p> <h4>Syntax</h4><p>Integer value between 1 and 16.</p> <h4>提示</h4><p>[性能] 设置适当的数字以满足您的需求。 增加更多的数量不一定意味着更好的效果。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="runningAs"><h3>运行方式<span class="ls-permlink"><a href="#runningAs"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定服务器进程运行的用户/组。 在安装之前运行configure命令时,使用参数“--with-user”和“ --with-group”进行设置。 要重置这些值,必须重新运行configure命令并重新安装。</p> <h4>应用</h4><p>Reinstall required.</p> <h4>提示</h4><p>[安全] 服务器不应该以特权用户列如"root"来运行. 将服务器配置为以非特权用户/组运行非常重要 没有登入和Shell的权限 <span class="val">nobody</span>用户(组)通常是个不错的选择.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="serverPriority"><h3>优先级<span class="ls-permlink"><a href="#serverPriority"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定服务进程的优先级。数值范围从 <span class="val">-20</span> 到 <span class="val">20</span>。数值越小,优先级越高。</p> <h4>Syntax</h4><p>Integer number</p> <h4>提示</h4><p>[性能] 通常,较高的优先级会导致繁忙的服务器上的Web性能稍有提高。 不要将优先级设置为高于数据库进程的优先级。</p> <h4>See Also</h4><p class="ls-text-small">External App <span class="tagl"><a href="ExtApp_Help.html#extAppPriority">优先级</a></span>, <span class="tagl"><a href="ServSecurity_Help.html#CGIPriority">CGI优先级</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="cpuAffinity"><h3>处理器亲和性<span class="ls-permlink"><a href="#cpuAffinity"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>CPU关联将进程绑定到一个或多个CPU(核心)。 始终使用同一CPU对进程来说是有益的,因为这样进程可以利用CPU缓存中剩余的数据。 如果进程移至其他CPU,则不会使用CPU缓存,并且会产生不必要的开销。<br/><br/> CPU Affinity设置控制一个服务器进程将与多少个CPU(核心)相关联。 最小值为<span class="val">0</span>,它将禁用此功能。 最大值是服务器具有的核心数。 通常,<span class="val">1</span>是最佳设置,因为它会最严格地使用CPU亲和力,从而最大程度地利用CPU缓存。<br/><br/> Default value: 0</p> <h4>Syntax</h4><p>Integer value from 0 to 64. (0 will disable this feature)</p> <h4>应用</h4><p>Reinstall required.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableLVE"><h3>Cloud-Linux<span class="ls-permlink"><a href="#enableLVE"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定当CloudLinux存在时是否启用CloudLinux的轻量级虚拟 环境(LVE)。您可以搭配使用Litespeed与LVE实现更好的资源管理。 欲了解更多信息,请访问 <a href="http://www.cloudlinux.com" target="_blank" rel="noopener noreferrer">http://www.cloudlinux.com</a>。</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="inMemBufSize"><h3>最大的读写缓冲区大小<span class="ls-permlink"><a href="#inMemBufSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定用于存储请求内容和相应的动态响应的最大缓冲区大小。达到此限制时, 服务器将在<span class="tagl"><a href="#swappingDir">交换目录</a></span>中创建临时交换文件。</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p>[性能] 设置足够大的缓冲区,以容纳所有并发 请求/响应,避免内存和磁盘数据交换。如果交换目录(默认为/tmp/lshttpd/swap/)存在频繁的读写活动,说明缓冲区太小,LiteSpeed正在使用交换文件。</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#swappingDir">交换目录</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="swappingDir"><h3>交换目录<span class="ls-permlink"><a href="#swappingDir"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定交换文件的存放目录。 服务器在chroot模式启动时,该路径相对于新的根目录, 否则,它相对于真正的根目录。<br/><br/> Litespeed使用自己的虚拟内存 以降低系统的内存使用量。虚拟内存和磁盘交换会用来存储大的请求内容和 动态响应。交换目录应设置在有足够剩余空间的磁盘上。<br/><br/> 默认值: /tmp/lshttpd/swap</p> <h4>Syntax</h4><p>绝对路径</p> <h4>提示</h4><p>[性能建议] 将交换目录设置在一个单独的磁盘上,或者增加最大读写缓冲区大小以避免交换。</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#inMemBufSize">最大的读写缓冲区大小</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="autoFix503"><h3>自动修复503错误<span class="ls-permlink"><a href="#autoFix503"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否尝试通过平滑重启LiteSpeed修复“503 服务不可用”错误。“503”错误通常是由 发生故障的外部应用程序引起的,Web服务器重新启动往往可以临时修复 错误。如果启用,当30秒内出现超过30次“503”错误时,服务器将自动 重新启动。此功能是默认启用的。</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableh2c"><h3>启用 明文TCP上的HTTP/2<span class="ls-permlink"><a href="#enableh2c"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否通过非加密TCP连接启用HTTP/2。 默认设置为禁用。</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="gracefulRestartTimeout"><h3>平滑重启超时时长(secs)<span class="ls-permlink"><a href="#gracefulRestartTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>平滑重启时,即使新的服务器实例已经启动,旧的实例仍将继续 处理现有的请求。此项超时设置定义了旧实例等待多长时间后中止。 默认值是300秒。 -1表示永远等待。 0表示不等待,立即中止。</p> <h4>Syntax</h4><p>int</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="statDir"><h3>统计输出目录<span class="ls-permlink"><a href="#statDir"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>实时统计报告文件将写入的目录。 默认目录是 <b>/tmp/lshttpd/</b> .</p> <h4>Syntax</h4><p>绝对路径</p> <h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> 在服务器操作期间,.rtreport文件将每秒写入一次。 为避免不必要的磁盘写入,请将其设置为RAM磁盘。<br/> .rtreport文件可以与第三方监控软件一起使用,以跟踪服务器的运行状况。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="jsonReports"><h3>Output JSON reports<span class="ls-permlink"><a href="#jsonReports"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Output additional JSON formatted report files, with the .json extension, to the /tmp/lshttpd directory.<br/><br/> Default value: <span class="val">No</span></p> <h4>Syntax</h4><p>从单选框选择</p> <h4>例子</h4><div class="ls-example">When set to <span class="val">Yes</span>, .status.json and .rtreport.json, .rtreport.2.json, etc report files will be created in addition to the usual .status and .rtreport, .rtreport.2, etc report files.</div><h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> This is useful for application developers who may want to integrate LiteSpeed status and real-time reports into their applications using standard JSON processing tools built-in to most programming languages.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="mime"><h3>MIME设置<span class="ls-permlink"><a href="#mime"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>为此服务器指定包含MIME设置的文件。 在chroot模式中提供了绝对路径时,该文件路径总是相对于真正的根。 点击文件名可查看/编辑详细的MIME项。</p> <h4>Syntax</h4><p>文件名可以是绝对路径,也可以是相对于$SERVER_ROOT的相对路径。</p> <h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> Click the filename to edit the MIME settings.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="mimesuffix"><h3>后缀<span class="ls-permlink"><a href="#mimesuffix"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>你可以列出相同MIME类型的多个后缀,用逗号分隔。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="mimetype"><h3>MIME类型<span class="ls-permlink"><a href="#mimetype"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>MIME类型由类型和子类型组成,格式为“类型/子类型”.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="disableInitLogRotation"><h3>禁用初始日志轮换<span class="ls-permlink"><a href="#disableInitLogRotation"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定在启动时是否启用/禁用服务器错误日志文件的轮换。 使用值为“未设置”时,默认启用初始日志轮转。</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="showVersionNumber"><h3>服务器签名<span class="ls-permlink"><a href="#showVersionNumber"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否在响应头的Server参数中显示服务器签名和版本号。 有三个选项: 当设置为<span class="val">Hide Version</span>时、只显示<span class="val">LiteSpeed</span>。当设置为 <span class="val">Show Version</span>,显示LiteSpeed和版本号。 设置为<span class="val">Hide Full Header</span>时,整个Server头都不会显示在响应报头中。</p> <h4>Syntax</h4><p>从列表中选择</p> <h4>提示</h4><p>[安全建议] 如果你不想暴露服务器的版本号,设置为<span class="val">Hide Version</span>。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableIpGeo"><h3>启用IP地理定位<span class="ls-permlink"><a href="#enableIpGeo"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否启用IP地理定位查找。 可以在服务器级别,虚拟主机级别,或context级别设置。</p> <h4>Syntax</h4><p>从单选框选择</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="ServGeneral_Help.html#useIpInProxyHeader">使用报头中的客户端IP</a></span>, <span class="tagl"><a href="ServGeneral_Help.html#geoipDBFile">数据库文件路径</a></span>,</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="useIpInProxyHeader"><h3>使用报头中的客户端IP<span class="ls-permlink"><a href="#useIpInProxyHeader"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否将在HTTP请求报头中的X-Forwarded-For参数列出的IP地址,用于 所有的IP地址相关的功能,包括 连接/带宽限制、访问控制和IP地理定位。<br/><br/> 如果你的Web服务器放置在负载均衡器或代理服务器之后,此功能非常有用。 如果您选择了“仅限受信任的IP”,只有在请求来自受信任IP时,X-Forwarded-For 中的IP才会被使用。受信任IP可在服务器级别的<span class="tagl"><a href="ServSecurity_Help.html#accessControl_allow">允许列表</a></span>中定义。<br/><br/> <span class="val">来自受信任IP的保留标头</span>与<span class="val">仅受信任IP </span>相同,但是用于后端的X-Forwarded-For标头不会被修改为包括连接对等地址。<br/><br/> <span class="val">使用最后一个IP (对与 AWS ELB)</span>将使用 "X-Forwarded-For "列表中的最后一个 IP 地址。如果您正在使用 AWS Elastic Load Balancer 或期望将真实 IP 附加到 "X-Forwarded-For "列表的末尾,请选择此选项。</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="adminEmails"><h3>管理员电子邮箱<span class="ls-permlink"><a href="#adminEmails"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定服务器管理员的电子邮箱地址。 如果设置了电子邮箱地址,管理员将收到重要事件的电子邮件通知(例如, LiteSpeed服务因崩溃而自动重启或者授权即将过期)。</p> <h4>Syntax</h4><p>Comma delimited list of email address.</p> <h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> 电子邮件提醒功能只有在服务器有活动的MX服务器(如postfix、exim或sendmail)的情况下才会生效。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="indexFiles"><h3>索引文件<span class="ls-permlink"><a href="#indexFiles"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定URL映射到目录时顺序查找的索引文件名称。 您可以在服务器、虚拟主机和Context级别对其进行自定义。</p> <h4>Syntax</h4><p>Comma-delimited list of index filenames.</p> <h4>提示</h4><p>[性能建议] 只设置你需要的索引文件。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="autoIndex"><h3>自动索引<span class="ls-permlink"><a href="#autoIndex"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>在目录中,当<span class="tagl"><a href="#indexFiles">索引文件</a></span>中所列的索引文件不可用时,指定运行时是否即时生成目录索引。<br/> 此选项可以在虚拟主机级别和context级别中设置,并可以顺着目录树继承,直到被覆盖。 您可以自定义生成的索引页面。请访问在线百科了解如何操作。</p> <h4>Syntax</h4><p>从单选框选择</p> <h4>提示</h4><p>[安全建议] 建议关闭自动索引,从而尽可能防止泄露机密数据。</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#indexFiles">索引文件</a></span>, <span class="tagl"><a href="#autoIndexURI">自动索引URI</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="autoIndexURI"><h3>自动索引URI<span class="ls-permlink"><a href="#autoIndexURI"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>在目录中,当<span class="tagl"><a href="#indexFiles">索引文件</a></span>中所列出的索引文件(index)不可用时,指定用来生成索引页面的URI。 LiteSpeed Web服务器使用一个外部脚本来生成索引页面,从而为定制提供最大的灵活性。 默认的脚本生成一个类似于Apache的索引页面。 定制生成的索引页,请访问在线百科。 被索引的目录通过一个环境变量 "LS_AI_PATH"来传递给脚本。</p> <h4>Syntax</h4><p>URI</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#indexFiles">索引文件</a></span>, <span class="tagl"><a href="#autoIndex">自动索引</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableExpires"><h3>启用过期<span class="ls-permlink"><a href="#enableExpires"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否为静态文件生成Expires头。如果启用,将根据 <span class="tagl"><a href="#expiresDefault">默认过期</a></span>和<span class="tagl"><a href="#expiresByType">按类型过期</a></span>生成Expires头。<br/><br/> 这可以在服务器,虚拟主机和Context级别设置。低级别的设置将 覆盖高级别的设置。例如,Context级别的设置将覆盖虚拟主机级别的设置, 虚拟主机级别的设置将覆盖服务器级别的设置。</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expiresDefault"><h3>默认过期<span class="ls-permlink"><a href="#expiresDefault"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定生成Expires头的默认设置。该设置在<span class="tagl"><a href="#enableExpires">启用过期</a></span> 设为“启用”时有效。它可以被<span class="tagl"><a href="#expiresByType">按类型过期</a></span>覆盖。 除非必要,否则不要在服务器或虚拟主机级别设置该默认值。 因为它会为所有网页生成Expires头。大多数时候,应该是 为不常变动的某些目录在Context级别设置。如果没有默认设置,<span class="tagl"><a href="#expiresByType">按类型过期</a></span>中未指定的类型不会生成Expires头。</p> <h4>Syntax</h4><p>A|Mseconds<br/> 文件将在基准时间(A|M)加指定秒数的时间后失效。 “A”代表基准时间为客户端的访问时间,“M”代表文件的最后修改时间。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expiresByType"><h3>按类型过期<span class="ls-permlink"><a href="#expiresByType"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>为各个MIME类型分别指定Expires头设置。</p> <h4>Syntax</h4><p>逗号分隔的“MIME-类型=A|M秒数”的列表。 文件将在基准时间(A|M)加指定秒数的时间后失效。<br/><br/> “A”代表基准时间为客户端的访问时间,“M”代表文件的最后修改时间。 MIME-类型可使用通配符“*”,如image/*。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="autoLoadHtaccess"><h3>自动加载.htaccess<span class="ls-permlink"><a href="#autoLoadHtaccess"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>如果使用<b>rewritefile</ b>指令的目录的HttpContext不存在,则在初次访问该目录时自动加载.htaccess文件中包含的重写规则。 最初加载后,必须执行正常重启才能使对该.htaccess文件的修改生效。<br/><br/> 虚拟主机级别设置将覆盖服务器级别设置。 默认值:<br/><br/> <b>Server-level:</b> No<br/><br/> <b>VH-Level:</b> Inherit Server-level setting</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="fileUpload"><h3>文件上传<span class="ls-permlink"><a href="#fileUpload"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>通过使用请求正文解析器将文件解析到服务器本地目录中来上传文件时,提供了附加的安全功能。第三方模块可以轻松地在文件本地目录中扫描文件是否存在危害。 当启用<span class="tagl"><a href="#uploadPassByPath">通过文件路径传递上传数据</a></span>或模块在LSI_HKPT_HTTP_BEGIN级别调用LSIAPI的set_parse_req_body时,将使用请求正文解析器。 源代码包中提供的API示例。</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#HTTP_BEGIN">Hook::HTTP_BEGIN Priority</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="uploadTmpDir"><h3>临时文件路径<span class="ls-permlink"><a href="#uploadTmpDir"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>在扫描请求正文工作时,上传到服务器的文件将存放在临时目录中 默认值为<span class="val">/tmp/lshttpd/</span>.</p> <h4>Syntax</h4><p>Absolute path or path starting with $SERVER_ROOT (for Server and VHost levels) or $VH_ROOT (for VHost levels).</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="uploadTmpFilePermission"><h3>临时文件权限<span class="ls-permlink"><a href="#uploadTmpFilePermission"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>设置<b>临时文件路径</b>目录中的文件权限。 服务器级别是全局设置,可以被虚拟主机级别的设置覆盖。</p> <h4>Syntax</h4><p>3 digits octet number. Default value is 666.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="uploadPassByPath"><h3>通过文件路径传递上传数据<span class="ls-permlink"><a href="#uploadPassByPath"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定是否按文件路径传递上传数据。 如果启用,则上传时文件路径以及其他一些信息将发送到后端处理程序,而不是文件本身。 这样可以节省CPU资源和文件传输时间,但需要一些更新才能实现。 如果禁用,则文件内容将传输到后端处理程序,请求主体仍解析为文件。</p> <h4>Syntax</h4><p>从单选框选择</p> <h4>提示</h4><p>[性能] 如果向下兼容不是问题,启用此功能可加快文件上传处理速度。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="geolocationDB"><h3>IP地理定位数据库<span class="ls-permlink"><a href="#geolocationDB"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>多个MaxMind地理定位数据库可以在这里指定。MaxMind有以下数据库类型: 国家,地区,城市,组织,ISP和NETSPEED。如果混合配置“国家”,“地区”,和“城市”类型数据库,则最后一项将会生效。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="geoipDBFile"><h3>数据库文件路径<span class="ls-permlink"><a href="#geoipDBFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定MaxMind GeoIP数据库路径。</p> <h4>Syntax</h4><p>绝对路径</p> <h4>例子</h4><div class="ls-example">/usr/local/share/GeoIP/GeoLite2-Country.mmdb</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="geoipDBName"><h3>数据库名称<span class="ls-permlink"><a href="#geoipDBName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>MaxMind GeoIP数据库名称。从GeoIP2起,此设置是必需的。<br/><br/> 从GeoIP升级到GeoIP2时,为此设置“ COUNTRY_DB”,“CITY_DB”或“ ASN_DB”的值会自动使用一些与GeoIP兼容的条目(在下面的“数据库名称”值中列出)填充PHP的$ _SERVER变量,以简化此操作的过渡。<br/> <b>CITY_DB:</b> 'GEOIP_COUNTRY_CODE', 'GEOIP_COUNTRY_NAME', 'GEOIP_CONTINENT_CODE', 'GEOIP_COUNTRY_CONTINENT', 'GEOIP_DMA_CODE', 'GEOIP_METRO_CODE', 'GEOIP_LATITUDE', 'GEOIP_LONGITUDE', 'GEOIP_POSTAL_CODE', and 'GEOIP_CITY'.<br/> <b>COUNTRY_DB:</b> 'GEOIP_COUNTRY_CODE', 'GEOIP_COUNTRY_NAME', 'GEOIP_CONTINENT_CODE', and 'GEOIP_COUNTRY_CONTINENT'.<br/> <b>ASN_DB:</b> 'GEOIP_ORGANIZATION' and 'GEOIP_ISP'.</p> <h4>例子</h4><div class="ls-example">COUNTRY_DB</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxMindDBEnv"><h3>环境变量<span class="ls-permlink"><a href="#maxMindDBEnv"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>将数据库查找的结果分配给环境变量。</p> <h4>Syntax</h4><p>Variable_Name mapped_DB_data<br/><br/> One entry per line. Path to data can use map keys or 0-based array indexes, both being separated by /.</p> <h4>例子</h4><div class="ls-example">COUNTRY_CODE COUNTRY_DB/country/iso_code<br/> REGION_CODE CITY_DB/subdivisions/0/iso_code</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="ip2locDBFile"><h3>IP2Location数据库文件路径<span class="ls-permlink"><a href="#ip2locDBFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>有效数据库文件的位置。</p> <h4>Syntax</h4><p>文件名可以是绝对路径,也可以是相对于$SERVER_ROOT的相对路径。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="ip2locDBCache"><h3>数据库缓存类型<span class="ls-permlink"><a href="#ip2locDBCache"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>使用的缓存方法。 默认值为<span class="val">Memory</span>。</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> 版权所有.</footer> </div></div> </body> </html> ����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������zh-CN/VHSecurity_Help.html��������������������������������������������������������������������������0000644�����������������00000056415�15027525531�0011406 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - 虚拟主机安全</title> <meta name="description" content="OpenLiteSpeed Users' Manual - 虚拟主机安全." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 3</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><span class="current"><a href="VHSecurity_Help.html">Virtual Host Security</a></span></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="VHGeneral_Help.html">虚拟主机一般设置</a></div><div class="center"><a href="config.html">Configuration</a></div><div class="next"><a href="VHSSL_Help.html">虚拟主机SSL</a> »</div></div> <h1>虚拟主机安全</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header><a href="#VHlsrecaptcha">reCAPTCHA 保护</a></header><p> <a href="#enableRecaptcha">启用reCAPTCHA</a> | <a href="#recaptchaSiteKey">网站密匙</a> | <a href="#recaptchaSecretKey">密匙</a> | <a href="#recaptchaType">reCAPTCHA类型</a> | <a href="#recaptchaMaxTries">最大尝试次数</a> | <a href="#recaptchaVhReqLimit">并发请求限制</a></p></section> <section class="toc-row"><header>Containers</header><p> <a href="#bubbleWrap">Bubblewrap Container</a> | <a href="#namespace">Namespace Container</a> | <a href="#namespaceConfVhAdd">Additional Namespace Template File</a></p></section> <section class="toc-row"><header><a href="#accessControl">登入限制</a></header><p> <a href="#accessControl_allow">允许列表</a> | <a href="#accessControl_deny">拒绝列表</a></p></section> <section class="toc-row"><header><a href="#realms">Realms授权</a></header><p> <a href="#realmName">域名称</a> | <a href="#userDBLocation">用户数据库地址</a> | <a href="#userDBMaxCacheSize">用户数据库最大缓存大小</a> | <a href="#userDBCacheTimeout">用户数据库缓存超时 (secs)</a> | <a href="#GroupDBLocation">组数据库位置</a> | <a href="#groupDBMaxCacheSize">组数据库最大缓存大小</a> | <a href="#groupDBCacheTimeout">组数据库缓存超时时长(secs)</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="VHlsrecaptcha"><h3>reCAPTCHA 保护<span class="ls-permlink"><a href="#VHlsrecaptcha"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>reCAPTCHA 保护是一种减轻服务器负载的服务。在下列情况发生后,reCAPTCHA保护将激活 激活后,所以不受信任的客户端(可自定)发出的请求将被重定向到reCAPTCHA验证页面 验证完成后客户端将被重定向到其所需的页面<br/><br/> 下列情况将启用reCAPTCHA保护: 1. 服务器或虚拟主机并发请求计数超过连接限制。<br/> 2. 启用了Anti-DDoS,并且客户端以可疑的方式访问了URL。 客户端将首先重定向到reCAPTCHA,而不是在触发时被拒绝。<br/> 3. 提供了新的重写规则,以通过重写规则激活reCAPTCHA。可以设置“verifycaptcha”将客户端重定向到reCAPTCHA。可以设置一个特殊值':deny'以在客户端失败太多次时拒绝它。例如,[E=verifycaptcha]将始终重定向到reCAPTCHA,直到通过验证。 [E=verifycaptcha: deny]将重定向到reCAPTCHA,如果客户端达到最大尝试次数,将被拒绝。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableRecaptcha"><h3>启用reCAPTCHA<span class="ls-permlink"><a href="#enableRecaptcha"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>必须先在服务器级别将此设置设置为<span class="val">是</span>,才能在当前级别启用并使用reCAPTCHA保护功能。 <br/><br/> 默认值:<br/> <b>服务器级别:</b> 是<br/> <b>虚拟主机级别:</b> 继承服务器级别设置</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="recaptchaSiteKey"><h3>网站密匙<span class="ls-permlink"><a href="#recaptchaSiteKey"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>站点密钥是Google通过其reCAPTCHA服务提供的公共密钥。 如果未设置,将使用默认的站点密钥。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="recaptchaSecretKey"><h3>密匙<span class="ls-permlink"><a href="#recaptchaSecretKey"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>密匙是Google通过其reCAPTCHA服务提供的私钥。 如未设置将使用默认的密匙</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="recaptchaType"><h3>reCAPTCHA类型<span class="ls-permlink"><a href="#recaptchaType"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定要与密钥对一起使用的reCAPTCHA类型。 如果未提供密钥对,并且此设置设置为 <span class="val">未设置</span>,将使用<span class="val">隐形</span>类型的默认密钥对。<br/> <span class="val">复选框</span>将显示一个复选框reCAPTCHA,以供访问者验证。<br/> <span class="val">隐形</span>将尝试自动验证reCAPTCHA,如果成功,将重定向到所需的页面。<br/><br/> 默认值为<span class="val">隐形</span>。</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="recaptchaMaxTries"><h3>最大尝试次数<span class="ls-permlink"><a href="#recaptchaMaxTries"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>“最大尝试次数”指定在拒绝访客之前允许的最大reCAPTCHA次尝试次数。<br/> 默认值是 <span class="val">3</span>.</p> <h4>Syntax</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="recaptchaVhReqLimit"><h3>并发请求限制<span class="ls-permlink"><a href="#recaptchaVhReqLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>激活reCAPTCHA所需的并发请求数。 当并发请求数超过该值时将启用reCAPTCHA, 默认值为<span class="val">15000</span>.</p> <h4>Syntax</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="bubbleWrap"><h3>Bubblewrap Container<span class="ls-permlink"><a href="#bubbleWrap"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Set to <span class="val">Enabled</span> if you wish to start CGI processes (including PHP programs) in a bubblewrap sandbox. See <a href=" https://wiki.archlinux.org/title/Bubblewrap " target="_blank" rel="noopener noreferrer"> https://wiki.archlinux.org/title/Bubblewrap </a> for details on using bubblewrap. Bubblewrap must be installed on your system prior to using this setting.<br/><br/> This setting cannot be turned on at the Virtual Host level if set to "Disabled" at the Server level.<br/><br/> Default values:<br/> <b>Server level:</b> Disabled<br/> <b>VH level:</b> Inherit Server level setting</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="namespace"><h3>Namespace Container<span class="ls-permlink"><a href="#namespace"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Set to <span class="val">Enabled</span> if you wish to start CGI processes (including PHP programs) in a namespace container sandbox. Only used when <span class="tagl"><a href="ServSecurity_Help.html#bubbleWrap">Bubblewrap Container</a></span> is set to <span class="val">Disabled</span>.<br/><br/> When not <span class="val">Disabled</span> at the Server level, this settings value can be overridden at the Virtual Host level.<br/><br/> Default values:<br/> <b>Server level:</b> <span class="val">Disabled</span><br/> <b>Virtual Host Level:</b> Inherit Server level setting</p> <h4>Syntax</h4><p>从列表中选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="namespaceConfVhAdd"><h3>Additional Namespace Template File<span class="ls-permlink"><a href="#namespaceConfVhAdd"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Path to an existing configuration file containing a list of directories to be mounted along with the methods used to mount them. If <span class="tagl"><a href="ServSecurity_Help.html#namespaceConf">Namespace Template File</a></span> is also set at the Server level, both files will be used.</p> <h4>Syntax</h4><p>可以说绝对路径,也可以是相对于$SERVER_ROOT或$VH_ROOT的相对路径。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessControl"><h3>登入限制<span class="ls-permlink"><a href="#accessControl"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定哪些子网络和/或IP地址可以访问该服务器。 这是影响所有的虚拟主机的服务器级别设置。您还可以为每个虚拟主机设置登入限制。虚拟主机的设置不会覆盖服务器设置。<br/><br/> 是否阻止/允许一个IP是由允许列表与阻止列表共同决定。 如果你想阻止某个特定IP或子网,请在<span class="tagl"><a href="#accessControl_allow">允许列表</a></span>中写入<span class="val">*</span> 或 <span class="val">ALL</span>,并在<span class="tagl"><a href="#accessControl_deny">拒绝列表</a></span>中写入需要阻止的IP或子网。 如果你想允许某个特定的IP或子网,请在<span class="tagl"><a href="#accessControl_deny">拒绝列表</a></span>中写入<span class="val">*</span> 或 <span class="val">ALL</span>,并在<span class="tagl"><a href="#accessControl_allow">允许列表</a></span>中写入需要允许的IP或子网。 单个IP地址是被允许访问还是禁止访问取决于该IP符合的最小限制范围。<br/><br/> 信任的IP或子网络可以在<span class="tagl"><a href="#accessControl_allow">允许列表</a></span>列表中添加后缀“T”来指定。受信任的IP或子网不受连接数/流量限制。 只有服务器级别的登入限制才可以设置受信任的IP或子网。</p> <h4>提示</h4><p>[安全建议] 用此项设置适用于所有虚拟主机的常规限制。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessControl_allow"><h3>允许列表<span class="ls-permlink"><a href="#accessControl_allow"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定允许的IP地址或子网的列表。 可以使用{VAL}*</span>或{VAL}ALL</span>。</p> <h4>Syntax</h4><p>逗号分隔的IP地址或子网列表。 结尾加上“T”可以用来表示一个受信任的IP或子网,如{VAL}192.168.1.*T</span>。</p> <h4>例子</h4><div class="ls-example">子网: <span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1.0/24</span>, <span class="val">192.168.1</span> 或 <span class="val">192.168.1.*</span>. <br/> IPv6 地址: <span class="val">::1</span> 或 <span class="val">[::1]</span> <br/> IPv6 子网: <span class="val">3ffe:302:11:2:20f:1fff:fe29:717c/64</span> 或 <span class="val">[3ffe:302:11:2:20f:1fff:fe29:717c]/64</span>.</div><h4>提示</h4><p>[安全建议] 在服务器级别设置的受信任的IP或子网不受连接/节流限制。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessControl_deny"><h3>拒绝列表<span class="ls-permlink"><a href="#accessControl_deny"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定不允许的IP地址或子网的列表。</p> <h4>Syntax</h4><p>逗号分隔的IP地址或子网列表。 可以使用{VAL}*</span>或{VAL}ALL</span>。</p> <h4>例子</h4><div class="ls-example">子网: <span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1.0/24</span>, <span class="val">192.168.1</span> 或 <span class="val">192.168.1.*</span>. <br/> IPv6 地址: <span class="val">::1</span> 或 <span class="val">[::1]</span> <br/> IPv6 子网: <span class="val">3ffe:302:11:2:20f:1fff:fe29:717c/64</span> 或 <span class="val">[3ffe:302:11:2:20f:1fff:fe29:717c]/64</span>.</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="realms"><h3>Realms授权<span class="ls-permlink"><a href="#realms"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>列出这个虚拟主机的所有Realm。 Realm授权可以阻止未授权用户访问受保护的网页。 Realm是一个用户名录,其中包含了用户名、密码、分组(可选)。授权是在context级别执行的。不同的context可以共享相同的Realm(用户数据库),所以Realm是与调用它的context分开定义的。你可以通过context配置中的名称识别Realm。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="realmName"><h3>域名称<span class="ls-permlink"><a href="#realmName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定授权域的唯一名称。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="userDBLocation"><h3>用户数据库地址<span class="ls-permlink"><a href="#userDBLocation"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定用户数据库的位置。 建议将数据库存储在$ SERVER_ROOT / conf / vhosts / $ VH_NAME /目录下。<br/><br/> 对于类型为<span class="val">Password File</span>的数据库,应设置为包含用户名/密码的展平文件的路径。 您可以在WebAdmin控制台中点击文件名来进行修改。<br/> 用户文件的每一行都包含一个用户名,后跟一个冒号,然后是一个crypt()加密的密码,后面还可以跟一个冒号和用户所属的组。多个组名用逗号隔开。<br/><br/> Example:<blockquote><code>john:HZ.U8kgjnMOHo:admin,user</code></blockquote></p> <h4>Syntax</h4><p>Path to user DB file.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#GroupDBLocation">组数据库位置</a></span>, <span class="tagl"><a href="#userDB_attrPasswd">密码属性名</a></span>, <span class="tagl"><a href="#userDB_attrMemberOf">Member-of 属性</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="userDBMaxCacheSize"><h3>用户数据库最大缓存大小<span class="ls-permlink"><a href="#userDBMaxCacheSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定用户数据库的最大缓存大小。 最近访问的用户认证信息会被缓存在内存中以提供最佳性能。</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p>[性能建议] 由于更大的缓存会消耗更多的内存,更高的值可能会也可能不会提供更好的性能。 请根据您的用户数据库大小和网站使用情况来设定一个合适的大小。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="userDBCacheTimeout"><h3>用户数据库缓存超时 (secs)<span class="ls-permlink"><a href="#userDBCacheTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定多久检查一次后端用户数据库变更。 在缓存中每个条目都有一个时间戳。 当缓存日期超过指定的超时时间时,将检查后端数据库是否有变化。 如果没有,时间戳将被重置为当前时间,否则会将新的数据载入。 服务器重载和平滑重启会立即清除缓存。</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p>[性能建议] 如果后端数据库不经常发生变更,设置较长的缓存时间来获得更好的性能。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="GroupDBLocation"><h3>组数据库位置<span class="ls-permlink"><a href="#GroupDBLocation"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定组数据库的位置。<br/> 组信息可以在用户数据库或在这个独立的组数据库中设置。 用于用户验证时,将首先检查用户数据库。 如果用户数据库同样包含组信息,组数据库将不被检查。<br/> 对于类型为<span class="val">Password File</span>的数据库, 组数据库地址应当是到达包含有组定义的平面文件的路径。 你可以在WebAmin控制台中点击文件名来修改这个设置。<br/> 每一行组文件应当包含一个组名, 组名后面跟一个冒号,并在冒号后面使用空格来分割组中的用户名。 例如: <blockquote><code>testgroup: user1 user2 user3</code></blockquote></p> <h4>Syntax</h4><p>文件名可以是绝对路径,也可以是相对于$SERVER_ROOT,$VH_ROOT的相对路径。</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#userDBLocation">用户数据库地址</a></span>, Context <span class="tagl"><a href="Context_Help.html#required">Require(授权的用户/组)</a></span>, <span class="tagl"><a href="#groupDB_attrGroupMember">组成员属性名</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="groupDBMaxCacheSize"><h3>组数据库最大缓存大小<span class="ls-permlink"><a href="#groupDBMaxCacheSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定组数据库的最大缓存大小。</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p>[性能建议] 由于更大的缓存会消耗更多的内存, 更高的值可能会也可能不会提供更好的性能。 请根据你的用户数据库大小和网站使用情况来设置合适的大小。</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#userDBMaxCacheSize">用户数据库最大缓存大小</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="groupDBCacheTimeout"><h3>组数据库缓存超时时长(secs)<span class="ls-permlink"><a href="#groupDBCacheTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定多长时间后台组数据库将检查一次变更。 查看更多详细信息查看<span class="tagl"><a href="#userDBCacheTimeout">用户数据库缓存超时 (secs)</a></span>。</p> <h4>Syntax</h4><p>整数</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#userDBCacheTimeout">用户数据库缓存超时 (secs)</a></span></p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> 版权所有.</footer> </div></div> </body> </html> ���������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������zh-CN/VirtualHosts_Help.html������������������������������������������������������������������������0000644�����������������00000042406�15027525531�0012003 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - 虚拟主机设置</title> <meta name="description" content="OpenLiteSpeed Users' Manual - 虚拟主机设置." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 3</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><span class="current"><a href="VirtualHosts_Help.html">Virtual Host Basic</a></span></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="Templates_Help.html">虚拟主机模板</a></div><div class="center"><a href="config.html">Configuration</a></div><div class="next"><a href="VHGeneral_Help.html">虚拟主机一般设置</a> »</div></div> <h1>虚拟主机设置</h1><section class="ls-spacer-small-bottom">This page lists all defined virtual hosts. From here you can add/delete a virtual host or make changes to an existing one. Before you add a virtual host, make sure the virtual host root directory exists.</section> <h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header>基础</header><p> <a href="#vhName">虚拟主机名</a> | <a href="#vhRoot">虚拟主机根</a> | <a href="#configFile">配置文件</a></p></section> <section class="toc-row"><header>连接</header><p> <a href="#vhMaxKeepAliveReq">最大Keep-Alive请求数</a></p></section> <section class="toc-row"><header>安全</header><p> <a href="#allowSymbolLink">跟随符号链接</a> | <a href="#enableScript">启用脚本</a> | <a href="#restrained">访问管制</a> | <a href="#setUidMode">外部应用程序设置UID模式</a> | <a href="#suexecUser">suEXEC 用户</a> | <a href="#suexecGroup">suEXEC组</a></p></section> <section class="toc-row"><header>虚拟主机</header><p> <a href="#staticReqPerSec">静态请求/秒</a> | <a href="#dynReqPerSec">动态请求/秒</a> | <a href="#outBandwidth">出口带宽 (bytes/sec)</a> | <a href="#inBandwidth">入口带宽 (bytes/sec)</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="vhName"><h3>虚拟主机名<span class="ls-permlink"><a href="#vhName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>为虚拟主机的唯一名称。建议使用虚拟主机的域名作为虚拟主机名。 虚拟主机名参数可以使用$VH_NAME变量来引用。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vhRoot"><h3>虚拟主机根<span class="ls-permlink"><a href="#vhRoot"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定虚拟主机的根目录。 注:这<b>不是</b>目录根。 建议将所有与该虚拟主机相关的文件 (像日志文件,html文件,CGI脚本等)都放置在这个目录下。 虚拟主机根参数可以使用$VH_ROOT变量来引用。.</p> <h4>Syntax</h4><p>绝对路径或相对于$SERVER_ROOT的相对路径。</p> <h4>提示</h4><p>[性能建议] 将不同的虚拟主机放在不同的硬盘驱动器上。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="configFile"><h3>配置文件<span class="ls-permlink"><a href="#configFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定虚拟主机的配置文件名称。 配置文件必须位于$SERVER_ROOT/conf/vhosts/目录下。</p> <h4>Syntax</h4><p>文件名可以是绝对路径,也可以是相对于$SERVER_ROOT的相对路径。</p> <h4>提示</h4><p><span title="Information" class="ls-icon-info"></span> 推荐使用<span class="val">$SERVER_ROOT/conf/vhosts/$VH_NAME/vhconf.conf</span>。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vhMaxKeepAliveReq"><h3>最大Keep-Alive请求数<span class="ls-permlink"><a href="#vhMaxKeepAliveReq"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定通过keep-alive(永久)连接服务的最大请求数量。当该限制值达到时连接将被断开。你可以为不同虚拟主机设置不同的数值。这个数值不能超过服务器级别的<span class="tagl"><a href="ServTuning_Help.html#maxKeepAliveReq">最大持续连接请求数</a></span>限制值。</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p>[性能建议] 设置为一个合理的高数值。设置为1或比1更小的值将禁用keep-alive连接。</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="ServTuning_Help.html#maxKeepAliveReq">最大持续连接请求数</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="allowSymbolLink"><h3>跟随符号链接<span class="ls-permlink"><a href="#allowSymbolLink"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定在这个虚拟主机内是否要跟随符号链接。 <span class="val">If Owner Match</span>选项启用后,只有在链接和目标属主一致时才跟踪符号链接。 此设置将覆盖默认的服务器级设置。</p> <h4>Syntax</h4><p>从列表中选择</p> <h4>提示</h4><p>[性能和安全性建议] 为了更好的安全性,请禁用此功能。为了获得更好的性能,启用它。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableScript"><h3>启用脚本<span class="ls-permlink"><a href="#enableScript"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定在这个虚拟主机中是否允许运行脚本(非静态页面)。 如果禁用,CGI, FastCGI, LSAPI, Servlet引擎 和其他脚本语言都将在这个虚拟机中不被允许使用。 因此如果你希望使用一个脚本处理程序,你需要启用本项。</p> <h4>Syntax</h4><p>从单选框选择</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="restrained"><h3>访问管制<span class="ls-permlink"><a href="#restrained"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定虚拟机根($VH_ROOT)以外的文件是否可以通过这个网站访问。 如果设置是<span class="val">Yes</span>,只可以访问$VH_ROOT下的文件, 访问指向$VH_ROOT以外文件或目录的符号链接或context指向都将被阻止。 尽管如此,这里不会限制CGI脚本的访问。 这个选项在共享主机下非常有用。 <span class="tagl"><a href="#allowSymbolLink">跟随符号链接</a></span>可以设置成<span class="val">Yes</span>来允许用户使用在$VH_ROOT下的符号链接, $VH_ROOT以外的则不可以。</p> <h4>Syntax</h4><p>从单选框选择</p> <h4>提示</h4><p>[安全建议] 在共享主机环境下打开该功能。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="setUidMode"><h3>外部应用程序设置UID模式<span class="ls-permlink"><a href="#setUidMode"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>定如何为外部程序进程设置用户ID。可以选择下面三种方式: <ul><li><span class="val">Server UID</span>: 为外部应用程序设置与服务器用户/组ID相同的用户/组ID。</li> <li><span class="val">CGI File UID</span>: 为外部应用CGI程序设置基于可执行文件的用户/组ID。该选项仅适用于CGI,不适用于FastCGI或LSPHP。</li> <li><span class="val">Doc Root UID</span>: 为外部应用程序设置基于当前虚拟机根目录的用户/组ID。</li> </ul><br/><br/> Default value: <span class="val">Server UID</span></p> <h4>Syntax</h4><p>从列表中选择</p> <h4>提示</h4><p>[安全建议] 在共享主机环境中,建议使用<span class="val">CGI File UID</span> 或 <span class="val">Doc Root UID</span>模式来防止一个虚拟主机下的文件被另一个虚拟主机的外部应用程序访问。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="suexecUser"><h3>suEXEC 用户<span class="ls-permlink"><a href="#suexecUser"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>在当前context 级别,以该用户身份运行。 如果设置了该项,则该值将覆盖虚拟主机级别<b>外部应用程序设置UID模式</b>的设置。<br/><br/> 此配置可被外部应用程序级别的<b>以用户身份运行</b>设置覆盖。<br/><br/> Default value: Not Set</p> <h4>Syntax</h4><p>Valid user name or uid.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="suexecGroup"><h3>suEXEC组<span class="ls-permlink"><a href="#suexecGroup"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>在当前context 级别,以该组身份运行。 必须将虚拟主机级别的<b>suEXEC用户</b>或外部应用程序级别的<b>用户运行身份</b>设置为<b>suEXEC Group</b>才能生效。<br/><br/> 可以使用<b>运行方式组</b>设置在外部应用程序级别覆盖此配置。<br/> Default value: <b>suExec User</b> setting value</p> <h4>Syntax</h4><p>Valid group name or uid</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="staticReqPerSec"><h3>静态请求/秒<span class="ls-permlink"><a href="#staticReqPerSec"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定每秒可处理的来自单个IP的静态内容请求数量(无论与该IP之间建立了多少个连接)。<br/><br/> 当达到此限制时,所有后来的请求将被延滞到下一秒。 对于动态内容请求的限制与本限制无关。 每个客户端的请求限制可以在服务器或虚拟主机级别设置。 虚拟主机级别的设置将覆盖服务器级别的设置。</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p>[安全] 受信任的IP或子网不受影响。</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#dynReqPerSec">动态请求/秒</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="dynReqPerSec"><h3>动态请求/秒<span class="ls-permlink"><a href="#dynReqPerSec"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定每秒可处理的来自单个IP的动态请求的数量(无论与该IP之间建立了多少个连接) 当达到此限制时,所有后来的请求将被延滞到下一秒。<br/><br/> 静态内容的请求限制与此限制无关。 可以在服务器或虚拟主机级别设置每个客户端请求的限制。 虚拟主机级别的设置将覆盖服务器级别的设置。</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p>[安全] 受信任的IP或子网不受影响。</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#staticReqPerSec">静态请求/秒</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="outBandwidth"><h3>出口带宽 (bytes/sec)<span class="ls-permlink"><a href="#outBandwidth"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定对单个IP地址允许的最大传出吞吐量(无论与该IP之间建立了多少个连接)。 为提高效率,真正的带宽可能最终会略高于设定值。 带宽按4KB为单位分配。设定值为<span class="val">0</span>可禁用限制。 每个客户端的带宽限制(字节/秒)可以在服务器或虚拟主机级别设置。 虚拟主机级别的设置将覆盖服务器级别的设置。</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p>[性能建议] 按8KB单位设置带宽可获得更好的性能。<br/> [安全建议] 受信任的IP或子网不受影响。</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#inBandwidth">入口带宽 (bytes/sec)</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="inBandwidth"><h3>入口带宽 (bytes/sec)<span class="ls-permlink"><a href="#inBandwidth"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>指定对单个IP地址允许的最大传入吞吐量(无论与该IP之间建立了多少个连接)。 为提高效率,真正的带宽可能最终会略高于设定值。 带宽是按1KB单位分配。设定值为<span class="val">0</span>可禁用限制。 每个客户端的带宽限制(字节/秒)可以在服务器或虚拟主机级别设置。 虚拟主机级别的设置将覆盖服务器级别的设置。</p> <h4>Syntax</h4><p>整数</p> <h4>提示</h4><p>[安全] 受信任的IP或子网不受影响。</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#outBandwidth">出口带宽 (bytes/sec)</a></span></p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> 版权所有.</footer> </div></div> </body> </html> ����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������ServerStat_Help.html��������������������������������������������������������������������������������0000644�����������������00000047122�15027525531�0010517 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - WebAdmin Console - Service Manager</title> <meta name="description" content="OpenLiteSpeed Users' Manual - WebAdmin Console - Service Manager." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 9</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><span class="current"><a href="ServerStat_Help.html">Service Manager</a></span></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev"> </div><div class="center"><a href="admin.html">Administration</a></div><div class="next"><a href="Real_Time_Stats_Help.html">Real-Time Statistics</a> »</div></div> <h1>WebAdmin Console - Service Manager</h1><section class="ls-spacer-small-bottom">The Service Manager acts as a control room for monitoring the server and controlling certain top-level functions. It provides the following features: (The Service Manager can be accessed by clicking on the Actions menu or from home page.) <ul> <li>Monitor the current status of the server, listeners, and virtual hosts.</li> <li>Apply configuration changes with a graceful restart.</li> <li>Enable or disable a particular virtual host.</li> <li>View the server log through the log viewer.</li> <li>Monitor real-time server statistics.</li> </ul></section> <h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header>Server</header><p> <a href="#sname">Name - Server</a> | <a href="#pid">PID</a> | <a href="#servAction">Actions</a> | <a href="#restart">Apply Changes/Graceful Restart</a> | <a href="#viewlog">Server Log Viewer</a> | <a href="#realtimerpt">Real-Time Statistics</a> | <a href="#toggleDebugLog">Toggle Debug Logging</a></p></section> <section class="toc-row"><header>Listeners</header><p> <a href="#lname">Name - Listener</a> | <a href="#lstatus">Status - Listener</a> | <a href="#lmap">Virtual Hosts Mappings</a></p></section> <section class="toc-row"><header>Virtual Hosts</header><p> <a href="#vname">Name - Virtual Host</a> | <a href="#vstatus">Status - Virtual Host</a> | <a href="#vaction">Actions - Virtual Host</a> | <a href="#venable">Enable</a> | <a href="#vdisable">Disable</a> | <a href="#vreload">Restart - Virtual Host</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="sname"><h3>Name - Server<span class="ls-permlink"><a href="#sname"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The unique name that identifies this server. This is the <span class="tagl"><a href="ServGeneral_Help.html#serverName">Server Name</a></span> specified in the general configuration.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="pid"><h3>PID<span class="ls-permlink"><a href="#pid"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>PID (Process ID) of the current server process.</p> <h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> The PID will change each time the server is restarted.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="servAction"><h3>Actions<span class="ls-permlink"><a href="#servAction"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Six actions are available from this menu: <span class="val">Graceful Restart</span>, <span class="val">Toggle Debug Logging</span>, <span class="val">Server Log Viewer</span>, <span class="val">Real-Time Statistics</span>, <span class="val">Version Manager</span>, and <span class="val">Compile PHP</span>. <ul><li><span class="tagl"><a href="#restart">Apply Changes/Graceful Restart</a></span> restarts server process gracefully without interrupting requests in process.</li> <li><span class="tagl"><a href="#toggleDebugLog">Toggle Debug Logging</a></span> turns debug logging on or off.</li> <li><span class="tagl"><a href="#viewlog">Server Log Viewer</a></span> allows you to view the server log through the log viewer.</li> <li><span class="tagl"><a href="#realtimerpt">Real-Time Statistics</a></span> allows you to view real-time server status.</li> <li><span class="tagl"><a href="#vermgr">Version Management</a></span> allows you to download new versions of LSWS and switch between different versions. <li>Compile PHP allows you to compile PHP for LiteSpeed Web Server. </ul></p> <h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> The shell utility <span class="cmd">$SERVER_ROOT/bin/lswsctrl</span> can be used to control the server processes as well, but requires a login shell.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="restart"><h3>Apply Changes/Graceful Restart<span class="ls-permlink"><a href="#restart"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>By clicking <span class="val">Graceful Restart</span>, a new server process will be started. For <span class="val">Graceful Restart</span>, the old server process will only exit after all requests to it have been finished (or the <span class="tagl"><a href="#gracefulRestartTimeout">Graceful Restart Timeout (secs)</a></span> limit has been reached). Configuration changes are applied at the next restart. <span class="val">Graceful Restart</span> will apply these changes without any server downtime.</p> <h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> Graceful restart takes less than 2 seconds to generate a new server process.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="viewlog"><h3>Server Log Viewer<span class="ls-permlink"><a href="#viewlog"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The Server Log Viewer is a convenient tool for browsing the current server log to check for errors or problems. The log viewer searches the server log file in blocks for the specified log level. The default block size is 20KB. You can use the <span class="val">Begin</span>, <span class="val">End</span>, <span class="val">Next</span>, and <span class="val">Prev</span> buttons to navigate a large log file.</p> <h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> The size of a dynamically generated page is limited by <span class="tagl"><a href="ServTuning_Help.html#maxDynRespSize">Max Dynamic Response Body Size (bytes)</a></span>. So if the block is too big, the page might be truncated.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="realtimerpt"><h3>Real-Time Statistics<span class="ls-permlink"><a href="#realtimerpt"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The Real-Time Statistics link leads to a page with a real-time server status report. This is a convenient tool to monitor the system. The report shows a snapshot of your server statistics. The refresh rate for this snapshot is controlled by the Refresh Interval drop-down list in the upper righthand corner. The report contains the following sections: <ul><li>Server Health shows the basic server statistics, uptime, load, and anti-DDoS blocked IPs.</li> <li>Server lists current traffic throughput, connections, and requests statistics.</li> <li>Virtual Host shows request processing statuses and external application statuses for each virtual host.</li> <li>External Application lists the external applications currently running and their usage statistics. The CGI daemon process lscgid is always running as an external application.</li> </ul> Many of the rows in the Real-Time Statistics feature a graph icon. Clicking on this icon will open a graph of that row's statistics updated in real-time. In the Server section, next to Requests, there is a link labeled (Details). This link takes you to the Requests Snapshot, where you can view detailed information on which clients are making certain kinds of requests or which aspects of your site are bottlenecking. The fields in the blue area allow you to filter the snapshot to isolate certain parts of your server or look for clients that are performing certain actions.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="toggleDebugLog"><h3>Toggle Debug Logging<span class="ls-permlink"><a href="#toggleDebugLog"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Toggle Debug Logging toggles the value of <span class="tagl"><a href="ServGeneral_Help.html#log_debugLevel">Debug Level</a></span> between <span class="val">NONE</span> and <span class="val">HIGH</span>. As debug logging has an impact on performance and can fill up the hard drive quickly, so <span class="tagl"><a href="ServGeneral_Help.html#log_debugLevel">Debug Level</a></span> should usually be set to <span class="val">NONE</span> on a production server. This feature can be used instead to turn debug logging on and off quickly in order to debug a problem on a production server. Debug logging turned on or off in this way will not change anything shown in your server configurations.</p> <h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> <span class="tagl"><a href="#toggleDebugLog">Toggle Debug Logging</a></span> will only work if <span class="tagl"><a href="ServGeneral_Help.html#log_logLevel">Log Level</a></span> is set to <span class="val">DEBUG</span>. <span title="Performance" class="ls-icon-performance"></span> Important! Debug logging includes detailed information for each request and response. Active debug logging will severely degrade service performance and potentially saturate disk space in a very short time. This feature should only be used for a short period of time when trying to diagnose server issues.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="ServGeneral_Help.html#log_debugLevel">Debug Level</a></span>, <span class="tagl"><a href="ServGeneral_Help.html#log_logLevel">Log Level</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="lname"><h3>Name - Listener<span class="ls-permlink"><a href="#lname"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The unique name that identifies this listener. This is the <span class="tagl"><a href="Listeners_General_Help.html#listenerName">Listener Name</a></span> you specified when setting up the listener.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="lstatus"><h3>Status - Listener<span class="ls-permlink"><a href="#lstatus"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The current status of this listener. The status is either <span class="val">Running</span> or <span class="val">Error</span>.</p> <h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> If the listener is in the <span class="val">Error</span> state, you can view the server log to find out why.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="lmap"><h3>Virtual Hosts Mappings<span class="ls-permlink"><a href="#lmap"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Shows currently established mappings to virtual hosts from a particular listener. The virtual host name appears in brackets and is followed by the matching domain name(s) for this listener.</p> <h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> If a virtual host has not been loaded successfully (fatal errors in the virtual host configuration), the mapping to that virtual host will not be displayed.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vname"><h3>Name - Virtual Host<span class="ls-permlink"><a href="#vname"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The unique name that identifies this virtual host. This is the <span class="tagl"><a href="VirtualHosts_Help.html#vhName">Virtual Host Name</a></span> you specified when setting up this virtual host.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vstatus"><h3>Status - Virtual Host<span class="ls-permlink"><a href="#vstatus"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The current status of a virtual host. The status can be: <span class="val">Running</span>, <span class="val">Stopped</span>, <span class="val">Restart Required</span>, or <span class="val">Running - Removed from Configuration</span>. <ul> <li><span class="val">Running</span> means the virtual host is loaded and in service.</li> <li><span class="val">Stopped</span> means the virtual host is loaded but not in service (disabled). </li> <li><span class="val"> Restart Required</span> means this is a newly added virtual host and the server has not yet loaded its configuration. </li> <li><span class="val">Running - Removed from Configuration</span> means the virtual host has been deleted from the server's configuration but it is still in service. </li> </ul></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vaction"><h3>Actions - Virtual Host<span class="ls-permlink"><a href="#vaction"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>This field shows buttons to disable, enable, or restart the virtual host. Actions taken on one virtual host do not affect the rest of the web server.</p> <h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> It is good idea to disable a virtual host temporarily when updating its content.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="venable"><h3>Enable<span class="ls-permlink"><a href="#venable"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The <span class="val">Enable</span> action starts up a stopped virtual host. This allows new requests to be accepted.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vdisable"><h3>Disable<span class="ls-permlink"><a href="#vdisable"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The <span class="val">Disable</span> action stops a running virtual host. New requests will not be accepted, but requests being processed will finish as usual.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vreload"><h3>Restart - Virtual Host<span class="ls-permlink"><a href="#vreload"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The Restart action causes the web server to load the newest configuration for this virtual host. Requests being processed will finish with the old configuration. The new configuration will only apply for new requests. All changes to a virtual host can be applied on the fly this way.</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������CGI_Context.html������������������������������������������������������������������������������������0000644�����������������00000051763�15027525531�0007561 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - CGI Context</title> <meta name="description" content="OpenLiteSpeed Users' Manual - CGI Context." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 9</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><span class="current"><a href="CGI_Context.html">CGI Context</a></span></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="Proxy_Context.html">Proxy Context</a></div><div class="center"><a href="Context_Help.html">Context</a></div><div class="next"><a href="LB_Context.html">Load Balancer Context</a> »</div></div> <h1>CGI Context</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header><a href="#cgiContext">CGI Context</a></header><p> <a href="#expuri">URI</a> | <a href="#cgi_path">Path</a> | <a href="#extraHeaders">Header Operations</a> | <a href="#allowSetUID">Allow Set UID</a> | <a href="#realm">Realm</a> | <a href="#authName">Authentication Name</a> | <a href="#required">Require (Authorized Users/Groups)</a> | <a href="#accessAllowed">Access Allowed</a> | <a href="#accessDenied">Access Denied</a> | <a href="#extAuthorizer">Authorizer</a> | <a href="#addDefaultCharset">Add Default Charset</a> | <a href="#defaultCharsetCustomized">Customized Default Charset</a> | <a href="#enableRewrite">Enable Rewrite</a> | <a href="#rewriteInherit">Rewrite Inherit</a> | <a href="#rewriteBase">Rewrite Base</a> | <a href="#rewriteRules">Rewrite Rules</a> | <a href="#enableIpGeo">Enable GeoLocation Lookup</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="cgiContext"><h3>CGI Context<span class="ls-permlink"><a href="#cgiContext"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>A CGI context defines scripts in a particular directory as CGI scripts. This directory can be inside or outside of the document root. When a file under this directory is requested, the server will always try to execute it as a CGI script, no matter if it's executable or not. In this way, file content under a CGI Context is always protected and cannot be read as static content. It is recommended that you put all your CGI scripts in a directory and set up a CGI Context to access them.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expuri"><h3>URI<span class="ls-permlink"><a href="#expuri"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the URI for this context.</p> <h4>Syntax</h4><p>The URI can be a plain URI (starting with "/") or a Perl compatible regular expression URI (starting with "exp:"). If a plain URI ends with a "/", then this context will include all sub-URIs under this URI. If the context maps to a directory on the file system, a trailing "/" must be added.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#location">Location</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="cgi_path"><h3>Path<span class="ls-permlink"><a href="#cgi_path"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the location of CGI scripts.</p> <h4>Syntax</h4><p>The path can be a directory that contains a group of CGI scripts, like <span class="val">$VH_ROOT/myapp/cgi-bin/</span>. In this case, the context <span class="tagl"><a href="#expuri">URI</a></span> must end with "/", like <span class="val">/app1/cgi/</span>. The Path can also specify only one CGI script, like <span class="val">$VH_ROOT/myapp/myscript.pl</span>. This script should have the corresponding <span class="tagl"><a href="#expuri">URI</a></span> <span class="val">/myapp/myscript.pl</span>.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extraHeaders"><h3>Header Operations<span class="ls-permlink"><a href="#extraHeaders"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies additional response/request headers to be added. Multiple header directives can be added with one directive per line. "NONE" can be used to disable parent header inheritance. If no directive is provided 'Header' is assumed.</p> <h4>Syntax</h4><p>[Header]|RequestHeader [condition] set|append|merge|add|unset header [value] [early|env=[!]variable]</p> <h4>Example</h4><div class="ls-example">set Cache-control no-cache<br/> append Cache-control no-store<br/> Header set My-header cust_header_val<br/> RequestHeader set My-req-header cust_req_header_val</div><h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> Syntax and usage are similar to <a href="https://httpd.apache.org/docs/2.2/mod/mod_headers.html#header" target="_blank" rel="noopener noreferrer">Apache's mod_headers directives</a> for supported operations.<br/><br/> <span title="Information" class="ls-icon-info"></span> The 'Header' directive is is optional and can be excluded or left in when copying rules from elsewhere without issue.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="allowSetUID"><h3>Allow Set UID<span class="ls-permlink"><a href="#allowSetUID"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether the set UID bit is allowed for CGI scripts. If the set UID bit is allowed and the set UID bit is enabled for a CGI script, no matter which user the CGI script was started on behalf of, the user ID of the CGI process will switch to the user ID of the owner of the CGI script.<br/> The default is "Off".</p> <h4>Syntax</h4><p>Select from radio box</p> <h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> Do not allow Set UID CGI scripts whenever possible, as it is inherently a security risk.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="realm"><h3>Realm<span class="ls-permlink"><a href="#realm"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the authorization realm for this context. When specified, a valid username and password must be provided in order to access this context. <span class="tagl"><a href="VHSecurity_Help.html#realms">Authorization Realms</a></span> are set up in the <span class="tagP"><a href="#VHSecurity_Help">Virtual Host Security</a></span> section. This setting uses each realm's <span class="tagl"><a href="VHSecurity_Help.html#realmName">Realm Name</a></span>.</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="authName"><h3>Authentication Name<span class="ls-permlink"><a href="#authName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies an alternative name for the authorization realm for the current context. If not specified, the original realm name will be used. The authentication name is displayed on the browser's login pop-up.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="required"><h3>Require (Authorized Users/Groups)<span class="ls-permlink"><a href="#required"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies which user/group can access this context. This allows you to use one user/group database (specified in <span class="tagl"><a href="#realm">Realm</a></span>) across a number of contexts, but only allow certain users/groups from that database to access this context.</p> <h4>Syntax</h4><p>Syntax is compatible with Apache's Require directive. For example: <ul> <li><span class="val">user username [username ...]</span><br/> Only listed users can access this context.</li> <li> <span class="val">group groupid [groupid ...]</span><br/> Only users belonging to the listed groups can access this context.</li> </ul> If this setting is not specified, all valid users will be allowed to access this resource.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessAllowed"><h3>Access Allowed<span class="ls-permlink"><a href="#accessAllowed"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies which IPs or sub-networks are allowed to access resources under this context. Together with <span class="tagl"><a href="#accessDenied">Access Denied</a></span> and server/virtual host level access control, accessibility is determined by the smallest scope that a client's IP address falls into.</p> <h4>Syntax</h4><p>Comma-delimited list of IPs/sub-networks.</p> <h4>Example</h4><div class="ls-example">Sub-networks can be written as <span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span>, or <span class="val">192.168.1.*</span>.</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessDenied"><h3>Access Denied<span class="ls-permlink"><a href="#accessDenied"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies which IPs or sub-networks are NOT allowed to access resources under this context. Together with <span class="tagl"><a href="#accessAllowed">Access Allowed</a></span> and server/virtual host-level access control, accessibility is determined by the smallest scope that a client's IP address falls into.</p> <h4>Syntax</h4><p>Comma-delimited list of IPs/sub-networks.</p> <h4>Example</h4><div class="ls-example">Sub-networks can be written as <span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span>, or <span class="val">192.168.1.*</span>.</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAuthorizer"><h3>Authorizer<span class="ls-permlink"><a href="#extAuthorizer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies an external application that can be used to generate authorized/unauthorized decisions. Currently, only the FastCGI Authorizer is available. For more details about the FastCGI Authorizer role, please visit <a href=" https://fastcgi-archives.github.io/ " target="_blank" rel="noopener noreferrer"> https://fastcgi-archives.github.io/ </a>.</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="addDefaultCharset"><h3>Add Default Charset<span class="ls-permlink"><a href="#addDefaultCharset"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to add a character set tag to the "Content-Type" response header, when content type is either "text/html" or "text/plain" without any parameters. When set to <span class="val">Off</span>, this function is disabled. When set to <span class="val">On</span>, either the character set specified by <span class="tagl"><a href="#defaultCharsetCustomized">Customized Default Charset</a></span> or the default "iso-8859-1" will be added.</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="defaultCharsetCustomized"><h3>Customized Default Charset<span class="ls-permlink"><a href="#defaultCharsetCustomized"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies a character set to be used when <span class="tagl"><a href="#addDefaultCharset">Add Default Charset</a></span> is <span class="val">On</span>. This is optional. The default value is <span class="val">iso-8859-1</span>. This entry has no effect when <span class="tagl"><a href="#addDefaultCharset">Add Default Charset</a></span> is <span class="val">Off</span>.</p> <h4>Syntax</h4><p>Name of a character set.</p> <h4>Example</h4><div class="ls-example">utf-8</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableRewrite"><h3>Enable Rewrite<span class="ls-permlink"><a href="#enableRewrite"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to enable LiteSpeed's URL rewrite engine. This option can be customized at the virtual host or context level, and is inherited along the directory tree until it is explicitly overridden.</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="rewriteInherit"><h3>Rewrite Inherit<span class="ls-permlink"><a href="#rewriteInherit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to inherit rewrite rules from parent contexts. If rewrite is enabled and not inherited, rewrite base and rewrite rules defined in this context will be used.</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="rewriteBase"><h3>Rewrite Base<span class="ls-permlink"><a href="#rewriteBase"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the base URL for rewrite rules.</p> <h4>Syntax</h4><p>URL</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="rewriteRules"><h3>Rewrite Rules<span class="ls-permlink"><a href="#rewriteRules"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies a list of rewrite rules at the virtual host level.<br/><br/> Do NOT add any document root level rewrite rules here. If you have any document root level rewrite rules from .htaccess, you should instead create a static context with uri "/" and add the rewrite rules there.<br/><br/> A rewrite rule is comprised of one <span class="val">RewriteRule</span> directive and optionally preceded by multiple <span class="val">RewriteCond</span> directives. <ul> <li>Each directive should take only one line.</li> <li> <span class="val">RewriteCond</span> and <span class="val">RewriteRule</span> follow Apache's rewrite directive syntax. Just copy and paste rewrite directives from your Apache configuration files. </li> <li> There are minor differences between LiteSpeed and Apache mod_rewrite implementation: <ul> <li> <span class="val">%\{LA-U:variable\}</span> and <span class="val">%\{LA-F:variable\}</span> are ignored by the LiteSpeed rewrite engine </li> <li> Two new server variables are added in the LiteSpeed rewrite engine: <span class="val">%\{CURRENT_URI\}</span> represents the current URI being processed by the rewrite engine and <span class="val">%\{SCRIPT_NAME\}</span> has the same meaning as the corresponding CGI environment variable. </li> <li> The LiteSpeed rewrite engine will stop processing rewrite rules after encountering an <span class="val">[L]</span> flag to avoid looping while Apache mod_rewrite will stop processing rewrite rules for the current iteration only. This behavior is similar to that of the <span class="val">[END]</span> flag in Apache mod_rewrite. </li> </ul> </li> </ul><br/> The implementation of LiteSpeed's rewrite engine follows Apache's rewrite engine specifications. For more details about rewrite rules, please refer to <a href="https://httpd.apache.org/docs/current/mod/mod_rewrite.html" target="_blank" rel="noopener noreferrer"> Apache's mod_rewrite document </a> and <a href="https://httpd.apache.org/docs/current/rewrite/" target="_blank" rel="noopener noreferrer"> Apache's URL rewriting guide </a>.</p> <h4>Syntax</h4><p>string</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableIpGeo"><h3>Enable GeoLocation Lookup<span class="ls-permlink"><a href="#enableIpGeo"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p> Specifies whether to enable/disable IP Geolocation lookup. Can be set at server, virtual host, or context level. IP Geolocation is disabled by default when using value "Not Set".</p> <h4>Syntax</h4><p>Select from radio box</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="ServGeneral_Help.html#useIpInProxyHeader">Use Client IP in Header</a></span>, <span class="tagl"><a href="ServGeneral_Help.html#geoipDBFile">DB File Path</a></span>,</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> �������������Module_Help.html������������������������������������������������������������������������������������0000644�����������������00000076502�15027525531�0007646 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Module Configuration</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Module Configuration." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 9</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><span class="current"><a href="Module_Help.html">Module Configuration</a></span></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="App_Server_Help.html">App Server Settings</a></div><div class="center"><a href="config.html">Configuration</a></div><div class="next"><a href="Listeners_General_Help.html">Listeners General</a> »</div></div> <h1>Module Configuration</h1><section class="ls-spacer-small-bottom">Module support is available in Openlitespeed 1.3 and LSWS Enterprise 5.0 and greater. All required modules must be registered under the Server Modules Configuration tab. Module files must be located in the server root/modules folder to be available for registering. On start up, the server loads all registered modules. The server must be restarted after new modules are registered. Modules can be configured globally under the Server Module configuration tab. The configuration data is then available to the Listener and Virtual Host Module Configurations to inherit or modify.</section> <h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header><a href="#servModules">Server Modules</a></header><p> <a href="#modulename">Module</a> | <a href="#internalmodule">Is Internal</a> | <a href="#modParams">Module Parameters</a> | <a href="#moduleEnabled">Enable Module</a> | <a href="#L4_BEGINSESSION">Hook::L4_BEGINSESSION Priority</a> | <a href="#L4_ENDSESSION">Hook::L4_ENDSESSION Priority</a> | <a href="#L4_RECVING">Hook::L4_RECVING Priority</a> | <a href="#L4_SENDING">Hook::L4_SENDING Priority</a> | <a href="#HTTP_BEGIN">Hook::HTTP_BEGIN Priority</a> | <a href="#RECV_REQ_HEADER">Hook::RECV_REQ_HEADER Priority</a> | <a href="#URI_MAP">Hook::URI_MAP Priority</a> | <a href="#HTTP_AUTH">Hook::HTTP_AUTH Priority</a> | <a href="#RECV_REQ_BODY">Hook::RECV_REQ_BODY Priority</a> | <a href="#RCVD_REQ_BODY">Hook::RCVD_REQ_BODY Priority</a> | <a href="#RECV_RESP_HEADER">Hook::RECV_RESP_HEADER Priority</a> | <a href="#RECV_RESP_BODY">Hook::RECV_RESP_BODY Priority</a> | <a href="#RCVD_RESP_BODY">Hook::RCVD_RESP_BODY Priority</a> | <a href="#HANDLER_RESTART">Hook::HANDLER_RESTART Priority</a> | <a href="#SEND_RESP_HEADER">Hook::SEND_RESP_HEADER Priority</a> | <a href="#SEND_RESP_BODY">Hook::SEND_RESP_BODY Priority</a> | <a href="#HTTP_END">Hook::HTTP_END Priority</a> | <a href="#MAIN_INITED">Hook::MAIN_INITED Priority</a> | <a href="#MAIN_PREFORK">Hook::MAIN_PREFORK Priority</a> | <a href="#MAIN_POSTFORK">Hook::MAIN_POSTFORK Priority</a> | <a href="#WORKER_POSTFORK">Hook::WORKER_POSTFORK Priority</a> | <a href="#WORKER_ATEXIT">Hook::WORKER_ATEXIT Priority</a> | <a href="#MAIN_ATEXIT">Hook::MAIN_ATEXIT Priority</a></p></section> <section class="toc-row"><header><a href="#listenerModules">Listener Modules</a></header><p> <a href="#modulename">Module</a> | <a href="#modParams">Module Parameters</a> | <a href="#moduleEnabled_lst">Enable Module</a></p></section> <section class="toc-row"><header><a href="#vhModules">Virtual Host Modules</a></header><p> <a href="#modulename">Module</a> | <a href="#modParams">Module Parameters</a> | <a href="#moduleEnabled_vh">Enable Module</a></p></section> <section class="toc-row"><header><a href="#vhModuleUrlFilters">Virtual Host Module Context</a></header><p> <a href="#expuri">URI</a> | <a href="#modParams">Module Parameters</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="servModules"><h3>Server Modules<span class="ls-permlink"><a href="#servModules"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The Server module configuration globally defines the module configuration data. Once defined, the Listeners and Virtual Hosts have access to the modules and module configurations. <br/><br/> All modules that are to be processed must be registered in the Server configuration. The Server configuration also defines the default values for module parameter data. These values can be inherited or overridden by the Listener and Virtual Host configuration data.<br/><br/> Module priority is only defined at server level and is inherited by the Listener and Virtual Host configurations.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="modulename"><h3>Module<span class="ls-permlink"><a href="#modulename"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The name of an external or internal module to be loaded at server startup.<br/><br/> <b>External</b><br/> The value used for external modules must match the name of the module's ".so" file under $SERVER_ROOT/modules/modulename.so in order to be loaded by the server application. This requires that the server is restarted after a new module is registered.<br/><br/> <b>Internal</b><br/> The value used for internal modules must match the module name used when the module was built. For example, this must be set to "cache" for the internal cache module included with the server.</p> <h4>Syntax</h4><p>string</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="internalmodule"><h3>Is Internal<span class="ls-permlink"><a href="#internalmodule"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specify whether the module is an internal module, which is statically linked, instead of being an external .so library.</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="modParams"><h3>Module Parameters<span class="ls-permlink"><a href="#modParams"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Set module parameters. The module parameters are defined by the module developer.<br/><br/> The value set at the Server-level will globally be assigned as the default value. The user can override this setting at the Listener, Virtual Host, or Context levels. If unset at any of those levels, the value will be inherited from the next level up.</p> <h4>Syntax</h4><p>Specified by the module interface.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="moduleEnabled"><h3>Enable Module<span class="ls-permlink"><a href="#moduleEnabled"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Enables module hooks globally. This setting can be overridden at the Listener and Virtual Host levels.<br/><br/> Default value: <span class="val">Yes</span></p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="L4_BEGINSESSION"><h3>Hook::L4_BEGINSESSION Priority<span class="ls-permlink"><a href="#L4_BEGINSESSION"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets the priority for this module callback within the L4 Begin Session Hook.<br/> The L4 Begin Session Hook is triggered when the TCP/IP connection begins. <br/><br/> It will only take effect if the module has a hook point here. If it is not set, the priority will be the default value defined in the module.</p> <h4>Syntax</h4><p>Integer value from -6000 to 6000. Lower value means higher priority.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="L4_ENDSESSION"><h3>Hook::L4_ENDSESSION Priority<span class="ls-permlink"><a href="#L4_ENDSESSION"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets the priority for this module callback within the L4 End Session Hook.<br/> The L4 End Session Hook is triggered when the TCP/IP connection ends. <br/><br/> It will only take effect if the module has a hook point here. If it is not set, the priority will be the default value defined in the module.</p> <h4>Syntax</h4><p>Integer value from -6000 to 6000. Lower value means higher priority.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="L4_RECVING"><h3>Hook::L4_RECVING Priority<span class="ls-permlink"><a href="#L4_RECVING"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets the priority for this module callback within the L4 Receiving Hook.<br/> The L4 Receiving Hook is triggered when the TCP/IP connection receives data. <br/><br/> It will only take effect if the module has a hook point here. If it is not set, the priority will be the default value defined in the module.</p> <h4>Syntax</h4><p>Integer value from -6000 to 6000. Lower value means higher priority.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="L4_SENDING"><h3>Hook::L4_SENDING Priority<span class="ls-permlink"><a href="#L4_SENDING"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets the priority for this module callback within the L4 Sending Hook.<br/> The L4 Sending Hook is triggered when the TCP/IP connection sends data. <br/><br/> It will only take effect if the module has a hook point here. If it is not set, the priority will be the default value defined in the module.</p> <h4>Syntax</h4><p>Integer value from -6000 to 6000. Lower value means higher priority.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="HTTP_BEGIN"><h3>Hook::HTTP_BEGIN Priority<span class="ls-permlink"><a href="#HTTP_BEGIN"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets the priority for this module callback within the HTTP Begin Hook.<br/> The HTTP Begin Hook is triggered when the TCP/IP connection begins an HTTP Session. <br/><br/> It will only take effect if the module has a hook point here. If it is not set, the priority will be the default value defined in the module.</p> <h4>Syntax</h4><p>Integer value from -6000 to 6000. Lower value means higher priority.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="RECV_REQ_HEADER"><h3>Hook::RECV_REQ_HEADER Priority<span class="ls-permlink"><a href="#RECV_REQ_HEADER"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets the priority for this module callback within the HTTP Receive Request Header Hook.<br/> The HTTP Receive Request Header Hook is triggered when the web server receives a request header. <br/><br/> It will only take effect if the module has a hook point here. If it is not set, the priority will be the default value defined in the module.</p> <h4>Syntax</h4><p>Integer value from -6000 to 6000. Lower value means higher priority.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="URI_MAP"><h3>Hook::URI_MAP Priority<span class="ls-permlink"><a href="#URI_MAP"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets the priority for this module callback within the HTTP URI Map Hook.<br/> The HTTP URI Map Hook is triggered when the web server maps a URI request to a context. <br/><br/> It will only take effect if the module has a hook point here. If it is not set, the priority will be the default value defined in the module.</p> <h4>Syntax</h4><p>Integer value from -6000 to 6000. Lower value means higher priority.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="HTTP_AUTH"><h3>Hook::HTTP_AUTH Priority<span class="ls-permlink"><a href="#HTTP_AUTH"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets the priority for this module callback within the HTTP Authentication Hook.<br/> The HTTP Authentication Hook is triggered after resource mapping and before handler processing. It occurs after HTTP built-in authentication, and can be used to perform additional authentication checking. <br/><br/> It will only take effect if the module has a hook point here. If it is not set, the priority will be the default value defined in the module.</p> <h4>Syntax</h4><p>Integer value from -6000 to 6000. Lower value means higher priority.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="RECV_REQ_BODY"><h3>Hook::RECV_REQ_BODY Priority<span class="ls-permlink"><a href="#RECV_REQ_BODY"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets the priority for this module callback within the HTTP Receive Request Body Hook. <br/><br/> The HTTP Receive Request Body Hook is triggered when the web server receives request body data. <br/><br/> It will only take effect if the module has a hook point here. If it is not set, the priority will be the default value defined in the module.</p> <h4>Syntax</h4><p>Integer value from -6000 to 6000. Lower value means higher priority.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="RCVD_REQ_BODY"><h3>Hook::RCVD_REQ_BODY Priority<span class="ls-permlink"><a href="#RCVD_REQ_BODY"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets the priority for this module callback within the HTTP Received Request Body Hook. <br/><br/> The HTTP Received Request Body Hook is triggered when the web server finishes receiving request body data. <br/><br/> It will only take effect if the module has a hook point here. If it is not set, the priority will be the default value defined in the module.</p> <h4>Syntax</h4><p>Integer value from -6000 to 6000. Lower value means higher priority.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="RECV_RESP_HEADER"><h3>Hook::RECV_RESP_HEADER Priority<span class="ls-permlink"><a href="#RECV_RESP_HEADER"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets the priority for this module callback within the HTTP Receive Response Header Hook. <br/><br/> The HTTP Receive Response Header Hook is triggered when the web server creates the response header. <br/><br/> It will only take effect if the module has a hook point here. If it is not set, the priority will be the default value defined in the module.</p> <h4>Syntax</h4><p>Integer value from -6000 to 6000. Lower value means higher priority.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="RECV_RESP_BODY"><h3>Hook::RECV_RESP_BODY Priority<span class="ls-permlink"><a href="#RECV_RESP_BODY"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets the priority for this module callback within the HTTP Receive Response Body Hook. <br/><br/> The HTTP Receive Response Body Hook is triggered when the web server backend receives the response body. <br/><br/> It will only take effect if the module has a hook point here. If it is not set, the priority will be the default value defined in the module.</p> <h4>Syntax</h4><p>Integer value from -6000 to 6000. Lower value means higher priority.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="RCVD_RESP_BODY"><h3>Hook::RCVD_RESP_BODY Priority<span class="ls-permlink"><a href="#RCVD_RESP_BODY"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets the priority for this module callback within the HTTP Received Response Body Hook. <br/><br/> The HTTP Received Response Body Hook is triggered when the web server backend finishes receiving the response body. <br/><br/> It will only take effect if the module has a hook point here. If it is not set, the priority will be the default value defined in the module.</p> <h4>Syntax</h4><p>Integer value from -6000 to 6000. Lower value means higher priority.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="HANDLER_RESTART"><h3>Hook::HANDLER_RESTART Priority<span class="ls-permlink"><a href="#HANDLER_RESTART"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets the priority for this module callback within the HTTP Handler Restart Hook.<br/> The HTTP Handler Restart Hook is triggered when the web server needs to discard the current response and start processing from beginning, for example, when an internal redirect has been requested.<br/><br/> It will only take effect if the module has a hook point here. If it is not set, the priority will be the default value defined in the module.</p> <h4>Syntax</h4><p>Integer value from -6000 to 6000. Lower value means higher priority.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="SEND_RESP_HEADER"><h3>Hook::SEND_RESP_HEADER Priority<span class="ls-permlink"><a href="#SEND_RESP_HEADER"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets the priority for this module callback within the HTTP Send Response Header Hook. <br/><br/> The HTTP Send Response Header Hook is triggered when the web server is ready to send the response header. <br/><br/> It will only take effect if the module has a hook point here. If it is not set, the priority will be the default value defined in the module.</p> <h4>Syntax</h4><p>Integer value from -6000 to 6000. Lower value means higher priority.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="SEND_RESP_BODY"><h3>Hook::SEND_RESP_BODY Priority<span class="ls-permlink"><a href="#SEND_RESP_BODY"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets the priority for this module callback within the HTTP Send Response Body Hook. <br/><br/> The HTTP Send Response Body Hook is triggered when the web server is going to send the response body. <br/><br/> It will only take effect if the module has a hook point here. If it is not set, the priority will be the default value defined in the module.</p> <h4>Syntax</h4><p>Integer value from -6000 to 6000. Lower value means higher priority.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="HTTP_END"><h3>Hook::HTTP_END Priority<span class="ls-permlink"><a href="#HTTP_END"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets the priority for this module callback within the HTTP Session End Hook. <br/><br/> The HTTP Session End Hook is triggered when the HTTP connection has ended. <br/> It will only take effect if the module has a hook point here. If it is not set, the priority will be the default value defined in the module.</p> <h4>Syntax</h4><p>Integer value from -6000 to 6000. Lower value means higher priority.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="MAIN_INITED"><h3>Hook::MAIN_INITED Priority<span class="ls-permlink"><a href="#MAIN_INITED"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets the priority for this module callback within the Main Initialized Hook. <br/><br/> The Main Initialized Hook is triggered once upon startup, after the server configuration and initialization is completed by the main (controller) process, and before any requests are serviced. <br/> It will only take effect if the module has a hook point here. If it is not set, the priority will be the default value defined in the module.</p> <h4>Syntax</h4><p>Integer value from -6000 to 6000. Lower value means higher priority.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="MAIN_PREFORK"><h3>Hook::MAIN_PREFORK Priority<span class="ls-permlink"><a href="#MAIN_PREFORK"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets the priority for this module callback within the Main Prefork Hook. <br/><br/> The Main Prefork Hook is triggered by the main (controller) process immediately before a new worker process is started (forked). This is called for each worker, and may happen during system startup, or if a worker has been restarted. <br/> It will only take effect if the module has a hook point here. If it is not set, the priority will be the default value defined in the module.</p> <h4>Syntax</h4><p>Integer value from -6000 to 6000. Lower value means higher priority.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="MAIN_POSTFORK"><h3>Hook::MAIN_POSTFORK Priority<span class="ls-permlink"><a href="#MAIN_POSTFORK"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets the priority for this module callback within the Main Postfork Hook. <br/><br/> The Main Postfork Hook is triggered by the main (controller) process immediately after a new worker process has been started (forked). This is called for each worker, and may happen during system startup, or if a worker has been restarted. <br/> It will only take effect if the module has a hook point here. If it is not set, the priority will be the default value defined in the module.</p> <h4>Syntax</h4><p>Integer value from -6000 to 6000. Lower value means higher priority.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="WORKER_POSTFORK"><h3>Hook::WORKER_POSTFORK Priority<span class="ls-permlink"><a href="#WORKER_POSTFORK"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets the priority for this module callback within the Worker Postfork Hook. <br/><br/> The Worker Postfork Hook is triggered by a worker process after being created by the main (controller) process. Note that a corresponding Main Postfork Hook may be called by the main process either before or after this callback. <br/> It will only take effect if the module has a hook point here. If it is not set, the priority will be the default value defined in the module.</p> <h4>Syntax</h4><p>Integer value from -6000 to 6000. Lower value means higher priority.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="WORKER_ATEXIT"><h3>Hook::WORKER_ATEXIT Priority<span class="ls-permlink"><a href="#WORKER_ATEXIT"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets the priority for this module callback within the Worker At Exit Hook. <br/><br/> The Worker At Exit Hook is triggered by a worker process just prior to exiting. It is the last hook point to be called by a worker. <br/> It will only take effect if the module has a hook point here. If it is not set, the priority will be the default value defined in the module.</p> <h4>Syntax</h4><p>Integer value from -6000 to 6000. Lower value means higher priority.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="MAIN_ATEXIT"><h3>Hook::MAIN_ATEXIT Priority<span class="ls-permlink"><a href="#MAIN_ATEXIT"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets the priority for this module callback within the Main At Exit Hook. <br/><br/> The Main At Exit Hook is triggered by the main (controller) process just prior to exiting. It is the last hook point to be called by the main process. <br/> It will only take effect if the module has a hook point here. If it is not set, the priority will be the default value defined in the module.</p> <h4>Syntax</h4><p>Integer value from -6000 to 6000. Lower value means higher priority.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="listenerModules"><h3>Listener Modules<span class="ls-permlink"><a href="#listenerModules"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Listener module configuration data is, by default inherited from the Server module configuration. The Listener Modules are limited to the TCP/IP Layer 4 hooks.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="moduleEnabled_lst"><h3>Enable Module<span class="ls-permlink"><a href="#moduleEnabled_lst"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Enables module hooks at the Listener level. This setting will only take effect if the module has TCP/IP level hooks (L4_BEGSESSION, L4_ENDSESSION, L4_RECVING, L4_SENDING).<br/><br/> Default value: Inherit Server level setting</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vhModules"><h3>Virtual Host Modules<span class="ls-permlink"><a href="#vhModules"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Virtual Host module configuration data is, by default inherited from the Server module configuration. The Virtual Host Modules are limited to the HTTP level hooks.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="moduleEnabled_vh"><h3>Enable Module<span class="ls-permlink"><a href="#moduleEnabled_vh"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Enables module hooks at the Virtual Host level. This setting will only take effect if the module has HTTP level hooks.<br/><br/> Default value: Inherit Server level setting</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vhModuleUrlFilters"><h3>Virtual Host Module Context<span class="ls-permlink"><a href="#vhModuleUrlFilters"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>It's a centralized place to customize module settings for virtual host contexts. Settings for a context URI will override the virtual host or the server level settings.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expuri"><h3>URI<span class="ls-permlink"><a href="#expuri"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the URI for this context.</p> <h4>Syntax</h4><p>The URI can be a plain URI (starting with "/") or a Perl compatible regular expression URI (starting with "exp:"). If a plain URI ends with a "/", then this context will include all sub-URIs under this URI. If the context maps to a directory on the file system, a trailing "/" must be added.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#location">Location</a></span></p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������Real_Time_Stats_Help.html���������������������������������������������������������������������������0000644�����������������00000015232�15027525531�0011431 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Real-Time Statistics</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Real-Time Statistics." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 9</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><span class="current"><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></span></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="ServerStat_Help.html">WebAdmin Console - Service Manager</a></div><div class="center"><a href="admin.html">Administration</a></div><div class="next"> </div></div> <h1>Real-Time Statistics</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header>Server Health</header><p> <a href="#antiddos_blocked_ip">Anti-DDoS Blocked IP</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="antiddos_blocked_ip"><h3>Anti-DDoS Blocked IP<span class="ls-permlink"><a href="#antiddos_blocked_ip"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>A comma-separated list of IP addresses blocked by Anti-DDoS protection, each ending with a semi-colon and reason code indicating why the IP address was blocked.<br/><br/> Potential Reason Codes: <ul> <li><span class="val">A</span>: BOT_UNKNOWN</li> <li><span class="val">B</span>: BOT_OVER_SOFT</li> <li><span class="val">C</span>: BOT_OVER_HARD</li> <li><span class="val">D</span>: BOT_TOO_MANY_BAD_REQ</li> <li><span class="val">E</span>: BOT_CAPTCHA</li> <li><span class="val">F</span>: BOT_FLOOD</li> <li><span class="val">G</span>: BOT_REWRITE_RULE</li> <li><span class="val">H</span>: BOT_TOO_MANY_BAD_STATUS</li> <li><span class="val">I</span>: BOT_BRUTE_FORCE</li> </ul><br/><br/> The full list of blocked IPs is also available in the Real-Time Stats report file set in <span class="tagl"><a href="ServGeneral_Help.html#statDir">Statistics Output Directory</a></span>.</p> <h4>Syntax</h4><p><blocked_ip_address>;<reason_code></p> <h4>Example</h4><div class="ls-example">1.0.100.50;E, 1.0.100.60;D, 1.0.100.70;F</div></article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������LSAPI_Context.html����������������������������������������������������������������������������������0000644�����������������00000037707�15027525531�0010031 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - LiteSpeed SAPI Context</title> <meta name="description" content="OpenLiteSpeed Users' Manual - LiteSpeed SAPI Context." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 9</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><span class="current"><a href="LSAPI_Context.html">LSAPI Context</a></span></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="FCGI_Context.html">Fast CGI Context</a></div><div class="center"><a href="Context_Help.html">Context</a></div><div class="next"><a href="Proxy_Context.html">Proxy Context</a> »</div></div> <h1>LiteSpeed SAPI Context</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header><a href="#lsapiContext">LiteSpeed SAPI Context</a></header><p> <a href="#expuri">URI</a> | <a href="#lsapiapp">LiteSpeed SAPI App</a> | <a href="#extraHeaders">Header Operations</a> | <a href="#realm">Realm</a> | <a href="#authName">Authentication Name</a> | <a href="#required">Require (Authorized Users/Groups)</a> | <a href="#accessAllowed">Access Allowed</a> | <a href="#accessDenied">Access Denied</a> | <a href="#extAuthorizer">Authorizer</a> | <a href="#addDefaultCharset">Add Default Charset</a> | <a href="#defaultCharsetCustomized">Customized Default Charset</a> | <a href="#enableIpGeo">Enable GeoLocation Lookup</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="lsapiContext"><h3>LiteSpeed SAPI Context<span class="ls-permlink"><a href="#lsapiContext"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>External applications cannot be used directly. They must be either configured as a script handler or mapped to a URL through a context. An LiteSpeed SAPI Context will associate a URI with an LSAPI (LiteSpeed Server Application Programming Interface) application. Currently PHP, Ruby and Python have LSAPI modules. LSAPI, as it is developed specifically for LiteSpeed web server, is the most efficient way to communicate with LiteSpeed web server.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expuri"><h3>URI<span class="ls-permlink"><a href="#expuri"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the URI for this context.</p> <h4>Syntax</h4><p>The URI can be a plain URI (starting with "/") or a Perl compatible regular expression URI (starting with "exp:"). If a plain URI ends with a "/", then this context will include all sub-URIs under this URI. If the context maps to a directory on the file system, a trailing "/" must be added.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#location">Location</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="lsapiapp"><h3>LiteSpeed SAPI App<span class="ls-permlink"><a href="#lsapiapp"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the name of the LiteSpeed SAPI application to be connected to this context. This application must be defined in the <span class="tagP"><a href="#ExtApp_Help">External Apps</a></span> section at the server or virtual host level.</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extraHeaders"><h3>Header Operations<span class="ls-permlink"><a href="#extraHeaders"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies additional response/request headers to be added. Multiple header directives can be added with one directive per line. "NONE" can be used to disable parent header inheritance. If no directive is provided 'Header' is assumed.</p> <h4>Syntax</h4><p>[Header]|RequestHeader [condition] set|append|merge|add|unset header [value] [early|env=[!]variable]</p> <h4>Example</h4><div class="ls-example">set Cache-control no-cache<br/> append Cache-control no-store<br/> Header set My-header cust_header_val<br/> RequestHeader set My-req-header cust_req_header_val</div><h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> Syntax and usage are similar to <a href="https://httpd.apache.org/docs/2.2/mod/mod_headers.html#header" target="_blank" rel="noopener noreferrer">Apache's mod_headers directives</a> for supported operations.<br/><br/> <span title="Information" class="ls-icon-info"></span> The 'Header' directive is is optional and can be excluded or left in when copying rules from elsewhere without issue.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="realm"><h3>Realm<span class="ls-permlink"><a href="#realm"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the authorization realm for this context. When specified, a valid username and password must be provided in order to access this context. <span class="tagl"><a href="VHSecurity_Help.html#realms">Authorization Realms</a></span> are set up in the <span class="tagP"><a href="#VHSecurity_Help">Virtual Host Security</a></span> section. This setting uses each realm's <span class="tagl"><a href="VHSecurity_Help.html#realmName">Realm Name</a></span>.</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="authName"><h3>Authentication Name<span class="ls-permlink"><a href="#authName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies an alternative name for the authorization realm for the current context. If not specified, the original realm name will be used. The authentication name is displayed on the browser's login pop-up.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="required"><h3>Require (Authorized Users/Groups)<span class="ls-permlink"><a href="#required"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies which user/group can access this context. This allows you to use one user/group database (specified in <span class="tagl"><a href="#realm">Realm</a></span>) across a number of contexts, but only allow certain users/groups from that database to access this context.</p> <h4>Syntax</h4><p>Syntax is compatible with Apache's Require directive. For example: <ul> <li><span class="val">user username [username ...]</span><br/> Only listed users can access this context.</li> <li> <span class="val">group groupid [groupid ...]</span><br/> Only users belonging to the listed groups can access this context.</li> </ul> If this setting is not specified, all valid users will be allowed to access this resource.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessAllowed"><h3>Access Allowed<span class="ls-permlink"><a href="#accessAllowed"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies which IPs or sub-networks are allowed to access resources under this context. Together with <span class="tagl"><a href="#accessDenied">Access Denied</a></span> and server/virtual host level access control, accessibility is determined by the smallest scope that a client's IP address falls into.</p> <h4>Syntax</h4><p>Comma-delimited list of IPs/sub-networks.</p> <h4>Example</h4><div class="ls-example">Sub-networks can be written as <span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span>, or <span class="val">192.168.1.*</span>.</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessDenied"><h3>Access Denied<span class="ls-permlink"><a href="#accessDenied"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies which IPs or sub-networks are NOT allowed to access resources under this context. Together with <span class="tagl"><a href="#accessAllowed">Access Allowed</a></span> and server/virtual host-level access control, accessibility is determined by the smallest scope that a client's IP address falls into.</p> <h4>Syntax</h4><p>Comma-delimited list of IPs/sub-networks.</p> <h4>Example</h4><div class="ls-example">Sub-networks can be written as <span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span>, or <span class="val">192.168.1.*</span>.</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAuthorizer"><h3>Authorizer<span class="ls-permlink"><a href="#extAuthorizer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies an external application that can be used to generate authorized/unauthorized decisions. Currently, only the FastCGI Authorizer is available. For more details about the FastCGI Authorizer role, please visit <a href=" https://fastcgi-archives.github.io/ " target="_blank" rel="noopener noreferrer"> https://fastcgi-archives.github.io/ </a>.</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="addDefaultCharset"><h3>Add Default Charset<span class="ls-permlink"><a href="#addDefaultCharset"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to add a character set tag to the "Content-Type" response header, when content type is either "text/html" or "text/plain" without any parameters. When set to <span class="val">Off</span>, this function is disabled. When set to <span class="val">On</span>, either the character set specified by <span class="tagl"><a href="#defaultCharsetCustomized">Customized Default Charset</a></span> or the default "iso-8859-1" will be added.</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="defaultCharsetCustomized"><h3>Customized Default Charset<span class="ls-permlink"><a href="#defaultCharsetCustomized"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies a character set to be used when <span class="tagl"><a href="#addDefaultCharset">Add Default Charset</a></span> is <span class="val">On</span>. This is optional. The default value is <span class="val">iso-8859-1</span>. This entry has no effect when <span class="tagl"><a href="#addDefaultCharset">Add Default Charset</a></span> is <span class="val">Off</span>.</p> <h4>Syntax</h4><p>Name of a character set.</p> <h4>Example</h4><div class="ls-example">utf-8</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableIpGeo"><h3>Enable GeoLocation Lookup<span class="ls-permlink"><a href="#enableIpGeo"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p> Specifies whether to enable/disable IP Geolocation lookup. Can be set at server, virtual host, or context level. IP Geolocation is disabled by default when using value "Not Set".</p> <h4>Syntax</h4><p>Select from radio box</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="ServGeneral_Help.html#useIpInProxyHeader">Use Client IP in Header</a></span>, <span class="tagl"><a href="ServGeneral_Help.html#geoipDBFile">DB File Path</a></span>,</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ���������������������������������������������������������App_Server_Help.html��������������������������������������������������������������������������������0000644�����������������00000053766�15027525531�0010476 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - App Server Settings</title> <meta name="description" content="OpenLiteSpeed Users' Manual - App Server Settings." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 9</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><span class="current"><a href="App_Server_Help.html">App Server Settings</a></span></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="ScriptHandler_Help.html">Script Handler</a></div><div class="center"><a href="config.html">Configuration</a></div><div class="next"><a href="Module_Help.html">Module Configuration</a> »</div></div> <h1>App Server Settings</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header><a href="#railsDefaults">Rack/Rails Default Settings</a></header><p> <a href="#rubyBin">Ruby Path</a> | <a href="#appserverEnv">Run-Time Mode</a> | <a href="#maxConns">Max Connections</a> | <a href="#env">Environment</a> | <a href="#initTimeout">Initial Request Timeout (secs)</a> | <a href="#retryTimeout">Retry Timeout (secs)</a> | <a href="#pcKeepAliveTimeout">Connection Keepalive Timeout</a> | <a href="#respBuffer">Response Buffering</a> | <a href="#extMaxIdleTime">Max Idle Time</a> | <a href="#backlog">Back Log</a> | <a href="#runOnStartUp">Run On Start Up</a> | <a href="#extAppPriority">Priority</a> | <a href="#memSoftLimit">Memory Soft Limit (bytes)</a> | <a href="#memHardLimit">Memory Hard Limit (bytes)</a> | <a href="#procSoftLimit">Process Soft Limit</a> | <a href="#procHardLimit">Process Hard Limit</a></p></section> <section class="toc-row"><header><a href="#wsgiDefaults">Python WSGI Default Settings</a></header><p> <a href="#wsgiBin">WSGI Path</a> | <a href="#appserverEnv">Run-Time Mode</a> | <a href="#maxConns">Max Connections</a> | <a href="#env">Environment</a> | <a href="#initTimeout">Initial Request Timeout (secs)</a> | <a href="#retryTimeout">Retry Timeout (secs)</a> | <a href="#pcKeepAliveTimeout">Connection Keepalive Timeout</a> | <a href="#respBuffer">Response Buffering</a> | <a href="#extMaxIdleTime">Max Idle Time</a> | <a href="#backlog">Back Log</a> | <a href="#runOnStartUp">Run On Start Up</a> | <a href="#extAppPriority">Priority</a> | <a href="#memSoftLimit">Memory Soft Limit (bytes)</a> | <a href="#memHardLimit">Memory Hard Limit (bytes)</a> | <a href="#procSoftLimit">Process Soft Limit</a> | <a href="#procHardLimit">Process Hard Limit</a></p></section> <section class="toc-row"><header><a href="#nodeDefaults">Node.js App Default Settings</a></header><p> <a href="#nodeBin">Node Path</a> | <a href="#appserverEnv">Run-Time Mode</a> | <a href="#maxConns">Max Connections</a> | <a href="#env">Environment</a> | <a href="#initTimeout">Initial Request Timeout (secs)</a> | <a href="#retryTimeout">Retry Timeout (secs)</a> | <a href="#pcKeepAliveTimeout">Connection Keepalive Timeout</a> | <a href="#respBuffer">Response Buffering</a> | <a href="#extMaxIdleTime">Max Idle Time</a> | <a href="#backlog">Back Log</a> | <a href="#runOnStartUp">Run On Start Up</a> | <a href="#extAppPriority">Priority</a> | <a href="#memSoftLimit">Memory Soft Limit (bytes)</a> | <a href="#memHardLimit">Memory Hard Limit (bytes)</a> | <a href="#procSoftLimit">Process Soft Limit</a> | <a href="#procHardLimit">Process Hard Limit</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="railsDefaults"><h3>Rack/Rails Default Settings<span class="ls-permlink"><a href="#railsDefaults"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Default configurations for Rack/Rails applications. These settings can be overriden at the context level.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="rubyBin"><h3>Ruby Path<span class="ls-permlink"><a href="#rubyBin"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Path to Ruby executable. Generally, it is /usr/bin/ruby or /usr/local/bin/ruby depending on where Ruby has been installed to.</p> <h4>Syntax</h4><p>Absolute path</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="appserverEnv"><h3>Run-Time Mode<span class="ls-permlink"><a href="#appserverEnv"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies which mode the application will be running as: "Development", "Production", or "Staging". The default is "Production".</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxConns"><h3>Max Connections<span class="ls-permlink"><a href="#maxConns"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the maximum number of concurrent connections that can be established between the server and an external application. This setting controls how many requests can be processed concurrently by an external application, however, the real limit also depends on the external application itself. Setting this value higher will not help if the external application is not fast enough or cannot scale to a large number of concurrent requests.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> Setting a high value does not directly translate to higher performance. Setting the limit to a value that will not overload the external application will provide the best performance/throughput.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="env"><h3>Environment<span class="ls-permlink"><a href="#env"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies extra environment variables for the external application.</p> <h4>Syntax</h4><p>Key=value. Multiple variables can be separated by "ENTER"</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="initTimeout"><h3>Initial Request Timeout (secs)<span class="ls-permlink"><a href="#initTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the maximum time in seconds the server will wait for the external application to respond to the first request over a new established connection. If the server does not receive any data from the external application within this timeout limit, it will mark this connection as bad. This helps to identify communication problems with external applications as quickly as possible. If some requests take longer to process, increase this limit to avoid 503 error messages.</p> <h4>Syntax</h4><p>Integer number</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="retryTimeout"><h3>Retry Timeout (secs)<span class="ls-permlink"><a href="#retryTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the period of time that the server waits before retrying an external application that had a prior communication problem.</p> <h4>Syntax</h4><p>Integer number</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="pcKeepAliveTimeout"><h3>Connection Keepalive Timeout<span class="ls-permlink"><a href="#pcKeepAliveTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the maximum time in seconds to keep an idle persistent connection open.<br/><br/> When set to "-1", the connection will never timeout. When set to 0 or greater, the connection will be closed after this time in seconds has passed.</p> <h4>Syntax</h4><p>int</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="respBuffer"><h3>Response Buffering<span class="ls-permlink"><a href="#respBuffer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to buffer responses received from external applications. If a "nph-" (Non-Parsed-Header) script is detected, buffering is turned off for responses with full HTTP headers.</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extMaxIdleTime"><h3>Max Idle Time<span class="ls-permlink"><a href="#extMaxIdleTime"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the maximum idle time before an external application is stopped by the server, freeing idle resources. When set to "-1", the external application will not be stopped by the server unless running in ProcessGroup mode where idle external applications will be stopped after 30 seconds.<br/><br/> Default value: <span class="val">-1{/val}</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> This feature is especially useful in the mass hosting environment where, in order to prevent files owned by one virtual host from being accessed by the external application scripts of another virtual host, many different applications are run at the same time in SetUID mode. Set this value low to prevent these external applications from idling unnecessarily.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="backlog"><h3>Back Log<span class="ls-permlink"><a href="#backlog"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the backlog of the listening socket. Required if <span class="tagl"><a href="#autoStart">Start By Server</a></span> is enabled.</p> <h4>Syntax</h4><p>Integer number</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="runOnStartUp"><h3>Run On Start Up<span class="ls-permlink"><a href="#runOnStartUp"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to start the external application at server start up. Only applicable to external applications that can manage their own child processes and where <span class="tagl"><a href="#instances">Instances</a></span> value is set to "1".<br/><br/> If enabled, external processes will be created at server startup instead of run-time.<br/><br/> When selecting "Yes (Detached mode)", all detached process can be restarted at the Server level or Virtual Host level by touching the '.lsphp_restart.txt' file under the $SERVER_ROOT/admin/tmp/ or $VH_ROOT/ directory respectively.<br/><br/> Default value: Yes (Detached mode)</p> <h4>Syntax</h4><p>Select from radio box</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> If the configured external process has significant startup overhead, like a Rails app, then this option should be enabled to decrease first page response time.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAppPriority"><h3>Priority<span class="ls-permlink"><a href="#extAppPriority"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies priority of the external application process. Value ranges from <span class="val">-20</span> to <span class="val">20</span>. A lower number means a higher priority. An external application process cannot have a higher priority than the web server. If this priority is set to a lower number than the server's, the server's priority will be used for this value.</p> <h4>Syntax</h4><p>int</p> <h4>See Also</h4><p class="ls-text-small">Server <span class="tagl"><a href="ServGeneral_Help.html#serverPriority">Priority</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="memSoftLimit"><h3>Memory Soft Limit (bytes)<span class="ls-permlink"><a href="#memSoftLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the memory consumption limit in bytes for an external application process or an external application started by the server.<br/><br/> The main purpose of this limit is to prevent excessive memory usage because of software bugs or intentional attacks, not to impose a limit on normal usage. Make sure to leave enough head room, otherwise your application may fail and 503 error may be returned. It can be set at the server- level or at an individual external application level. The server-level limit will be used if it is not set at the individual application level.<br/><br/> The operating system's default setting will be used if the value is absent at both levels or set to <span class="val">0</span>.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Attention" class="ls-icon-attention"></span> Do not over adjust this limit. This may result in 503 errors if your application needs more memory.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="memHardLimit"><h3>Memory Hard Limit (bytes)<span class="ls-permlink"><a href="#memHardLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Much the same as <span class="tagl"><a href="#memSoftLimit">Memory Soft Limit (bytes)</a></span>, except the soft limit can be raised up to the hard limit from within a user process. The hard limit can be set at server level or at an individual external application level. The server-level limit will be used if it is not set at an individual application level.<br/><br/> The operating system's default will be used if the value is absent at both levels or set to <span class="val">0</span>.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Attention" class="ls-icon-attention"></span> Do not over adjust this limit. This may result in 503 errors if your application need more memory.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="procSoftLimit"><h3>Process Soft Limit<span class="ls-permlink"><a href="#procSoftLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Limits the total number of processes that can be created on behalf of a user. All existing processes will be counted against this limit, not just new processes to be started.<br/><br/> The limit can be set at the server level or at an individual external application level. The server-level limit will be used if it is not set at an individual application level. The operating system's default setting will be used if this value is 0 or absent at both levels.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> PHP scripts can call for forking processes. The main purpose of this limit is as a last line of defense to prevent fork bombs and other attacks caused by PHP processes creating other processes.<br/><br/> Setting this setting too low can severely hurt functionality. The setting will thus be ignored below certain levels.<br/><br/> When <b>Run On Start Up</b> is set to "Yes (Daemon mode)", the actual process limit will be higher than this setting to make sure parent processes are not limited.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="procHardLimit"><h3>Process Hard Limit<span class="ls-permlink"><a href="#procHardLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Much the same as <span class="tagl"><a href="#procSoftLimit">Process Soft Limit</a></span>, except the soft limit can be raised up to the hard limit from within a user process. The hard limit can be set at the server level or at an individual external application level. The server-level limit will be used if it is not set at an individual application level. The operating system's default value will be used if the value is absent at both levels or set to <span class="val">0</span>.</p> <h4>Syntax</h4><p>Integer number</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="wsgiDefaults"><h3>Python WSGI Default Settings<span class="ls-permlink"><a href="#wsgiDefaults"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Default configurations for Python WSGI applications. These settings can be overriden at the context level.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="wsgiBin"><h3>WSGI Path<span class="ls-permlink"><a href="#wsgiBin"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Path to LiteSpeed Python Web Server Gateway Interface executable (lswsgi).<br/><br/> This executable is created by compiling Python with LiteSpeed's WSGI LSAPI module.</p> <h4>Syntax</h4><p>Absolute path</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="nodeDefaults"><h3>Node.js App Default Settings<span class="ls-permlink"><a href="#nodeDefaults"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Default configurations for Node.js applications. These settings can be overriden at the context level.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="nodeBin"><h3>Node Path<span class="ls-permlink"><a href="#nodeBin"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Path to Node.js executable.</p> <h4>Syntax</h4><p>Absolute path</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ����������VHGeneral_Help.html���������������������������������������������������������������������������������0000644�����������������00000107733�15027525531�0010235 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Virtual Host General</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Virtual Host General." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 9</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><span class="current"><a href="VHGeneral_Help.html">Virtual Host General</a></span></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="VirtualHosts_Help.html">Virtual Hosts Basic</a></div><div class="center"><a href="config.html">Configuration</a></div><div class="next"><a href="VHSecurity_Help.html">Virtual Host Security</a> »</div></div> <h1>Virtual Host General</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header>General</header><p> <a href="#docRoot">Document Root</a> | <a href="#vhadminEmails">Administrator Email</a> | <a href="#vhEnableGzip">Enable GZIP Compression</a> | <a href="#vhEnableBr">Enable Brotli Compression</a> | <a href="#enableIpGeo">Enable GeoLocation Lookup</a> | <a href="#cgroups">cgroups</a></p></section> <section class="toc-row"><header>Virtual Host Log</header><p> <a href="#logUseServer">Use Server's Log</a> | <a href="#vhlog_fileName">File Name</a> | <a href="#vhlog_logLevel">Log Level</a> | <a href="#log_rollingSize">Rolling Size (bytes)</a> | <a href="#log_keepDays">Keep Days</a> | <a href="#log_compressArchive">Compress Archive</a></p></section> <section class="toc-row"><header>Access Log</header><p> <a href="#aclogUseServer">Log Control</a> | <a href="#vhaccessLog_fileName">File Name</a> | <a href="#accessLog_pipedLogger">Piped Logger</a> | <a href="#accessLog_logFormat">Log Format</a> | <a href="#accessLog_logHeader">Log Headers</a> | <a href="#log_rollingSize">Rolling Size (bytes)</a> | <a href="#log_keepDays">Keep Days</a> | <a href="#log_compressArchive">Compress Archive</a> | <a href="#accessLog_bytesLog">Bytes Log</a></p></section> <section class="toc-row"><header>Index Files</header><p> <a href="#indexUseServer">Use Server Index Files</a> | <a href="#indexFiles">Index Files</a> | <a href="#autoIndex">Auto Index</a> | <a href="#autoIndexURI">Auto Index URI</a></p></section> <section class="toc-row"><header><a href="#errPage">Customized Error Pages</a></header><p> <a href="#errCode">Error Code</a> | <a href="#errURL">URL</a></p></section> <section class="toc-row"><header>Expires Settings</header><p> <a href="#enableExpires">Enable Expires</a> | <a href="#expiresDefault">Expires Default</a> | <a href="#expiresByType">Expires By Type</a></p></section> <section class="toc-row"><header><a href="#fileUpload">File Upload</a></header><p> <a href="#uploadTmpDir">Temporary File Path</a> | <a href="#uploadTmpFilePermission">Temporary File Permissions</a> | <a href="#uploadPassByPath">Pass Upload Data by File Path</a></p></section> <section class="toc-row"><header>Script Handler Definition</header><p> <a href="#suffix">Suffix</a> | <a href="#shType">Handler Type</a> | <a href="#shHandlerName">Handler Name</a></p></section> <section class="toc-row"><header>Expire Settings</header><p> <a href="#enableExpires">Enable Expires</a> | <a href="#expiresDefault">Expires Default</a> | <a href="#expiresByType">Expires By Type</a></p></section> <section class="toc-row"><header>php.ini Override</header><p> <a href="#phpIniOverride">php.ini Override</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="docRoot"><h3>Document Root<span class="ls-permlink"><a href="#docRoot"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the document root for this virtual host. <span class="val">$VH_ROOT/html</span> is recommended. This directory is referred to as $DOC_ROOT in contexts.</p> <h4>Syntax</h4><p>A path which can be absolute, relative to $SERVER_ROOT, or relative to $VH_ROOT.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vhadminEmails"><h3>Administrator Email<span class="ls-permlink"><a href="#vhadminEmails"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies email address(es) of the administrator(s) of this virtual host.</p> <h4>Syntax</h4><p>Comma separated list of email addresses</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vhEnableGzip"><h3>Enable GZIP Compression<span class="ls-permlink"><a href="#vhEnableGzip"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to enable GZIP compression for this virtual host. This setting is only effective when <span class="tagl"><a href="#enableGzipCompress">Enable GZIP Compression</a></span> is set to <span class="val">Yes</span> at the server level.</p> <h4>Syntax</h4><p>Select from radio box</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="ServTuning_Help.html#enableGzipCompress">Enable GZIP Compression</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vhEnableBr"><h3>Enable Brotli Compression<span class="ls-permlink"><a href="#vhEnableBr"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to enable Brotli compression for this virtual host. This setting is only effective when <span class="tagl"><a href="#brStaticCompressLevel">Brotli Compression Level (Static File)</a></span> is set to a non-zero value at the server level.</p> <h4>Syntax</h4><p>Select from radio box</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="ServTuning_Help.html#brStaticCompressLevel">Brotli Compression Level (Static File)</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableIpGeo"><h3>Enable GeoLocation Lookup<span class="ls-permlink"><a href="#enableIpGeo"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p> Specifies whether to enable/disable IP Geolocation lookup. Can be set at server, virtual host, or context level. IP Geolocation is disabled by default when using value "Not Set".</p> <h4>Syntax</h4><p>Select from radio box</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="ServGeneral_Help.html#useIpInProxyHeader">Use Client IP in Header</a></span>, <span class="tagl"><a href="ServGeneral_Help.html#geoipDBFile">DB File Path</a></span>,</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="cgroups"><h3>cgroups<span class="ls-permlink"><a href="#cgroups"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>A Linux kernel feature that limits, accounts for, and isolates the resource usage (CPU, memory, disk I/O, network, etc.) of a collection of processes. You must be running cgroups v2 which is determined by the existence of the file <span class="val">/sys/fs/cgroup/cgroup.controllers</span>.<br/><br/> Setting this to <span class="val">Disabled</span> at the Server level will disable this setting server-wide. In all other cases, the Server level setting can be overridden at the Virtual Host level.<br/><br/> Default values:<br/> <b>Server level:</b> Off<br/> <b>VH level:</b> Inherit Server level setting</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="logUseServer"><h3>Use Server's Log<span class="ls-permlink"><a href="#logUseServer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to put log messages from this virtual host into the server log file instead of creating its own log file.</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vhlog_fileName"><h3>File Name<span class="ls-permlink"><a href="#vhlog_fileName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the path for the log file.</p> <h4>Syntax</h4><p>Filename which can be an absolute path or a relative path to $SERVER_ROOT, $VH_ROOT.</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> Place the log file on a separate disk.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vhlog_logLevel"><h3>Log Level<span class="ls-permlink"><a href="#vhlog_logLevel"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the level of logging. Available levels (from high to low) are <span class="val">ERROR</span>, <span class="val">WARNING</span>, <span class="val">NOTICE</span>, <span class="val">INFO</span>, and <span class="val">DEBUG</span>. Only messages with a level higher than or equal to the current setting will be logged. If you want to set it to DEBUG</span>, you must set the server log level to <span class="val">DEBUG</span> as well. The level of debugging is controlled solely at the server level by <span class="tagl"><a href="ServGeneral_Help.html#log_debugLevel">Debug Level</a></span>.</p> <h4>Syntax</h4><p>Select from drop down list</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> Unless <span class="tagl"><a href="ServGeneral_Help.html#log_debugLevel">Debug Level</a></span> is set to a level other than <span class="val">NONE</span>, <span class="val">DEBUG</span> log level does not have any performance impact and is recommended.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="ServGeneral_Help.html#log_debugLevel">Debug Level</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="log_rollingSize"><h3>Rolling Size (bytes)<span class="ls-permlink"><a href="#log_rollingSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies when the current log file needs to be rolled over, also known as log rotation. When the file size is over the rollover limit, the active log file will be renamed to log_name.mm_dd_yyyy(.sequence) in the same directory and a new active log file will be created. The actual size of the rotated log file once it is created will sometimes be a little bigger than this size limit. Set to <span class="val">0</span> to disable log rotation.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> Append "K", "M", "G" to the number for kilo-, mega- and giga- bytes.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="log_keepDays"><h3>Keep Days<span class="ls-permlink"><a href="#log_keepDays"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies how many days the access log file will be kept on disk. Only rotated log files older than the specified number of days will be deleted. The current log file will not be touched regardless how many days worth of data it contains. If you do not want to auto-delete stale and very old log files, set this to <span class="val">0</span>.</p> <h4>Syntax</h4><p>Integer number</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="log_compressArchive"><h3>Compress Archive<span class="ls-permlink"><a href="#log_compressArchive"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to compress rotated log files in order to save disk space.</p> <h4>Syntax</h4><p>Select from radio box</p> <h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> Log files are highly compressible and this is recommended to reduce disk usage for old logs.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="aclogUseServer"><h3>Log Control<span class="ls-permlink"><a href="#aclogUseServer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Where the access log should be written. There are three options: <ol> <li>Write to the server's access log</li> <li>Create an access log for this virtual host</li> <li>Disable access logging</li> </ol></p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vhaccessLog_fileName"><h3>File Name<span class="ls-permlink"><a href="#vhaccessLog_fileName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The access log filename.</p> <h4>Syntax</h4><p>Filename which can be an absolute path or a relative path to $SERVER_ROOT, $VH_ROOT.</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> Put access log file on a separate disk.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessLog_pipedLogger"><h3>Piped Logger<span class="ls-permlink"><a href="#accessLog_pipedLogger"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the external application that will receive the access log data sent by LiteSpeed through a pipe on its STDIN stream (file handle is 0). When this field is specified, the access log will be sent only to the logger application and not the access log file specified in previous entry.<br/><br/> The logger application must be defined in <span class="tagP"><a href="#ExtApp_Help">External Apps</a></span> section first. Server-level access logging can only use an external logger application defined at the server level. Virtual host-level access logging can only use a logger application defined at the virtual host level.<br/><br/> The logger process is spawned in the same way as other external (CGI/FastCGI/LSAPI) processes. This means it will execute as the user ID specified in the virtual host's <span class="tagl"><a href="VirtualHosts_Help.html#setUidMode">External App Set UID Mode</a></span> settings and will never run on behalf of a privileged user. <br/><br/> LiteSpeed web server performs simple load balancing among multiple logger applications if more than one instance of a logger application is configured. LiteSpeed server always attempts to keep the number of logger applications as low as possible. Only when one logger application fails to process access log entries in time will the server attempt to spawn another instance of the logger application. <br/><br/> If a logger crashes, the web server will start another instance but the log data in the stream buffer will be lost. It is possible to lose log data if external loggers cannot keep up with the speed and volume of the log stream.</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessLog_logFormat"><h3>Log Format<span class="ls-permlink"><a href="#accessLog_logFormat"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p> Specifies the log format for the access log. When log format is set, it will override the <span class="tagl"><a href="#accessLog_logHeader">Log Headers</a></span> setting.</p> <h4>Syntax</h4><p>String. The syntax of log format is compatible with Apache 2.0's custom <a href="http://httpd.apache.org/docs/current/mod/mod_log_config.html#formats" target="_blank" rel="noopener noreferrer">log format</a>.</p> <h4>Example</h4><div class="ls-example"><b>Common Log Format (CLF)</b><br/> "%h %l %u %t \"%r\" %>s %b"<br/><br/> <b>Common Log Format with Virtual Host</b><br/> "%v %h %l %u %t \"%r\" %>s %b"<br/><br/> <b>NCSA extended/combined log format</b><br/> "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-agent}i\" <br/><br/> <b>Log cookie value of Foobar</b><br/> "%{Foobar}C"</div><h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#accessLog_logHeader">Log Headers</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessLog_logHeader"><h3>Log Headers<span class="ls-permlink"><a href="#accessLog_logHeader"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to log HTTP request headers: <span class="val">Referer</span>, <span class="val">UserAgent</span>, and <span class="val">Host</span>.</p> <h4>Syntax</h4><p>Select from checkbox</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> Turn this off if you do not need these headers in the access log.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#accessLog_logFormat">Log Format</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessLog_bytesLog"><h3>Bytes Log<span class="ls-permlink"><a href="#accessLog_bytesLog"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the path to the bandwidth bytes log file. When specified, a cPanel compatible bandwidth log will be created. This will log the total bytes transferred for a request including both the request and reply bodies.</p> <h4>Syntax</h4><p>Filename which can be an absolute path or a relative path to $SERVER_ROOT.</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> Put the log file on a separate disk.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="indexUseServer"><h3>Use Server Index Files<span class="ls-permlink"><a href="#indexUseServer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to use the server's index file settings. If set to <span class="val">Yes</span>, only the server's settings will be used. If set to <span class="val">No</span>, the server's settings will not be used. If set to <span class="val">Addition</span>, additional index files can be added to server's index file list for this virtual host. If you want to disable index files for this virtual host, you can set the value to <span class="val">No</span> and leave the index files field empty.</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="indexFiles"><h3>Index Files<span class="ls-permlink"><a href="#indexFiles"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies names of index files that will be searched sequentially when a URL is mapped to a directory. You can customize it at the server, virtual host, and context level.</p> <h4>Syntax</h4><p>Comma-delimited list of index filenames.</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> Only set index files that you need.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="autoIndex"><h3>Auto Index<span class="ls-permlink"><a href="#autoIndex"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to generate a directory index on the fly when index files listed in <span class="tagl"><a href="#indexFiles">Index Files</a></span> are not available in a directory. This option is customizable at the virtual host and context level, and is inherited along the directory tree until it is explicitly overridden. You can customize the generated index page. Please check online wiki How-tos.</p> <h4>Syntax</h4><p>Select from radio box</p> <h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> It is recommended to turn off Auto Index wherever possible to prevent revealing confidential data.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#indexFiles">Index Files</a></span>, <span class="tagl"><a href="#autoIndexURI">Auto Index URI</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="autoIndexURI"><h3>Auto Index URI<span class="ls-permlink"><a href="#autoIndexURI"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the URI that will be used to generate the index page when index files listed in <span class="tagl"><a href="#indexFiles">Index Files</a></span> are not available in a directory. LiteSpeed web server uses an external script to generate the index page providing the maximum customization flexibility. The default script produces an index page with same look as Apache's. To customize the generated index page, please read online wiki How-tos. The directory to be indexed is passed to the script via an environment variable "LS_AI_PATH".</p> <h4>Syntax</h4><p>URI</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#indexFiles">Index Files</a></span>, <span class="tagl"><a href="#autoIndex">Auto Index</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="errPage"><h3>Customized Error Pages<span class="ls-permlink"><a href="#errPage"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Whenever the server has a problem processing a request, the server will return an error code and an html page as an error message to the web client. Error codes are defined in the HTTP protocol (see RFC 2616). LiteSpeed web server has a built-in default error page for each error code, but a customized page can be configured for each error code as well. These error pages can be even further customized to be unique for each virtual host.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="errCode"><h3>Error Code<span class="ls-permlink"><a href="#errCode"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the HTTP status code for the error page. Only the selected HTTP status code will have this customized error page.</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="errURL"><h3>URL<span class="ls-permlink"><a href="#errURL"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the URL of the customized error page. The server will forward the request to this URL when the corresponding HTTP status code has returned. If this URL refers to a non-existing resource, the built-in error page will be used. The URL can be a static file, a dynamically generated page, or a page on another web site (a URL starting with "http(s)://"). When referring to a page on another web site, the client will receive a redirect status code instead of the original status code.</p> <h4>Syntax</h4><p>URL</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableExpires"><h3>Enable Expires<span class="ls-permlink"><a href="#enableExpires"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to generate an Expires header for static files. If enabled, an Expires header will be generated based on <span class="tagl"><a href="#expiresDefault">Expires Default</a></span> and <span class="tagl"><a href="#expiresByType">Expires By Type</a></span>.<br/><br/> This can be set at server, virtual host and context level. Lower level settings will override higher level ones, i.e. context settings will override virtual host settings and virtual host settings will override server settings.</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expiresDefault"><h3>Expires Default<span class="ls-permlink"><a href="#expiresDefault"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies default settings for Expires header generation. This setting takes effect when <span class="tagl"><a href="#enableExpires">Enable Expires</a></span> is set to "Yes". It can be overridden by <span class="tagl"><a href="#expiresByType">Expires By Type</a></span>. Do not set this default at the server or virtual host level unless you have to, since it will generate Expires headers for all pages. Most of time this should be set at the context level for certain directories that do not change often. If there is no default setting, no Expires header will be generated for types not specified in <span class="tagl"><a href="#expiresByType">Expires By Type</a></span>.</p> <h4>Syntax</h4><p>A|Mseconds<br/> The file will expire after base time(A|M) plus specified seconds. Base time "A" sets the value to the client's access time and "M" to the file's last modified time.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expiresByType"><h3>Expires By Type<span class="ls-permlink"><a href="#expiresByType"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies Expires header settings for individual MIME types.</p> <h4>Syntax</h4><p>Comma delimited list of "MIME-type=A|Mseconds". The file will expire after base time (A|M) plus specified seconds.<br/><br/> Base time "A" sets the value to the client's access time and "M" to the file's last modified time. MIME-type accepts wildcard "*", like image/*.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="fileUpload"><h3>File Upload<span class="ls-permlink"><a href="#fileUpload"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Provides additional security functionality when uploading files by using a Request Body Parser to parse files to a server local directory where they can be easily scanned for malicious intent by third party modules. Request Body Parser is used when <span class="tagl"><a href="#uploadPassByPath">Pass Upload Data by File Path</a></span> is enabled or a module calls LSIAPI’s set_parse_req_body in the LSI_HKPT_HTTP_BEGIN level. API examples provided in source package.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#HTTP_BEGIN">Hook::HTTP_BEGIN Priority</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="uploadTmpDir"><h3>Temporary File Path<span class="ls-permlink"><a href="#uploadTmpDir"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Temporary directory where files being uploaded to server will be stored while request body parser is working. Default value is <span class="val">/tmp/lshttpd/</span>.</p> <h4>Syntax</h4><p>Absolute path or path starting with $SERVER_ROOT (for Server and VHost levels) or $VH_ROOT (for VHost levels).</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="uploadTmpFilePermission"><h3>Temporary File Permissions<span class="ls-permlink"><a href="#uploadTmpFilePermission"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Determines file permissions used for files stored in temporary directory. Server level setting is global, can be overridden at VHost level.</p> <h4>Syntax</h4><p>3 digits octet number. Default value is 666.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="uploadPassByPath"><h3>Pass Upload Data by File Path<span class="ls-permlink"><a href="#uploadPassByPath"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specify whether or not to pass upload file data by path. If enabled, file path along with some other information is sent to backend handler instead of file itself when uploading. This saves on CPU resources and file transfer time but requires some updates to backend to implement. If disabled, file content will be transferred to backend handler, request body is still parsed to files.</p> <h4>Syntax</h4><p>Select from radio box</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> Enable this to speed up file upload processing if backward compatibility is not an issue.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="suffix"><h3>Suffix<span class="ls-permlink"><a href="#suffix"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the script file suffixes that will be handled by this script handler. Suffixes must be unique.</p> <h4>Syntax</h4><p>Comma delimited list with period "." character prohibited.</p> <h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> The server will automatically add a special MIME type ("application/x-httpd-[suffix]") for the first suffix in the list. For example, MIME type "application/x-httpd-php53" will be added for suffix "php53". Suffixes after the first need to set up in the <span class="tagl"><a href="#mime">MIME Settings</a></span> settings.<br/> Though we list suffixes in this field, the script handlers use MIME types, not suffixes, to decide which scripts to handle. <br/> <span title="Performance" class="ls-icon-performance"></span><span title="Security" class="ls-icon-security"></span> Only specify the suffixes you really need.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="shType"><h3>Handler Type<span class="ls-permlink"><a href="#shType"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the type of external application that processes these script files. Available types are: <span class="val">CGI</span>, <span class="val">FastCGI</span>, <span class="val">Web Server</span>, <span class="val">LSAPI app</span>, <span class="val">Load balancer</span>, or <span class="val">Servlet Engine</span>. For FastCGI, Web Server and Servlet Engine, a <span class="tagl"><a href="#shHandlerName">Handler Name</a></span> needs to be specified. This is an external application name as predefined in the <span class="tagP"><a href="#ExtApp_Help">External Apps</a></span> section.</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="shHandlerName"><h3>Handler Name<span class="ls-permlink"><a href="#shHandlerName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the name of the external application that processes the script files when the handler type is FastCGI, Web Server, LSAPI, Load Balancer, or Servlet Engine.</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="phpIniOverride"><h3>php.ini Override<span class="ls-permlink"><a href="#phpIniOverride"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Used to overwrite php.ini settings in the current context (Virtual Host level or Context level).<br/><br/> Supported directives are:<br/> php_value<br/> php_flag<br/> php_admin_value<br/> php_admin_flag<br/><br/> All other lines/directives will be ignored.</p> <h4>Syntax</h4><p>Override syntax is similar to Apache, a newline separated list of directives and their values with each directive being prepended by php_value, php_flag, php_admin_value, or php_admin_flag appropriately.</p> <h4>Example</h4><div class="ls-example">php_value include_path ".:/usr/local/lib/php"<br/> php_admin_flag engine on<br/> php_admin_value open_basedir "/home"</div></article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> �������������������������������������External_LSAPI.html���������������������������������������������������������������������������������0000644�����������������00000057676�15027525531�0010176 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - LiteSpeed SAPI App</title> <meta name="description" content="OpenLiteSpeed Users' Manual - LiteSpeed SAPI App." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 9</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><span class="current"><a href="External_LSAPI.html">LSAPI App</a></span></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></div><div class="center"><a href="ExtApp_Help.html">External Apps</a></div><div class="next"><a href="External_Servlet.html">Servlet Engine</a> »</div></div> <h1>LiteSpeed SAPI App</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header>LiteSpeed SAPI</header><p> <a href="#extAppName">Name</a> | <a href="#extAppAddress">Address</a> | <a href="#maxConns">Max Connections</a> | <a href="#env">Environment</a> | <a href="#initTimeout">Initial Request Timeout (secs)</a> | <a href="#retryTimeout">Retry Timeout (secs)</a> | <a href="#persistConn">Persistent Connection</a> | <a href="#pcKeepAliveTimeout">Connection Keepalive Timeout</a> | <a href="#respBuffer">Response Buffering</a> | <a href="#autoStart">Start By Server</a> | <a href="#extAppPath">Command</a> | <a href="#backlog">Back Log</a> | <a href="#instances">Instances</a> | <a href="#extUser">Run As User</a> | <a href="#extGroup">Run As Group</a> | <a href="#extUmask">umask</a> | <a href="#runOnStartUp">Run On Start Up</a> | <a href="#extMaxIdleTime">Max Idle Time</a> | <a href="#extAppPriority">Priority</a> | <a href="#memSoftLimit">Memory Soft Limit (bytes)</a> | <a href="#memHardLimit">Memory Hard Limit (bytes)</a> | <a href="#procSoftLimit">Process Soft Limit</a> | <a href="#procHardLimit">Process Hard Limit</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="extAppName"><h3>Name<span class="ls-permlink"><a href="#extAppName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>A unique name for this external application. You will refer to it by this name when you use it in other parts of the configuration.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAppAddress"><h3>Address<span class="ls-permlink"><a href="#extAppAddress"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>A unique socket address used by the external application. IPv4/IPv6 sockets and Unix Domain Sockets (UDS) are supported. IPv4/IPv6 sockets can be used for communication over the network. UDS can only be used when the external application resides on the same machine as the server.</p> <h4>Syntax</h4><p>IPv4 or IPV6 address:port or UDS://path</p> <h4>Example</h4><div class="ls-example">127.0.0.1:5434<br/> UDS://tmp/lshttpd/php.sock.</div><h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> If the external application runs on the same machine, UDS is preferred. If you have to use an IPv4|IPV6 socket, set the IP address to <span class="val">localhost</span> or <span class="val">127.0.0.1</span>, so the external application is inaccessible from other machines.<br/> <span title="Performance" class="ls-icon-performance"></span> Unix Domain Sockets generally provide higher performance than IPv4 sockets.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxConns"><h3>Max Connections<span class="ls-permlink"><a href="#maxConns"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the maximum number of concurrent connections that can be established between the server and an external application. This setting controls how many requests can be processed concurrently by an external application, however, the real limit also depends on the external application itself. Setting this value higher will not help if the external application is not fast enough or cannot scale to a large number of concurrent requests.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> Setting a high value does not directly translate to higher performance. Setting the limit to a value that will not overload the external application will provide the best performance/throughput.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="env"><h3>Environment<span class="ls-permlink"><a href="#env"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies extra environment variables for the external application.</p> <h4>Syntax</h4><p>Key=value. Multiple variables can be separated by "ENTER"</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="initTimeout"><h3>Initial Request Timeout (secs)<span class="ls-permlink"><a href="#initTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the maximum time in seconds the server will wait for the external application to respond to the first request over a new established connection. If the server does not receive any data from the external application within this timeout limit, it will mark this connection as bad. This helps to identify communication problems with external applications as quickly as possible. If some requests take longer to process, increase this limit to avoid 503 error messages.</p> <h4>Syntax</h4><p>Integer number</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="retryTimeout"><h3>Retry Timeout (secs)<span class="ls-permlink"><a href="#retryTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the period of time that the server waits before retrying an external application that had a prior communication problem.</p> <h4>Syntax</h4><p>Integer number</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="persistConn"><h3>Persistent Connection<span class="ls-permlink"><a href="#persistConn"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to keep the connection open after a request has been processed. Persistent connections can increase performance, but some FastCGI external applications do not support persistent connections fully. The default is "On".</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="pcKeepAliveTimeout"><h3>Connection Keepalive Timeout<span class="ls-permlink"><a href="#pcKeepAliveTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the maximum time in seconds to keep an idle persistent connection open.<br/><br/> When set to "-1", the connection will never timeout. When set to 0 or greater, the connection will be closed after this time in seconds has passed.</p> <h4>Syntax</h4><p>int</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="respBuffer"><h3>Response Buffering<span class="ls-permlink"><a href="#respBuffer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to buffer responses received from external applications. If a "nph-" (Non-Parsed-Header) script is detected, buffering is turned off for responses with full HTTP headers.</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="autoStart"><h3>Start By Server<span class="ls-permlink"><a href="#autoStart"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether you want the web server to start the application automatically. Only FastCGI and LSAPI applications running on the same machine can be started automatically. The IP in the <span class="tagl"><a href="#extAppAddress">Address</a></span> must be a local IP. Starting through the LiteSpeed CGI Daemon instead of a main server process will help reduce system overhead.<br/><br/> Default value: Yes (Through CGI Daemon)</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAppPath"><h3>Command<span class="ls-permlink"><a href="#extAppPath"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the full command line including parameters to execute the external application. Required value if <span class="tagl"><a href="#autoStart">Start By Server</a></span> is enabled. A parameter should be quoted with a double or single quote if the parameter contains space or tab characters.</p> <h4>Syntax</h4><p>Full path to the executable with optional parameters.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#autoStart">Start By Server</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="backlog"><h3>Back Log<span class="ls-permlink"><a href="#backlog"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the backlog of the listening socket. Required if <span class="tagl"><a href="#autoStart">Start By Server</a></span> is enabled.</p> <h4>Syntax</h4><p>Integer number</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="instances"><h3>Instances<span class="ls-permlink"><a href="#instances"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the maximum instances of the external application the server will create. It is required if <span class="tagl"><a href="#autoStart">Start By Server</a></span> is enabled. Most FastCGI/LSAPI applications can only process one request per process instance and for those types of applications, instances should be set to match the value of <span class="tagl"><a href="#maxConns">Max Connections</a></span>. Some FastCGI/LSAPI applications can spawn multiple child processes to handle multiple requests concurrently. For these types of applications, instances should be set to "1" and environment variables used to control how many child processes the application can spawn.</p> <h4>Syntax</h4><p>Integer number</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extUser"><h3>Run As User<span class="ls-permlink"><a href="#extUser"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The external application will run as this specified user name. If not set, Virtual Host level settings will be inherited.<br/><br/> Default value: Not Set</p> <h4>Syntax</h4><p>Valid username.</p> <h4>See Also</h4><p class="ls-text-small">extGroup</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extGroup"><h3>Run As Group<span class="ls-permlink"><a href="#extGroup"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The external application will run as this specified group name. If not set, Virtual Host level settings will be inherited.<br/><br/> Default value: Not Set</p> <h4>Syntax</h4><p>Valid group name.</p> <h4>See Also</h4><p class="ls-text-small">extUser</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extUmask"><h3>umask<span class="ls-permlink"><a href="#extUmask"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets default umask for this external application's processes. See <span class="cmd"> man 2 umask </span> for details. The default value taken from the server-level <span class="tagl"><a href="ServSecurity_Help.html#umask">umask</a></span> setting.</p> <h4>Syntax</h4><p>value valid range [000]-[777].</p> <h4>See Also</h4><p class="ls-text-small">CGI <span class="tagl"><a href="ServSecurity_Help.html#umask">umask</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="runOnStartUp"><h3>Run On Start Up<span class="ls-permlink"><a href="#runOnStartUp"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to start the external application at server start up. Only applicable to external applications that can manage their own child processes and where <span class="tagl"><a href="#instances">Instances</a></span> value is set to "1".<br/><br/> If enabled, external processes will be created at server startup instead of run-time.<br/><br/> When selecting "Yes (Detached mode)", all detached process can be restarted at the Server level or Virtual Host level by touching the '.lsphp_restart.txt' file under the $SERVER_ROOT/admin/tmp/ or $VH_ROOT/ directory respectively.<br/><br/> Default value: Yes (Detached mode)</p> <h4>Syntax</h4><p>Select from radio box</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> If the configured external process has significant startup overhead, like a Rails app, then this option should be enabled to decrease first page response time.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extMaxIdleTime"><h3>Max Idle Time<span class="ls-permlink"><a href="#extMaxIdleTime"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the maximum idle time before an external application is stopped by the server, freeing idle resources. When set to "-1", the external application will not be stopped by the server unless running in ProcessGroup mode where idle external applications will be stopped after 30 seconds.<br/><br/> Default value: <span class="val">-1{/val}</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> This feature is especially useful in the mass hosting environment where, in order to prevent files owned by one virtual host from being accessed by the external application scripts of another virtual host, many different applications are run at the same time in SetUID mode. Set this value low to prevent these external applications from idling unnecessarily.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAppPriority"><h3>Priority<span class="ls-permlink"><a href="#extAppPriority"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies priority of the external application process. Value ranges from <span class="val">-20</span> to <span class="val">20</span>. A lower number means a higher priority. An external application process cannot have a higher priority than the web server. If this priority is set to a lower number than the server's, the server's priority will be used for this value.</p> <h4>Syntax</h4><p>int</p> <h4>See Also</h4><p class="ls-text-small">Server <span class="tagl"><a href="ServGeneral_Help.html#serverPriority">Priority</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="memSoftLimit"><h3>Memory Soft Limit (bytes)<span class="ls-permlink"><a href="#memSoftLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the memory consumption limit in bytes for an external application process or an external application started by the server.<br/><br/> The main purpose of this limit is to prevent excessive memory usage because of software bugs or intentional attacks, not to impose a limit on normal usage. Make sure to leave enough head room, otherwise your application may fail and 503 error may be returned. It can be set at the server- level or at an individual external application level. The server-level limit will be used if it is not set at the individual application level.<br/><br/> The operating system's default setting will be used if the value is absent at both levels or set to <span class="val">0</span>.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Attention" class="ls-icon-attention"></span> Do not over adjust this limit. This may result in 503 errors if your application needs more memory.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="memHardLimit"><h3>Memory Hard Limit (bytes)<span class="ls-permlink"><a href="#memHardLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Much the same as <span class="tagl"><a href="#memSoftLimit">Memory Soft Limit (bytes)</a></span>, except the soft limit can be raised up to the hard limit from within a user process. The hard limit can be set at server level or at an individual external application level. The server-level limit will be used if it is not set at an individual application level.<br/><br/> The operating system's default will be used if the value is absent at both levels or set to <span class="val">0</span>.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Attention" class="ls-icon-attention"></span> Do not over adjust this limit. This may result in 503 errors if your application need more memory.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="procSoftLimit"><h3>Process Soft Limit<span class="ls-permlink"><a href="#procSoftLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Limits the total number of processes that can be created on behalf of a user. All existing processes will be counted against this limit, not just new processes to be started.<br/><br/> The limit can be set at the server level or at an individual external application level. The server-level limit will be used if it is not set at an individual application level. The operating system's default setting will be used if this value is 0 or absent at both levels.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> PHP scripts can call for forking processes. The main purpose of this limit is as a last line of defense to prevent fork bombs and other attacks caused by PHP processes creating other processes.<br/><br/> Setting this setting too low can severely hurt functionality. The setting will thus be ignored below certain levels.<br/><br/> When <b>Run On Start Up</b> is set to "Yes (Daemon mode)", the actual process limit will be higher than this setting to make sure parent processes are not limited.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="procHardLimit"><h3>Process Hard Limit<span class="ls-permlink"><a href="#procHardLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Much the same as <span class="tagl"><a href="#procSoftLimit">Process Soft Limit</a></span>, except the soft limit can be raised up to the hard limit from within a user process. The hard limit can be set at the server level or at an individual external application level. The server-level limit will be used if it is not set at an individual application level. The operating system's default value will be used if the value is absent at both levels or set to <span class="val">0</span>.</p> <h4>Syntax</h4><p>Integer number</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ������������������������������������������������������������������LB_Context.html�������������������������������������������������������������������������������������0000644�����������������00000037347�15027525531�0007456 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Load Balancer Context</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Load Balancer Context." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 9</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><span class="current"><a href="LB_Context.html">Load Balancer Context</a></span></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="CGI_Context.html">CGI Context</a></div><div class="center"><a href="Context_Help.html">Context</a></div><div class="next"><a href="Redirect_Context.html">Redirect Context</a> »</div></div> <h1>Load Balancer Context</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header><a href="#lbContext">Load Balancer Context</a></header><p> <a href="#expuri">URI</a> | <a href="#lbapp">Load Balancer</a> | <a href="#extraHeaders">Header Operations</a> | <a href="#realm">Realm</a> | <a href="#authName">Authentication Name</a> | <a href="#required">Require (Authorized Users/Groups)</a> | <a href="#accessAllowed">Access Allowed</a> | <a href="#accessDenied">Access Denied</a> | <a href="#extAuthorizer">Authorizer</a> | <a href="#addDefaultCharset">Add Default Charset</a> | <a href="#defaultCharsetCustomized">Customized Default Charset</a> | <a href="#enableIpGeo">Enable GeoLocation Lookup</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="lbContext"><h3>Load Balancer Context<span class="ls-permlink"><a href="#lbContext"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Like other external applications, load balancer worker applications cannot be used directly. They must be mapped to a URL through a context. A Load Balancer Context will associate a URI to be load balanced by the load balancer workers.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expuri"><h3>URI<span class="ls-permlink"><a href="#expuri"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the URI for this context.</p> <h4>Syntax</h4><p>The URI can be a plain URI (starting with "/") or a Perl compatible regular expression URI (starting with "exp:"). If a plain URI ends with a "/", then this context will include all sub-URIs under this URI. If the context maps to a directory on the file system, a trailing "/" must be added.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#location">Location</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="lbapp"><h3>Load Balancer<span class="ls-permlink"><a href="#lbapp"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the name of the load balancer to be associated to this context. This load balancer is a virtual application, and must be defined in the <span class="tagP"><a href="#ExtApp_Help">External Apps</a></span> section at the server or virtual host level.</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extraHeaders"><h3>Header Operations<span class="ls-permlink"><a href="#extraHeaders"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies additional response/request headers to be added. Multiple header directives can be added with one directive per line. "NONE" can be used to disable parent header inheritance. If no directive is provided 'Header' is assumed.</p> <h4>Syntax</h4><p>[Header]|RequestHeader [condition] set|append|merge|add|unset header [value] [early|env=[!]variable]</p> <h4>Example</h4><div class="ls-example">set Cache-control no-cache<br/> append Cache-control no-store<br/> Header set My-header cust_header_val<br/> RequestHeader set My-req-header cust_req_header_val</div><h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> Syntax and usage are similar to <a href="https://httpd.apache.org/docs/2.2/mod/mod_headers.html#header" target="_blank" rel="noopener noreferrer">Apache's mod_headers directives</a> for supported operations.<br/><br/> <span title="Information" class="ls-icon-info"></span> The 'Header' directive is is optional and can be excluded or left in when copying rules from elsewhere without issue.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="realm"><h3>Realm<span class="ls-permlink"><a href="#realm"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the authorization realm for this context. When specified, a valid username and password must be provided in order to access this context. <span class="tagl"><a href="VHSecurity_Help.html#realms">Authorization Realms</a></span> are set up in the <span class="tagP"><a href="#VHSecurity_Help">Virtual Host Security</a></span> section. This setting uses each realm's <span class="tagl"><a href="VHSecurity_Help.html#realmName">Realm Name</a></span>.</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="authName"><h3>Authentication Name<span class="ls-permlink"><a href="#authName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies an alternative name for the authorization realm for the current context. If not specified, the original realm name will be used. The authentication name is displayed on the browser's login pop-up.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="required"><h3>Require (Authorized Users/Groups)<span class="ls-permlink"><a href="#required"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies which user/group can access this context. This allows you to use one user/group database (specified in <span class="tagl"><a href="#realm">Realm</a></span>) across a number of contexts, but only allow certain users/groups from that database to access this context.</p> <h4>Syntax</h4><p>Syntax is compatible with Apache's Require directive. For example: <ul> <li><span class="val">user username [username ...]</span><br/> Only listed users can access this context.</li> <li> <span class="val">group groupid [groupid ...]</span><br/> Only users belonging to the listed groups can access this context.</li> </ul> If this setting is not specified, all valid users will be allowed to access this resource.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessAllowed"><h3>Access Allowed<span class="ls-permlink"><a href="#accessAllowed"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies which IPs or sub-networks are allowed to access resources under this context. Together with <span class="tagl"><a href="#accessDenied">Access Denied</a></span> and server/virtual host level access control, accessibility is determined by the smallest scope that a client's IP address falls into.</p> <h4>Syntax</h4><p>Comma-delimited list of IPs/sub-networks.</p> <h4>Example</h4><div class="ls-example">Sub-networks can be written as <span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span>, or <span class="val">192.168.1.*</span>.</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessDenied"><h3>Access Denied<span class="ls-permlink"><a href="#accessDenied"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies which IPs or sub-networks are NOT allowed to access resources under this context. Together with <span class="tagl"><a href="#accessAllowed">Access Allowed</a></span> and server/virtual host-level access control, accessibility is determined by the smallest scope that a client's IP address falls into.</p> <h4>Syntax</h4><p>Comma-delimited list of IPs/sub-networks.</p> <h4>Example</h4><div class="ls-example">Sub-networks can be written as <span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span>, or <span class="val">192.168.1.*</span>.</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAuthorizer"><h3>Authorizer<span class="ls-permlink"><a href="#extAuthorizer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies an external application that can be used to generate authorized/unauthorized decisions. Currently, only the FastCGI Authorizer is available. For more details about the FastCGI Authorizer role, please visit <a href=" https://fastcgi-archives.github.io/ " target="_blank" rel="noopener noreferrer"> https://fastcgi-archives.github.io/ </a>.</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="addDefaultCharset"><h3>Add Default Charset<span class="ls-permlink"><a href="#addDefaultCharset"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to add a character set tag to the "Content-Type" response header, when content type is either "text/html" or "text/plain" without any parameters. When set to <span class="val">Off</span>, this function is disabled. When set to <span class="val">On</span>, either the character set specified by <span class="tagl"><a href="#defaultCharsetCustomized">Customized Default Charset</a></span> or the default "iso-8859-1" will be added.</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="defaultCharsetCustomized"><h3>Customized Default Charset<span class="ls-permlink"><a href="#defaultCharsetCustomized"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies a character set to be used when <span class="tagl"><a href="#addDefaultCharset">Add Default Charset</a></span> is <span class="val">On</span>. This is optional. The default value is <span class="val">iso-8859-1</span>. This entry has no effect when <span class="tagl"><a href="#addDefaultCharset">Add Default Charset</a></span> is <span class="val">Off</span>.</p> <h4>Syntax</h4><p>Name of a character set.</p> <h4>Example</h4><div class="ls-example">utf-8</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableIpGeo"><h3>Enable GeoLocation Lookup<span class="ls-permlink"><a href="#enableIpGeo"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p> Specifies whether to enable/disable IP Geolocation lookup. Can be set at server, virtual host, or context level. IP Geolocation is disabled by default when using value "Not Set".</p> <h4>Syntax</h4><p>Select from radio box</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="ServGeneral_Help.html#useIpInProxyHeader">Use Client IP in Header</a></span>, <span class="tagl"><a href="ServGeneral_Help.html#geoipDBFile">DB File Path</a></span>,</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> �����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������External_PL.html������������������������������������������������������������������������������������0000644�����������������00000031401�15027525531�0007613 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Piped Logger</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Piped Logger." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 9</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><span class="current"><a href="External_PL.html">Piped logger</a></span></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="External_WS.html">Web Server</a></div><div class="center"><a href="ExtApp_Help.html">External Apps</a></div><div class="next"><a href="External_LB.html">Load Balancer</a> »</div></div> <h1>Piped Logger</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header>Piped Logger</header><p> <a href="#extAppName">Name</a> | <a href="#extAppAddress">Address</a> | <a href="#maxConns">Max Connections</a> | <a href="#env">Environment</a> | <a href="#extAppPath">Command</a> | <a href="#instances">Instances</a> | <a href="#extUser">Run As User</a> | <a href="#extGroup">Run As Group</a> | <a href="#extUmask">umask</a> | <a href="#extAppPriority">Priority</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="extAppName"><h3>Name<span class="ls-permlink"><a href="#extAppName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>A unique name for this external application. You will refer to it by this name when you use it in other parts of the configuration.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAppAddress"><h3>Address<span class="ls-permlink"><a href="#extAppAddress"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>A unique socket address used by the external application. IPv4/IPv6 sockets and Unix Domain Sockets (UDS) are supported. IPv4/IPv6 sockets can be used for communication over the network. UDS can only be used when the external application resides on the same machine as the server.</p> <h4>Syntax</h4><p>IPv4 or IPV6 address:port or UDS://path</p> <h4>Example</h4><div class="ls-example">127.0.0.1:5434<br/> UDS://tmp/lshttpd/php.sock.</div><h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> If the external application runs on the same machine, UDS is preferred. If you have to use an IPv4|IPV6 socket, set the IP address to <span class="val">localhost</span> or <span class="val">127.0.0.1</span>, so the external application is inaccessible from other machines.<br/> <span title="Performance" class="ls-icon-performance"></span> Unix Domain Sockets generally provide higher performance than IPv4 sockets.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxConns"><h3>Max Connections<span class="ls-permlink"><a href="#maxConns"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the maximum number of concurrent connections that can be established between the server and an external application. This setting controls how many requests can be processed concurrently by an external application, however, the real limit also depends on the external application itself. Setting this value higher will not help if the external application is not fast enough or cannot scale to a large number of concurrent requests.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> Setting a high value does not directly translate to higher performance. Setting the limit to a value that will not overload the external application will provide the best performance/throughput.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="env"><h3>Environment<span class="ls-permlink"><a href="#env"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies extra environment variables for the external application.</p> <h4>Syntax</h4><p>Key=value. Multiple variables can be separated by "ENTER"</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAppPath"><h3>Command<span class="ls-permlink"><a href="#extAppPath"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the full command line including parameters to execute the external application. Required value if <span class="tagl"><a href="#autoStart">Start By Server</a></span> is enabled. A parameter should be quoted with a double or single quote if the parameter contains space or tab characters.</p> <h4>Syntax</h4><p>Full path to the executable with optional parameters.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#autoStart">Start By Server</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="instances"><h3>Instances<span class="ls-permlink"><a href="#instances"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the maximum instances of the external application the server will create. It is required if <span class="tagl"><a href="#autoStart">Start By Server</a></span> is enabled. Most FastCGI/LSAPI applications can only process one request per process instance and for those types of applications, instances should be set to match the value of <span class="tagl"><a href="#maxConns">Max Connections</a></span>. Some FastCGI/LSAPI applications can spawn multiple child processes to handle multiple requests concurrently. For these types of applications, instances should be set to "1" and environment variables used to control how many child processes the application can spawn.</p> <h4>Syntax</h4><p>Integer number</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extUser"><h3>Run As User<span class="ls-permlink"><a href="#extUser"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The external application will run as this specified user name. If not set, Virtual Host level settings will be inherited.<br/><br/> Default value: Not Set</p> <h4>Syntax</h4><p>Valid username.</p> <h4>See Also</h4><p class="ls-text-small">extGroup</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extGroup"><h3>Run As Group<span class="ls-permlink"><a href="#extGroup"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The external application will run as this specified group name. If not set, Virtual Host level settings will be inherited.<br/><br/> Default value: Not Set</p> <h4>Syntax</h4><p>Valid group name.</p> <h4>See Also</h4><p class="ls-text-small">extUser</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extUmask"><h3>umask<span class="ls-permlink"><a href="#extUmask"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets default umask for this external application's processes. See <span class="cmd"> man 2 umask </span> for details. The default value taken from the server-level <span class="tagl"><a href="ServSecurity_Help.html#umask">umask</a></span> setting.</p> <h4>Syntax</h4><p>value valid range [000]-[777].</p> <h4>See Also</h4><p class="ls-text-small">CGI <span class="tagl"><a href="ServSecurity_Help.html#umask">umask</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAppPriority"><h3>Priority<span class="ls-permlink"><a href="#extAppPriority"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies priority of the external application process. Value ranges from <span class="val">-20</span> to <span class="val">20</span>. A lower number means a higher priority. An external application process cannot have a higher priority than the web server. If this priority is set to a lower number than the server's, the server's priority will be used for this value.</p> <h4>Syntax</h4><p>int</p> <h4>See Also</h4><p class="ls-text-small">Server <span class="tagl"><a href="ServGeneral_Help.html#serverPriority">Priority</a></span></p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ���������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������Templates_Help.html���������������������������������������������������������������������������������0000644�����������������00000035144�15027525531�0010354 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Virtual Host Templates</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Virtual Host Templates." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 9</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><span class="current"><a href="Templates_Help.html">Virtual Host Templates</a></span></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="Listeners_SSL_Help.html">Listeners SSL</a></div><div class="center"><a href="config.html">Configuration</a></div><div class="next"><a href="VirtualHosts_Help.html">Virtual Hosts Basic</a> »</div></div> <h1>Virtual Host Templates</h1><section class="ls-spacer-small-bottom">Virtual host templates make it easy to create many new virtual hosts with similar configurations. Each template contains a template configuration file, a list of mapped listeners, and a list of member virtual hosts. To add a template-based virtual host, the administrator only needs to add a member with a unique virtual host name and a qualified domain name to the template member list. Listener-to-virtual host mapping will be added automatically for all listeners in the template's mapped listener list. Later on, if you need to customize the configuration for a particular virtual host, just "instantiate" that member virtual host and a standalone virtual host configuration will be created automatically. Even when setting up a customized virtual host, a template can still be a convenient starting point.</section> <h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header>Template Location</header><p> <a href="#templateName">Template Name</a> | <a href="#templateFile">Template File</a> | <a href="#mappedListeners">Mapped Listeners</a></p></section> <section class="toc-row"><header>Member Virtual Hosts</header><p> <a href="#templateVHName">Virtual Host Name</a> | <a href="#templateVHDomain">Domain</a> | <a href="#templateVHAliases">Aliases</a> | <a href="#memberVHRoot">Member Virtual Host Root</a></p></section> <section class="toc-row"><header>Template Settings</header><p> <a href="#templateVHRoot">Default Virtual Host Root</a> | <a href="#templateVHConfigFile">Instantiated VHost Config File</a> | <a href="#templateVHDocRoot">Document Root</a> | <a href="#templateFileRef">Config File</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="templateName"><h3>Template Name<span class="ls-permlink"><a href="#templateName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>A unique name for the template.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="templateFile"><h3>Template File<span class="ls-permlink"><a href="#templateFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the path to the configuration file of this template. The file must be located within $SERVER_ROOT/conf/templates/ with a ".conf" filename. If the file you designate does not exist, after trying to save the template an error will appear with the link "CLICK TO CREATE". This link will generate a new empty template file. When you delete the template, the entry will be removed from your configurations, but the actual template config file will not be deleted.</p> <h4>Syntax</h4><p>path</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="mappedListeners"><h3>Mapped Listeners<span class="ls-permlink"><a href="#mappedListeners"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the names of all listeners that this template maps to. A listener-to-virtual host mapping for this template's member virtual hosts will be added to the listeners specified in this field. This mapping will map listeners to virtual hosts based on the domain names and aliases set in the member virtual hosts' individual configurations.</p> <h4>Syntax</h4><p>comma-separated list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="templateVHName"><h3>Virtual Host Name<span class="ls-permlink"><a href="#templateVHName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>A unique name for this virtual host. This name must be unique among all template member virtual hosts and standalone virtual hosts. Inside a directory path configuration, this name can be referenced by the variable <span class="val">$VH_NAME</span>.<br/><br/> If a standalone virtual host with the same name is also configured, then the member virtual host configuration will be ignored.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="templateVHDomain"><h3>Domain<span class="ls-permlink"><a href="#templateVHDomain"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the main domain name for this member virtual host. If left blank, the virtual host name will be used. This should be a fully qualified domain name, but you can use an IP address as well. It is recommended to append <span class="val">:<port></span> for web sites not on port 80. For configurations containing domain names, this domain can be referenced with variable <span class="val">$VH_DOMAIN</span>.<br/><br/> This domain name will be used in the following situations: <ol> <li>To match the hostname in the Host header when processing a request.</li> <li>To populate domain name configurations for add-ons like FrontPage or AWstats.</li> <li>To configure listener-to-virtual host mappings based on the virtual host template.</li> </ol></p> <h4>Syntax</h4><p>domain name</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="templateVHAliases"><h3>Aliases<span class="ls-permlink"><a href="#templateVHAliases"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies alternate names for the virtual host. All possible hostnames and IP addresses should be added to this list. The wildcard characters <span class="val">*</span> and <span class="val">?</span> are allowed in the name. Append <span class="val">:<port></span> for web sites not on port 80.<br/><br/> Aliases will be used in the following situations: <ol> <li>To match the hostname in the Host header when processing a request.</li> <li>To populate domain name/alias configurations for add-ons like FrontPage or AWstats.</li> <li>To configure listener-to-virtual host mappings based on the virtual host template.</li> </ol></p> <h4>Syntax</h4><p>Comma-separated list of domain names.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="memberVHRoot"><h3>Member Virtual Host Root<span class="ls-permlink"><a href="#memberVHRoot"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the root directory of this virtual host. If left blank, the default virtual host root for this template will be used.<br/><br/> Note: This is <b>NOT</b> the document root. It is recommended to place all files related to the virtual host (like virtual host configuration, log files, html files, CGI scripts, etc.) under this directory. Virtual host root can be referred to as $VH_ROOT.</p> <h4>Syntax</h4><p>path</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="templateVHRoot"><h3>Default Virtual Host Root<span class="ls-permlink"><a href="#templateVHRoot"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the default root directory for member virtual hosts using this template. Variable <span class="val">$VH_NAME</span> must appear in the path. This will allow each member template to be automatically assigned a separate root directory based on its name.</p> <h4>Syntax</h4><p>path</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="templateVHConfigFile"><h3>Instantiated VHost Config File<span class="ls-permlink"><a href="#templateVHConfigFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the location of the config file generated when you instantiate a member virtual host. Variable <span class="val">$VH_NAME</span> must appear in the path so each virtual host will have its own file. Must be located under $SERVER_ROOT/conf/vhosts/. This config file will be created only after you move a member vhost out of the template through instantiation.</p> <h4>Syntax</h4><p>String with $VH_NAME variable and .conf suffix</p> <h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> $VH_NAME/vhconf.conf is recommended for easy management.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="templateVHDocRoot"><h3>Document Root<span class="ls-permlink"><a href="#templateVHDocRoot"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the unique path for each member virtual host's document root. Variable <span class="val">$VH_NAME</span> or <span class="val">$VH_ROOT</span> must appear in the path so each member virtual host will have its own document root.</p> <h4>Syntax</h4><p>path with $VH_NAME or $VH_ROOT variable</p> <h4>Example</h4><div class="ls-example">$VH_ROOT/public_html/ or $SERVER_ROOT/$VH_NAME/public_html.</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="templateFileRef"><h3>Config File<span class="ls-permlink"><a href="#templateFileRef"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the unique path for each member virtual host's configuration file. Variable <span class="val">$VH_NAME</span> or <span class="val">$VH_ROOT</span> must appear in the path so each member virtual host will have its own configuration file.</p> <h4>Syntax</h4><p>path with $VH_NAME or $VH_ROOT variable</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������index.html������������������������������������������������������������������������������������������0000644�����������������00000013171�15027525531�0006551 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Home</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Home." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <span class="current"><a href="index.html"> Users' Manual</a></span> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 9</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><section class="ls-index"> <header> <h1> OpenLiteSpeed Web Server 1.8 <br /><br /> Users' Manual <br /><br /> — Rev. 9 </h1> </header> <hr /> <header><h2>Table of Contents</h2></header> <ol> <li><span><a href="license.html">License</a></span></li> <li><span><a href="intro.html">Introduction</a></span></li> <li> <span><a href="install.html">Installation/Uninstallation</a></span> </li> <li><span><a href="admin.html">Administration</a></span></li> <li><span><a href="security.html">Security</a></span></li> <li><span><a href="config.html">Configurations</a></span></li> </ol> <p> For more information, visit our <a href="https://openlitespeed.org/kb/">OpenLiteSpeed Knowledge Base</a> </p> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> �������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������AdminGeneral_Help.html������������������������������������������������������������������������������0000644�����������������00000044216�15027525531�0010744 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Admin Console General</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Admin Console General." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 9</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><span class="current"><a href="AdminGeneral_Help.html">Admin Console General</a></span></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev"> </div><div class="center"><a href="webconsole.html">Web Console</a></div><div class="next"><a href="AdminSecurity_Help.html">Admin Console Security</a> »</div></div> <h1>Admin Console General</h1><section class="ls-spacer-small-bottom">Admin Server is a special virtual host dedicated to the WebAdmin console. It is very important to make sure Admin Server is securely protected either by only allowing access from the administrator's machines or by using an encrypted SSL connection.</section> <h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header>General</header><p> <a href="#enableCoreDump">Enable Core Dump</a> | <a href="#consoleSessionTimeout">Session Timeout (secs)</a></p></section> <section class="toc-row"><header>Virtual Host Log</header><p> <a href="#logUseServer">Use Server's Log</a> | <a href="#vhlog_fileName">File Name</a> | <a href="#vhlog_logLevel">Log Level</a> | <a href="#log_rollingSize">Rolling Size (bytes)</a> | <a href="#log_keepDays">Keep Days</a> | <a href="#log_compressArchive">Compress Archive</a></p></section> <section class="toc-row"><header>Access Log</header><p> <a href="#aclogUseServer">Log Control</a> | <a href="#vhaccessLog_fileName">File Name</a> | <a href="#accessLog_pipedLogger">Piped Logger</a> | <a href="#accessLog_logFormat">Log Format</a> | <a href="#accessLog_logHeader">Log Headers</a> | <a href="#log_rollingSize">Rolling Size (bytes)</a> | <a href="#log_keepDays">Keep Days</a> | <a href="#log_compressArchive">Compress Archive</a> | <a href="#accessLog_bytesLog">Bytes Log</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="enableCoreDump"><h3>Enable Core Dump<span class="ls-permlink"><a href="#enableCoreDump"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to enable core dump when the server is started by "root" user. For most modern Unix systems, processes that change user ID or group ID are not allowed to dump a core file for security reasons. However, it is much easier to identify root cause of a problem with a core dump. This option only works on Linux kernel 2.4 and up. Solaris users should use the <span class="cmd">coreadm</span> command to control this feature.</p> <h4>Syntax</h4><p>Select from radio box</p> <h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> Only enable this when you see <span class="val">no core file created</span> in the server log file. Disable it immediately after producing the core file. Please submit a bug report when a core dump has been created.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="consoleSessionTimeout"><h3>Session Timeout (secs)<span class="ls-permlink"><a href="#consoleSessionTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Customize the session timeout length of the WebAdmin Console. The default is 60 seconds.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> Set a proper value for production use, usually less than 300 seconds.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="logUseServer"><h3>Use Server's Log<span class="ls-permlink"><a href="#logUseServer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to put log messages from this virtual host into the server log file instead of creating its own log file.</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vhlog_fileName"><h3>File Name<span class="ls-permlink"><a href="#vhlog_fileName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the path for the log file.</p> <h4>Syntax</h4><p>Filename which can be an absolute path or a relative path to $SERVER_ROOT, $VH_ROOT.</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> Place the log file on a separate disk.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vhlog_logLevel"><h3>Log Level<span class="ls-permlink"><a href="#vhlog_logLevel"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the level of logging. Available levels (from high to low) are <span class="val">ERROR</span>, <span class="val">WARNING</span>, <span class="val">NOTICE</span>, <span class="val">INFO</span>, and <span class="val">DEBUG</span>. Only messages with a level higher than or equal to the current setting will be logged. If you want to set it to DEBUG</span>, you must set the server log level to <span class="val">DEBUG</span> as well. The level of debugging is controlled solely at the server level by <span class="tagl"><a href="ServGeneral_Help.html#log_debugLevel">Debug Level</a></span>.</p> <h4>Syntax</h4><p>Select from drop down list</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> Unless <span class="tagl"><a href="ServGeneral_Help.html#log_debugLevel">Debug Level</a></span> is set to a level other than <span class="val">NONE</span>, <span class="val">DEBUG</span> log level does not have any performance impact and is recommended.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="ServGeneral_Help.html#log_debugLevel">Debug Level</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="log_rollingSize"><h3>Rolling Size (bytes)<span class="ls-permlink"><a href="#log_rollingSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies when the current log file needs to be rolled over, also known as log rotation. When the file size is over the rollover limit, the active log file will be renamed to log_name.mm_dd_yyyy(.sequence) in the same directory and a new active log file will be created. The actual size of the rotated log file once it is created will sometimes be a little bigger than this size limit. Set to <span class="val">0</span> to disable log rotation.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> Append "K", "M", "G" to the number for kilo-, mega- and giga- bytes.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="log_keepDays"><h3>Keep Days<span class="ls-permlink"><a href="#log_keepDays"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies how many days the access log file will be kept on disk. Only rotated log files older than the specified number of days will be deleted. The current log file will not be touched regardless how many days worth of data it contains. If you do not want to auto-delete stale and very old log files, set this to <span class="val">0</span>.</p> <h4>Syntax</h4><p>Integer number</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="log_compressArchive"><h3>Compress Archive<span class="ls-permlink"><a href="#log_compressArchive"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to compress rotated log files in order to save disk space.</p> <h4>Syntax</h4><p>Select from radio box</p> <h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> Log files are highly compressible and this is recommended to reduce disk usage for old logs.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="aclogUseServer"><h3>Log Control<span class="ls-permlink"><a href="#aclogUseServer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Where the access log should be written. There are three options: <ol> <li>Write to the server's access log</li> <li>Create an access log for this virtual host</li> <li>Disable access logging</li> </ol></p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vhaccessLog_fileName"><h3>File Name<span class="ls-permlink"><a href="#vhaccessLog_fileName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The access log filename.</p> <h4>Syntax</h4><p>Filename which can be an absolute path or a relative path to $SERVER_ROOT, $VH_ROOT.</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> Put access log file on a separate disk.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessLog_pipedLogger"><h3>Piped Logger<span class="ls-permlink"><a href="#accessLog_pipedLogger"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the external application that will receive the access log data sent by LiteSpeed through a pipe on its STDIN stream (file handle is 0). When this field is specified, the access log will be sent only to the logger application and not the access log file specified in previous entry.<br/><br/> The logger application must be defined in <span class="tagP"><a href="#ExtApp_Help">External Apps</a></span> section first. Server-level access logging can only use an external logger application defined at the server level. Virtual host-level access logging can only use a logger application defined at the virtual host level.<br/><br/> The logger process is spawned in the same way as other external (CGI/FastCGI/LSAPI) processes. This means it will execute as the user ID specified in the virtual host's <span class="tagl"><a href="VirtualHosts_Help.html#setUidMode">External App Set UID Mode</a></span> settings and will never run on behalf of a privileged user. <br/><br/> LiteSpeed web server performs simple load balancing among multiple logger applications if more than one instance of a logger application is configured. LiteSpeed server always attempts to keep the number of logger applications as low as possible. Only when one logger application fails to process access log entries in time will the server attempt to spawn another instance of the logger application. <br/><br/> If a logger crashes, the web server will start another instance but the log data in the stream buffer will be lost. It is possible to lose log data if external loggers cannot keep up with the speed and volume of the log stream.</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessLog_logFormat"><h3>Log Format<span class="ls-permlink"><a href="#accessLog_logFormat"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p> Specifies the log format for the access log. When log format is set, it will override the <span class="tagl"><a href="#accessLog_logHeader">Log Headers</a></span> setting.</p> <h4>Syntax</h4><p>String. The syntax of log format is compatible with Apache 2.0's custom <a href="http://httpd.apache.org/docs/current/mod/mod_log_config.html#formats" target="_blank" rel="noopener noreferrer">log format</a>.</p> <h4>Example</h4><div class="ls-example"><b>Common Log Format (CLF)</b><br/> "%h %l %u %t \"%r\" %>s %b"<br/><br/> <b>Common Log Format with Virtual Host</b><br/> "%v %h %l %u %t \"%r\" %>s %b"<br/><br/> <b>NCSA extended/combined log format</b><br/> "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-agent}i\" <br/><br/> <b>Log cookie value of Foobar</b><br/> "%{Foobar}C"</div><h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#accessLog_logHeader">Log Headers</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessLog_logHeader"><h3>Log Headers<span class="ls-permlink"><a href="#accessLog_logHeader"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to log HTTP request headers: <span class="val">Referer</span>, <span class="val">UserAgent</span>, and <span class="val">Host</span>.</p> <h4>Syntax</h4><p>Select from checkbox</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> Turn this off if you do not need these headers in the access log.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#accessLog_logFormat">Log Format</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessLog_bytesLog"><h3>Bytes Log<span class="ls-permlink"><a href="#accessLog_bytesLog"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the path to the bandwidth bytes log file. When specified, a cPanel compatible bandwidth log will be created. This will log the total bytes transferred for a request including both the request and reply bodies.</p> <h4>Syntax</h4><p>Filename which can be an absolute path or a relative path to $SERVER_ROOT.</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> Put the log file on a separate disk.</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������Context_Help.html�����������������������������������������������������������������������������������0000644�����������������00000017011�15027525531�0010033 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Context</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Context." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 9</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><span class="current"><a href="Context_Help.html">Context</a></span></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="Rewrite_Help.html">Rewrite</a></div><div class="center"><a href="config.html">Configuration</a></div><div class="next"><a href="VHWebSocket_Help.html">Web Socket Proxy</a> »</div></div> <h1>Context</h1><section class="ls-spacer-small-bottom">In LiteSpeed Web Server terminology, a "context" is a virtual location, a common parent URL, that identifies a group of resources. Contexts can be thought of as different directories in your website's directory tree. For example, "/" is the root context mapped to the document root of a website. "/cgi-bin/" is a context farther up on the tree, dedicated to the CGI applications for this site. A context can be explicitly defined in LiteSpeed's WebAdmin console for the following purposes: <ul> <li>To make a file system outside of the document root accessible.</li> <li>To block access to certain resources.</li> <li>To setup user-level authentication for certain resources.</li> <li>To create mount points for external applications.</li> <li>To redirect requests to another location.</li> </ul></section> <h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header>Context Attributes</header><p> <a href="#ctxType">Context Type</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="ctxType"><h3>Context Type<span class="ls-permlink"><a href="#ctxType"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The type of context created determines it's usage.<br><br><b>Static</b> context can be used to map a URI to a directory either outside document root or within it.<br> <b>Java Web App</b> context is used to automatically import a predefined Java Application in an AJPv13 compilant Java servlet engine.<br> <b>Servlet</b> context is used to import a specific servlet under a web application.<br> <b>Fast CGI</b> context is a mount point of Fast CGI application.<br> <b>LiteSpeed SAPI</b> context can be used to associate a URI with an LSAPI application.<br> <b>Proxy</b> context enables this virtual host to serve as a transparant reverse proxy server to an external web server or application server.<br> <b>CGI</b> context can be used to specify a directory only contains CGI scripts.<br> <b>Load Balancer</b> context can be used to assign a different cluster for that context.<br> <b>Redirect</b> context can set up an internal or external redirect URI.<br> <b>App Server</b> context is specifically used for Rack/Rails, WSGI, and Node.js applications.<br> <b>Module handler</b> context is a mount point of hander type modules.<br></p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> �����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������FCGI_Context.html�����������������������������������������������������������������������������������0000644�����������������00000037231�15027525531�0007661 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Fast CGI Context</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Fast CGI Context." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 9</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><span class="current"><a href="FCGI_Context.html">Fast CGI Context</a></span></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="Servlet_Context.html">Servlet Context</a></div><div class="center"><a href="Context_Help.html">Context</a></div><div class="next"><a href="LSAPI_Context.html">LiteSpeed SAPI Context</a> »</div></div> <h1>Fast CGI Context</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header><a href="#fcgiContext">FastCGI Context</a></header><p> <a href="#expuri">URI</a> | <a href="#fcgiapp">FastCGI App</a> | <a href="#extraHeaders">Header Operations</a> | <a href="#realm">Realm</a> | <a href="#authName">Authentication Name</a> | <a href="#required">Require (Authorized Users/Groups)</a> | <a href="#accessAllowed">Access Allowed</a> | <a href="#accessDenied">Access Denied</a> | <a href="#extAuthorizer">Authorizer</a> | <a href="#addDefaultCharset">Add Default Charset</a> | <a href="#defaultCharsetCustomized">Customized Default Charset</a> | <a href="#enableIpGeo">Enable GeoLocation Lookup</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="fcgiContext"><h3>FastCGI Context<span class="ls-permlink"><a href="#fcgiContext"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>FastCGI applications cannot be used directly. A FastCGI application must be either configured as a script handler or mapped to a URL through FastCGI context. A FastCGI context will associate a URI with a FastCGI application.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expuri"><h3>URI<span class="ls-permlink"><a href="#expuri"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the URI for this context.</p> <h4>Syntax</h4><p>The URI can be a plain URI (starting with "/") or a Perl compatible regular expression URI (starting with "exp:"). If a plain URI ends with a "/", then this context will include all sub-URIs under this URI. If the context maps to a directory on the file system, a trailing "/" must be added.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#location">Location</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="fcgiapp"><h3>FastCGI App<span class="ls-permlink"><a href="#fcgiapp"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the name of the FastCGI application. This application must be defined in the <span class="tagP"><a href="#ExtApp_Help">External Apps</a></span> section at the server or virtual host level.</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extraHeaders"><h3>Header Operations<span class="ls-permlink"><a href="#extraHeaders"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies additional response/request headers to be added. Multiple header directives can be added with one directive per line. "NONE" can be used to disable parent header inheritance. If no directive is provided 'Header' is assumed.</p> <h4>Syntax</h4><p>[Header]|RequestHeader [condition] set|append|merge|add|unset header [value] [early|env=[!]variable]</p> <h4>Example</h4><div class="ls-example">set Cache-control no-cache<br/> append Cache-control no-store<br/> Header set My-header cust_header_val<br/> RequestHeader set My-req-header cust_req_header_val</div><h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> Syntax and usage are similar to <a href="https://httpd.apache.org/docs/2.2/mod/mod_headers.html#header" target="_blank" rel="noopener noreferrer">Apache's mod_headers directives</a> for supported operations.<br/><br/> <span title="Information" class="ls-icon-info"></span> The 'Header' directive is is optional and can be excluded or left in when copying rules from elsewhere without issue.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="realm"><h3>Realm<span class="ls-permlink"><a href="#realm"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the authorization realm for this context. When specified, a valid username and password must be provided in order to access this context. <span class="tagl"><a href="VHSecurity_Help.html#realms">Authorization Realms</a></span> are set up in the <span class="tagP"><a href="#VHSecurity_Help">Virtual Host Security</a></span> section. This setting uses each realm's <span class="tagl"><a href="VHSecurity_Help.html#realmName">Realm Name</a></span>.</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="authName"><h3>Authentication Name<span class="ls-permlink"><a href="#authName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies an alternative name for the authorization realm for the current context. If not specified, the original realm name will be used. The authentication name is displayed on the browser's login pop-up.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="required"><h3>Require (Authorized Users/Groups)<span class="ls-permlink"><a href="#required"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies which user/group can access this context. This allows you to use one user/group database (specified in <span class="tagl"><a href="#realm">Realm</a></span>) across a number of contexts, but only allow certain users/groups from that database to access this context.</p> <h4>Syntax</h4><p>Syntax is compatible with Apache's Require directive. For example: <ul> <li><span class="val">user username [username ...]</span><br/> Only listed users can access this context.</li> <li> <span class="val">group groupid [groupid ...]</span><br/> Only users belonging to the listed groups can access this context.</li> </ul> If this setting is not specified, all valid users will be allowed to access this resource.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessAllowed"><h3>Access Allowed<span class="ls-permlink"><a href="#accessAllowed"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies which IPs or sub-networks are allowed to access resources under this context. Together with <span class="tagl"><a href="#accessDenied">Access Denied</a></span> and server/virtual host level access control, accessibility is determined by the smallest scope that a client's IP address falls into.</p> <h4>Syntax</h4><p>Comma-delimited list of IPs/sub-networks.</p> <h4>Example</h4><div class="ls-example">Sub-networks can be written as <span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span>, or <span class="val">192.168.1.*</span>.</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessDenied"><h3>Access Denied<span class="ls-permlink"><a href="#accessDenied"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies which IPs or sub-networks are NOT allowed to access resources under this context. Together with <span class="tagl"><a href="#accessAllowed">Access Allowed</a></span> and server/virtual host-level access control, accessibility is determined by the smallest scope that a client's IP address falls into.</p> <h4>Syntax</h4><p>Comma-delimited list of IPs/sub-networks.</p> <h4>Example</h4><div class="ls-example">Sub-networks can be written as <span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span>, or <span class="val">192.168.1.*</span>.</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAuthorizer"><h3>Authorizer<span class="ls-permlink"><a href="#extAuthorizer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies an external application that can be used to generate authorized/unauthorized decisions. Currently, only the FastCGI Authorizer is available. For more details about the FastCGI Authorizer role, please visit <a href=" https://fastcgi-archives.github.io/ " target="_blank" rel="noopener noreferrer"> https://fastcgi-archives.github.io/ </a>.</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="addDefaultCharset"><h3>Add Default Charset<span class="ls-permlink"><a href="#addDefaultCharset"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to add a character set tag to the "Content-Type" response header, when content type is either "text/html" or "text/plain" without any parameters. When set to <span class="val">Off</span>, this function is disabled. When set to <span class="val">On</span>, either the character set specified by <span class="tagl"><a href="#defaultCharsetCustomized">Customized Default Charset</a></span> or the default "iso-8859-1" will be added.</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="defaultCharsetCustomized"><h3>Customized Default Charset<span class="ls-permlink"><a href="#defaultCharsetCustomized"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies a character set to be used when <span class="tagl"><a href="#addDefaultCharset">Add Default Charset</a></span> is <span class="val">On</span>. This is optional. The default value is <span class="val">iso-8859-1</span>. This entry has no effect when <span class="tagl"><a href="#addDefaultCharset">Add Default Charset</a></span> is <span class="val">Off</span>.</p> <h4>Syntax</h4><p>Name of a character set.</p> <h4>Example</h4><div class="ls-example">utf-8</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableIpGeo"><h3>Enable GeoLocation Lookup<span class="ls-permlink"><a href="#enableIpGeo"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p> Specifies whether to enable/disable IP Geolocation lookup. Can be set at server, virtual host, or context level. IP Geolocation is disabled by default when using value "Not Set".</p> <h4>Syntax</h4><p>Select from radio box</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="ServGeneral_Help.html#useIpInProxyHeader">Use Client IP in Header</a></span>, <span class="tagl"><a href="ServGeneral_Help.html#geoipDBFile">DB File Path</a></span>,</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> �����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������Java_Web_App_Context.html���������������������������������������������������������������������������0000644�����������������00000054226�15027525531�0011432 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Java Web App Context</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Java Web App Context." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 9</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <span class="current"><a href="Java_Web_App_Context.html">Java Web App Context</a></span> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="Static_Context.html">Static Context</a></div><div class="center"><a href="Context_Help.html">Context</a></div><div class="next"><a href="Servlet_Context.html">Servlet Context</a> »</div></div> <h1>Java Web App Context</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header><a href="#javaWebAppContext">Java Web App Context</a></header><p> <a href="#uri">URI</a> | <a href="#javaWebApp_location">Location</a> | <a href="#javaServletEngine">Servlet Engine</a> | <a href="#enableExpires">Enable Expires</a> | <a href="#expiresDefault">Expires Default</a> | <a href="#expiresByType">Expires By Type</a> | <a href="#extraHeaders">Header Operations</a> | <a href="#autoIndex">Auto Index</a> | <a href="#indexFiles">Index Files</a> | <a href="#realm">Realm</a> | <a href="#authName">Authentication Name</a> | <a href="#required">Require (Authorized Users/Groups)</a> | <a href="#accessAllowed">Access Allowed</a> | <a href="#accessDenied">Access Denied</a> | <a href="#extAuthorizer">Authorizer</a> | <a href="#addDefaultCharset">Add Default Charset</a> | <a href="#defaultCharsetCustomized">Customized Default Charset</a> | <a href="#enableIpGeo">Enable GeoLocation Lookup</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="javaWebAppContext"><h3>Java Web App Context<span class="ls-permlink"><a href="#javaWebAppContext"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Many people running Java applications use the servlet engine to serve static content as well. But no servlet engine is nearly as efficient as LiteSpeed Web Server for these processes. In order to improve the overall performance, LiteSpeed Web Server can be configured as a gateway server, which serves static content and forwards dynamic Java page requests to the servlet engine.<br/><br/> LiteSpeed Web Server requires certain contexts to be defined in order to run a Java application. A Java Web App Context automatically creates all required contexts based on the Java web application's configuration file (WEB-INF/web.xml).<br/><br/> There are a few points you need to keep in mind when setting up a Java Web App Context:<br/> <ul> <li>A <span class="val">Servlet Engine</span> external application must be set up in <span class="tagP"><a href="#ExtApp_Help">External Apps</a></span> before Java Web App Context can be set up.</li> <li>A <span class="tagP"><a href="#ScriptHandler_Help">Script Handler</a></span> for .jsp files should be defined as well.</li> <li>If the web application is packed into a .war file, the .war file must be expanded. The server cannot access compressed archive files.</li> <li>For the same resources, the same URL should be used no matter whether it is accessed through LiteSpeed Web Server or through the servlet engine's built-in HTTP server.<br/> For example, Tomcat 4.1 is installed under /opt/tomcat. Files for the "examples" web application are located at /opt/tomcat/webapps/examples/. Through Tomcat's built-in HTTP server, the "examples" web application is thus accessed with a URI like "/examples/***". The corresponding Java Web App Context should thus be configured: <span class="tagl"><a href="#expuri">URI</a></span> = <span class="val">/examples/</span>, <span class="tagl"><a href="#javaWebApp_location">Location</a></span> = <span class="val">/opt/tomcat/webapps/examples/</span>.</li> </ul></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="uri"><h3>URI<span class="ls-permlink"><a href="#uri"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the URI for this context. The URI should start with a "/". If a URI ends with a "/", then this context will include all sub-URIs under this URI.</p> <h4>Syntax</h4><p>URI</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="javaWebApp_location"><h3>Location<span class="ls-permlink"><a href="#javaWebApp_location"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the directory that contains the files for this web application. This is the directory containing "WEB-INF/web.xml".<br/><br/> Default value: $DOC_ROOT + <span class="tagl"><a href="#uri">URI</a></span></p> <h4>Syntax</h4><p>path</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="javaServletEngine"><h3>Servlet Engine<span class="ls-permlink"><a href="#javaServletEngine"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the name of the servlet engine that serves this web application. Servlet engines must be defined in the <span class="tagP"><a href="#ExtApp_Help">External Apps</a></span> section at the server or virtual host level.</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableExpires"><h3>Enable Expires<span class="ls-permlink"><a href="#enableExpires"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to generate an Expires header for static files. If enabled, an Expires header will be generated based on <span class="tagl"><a href="#expiresDefault">Expires Default</a></span> and <span class="tagl"><a href="#expiresByType">Expires By Type</a></span>.<br/><br/> This can be set at server, virtual host and context level. Lower level settings will override higher level ones, i.e. context settings will override virtual host settings and virtual host settings will override server settings.</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expiresDefault"><h3>Expires Default<span class="ls-permlink"><a href="#expiresDefault"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies default settings for Expires header generation. This setting takes effect when <span class="tagl"><a href="#enableExpires">Enable Expires</a></span> is set to "Yes". It can be overridden by <span class="tagl"><a href="#expiresByType">Expires By Type</a></span>. Do not set this default at the server or virtual host level unless you have to, since it will generate Expires headers for all pages. Most of time this should be set at the context level for certain directories that do not change often. If there is no default setting, no Expires header will be generated for types not specified in <span class="tagl"><a href="#expiresByType">Expires By Type</a></span>.</p> <h4>Syntax</h4><p>A|Mseconds<br/> The file will expire after base time(A|M) plus specified seconds. Base time "A" sets the value to the client's access time and "M" to the file's last modified time.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expiresByType"><h3>Expires By Type<span class="ls-permlink"><a href="#expiresByType"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies Expires header settings for individual MIME types.</p> <h4>Syntax</h4><p>Comma delimited list of "MIME-type=A|Mseconds". The file will expire after base time (A|M) plus specified seconds.<br/><br/> Base time "A" sets the value to the client's access time and "M" to the file's last modified time. MIME-type accepts wildcard "*", like image/*.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extraHeaders"><h3>Header Operations<span class="ls-permlink"><a href="#extraHeaders"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies additional response/request headers to be added. Multiple header directives can be added with one directive per line. "NONE" can be used to disable parent header inheritance. If no directive is provided 'Header' is assumed.</p> <h4>Syntax</h4><p>[Header]|RequestHeader [condition] set|append|merge|add|unset header [value] [early|env=[!]variable]</p> <h4>Example</h4><div class="ls-example">set Cache-control no-cache<br/> append Cache-control no-store<br/> Header set My-header cust_header_val<br/> RequestHeader set My-req-header cust_req_header_val</div><h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> Syntax and usage are similar to <a href="https://httpd.apache.org/docs/2.2/mod/mod_headers.html#header" target="_blank" rel="noopener noreferrer">Apache's mod_headers directives</a> for supported operations.<br/><br/> <span title="Information" class="ls-icon-info"></span> The 'Header' directive is is optional and can be excluded or left in when copying rules from elsewhere without issue.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="autoIndex"><h3>Auto Index<span class="ls-permlink"><a href="#autoIndex"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to generate a directory index on the fly when index files listed in <span class="tagl"><a href="#indexFiles">Index Files</a></span> are not available in a directory. This option is customizable at the virtual host and context level, and is inherited along the directory tree until it is explicitly overridden. You can customize the generated index page. Please check online wiki How-tos.</p> <h4>Syntax</h4><p>Select from radio box</p> <h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> It is recommended to turn off Auto Index wherever possible to prevent revealing confidential data.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#indexFiles">Index Files</a></span>, <span class="tagl"><a href="#autoIndexURI">Auto Index URI</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="indexFiles"><h3>Index Files<span class="ls-permlink"><a href="#indexFiles"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies names of index files that will be searched sequentially when a URL is mapped to a directory. You can customize it at the server, virtual host, and context level.</p> <h4>Syntax</h4><p>Comma-delimited list of index filenames.</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> Only set index files that you need.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="realm"><h3>Realm<span class="ls-permlink"><a href="#realm"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the authorization realm for this context. When specified, a valid username and password must be provided in order to access this context. <span class="tagl"><a href="VHSecurity_Help.html#realms">Authorization Realms</a></span> are set up in the <span class="tagP"><a href="#VHSecurity_Help">Virtual Host Security</a></span> section. This setting uses each realm's <span class="tagl"><a href="VHSecurity_Help.html#realmName">Realm Name</a></span>.</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="authName"><h3>Authentication Name<span class="ls-permlink"><a href="#authName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies an alternative name for the authorization realm for the current context. If not specified, the original realm name will be used. The authentication name is displayed on the browser's login pop-up.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="required"><h3>Require (Authorized Users/Groups)<span class="ls-permlink"><a href="#required"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies which user/group can access this context. This allows you to use one user/group database (specified in <span class="tagl"><a href="#realm">Realm</a></span>) across a number of contexts, but only allow certain users/groups from that database to access this context.</p> <h4>Syntax</h4><p>Syntax is compatible with Apache's Require directive. For example: <ul> <li><span class="val">user username [username ...]</span><br/> Only listed users can access this context.</li> <li> <span class="val">group groupid [groupid ...]</span><br/> Only users belonging to the listed groups can access this context.</li> </ul> If this setting is not specified, all valid users will be allowed to access this resource.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessAllowed"><h3>Access Allowed<span class="ls-permlink"><a href="#accessAllowed"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies which IPs or sub-networks are allowed to access resources under this context. Together with <span class="tagl"><a href="#accessDenied">Access Denied</a></span> and server/virtual host level access control, accessibility is determined by the smallest scope that a client's IP address falls into.</p> <h4>Syntax</h4><p>Comma-delimited list of IPs/sub-networks.</p> <h4>Example</h4><div class="ls-example">Sub-networks can be written as <span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span>, or <span class="val">192.168.1.*</span>.</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessDenied"><h3>Access Denied<span class="ls-permlink"><a href="#accessDenied"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies which IPs or sub-networks are NOT allowed to access resources under this context. Together with <span class="tagl"><a href="#accessAllowed">Access Allowed</a></span> and server/virtual host-level access control, accessibility is determined by the smallest scope that a client's IP address falls into.</p> <h4>Syntax</h4><p>Comma-delimited list of IPs/sub-networks.</p> <h4>Example</h4><div class="ls-example">Sub-networks can be written as <span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span>, or <span class="val">192.168.1.*</span>.</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAuthorizer"><h3>Authorizer<span class="ls-permlink"><a href="#extAuthorizer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies an external application that can be used to generate authorized/unauthorized decisions. Currently, only the FastCGI Authorizer is available. For more details about the FastCGI Authorizer role, please visit <a href=" https://fastcgi-archives.github.io/ " target="_blank" rel="noopener noreferrer"> https://fastcgi-archives.github.io/ </a>.</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="addDefaultCharset"><h3>Add Default Charset<span class="ls-permlink"><a href="#addDefaultCharset"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to add a character set tag to the "Content-Type" response header, when content type is either "text/html" or "text/plain" without any parameters. When set to <span class="val">Off</span>, this function is disabled. When set to <span class="val">On</span>, either the character set specified by <span class="tagl"><a href="#defaultCharsetCustomized">Customized Default Charset</a></span> or the default "iso-8859-1" will be added.</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="defaultCharsetCustomized"><h3>Customized Default Charset<span class="ls-permlink"><a href="#defaultCharsetCustomized"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies a character set to be used when <span class="tagl"><a href="#addDefaultCharset">Add Default Charset</a></span> is <span class="val">On</span>. This is optional. The default value is <span class="val">iso-8859-1</span>. This entry has no effect when <span class="tagl"><a href="#addDefaultCharset">Add Default Charset</a></span> is <span class="val">Off</span>.</p> <h4>Syntax</h4><p>Name of a character set.</p> <h4>Example</h4><div class="ls-example">utf-8</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableIpGeo"><h3>Enable GeoLocation Lookup<span class="ls-permlink"><a href="#enableIpGeo"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p> Specifies whether to enable/disable IP Geolocation lookup. Can be set at server, virtual host, or context level. IP Geolocation is disabled by default when using value "Not Set".</p> <h4>Syntax</h4><p>Select from radio box</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="ServGeneral_Help.html#useIpInProxyHeader">Use Client IP in Header</a></span>, <span class="tagl"><a href="ServGeneral_Help.html#geoipDBFile">DB File Path</a></span>,</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ��������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������External_FCGI.html����������������������������������������������������������������������������������0000644�����������������00000057554�15027525531�0010031 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Fast CGI App</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Fast CGI App." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 9</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><span class="current"><a href="External_FCGI.html">Fast CGI App</a></span></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev"> </div><div class="center"><a href="ExtApp_Help.html">External Apps</a></div><div class="next"><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a> »</div></div> <h1>Fast CGI App</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header></header><p> <a href="#extAppName">Name</a> | <a href="#extAppAddress">Address</a> | <a href="#maxConns">Max Connections</a> | <a href="#env">Environment</a> | <a href="#initTimeout">Initial Request Timeout (secs)</a> | <a href="#retryTimeout">Retry Timeout (secs)</a> | <a href="#persistConn">Persistent Connection</a> | <a href="#pcKeepAliveTimeout">Connection Keepalive Timeout</a> | <a href="#respBuffer">Response Buffering</a> | <a href="#autoStart">Start By Server</a> | <a href="#extAppPath">Command</a> | <a href="#backlog">Back Log</a> | <a href="#instances">Instances</a> | <a href="#extUser">Run As User</a> | <a href="#extGroup">Run As Group</a> | <a href="#extUmask">umask</a> | <a href="#runOnStartUp">Run On Start Up</a> | <a href="#extMaxIdleTime">Max Idle Time</a> | <a href="#extAppPriority">Priority</a> | <a href="#memSoftLimit">Memory Soft Limit (bytes)</a> | <a href="#memHardLimit">Memory Hard Limit (bytes)</a> | <a href="#procSoftLimit">Process Soft Limit</a> | <a href="#procHardLimit">Process Hard Limit</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="extAppName"><h3>Name<span class="ls-permlink"><a href="#extAppName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>A unique name for this external application. You will refer to it by this name when you use it in other parts of the configuration.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAppAddress"><h3>Address<span class="ls-permlink"><a href="#extAppAddress"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>A unique socket address used by the external application. IPv4/IPv6 sockets and Unix Domain Sockets (UDS) are supported. IPv4/IPv6 sockets can be used for communication over the network. UDS can only be used when the external application resides on the same machine as the server.</p> <h4>Syntax</h4><p>IPv4 or IPV6 address:port or UDS://path</p> <h4>Example</h4><div class="ls-example">127.0.0.1:5434<br/> UDS://tmp/lshttpd/php.sock.</div><h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> If the external application runs on the same machine, UDS is preferred. If you have to use an IPv4|IPV6 socket, set the IP address to <span class="val">localhost</span> or <span class="val">127.0.0.1</span>, so the external application is inaccessible from other machines.<br/> <span title="Performance" class="ls-icon-performance"></span> Unix Domain Sockets generally provide higher performance than IPv4 sockets.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxConns"><h3>Max Connections<span class="ls-permlink"><a href="#maxConns"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the maximum number of concurrent connections that can be established between the server and an external application. This setting controls how many requests can be processed concurrently by an external application, however, the real limit also depends on the external application itself. Setting this value higher will not help if the external application is not fast enough or cannot scale to a large number of concurrent requests.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> Setting a high value does not directly translate to higher performance. Setting the limit to a value that will not overload the external application will provide the best performance/throughput.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="env"><h3>Environment<span class="ls-permlink"><a href="#env"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies extra environment variables for the external application.</p> <h4>Syntax</h4><p>Key=value. Multiple variables can be separated by "ENTER"</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="initTimeout"><h3>Initial Request Timeout (secs)<span class="ls-permlink"><a href="#initTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the maximum time in seconds the server will wait for the external application to respond to the first request over a new established connection. If the server does not receive any data from the external application within this timeout limit, it will mark this connection as bad. This helps to identify communication problems with external applications as quickly as possible. If some requests take longer to process, increase this limit to avoid 503 error messages.</p> <h4>Syntax</h4><p>Integer number</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="retryTimeout"><h3>Retry Timeout (secs)<span class="ls-permlink"><a href="#retryTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the period of time that the server waits before retrying an external application that had a prior communication problem.</p> <h4>Syntax</h4><p>Integer number</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="persistConn"><h3>Persistent Connection<span class="ls-permlink"><a href="#persistConn"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to keep the connection open after a request has been processed. Persistent connections can increase performance, but some FastCGI external applications do not support persistent connections fully. The default is "On".</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="pcKeepAliveTimeout"><h3>Connection Keepalive Timeout<span class="ls-permlink"><a href="#pcKeepAliveTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the maximum time in seconds to keep an idle persistent connection open.<br/><br/> When set to "-1", the connection will never timeout. When set to 0 or greater, the connection will be closed after this time in seconds has passed.</p> <h4>Syntax</h4><p>int</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="respBuffer"><h3>Response Buffering<span class="ls-permlink"><a href="#respBuffer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to buffer responses received from external applications. If a "nph-" (Non-Parsed-Header) script is detected, buffering is turned off for responses with full HTTP headers.</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="autoStart"><h3>Start By Server<span class="ls-permlink"><a href="#autoStart"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether you want the web server to start the application automatically. Only FastCGI and LSAPI applications running on the same machine can be started automatically. The IP in the <span class="tagl"><a href="#extAppAddress">Address</a></span> must be a local IP. Starting through the LiteSpeed CGI Daemon instead of a main server process will help reduce system overhead.<br/><br/> Default value: Yes (Through CGI Daemon)</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAppPath"><h3>Command<span class="ls-permlink"><a href="#extAppPath"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the full command line including parameters to execute the external application. Required value if <span class="tagl"><a href="#autoStart">Start By Server</a></span> is enabled. A parameter should be quoted with a double or single quote if the parameter contains space or tab characters.</p> <h4>Syntax</h4><p>Full path to the executable with optional parameters.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#autoStart">Start By Server</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="backlog"><h3>Back Log<span class="ls-permlink"><a href="#backlog"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the backlog of the listening socket. Required if <span class="tagl"><a href="#autoStart">Start By Server</a></span> is enabled.</p> <h4>Syntax</h4><p>Integer number</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="instances"><h3>Instances<span class="ls-permlink"><a href="#instances"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the maximum instances of the external application the server will create. It is required if <span class="tagl"><a href="#autoStart">Start By Server</a></span> is enabled. Most FastCGI/LSAPI applications can only process one request per process instance and for those types of applications, instances should be set to match the value of <span class="tagl"><a href="#maxConns">Max Connections</a></span>. Some FastCGI/LSAPI applications can spawn multiple child processes to handle multiple requests concurrently. For these types of applications, instances should be set to "1" and environment variables used to control how many child processes the application can spawn.</p> <h4>Syntax</h4><p>Integer number</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extUser"><h3>Run As User<span class="ls-permlink"><a href="#extUser"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The external application will run as this specified user name. If not set, Virtual Host level settings will be inherited.<br/><br/> Default value: Not Set</p> <h4>Syntax</h4><p>Valid username.</p> <h4>See Also</h4><p class="ls-text-small">extGroup</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extGroup"><h3>Run As Group<span class="ls-permlink"><a href="#extGroup"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The external application will run as this specified group name. If not set, Virtual Host level settings will be inherited.<br/><br/> Default value: Not Set</p> <h4>Syntax</h4><p>Valid group name.</p> <h4>See Also</h4><p class="ls-text-small">extUser</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extUmask"><h3>umask<span class="ls-permlink"><a href="#extUmask"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets default umask for this external application's processes. See <span class="cmd"> man 2 umask </span> for details. The default value taken from the server-level <span class="tagl"><a href="ServSecurity_Help.html#umask">umask</a></span> setting.</p> <h4>Syntax</h4><p>value valid range [000]-[777].</p> <h4>See Also</h4><p class="ls-text-small">CGI <span class="tagl"><a href="ServSecurity_Help.html#umask">umask</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="runOnStartUp"><h3>Run On Start Up<span class="ls-permlink"><a href="#runOnStartUp"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to start the external application at server start up. Only applicable to external applications that can manage their own child processes and where <span class="tagl"><a href="#instances">Instances</a></span> value is set to "1".<br/><br/> If enabled, external processes will be created at server startup instead of run-time.<br/><br/> When selecting "Yes (Detached mode)", all detached process can be restarted at the Server level or Virtual Host level by touching the '.lsphp_restart.txt' file under the $SERVER_ROOT/admin/tmp/ or $VH_ROOT/ directory respectively.<br/><br/> Default value: Yes (Detached mode)</p> <h4>Syntax</h4><p>Select from radio box</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> If the configured external process has significant startup overhead, like a Rails app, then this option should be enabled to decrease first page response time.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extMaxIdleTime"><h3>Max Idle Time<span class="ls-permlink"><a href="#extMaxIdleTime"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the maximum idle time before an external application is stopped by the server, freeing idle resources. When set to "-1", the external application will not be stopped by the server unless running in ProcessGroup mode where idle external applications will be stopped after 30 seconds.<br/><br/> Default value: <span class="val">-1{/val}</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> This feature is especially useful in the mass hosting environment where, in order to prevent files owned by one virtual host from being accessed by the external application scripts of another virtual host, many different applications are run at the same time in SetUID mode. Set this value low to prevent these external applications from idling unnecessarily.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAppPriority"><h3>Priority<span class="ls-permlink"><a href="#extAppPriority"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies priority of the external application process. Value ranges from <span class="val">-20</span> to <span class="val">20</span>. A lower number means a higher priority. An external application process cannot have a higher priority than the web server. If this priority is set to a lower number than the server's, the server's priority will be used for this value.</p> <h4>Syntax</h4><p>int</p> <h4>See Also</h4><p class="ls-text-small">Server <span class="tagl"><a href="ServGeneral_Help.html#serverPriority">Priority</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="memSoftLimit"><h3>Memory Soft Limit (bytes)<span class="ls-permlink"><a href="#memSoftLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the memory consumption limit in bytes for an external application process or an external application started by the server.<br/><br/> The main purpose of this limit is to prevent excessive memory usage because of software bugs or intentional attacks, not to impose a limit on normal usage. Make sure to leave enough head room, otherwise your application may fail and 503 error may be returned. It can be set at the server- level or at an individual external application level. The server-level limit will be used if it is not set at the individual application level.<br/><br/> The operating system's default setting will be used if the value is absent at both levels or set to <span class="val">0</span>.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Attention" class="ls-icon-attention"></span> Do not over adjust this limit. This may result in 503 errors if your application needs more memory.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="memHardLimit"><h3>Memory Hard Limit (bytes)<span class="ls-permlink"><a href="#memHardLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Much the same as <span class="tagl"><a href="#memSoftLimit">Memory Soft Limit (bytes)</a></span>, except the soft limit can be raised up to the hard limit from within a user process. The hard limit can be set at server level or at an individual external application level. The server-level limit will be used if it is not set at an individual application level.<br/><br/> The operating system's default will be used if the value is absent at both levels or set to <span class="val">0</span>.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Attention" class="ls-icon-attention"></span> Do not over adjust this limit. This may result in 503 errors if your application need more memory.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="procSoftLimit"><h3>Process Soft Limit<span class="ls-permlink"><a href="#procSoftLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Limits the total number of processes that can be created on behalf of a user. All existing processes will be counted against this limit, not just new processes to be started.<br/><br/> The limit can be set at the server level or at an individual external application level. The server-level limit will be used if it is not set at an individual application level. The operating system's default setting will be used if this value is 0 or absent at both levels.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> PHP scripts can call for forking processes. The main purpose of this limit is as a last line of defense to prevent fork bombs and other attacks caused by PHP processes creating other processes.<br/><br/> Setting this setting too low can severely hurt functionality. The setting will thus be ignored below certain levels.<br/><br/> When <b>Run On Start Up</b> is set to "Yes (Daemon mode)", the actual process limit will be higher than this setting to make sure parent processes are not limited.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="procHardLimit"><h3>Process Hard Limit<span class="ls-permlink"><a href="#procHardLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Much the same as <span class="tagl"><a href="#procSoftLimit">Process Soft Limit</a></span>, except the soft limit can be raised up to the hard limit from within a user process. The hard limit can be set at the server level or at an individual external application level. The server-level limit will be used if it is not set at an individual application level. The operating system's default value will be used if the value is absent at both levels or set to <span class="val">0</span>.</p> <h4>Syntax</h4><p>Integer number</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ����������������������������������������������������������������������������������������������������������������������������������������������������intro.html������������������������������������������������������������������������������������������0000644�����������������00000021622�15027525531�0006575 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Introduction</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Introduction." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 9</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><span class="current"><a href="intro.html">Introduction</a></span></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="license.html">License</a></div><div class="center"><a href="index.html">Home</a></div><div class="next"><a href="install.html">Installation</a> »</div></div> <h1>Introduction</h1> <h3>Overview</h3> <p>LiteSpeed Web Server is a high performance, secure, easy-to-use web server. It can handle thousands of concurrent connections with a small memory footprint. Its security features also make it much less vulnerable to various attacks. </p> <h3>Basic Features</h3> <ul> <li><p><strong>HTTP/1.1</strong></p> <ul> <li>Chunked transfer encoding</li> <li>Basic authentication (password file and LDAP backend)</li> <li>Entity tag</li> <li>Single and multiple ranges requests</li> <li>Static/dynamic response compression (gzip)</li> <li>Apache-compatible URL rewrite</li> <li>IPv6 support</li> <li>Apache mod_geoip compatible geotargeting support</li> </ul> </li> <li><p><strong>Dynamic Content Generation</strong></p> <p>LiteSpeed Web Server supports the following dynamic content generation methods:</p> <ul> <li>CGI/1.1 with suEXEC</li> <li>Fast CGI with suEXEC</li> <li>PHP with suEXEC through LiteSpeed PHP SAPI (top-of-the-line PHP performance with a mod_php equivalent feature set) <li>JSP/servlets (interface with AJP v1.3 compatible backend servlet engine)</li> <li>Proxy (interface with any web server/application server that supports HTTP protocol)</li> <li>Ruby on Rails with suEXEC through Ruby LSAPI module (best-in-class performance, easy deployment, supports dynamic spawning) </ul> </li> <li><p><strong>Virtual Hosting</strong></p> <ul> <li>Supports IP-based and name-based virtual hosting</li> <li>Virtual host templates make virtual hosting configuration easy</li> </ul> </li> </ul> <h3>Security</h3> <p>LiteSpeed Web Server provides the following security features:</p> <ul> <li><strong>SSL</strong> <p>Supports SSLv3/TLSv1. <i>This product includes software developed by the OpenSSL Project for use in the OpenSSL Toolkit (http://www.openssl.org/)</i></p></li> <li><strong>IP Level Throttling</strong> <p>Network bandwidth and request rate for a single IP address can be limited regardless of the number of connections. </p></li> <li><strong>Comprehensive Connection Accounting</strong> <p>Comprehensive control of concurrent connections allowed from a single IP address.</p></li> <li><strong>Access Control</strong> <p>Access control rules can be set at server, virtual host, and per-directory (context) levels.</p> </li> <li><strong>External Application Shield</strong> <p>LiteSpeed Web Server shields CGI, Fast CGI and servlet engines from talking directly to web clients to ensure maximum reliability and performance. </p></li> <li><strong>CGI Resources Consumption Limit</strong> <p>LiteSpeed Web Server prevents bad CGI scripts from overloading the server by limiting the system resources CGI applications can consume.</p></li> <li><strong>DoS Attack Prevention</strong> <p>LiteSpeed Web Server is much less vulnerable to HTTP Denial of Service(DoS) and Distributed Denial of Service (DDoS) attacks thanks to IP-level throttling, connection accounting, and its outstanding performance and scalability. </p></li> </ul> <h3>Reliability</h3> <p>LiteSpeed Web Server recovers from crashes instantly. LiteSpeed Web Server also runs completely in user space. Thus the server can easily switch between different versions without affecting the reliability of the operating system. </p> <p>CGI, Fast CGI and Servlet engine run in their standalone processes, the reliability of web server is not affected by the quality of third party software.</p> <h3>User Friendly</h3> <ul> <li>No need to build the executable yourself.</li> <li>Easy to install.</li> <li>Easy to control and configure through the WebAdmin interface.</li> <li>Sets up PHP and PHP accelerators automatically.</li> <li>Applies most changes without restarting the server.</li> </ul> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ��������������������������������������������������������������������������������������������������������������VHSSL_Help.html�������������������������������������������������������������������������������������0000644�����������������00000057062�15027525531�0007320 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Virtual Host SSL</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Virtual Host SSL." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 9</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><span class="current"><a href="VHSSL_Help.html">Virtual Host SSL</a></span></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="VHSecurity_Help.html">Virtual Host Security</a></div><div class="center"><a href="config.html">Configuration</a></div><div class="next"><a href="Rewrite_Help.html">Rewrite</a> »</div></div> <h1>Virtual Host SSL</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header><a href="#sslCert">SSL Private Key & Certificate</a></header><p> <a href="#keyFile">Private Key File</a> | <a href="#certFile">Certificate File</a> | <a href="#certChain">Chained Certificate</a> | <a href="#CACertPath">CA Certificate Path</a> | <a href="#CACertFile">CA Certificate File</a></p></section> <section class="toc-row"><header><a href="#sslProtocolSetting">SSL Protocol</a></header><p> <a href="#ciphers">Ciphers</a> | <a href="#enableECDHE">Enable ECDH Key Exchange</a> | <a href="#enableDHE">Enable DH Key Exchange</a> | <a href="#DHParam">DH Parameter</a></p></section> <section class="toc-row"><header>Security & Features</header><p> <a href="#renegProtection">SSL Renegotiation Protection</a> | <a href="#sslSessionCache">Enable Session Cache</a> | <a href="#sslSessionTickets">Enable Session Tickets</a> | <a href="#enableSpdy">ALPN</a> | <a href="#vhEnableQuic">Enable HTTP3/QUIC</a></p></section> <section class="toc-row"><header><a href="#sslOCSP">OCSP Stapling</a></header><p> <a href="#enableStapling">Enable OCSP Stapling</a> | <a href="#ocspRespMaxAge">OCSP Response Max Age (secs)</a> | <a href="#ocspResponder">OCSP Responder</a> | <a href="#ocspCACerts">OCSP CA Certificates</a></p></section> <section class="toc-row"><header>Client Verification</header><p> <a href="#clientVerify">Client Verification</a> | <a href="#verifyDepth">Verify Depth</a> | <a href="#crlPath">Client Revocation Path</a> | <a href="#crlFile">Client Revocation File</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="sslCert"><h3>SSL Private Key & Certificate<span class="ls-permlink"><a href="#sslCert"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Every SSL listener requires a paired SSL private key and SSL certificate. Multiple SSL listeners can share the same key and certificate.<br/><br/> You can generate SSL private keys yourself using an SSL software package, such as OpenSSL. SSL certificates can also be purchased from an authorized certificate issuer like VeriSign or Thawte. You can also sign the certificate yourself. Self-signed certificates will not be trusted by web browsers and should not be used on public websites containing critical data. However, a self-signed certificate is good enough for internal use, e.g. for encrypting traffic to LiteSpeed Web Server's WebAdmin Console.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="keyFile"><h3>Private Key File<span class="ls-permlink"><a href="#keyFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The filename of the SSL private key file. The key file should not be encrypted.</p> <h4>Syntax</h4><p>Filename which can be an absolute path or a relative path to $SERVER_ROOT.</p> <h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> The private key file should be placed in a secured directory that allows read-only access to the user the server runs as.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="certFile"><h3>Certificate File<span class="ls-permlink"><a href="#certFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The filename of the SSL certificate file.</p> <h4>Syntax</h4><p>Filename which can be an absolute path or a relative path to $SERVER_ROOT.</p> <h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> The certificate file should be placed in a secured directory, which allows read-only access to the user that the server runs as.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="certChain"><h3>Chained Certificate<span class="ls-permlink"><a href="#certChain"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether the certificate is a chained certificate or not. The file that stores a certificate chain must be in PEM format, and the certificates must be in the chained order, from the lowest level (the actual client or server certificate) to the highest level (root) CA.</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="CACertPath"><h3>CA Certificate Path<span class="ls-permlink"><a href="#CACertPath"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the directory where the certificates of certification authorities (CAs) are kept. Those certificates are used for client certificate authentication and constructing the server certificate chain, which will be sent to browsers in addition to the server certificate.</p> <h4>Syntax</h4><p>path</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="CACertFile"><h3>CA Certificate File<span class="ls-permlink"><a href="#CACertFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the file that contains all certificates of certification authorities (CAs) for chained certificates. This file is simply the concatenation of PEM-encoded certificate files, in order of preference. This can be used as an alternative or in addition to <span class="tagl"><a href="#CACertPath">CA Certificate Path</a></span>. Those certificates are used for client certificate authentication and constructing the server certificate chain, which will be sent to browsers in addition to the server certificate.</p> <h4>Syntax</h4><p>Filename which can be an absolute path or a relative path to $SERVER_ROOT.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslProtocolSetting"><h3>SSL Protocol<span class="ls-permlink"><a href="#sslProtocolSetting"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Customizes SSL protocols accepted by the listener.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="ciphers"><h3>Ciphers<span class="ls-permlink"><a href="#ciphers"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the cipher suite to be used when negotiating the SSL handshake. LSWS supports cipher suites implemented in SSL v3.0, TLS v1.0, TLS v1.2, and TLS v1.3.</p> <h4>Syntax</h4><p>Colon-separated string of cipher specifications.</p> <h4>Example</h4><div class="ls-example">ECDHE-RSA-AES128-SHA256:RC4:HIGH:!MD5:!aNULL:!EDH</div><h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> We recommend leaving this field blank to use our default cipher which follows SSL cipher best practices.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableECDHE"><h3>Enable ECDH Key Exchange<span class="ls-permlink"><a href="#enableECDHE"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Allows use of Elliptic Curve Diffie-Hellman key exchange for further SSL encryption.</p> <h4>Syntax</h4><p>Select from radio box</p> <h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> ECDH key exchange is more secure than using just an RSA key. ECDH and DH key exchange are equally secure.<br/><br/> <span title="Performance" class="ls-icon-performance"></span> Enabling ECDH key exchange will increase CPU load and is slower than using just an RSA key.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableDHE"><h3>Enable DH Key Exchange<span class="ls-permlink"><a href="#enableDHE"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Allows use of Diffie-Hellman key exchange for further SSL encryption.</p> <h4>Syntax</h4><p>Select from radio box</p> <h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> DH key exchange is more secure than using just an RSA key. ECDH and DH key exchange are equally secure.<br/><br/> <span title="Performance" class="ls-icon-performance"></span> Enabling DH key exchange will increase CPU load and is slower than ECDH key exchange and RSA. ECDH key exchange is preferred when available.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="DHParam"><h3>DH Parameter<span class="ls-permlink"><a href="#DHParam"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the location of the Diffie-Hellman parameter file necessary for DH key exchange.</p> <h4>Syntax</h4><p>Filename which can be an absolute path or a relative path to $SERVER_ROOT.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="renegProtection"><h3>SSL Renegotiation Protection<span class="ls-permlink"><a href="#renegProtection"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to enable SSL Renegotiation Protection to defend against SSL handshake-based attacks. The default value is "Yes".</p> <h4>Syntax</h4><p>Select from radio box</p> <h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> This setting can be enabled at the listener and virtual host levels.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslSessionCache"><h3>Enable Session Cache<span class="ls-permlink"><a href="#sslSessionCache"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Enables session ID caching using OpenSSL's default setting. Server-level setting must be set to "Yes" for Virtual Host setting to take effect.<br/><br/> Default values:<br/> <b>Server-level:</b> Yes<br/> <b>VH-Level:</b> Yes</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslSessionTickets"><h3>Enable Session Tickets<span class="ls-permlink"><a href="#sslSessionTickets"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Enables session tickets using OpenSSL's default session ticket setting. Server-level setting must be set to "Yes" for Virtual Host setting to take effect.<br/><br/> Default values:<br/> <b>Server-level:</b> Yes<br/> <b>VH-Level:</b> Yes</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableSpdy"><h3>ALPN<span class="ls-permlink"><a href="#enableSpdy"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Selectively enable HTTP/3, HTTP/2, and SPDY HTTP network protocols.<br/><br/> If you wish to disable SPDY, HTTP/2, and HTTP3, check "None" and leave all other boxes unchecked.<br/><br/> Default value: All enabled</p> <h4>Syntax</h4><p>Select from checkbox</p> <h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> This setting can be set at the listener and virtual host levels.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vhEnableQuic"><h3>Enable HTTP3/QUIC<span class="ls-permlink"><a href="#vhEnableQuic"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Enables the HTTP3/QUIC network protocol for this virtual host. For this setting to take effect, both <span class="tagl"><a href="ServTuning_Help.html#quicEnable">Enable HTTP3/QUIC</a></span> and <span class="tagl"><a href="Listeners_SSL_Help.html#allowQuic">Open HTTP3/QUIC (UDP) port</a></span> must also be set to <span class="val">Yes</span> at the server and listener levels respectively. Default value is <span class="val">Yes</span>.</p> <h4>Syntax</h4><p>Select from radio box</p> <h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> When this setting is set to <span class="val">No</span>, the HTTP3/QUIC advertisement will no longer be sent. If a browser still contains cached HTTP3/QUIC information and HTTP3/QUIC is still enabled at the server and listener levels, an HTTP3/QUIC connection will continue to be used until this information is no longer cached or an HTTP3/QUIC protocol error is encountered.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslOCSP"><h3>OCSP Stapling<span class="ls-permlink"><a href="#sslOCSP"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Online Certificate Status Protocol (OCSP) is a more efficient method of checking whether a digital certificate is valid. It works by communicating with another server — the OCSP responder — to get verification that the certificate is valid instead of checking through certificate revocation lists (CRL).<br/><br/> OCSP stapling is a further improvement on this protocol, allowing the server to check with the OCSP responder at regular intervals instead of every time a certificate is requested. See the <a href="http://en.wikipedia.org/wiki/OCSP_Stapling" target="_blank" rel="noopener noreferrer">OCSP Wikipedia page</a> for more details.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableStapling"><h3>Enable OCSP Stapling<span class="ls-permlink"><a href="#enableStapling"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Determines whether to enable OCSP stapling, a more efficient way of verifying public key certificates.</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="ocspRespMaxAge"><h3>OCSP Response Max Age (secs)<span class="ls-permlink"><a href="#ocspRespMaxAge"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>This option sets the maximum allowable age for an OCSP response. If an OCSP response is older than this maximum age, the server will contact the OCSP responder for a new response. The default value is <span class="val">86400</span>. Maximum age can be turned off by setting this value to <span class="val">-1</span>.</p> <h4>Syntax</h4><p>Integer of seconds</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="ocspResponder"><h3>OCSP Responder<span class="ls-permlink"><a href="#ocspResponder"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the URL of the OCSP responder to be used. If not set, the server will attempt to contact the OCSP responder detailed in the certificate authority's issuer certificate. Some issuer certificates may not have an OCSP responder URL specified.</p> <h4>Syntax</h4><p>URL starting with <span class="val">http://</span></p> <h4>Example</h4><div class="ls-example"><span class="val">http://rapidssl-ocsp.geotrust.com </span></div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="ocspCACerts"><h3>OCSP CA Certificates<span class="ls-permlink"><a href="#ocspCACerts"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the location of the file where OCSP certificate authority (CA) certificates are stored. These certificates are used to check responses from the OCSP responder (and make sure those responses are not spoofed or otherwise compromised). This file should contain the whole certificate chain. If this file does not contain the root certificate, LSWS should be able to find the root certificate in your system directory without you adding it to the file, but, if this validation fails, you should try adding your root certificate to this file.<br/><br/> This setting is optional. If this setting is not set, the server will automatically check <span class="tagl"><a href="#CACertFile">CA Certificate File</a></span>.</p> <h4>Syntax</h4><p>Filename which can be an absolute path or a relative path to $SERVER_ROOT.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="clientVerify"><h3>Client Verification<span class="ls-permlink"><a href="#clientVerify"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p> Specifies the type of client certifcate authentication. Available types are: <ul> <li><b>None:</b> No client certificate is required.</li> <li><b>Optional:</b> Client certificate is optional.</li> <li><b>Require:</b> The client must has valid certificate.</li> <li><b>Optional_no_ca:</b> Same as optional.</li> </ul> The default is "None".</p> <h4>Syntax</h4><p>Select from drop down list</p> <h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> "None" or "Require" are recommended.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="verifyDepth"><h3>Verify Depth<span class="ls-permlink"><a href="#verifyDepth"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p> Specifies how deeply a certificate should be verified before determining that the client does not have a valid certificate. The default is "1".</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="crlPath"><h3>Client Revocation Path<span class="ls-permlink"><a href="#crlPath"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p> Specifies the directory containing PEM-encoded CA CRL files for revoked client certificates. The files in this directory have to be PEM-encoded. These files are accessed through hash filenames, hash-value.rN. Please refer to openSSL or Apache mod_ssl documentation regarding creating the hash filename.</p> <h4>Syntax</h4><p>path</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="crlFile"><h3>Client Revocation File<span class="ls-permlink"><a href="#crlFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p> Specifies the file containing PEM-encoded CA CRL files enumerating revoked client certificates. This can be used as an alternative or in addition to <span class="tagl"><a href="#crlPath">Client Revocation Path</a></span>.</p> <h4>Syntax</h4><p>Filename which can be an absolute path or a relative path to $SERVER_ROOT.</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������admin.html������������������������������������������������������������������������������������������0000644�����������������00000017044�15027525531�0006535 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Administration</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Administration." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 9</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <span class="current"><a href="admin.html">Administration</a></span> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="install.html">Installation</a></div><div class="center"><a href="index.html">Home</a></div><div class="next"><a href="security.html">Security</a> »</div></div> <h1>Administration</h1> <p>LiteSpeed web server can be controlled in three ways: through the WebAdmin console, from the command line, or by sending signals.</p> <ol> <li><h3>Through the WebAdmin console:</h3> <p>WebAdmin console is a centralized control panel to control and configure all LiteSpeed Web Server settings.</p> <p>Log on to the WebAdmin console (by default http://[your site's address]:7080/). Select "Service Manager". Here you will find a control panel with links to perform common tasks: server restart, server configuration reload, log viewing, real-time monitoring, virtual host reload, and virtual host enable/disable.</p> <p><strong>More details on how to control LiteSpeed Web Server through the WebAdmin console - <a href="ServerStat_Help.html">Service Manager</a></strong></p> <p>To change the login name and password for the WebAdmin interface, run the following command from the shell:<br> <span class="cmd">[your install dir]/admin/misc/admpass.sh</span> </p> </li> <li><h3>Through the command line interface:</h3> <p>Assuming the web server is installed at /usr/local/lsws.</p> <p>Use the <span class="tag">lswsctrl</span> control script in /usr/local/lsws/bin/ directory.</p> <p>To start the web server:<br> <span class="cmd">/usr/local/lsws/bin/lswsctrl start</span> </p> <p>To stop the web server:<br> <span class="cmd">/usr/local/lsws/bin/lswsctrl stop</span> </p> <p>To restart the web server:<br> <span class="cmd">/usr/local/lsws/bin/lswsctrl restart</span> </p> <p>To reload the configuration:<br> <span class="cmd">/usr/local/lsws/bin/lswsctrl reload</span> </p> </li> <li><h3>By sending signals:</h3> <p>You can stop server processes and reload configurations by sending signals to the server processes.</p> <p>First, you need to know the server's process ID, either from the PID file or by running a "ps" command.</p> <p>To read the PID file:<br> <span class="cmd">cat /tmp/lshttpd/lshttpd.pid</span></p> <p>By running a "ps" command:<br> FreeBSD: <span class="cmd">ps -x | grep lshttpd</span><br> Others: <span class="cmd">ps -ef | grep lshttpd</span><br> <br> If multiple processes are listed, use the process with PPID equal to 1. </p> <p>To stop the web server: <span class="cmd">kill XXXX</span> (XXXX is the PID)<br> If the server did not stop, use: <span class="cmd">kill -9 XXXX</span> </p> <p>To reload the configurations, use: <span class="cmd">kill -HUP XXXX</span> </p> </li> </ol> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ��������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������ServSecurity_Help.html������������������������������������������������������������������������������0000644�����������������00000154020�15027525531�0011060 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Server Security</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Server Security." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 9</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><span class="current"><a href="ServSecurity_Help.html">Server Security</a></span></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="ServTuning_Help.html">Server Tuning</a></div><div class="center"><a href="config.html">Configuration</a></div><div class="next"><a href="ExtApp_Help.html">External Apps</a> »</div></div> <h1>Server Security</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header>File Access</header><p> <a href="#followSymbolLink">Follow Symbolic Link</a> | <a href="#checkSymbolLink">Check Symbolic Link</a> | <a href="#forceStrictOwnership">Force Strict Ownership Checking</a> | <a href="#requiredPermissionMask">Required Permission Mask</a> | <a href="#restrictedPermissionMask">Restricted Permission Mask</a> | <a href="#restrictedScriptPermissionMask">Script Restricted Permission Mask</a> | <a href="#restrictedDirPermissionMask">Script Directory Restricted Permission Mask</a></p></section> <section class="toc-row"><header><a href="#perClientConnLimit">Per Client Throttling</a></header><p> <a href="#staticReqPerSec">Static Requests/Second</a> | <a href="#dynReqPerSec">Dynamic Requests/Second</a> | <a href="#outBandwidth">Outbound Bandwidth (bytes/sec)</a> | <a href="#inBandwidth">Inbound Bandwidth (bytes/sec)</a> | <a href="#softLimit">Connection Soft Limit</a> | <a href="#hardLimit">Connection Hard Limit</a> | <a href="#blockBadReq">Block Bad Request</a> | <a href="#gracePeriod">Grace Period (sec)</a> | <a href="#banPeriod">Banned Period (sec)</a></p></section> <section class="toc-row"><header><a href="#cgiResource">CGI Settings</a></header><p> <a href="#cgidSock">CGI Daemon Socket</a> | <a href="#maxCGIInstances">Max CGI Instances</a> | <a href="#minUID">Minimum UID</a> | <a href="#minGID">Minimum GID</a> | <a href="#forceGID">Force GID</a> | <a href="#umask">umask</a> | <a href="#CGIPriority">CGI Priority</a> | <a href="#CPUSoftLimit">CPU Soft Limit (sec)</a> | <a href="#CPUHardLimit">CPU Hard Limit</a> | <a href="#memSoftLimit">Memory Soft Limit (bytes)</a> | <a href="#memHardLimit">Memory Hard Limit (bytes)</a> | <a href="#procSoftLimit">Process Soft Limit</a> | <a href="#procHardLimit">Process Hard Limit</a> | <a href="#cgroups">cgroups</a></p></section> <section class="toc-row"><header><a href="#lsrecaptcha">reCAPTCHA Protection</a></header><p> <a href="#enableRecaptcha">Enable reCAPTCHA</a> | <a href="#recaptchaSiteKey">Site Key</a> | <a href="#recaptchaSecretKey">Secret Key</a> | <a href="#recaptchaType">reCAPTCHA Type</a> | <a href="#recaptchaMaxTries">Max Tries</a> | <a href="#recaptchaAllowedRobotHits">Allowed Robot Hits</a> | <a href="#recaptchaBotWhiteList">Bot White List</a> | <a href="#recaptchaRegConnLimit">Connection Limit</a> | <a href="#recaptchaSslConnLimit">SSL Connection Limit</a></p></section> <section class="toc-row"><header>Containers</header><p> <a href="#bubbleWrap">Bubblewrap Container</a> | <a href="#bubbleWrapCmd">Bubblewrap Command</a> | <a href="#namespace">Namespace Container</a> | <a href="#namespaceConf">Namespace Template File</a></p></section> <section class="toc-row"><header>Access Denied Directories</header><p> <a href="#accessDenyDir">Access Denied Directories</a></p></section> <section class="toc-row"><header><a href="#accessControl">Access Control</a></header><p> <a href="#accessControl_allow">Allowed List</a> | <a href="#accessControl_deny">Denied List</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="followSymbolLink"><h3>Follow Symbolic Link<span class="ls-permlink"><a href="#followSymbolLink"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the server-level default setting of following symbolic links when serving static files.<br/><br/> Choices are <span class="val">Yes</span>, <span class="val">If Owner Match</span> and <span class="val">No</span>.<br/><br/> <span class="val">Yes</span> sets the server to always follow symbolic links. <span class="val">If Owner Match</span> sets the server to follow a symbolic link only if the owner of the link and of the target are same. <span class="val">No</span> means the server will never follow a symbolic link. This setting can be overridden in the virtual host configurations but cannot be overridden from an .htaccess file.</p> <h4>Syntax</h4><p>Select from drop down list</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span><span title="Security" class="ls-icon-security"></span> For best security select <span class="val">No</span> or <span class="val">If Owner Match</span>. For best performance, select <span class="val">Yes</span>.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#checkSymbolLink">Check Symbolic Link</a></span>.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="checkSymbolLink"><h3>Check Symbolic Link<span class="ls-permlink"><a href="#checkSymbolLink"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to check symbolic links against <span class="tagl"><a href="#accessDenyDir">Access Denied Directories</a></span> when <span class="tagl"><a href="#followSymbolLink">Follow Symbolic Link</a></span> is turned on. If enabled, the canonical real path of the resource referred by a URL will be checked against the configurable access denied directories. Access will be denied if it falls inside an access denied directory.</p> <h4>Syntax</h4><p>Select from radio box</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span><span title="Security" class="ls-icon-security"></span> For best security, enable this option. For best performance, disable it.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#followSymbolLink">Follow Symbolic Link</a></span>, <span class="tagl"><a href="#accessDenyDir">Access Denied Directories</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="forceStrictOwnership"><h3>Force Strict Ownership Checking<span class="ls-permlink"><a href="#forceStrictOwnership"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to enforce strict file ownership checking. If it is enabled, the web server will check if the owner of the file being served is the same as the owner of the virtual host. If it is different, a 403 Access Denied Error will be returned. This is turned off by default.</p> <h4>Syntax</h4><p>Select from radio box</p> <h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> For shared hosting, enable this check for better security.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="requiredPermissionMask"><h3>Required Permission Mask<span class="ls-permlink"><a href="#requiredPermissionMask"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the required permission mask for static files that the server will serve. For example, if only files that are readable by everyone can be served, set the value to <span class="val">0004</span>. See <span class="cmd">man 2 stat</span> for all values.</p> <h4>Syntax</h4><p>octal numbers</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#restrictedPermissionMask">Restricted Permission Mask</a></span>.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="restrictedPermissionMask"><h3>Restricted Permission Mask<span class="ls-permlink"><a href="#restrictedPermissionMask"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the restricted permission mask for static files that the server will not serve. For example, to prohibit serving files that are executable, set the mask to <span class="val">0111</span>.<br/><br/> See <span class="cmd">man 2 stat</span> for all values.</p> <h4>Syntax</h4><p>octal numbers</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#requiredPermissionMask">Required Permission Mask</a></span>.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="restrictedScriptPermissionMask"><h3>Script Restricted Permission Mask<span class="ls-permlink"><a href="#restrictedScriptPermissionMask"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the restricted permission mask for script files that the server will not serve. For example, to prohibit serving PHP scripts that are group and world writable, set the mask to <span class="val">022</span>. Default value is <span class="val">000</span>.<br/><br/> See <span class="cmd">man 2 stat</span> for all values.</p> <h4>Syntax</h4><p>octal numbers</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#restrictedDirPermissionMask">Script Directory Restricted Permission Mask</a></span>.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="restrictedDirPermissionMask"><h3>Script Directory Restricted Permission Mask<span class="ls-permlink"><a href="#restrictedDirPermissionMask"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the restricted permission mask of parent directories of script files that the server will not serve. For example, to prohibit serving PHP scripts in a directory that is group and world writable, set the mask to <span class="val">022</span>. Default value is <span class="val">000</span>. This option can be used to prevent serving scripts under a directory of uploaded files.<br/><br/> See <span class="cmd">man 2 stat</span> for all values.</p> <h4>Syntax</h4><p>octal numbers</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#restrictedScriptPermissionMask">Script Restricted Permission Mask</a></span>.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="perClientConnLimit"><h3>Per Client Throttling<span class="ls-permlink"><a href="#perClientConnLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>These are connection control settings are based on client IP. These settings help to mitigate DoS (Denial of Service) and DDoS (Distributed Denial of Service) attacks.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="staticReqPerSec"><h3>Static Requests/Second<span class="ls-permlink"><a href="#staticReqPerSec"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the maximum number of requests to static content coming from a single IP address that can be processed in a single second regardless of the number of connections established.<br/><br/> When this limit is reached, all future requests are tar-pitted until the next second. Request limits for dynamically generated content are independent of this limit. Per-client request limits can be set at server- or virtual host-level. Virtual host-level settings override server-level settings.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> Trusted IPs or sub-networks are not affected.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#dynReqPerSec">Dynamic Requests/Second</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="dynReqPerSec"><h3>Dynamic Requests/Second<span class="ls-permlink"><a href="#dynReqPerSec"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the maximum number of requests to dynamically generated content coming from a single IP address that can be processed in each second regardless of the number of connections established. When this limit is reached, all future requests to dynamic content are tar-pitted until the next second.<br/><br/> The request limit for static content is independent of this limit. This per client request limit can be set at server or virtual host level. Virtual host-level settings override server-level settings.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> Trusted IPs or sub-networks are not restrained by this limit.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#staticReqPerSec">Static Requests/Second</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="outBandwidth"><h3>Outbound Bandwidth (bytes/sec)<span class="ls-permlink"><a href="#outBandwidth"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The maximum allowed outgoing throughput to a single IP address, regardless of the number of connections established. The real bandwidth may end up being slightly higher than this setting for efficiency reasons. Bandwidth is allocated in 4KB units. Set to <span class="val">0</span> to disable throttling. Per-client bandwidth limits (bytes/sec) can be set at the server or virtual host level where virtual host level settings override server level settings.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> Set the bandwidth in 8KB units for better performance.<br/><br/> <span title="Security" class="ls-icon-security"></span> Trusted IPs or sub-networks are not affected.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#inBandwidth">Inbound Bandwidth (bytes/sec)</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="inBandwidth"><h3>Inbound Bandwidth (bytes/sec)<span class="ls-permlink"><a href="#inBandwidth"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The maximum allowed incoming throughput from a single IP address, regardless of the number of connections established. The real bandwidth may end up being slightly higher than this setting for efficiency reasons. Bandwidth is allocated in 1KB units. Set to <span class="val">0</span> to disable throttling. Per-client bandwidth limits (bytes/sec) can be set at the server or virtual host level where virtual host level settings override server level settings.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> Trusted IPs or sub-networks are not affected.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#outBandwidth">Outbound Bandwidth (bytes/sec)</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="softLimit"><h3>Connection Soft Limit<span class="ls-permlink"><a href="#softLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the soft limit of concurrent connections allowed from one IP. This soft limit can be exceeded temporarily during <span class="tagl"><a href="#gracePeriod">Grace Period (sec)</a></span> as long as the number is below the <span class="tagl"><a href="#hardLimit">Connection Hard Limit</a></span>, but Keep-Alive connections will be closed as soon as possible until the number of connections is lower than the limit. If number of connections is still over the limit after the <span class="tagl"><a href="#gracePeriod">Grace Period (sec)</a></span>, that IP will be blocked for the <span class="tagl"><a href="#banPeriod">Banned Period (sec)</a></span>.<br/><br/> For example, if a page contains many small graphs, the browser may try to set up many connections at same time, especially for HTTP/1.0 clients. You would want to allow those connections for a short period.<br/><br/> HTTP/1.1 clients may also set up multiple connections to speed up downloading and SSL requires separate connections from non-SSL connections. Make sure the limit is set properly, as not to adversely affect normal service. The recommended limit is between <span class="val">5</span> and <span class="val">10</span>.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> A lower number will enable serving more distinct clients.<br/> <span title="Security" class="ls-icon-security"></span> Trusted IPs or sub-networks are not affected.<br/> <span title="Performance" class="ls-icon-performance"></span> Set to a high value when you are performing benchmark tests with a large number of concurrent client machines.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="hardLimit"><h3>Connection Hard Limit<span class="ls-permlink"><a href="#hardLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the maximum number of allowed concurrent connections from a single IP address. This limit is always enforced and a client will never be able to exceed this limit. HTTP/1.0 clients usually try to set up as many connections as they need to download embedded content at the same time. This limit should be set high enough so that HTTP/1.0 clients can still access the site. Use <span class="tagl"><a href="#softLimit">Connection Soft Limit</a></span> to set the desired connection limit.<br/><br/> The recommended limit is between <span class="val">20</span> and <span class="val">50</span> depending on the content of your web page and your traffic load.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> A lower number will enable serving more distinct clients.<br/> <span title="Security" class="ls-icon-security"></span> Trusted IPs or sub-networks are not affected.<br/> <span title="Performance" class="ls-icon-performance"></span> Set to a high value when you are performing benchmark tests with a large number of concurrent client machines.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="blockBadReq"><h3>Block Bad Request<span class="ls-permlink"><a href="#blockBadReq"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Block IPs that keep sending badly-formatted HTTP requests for the <span class="tagl"><a href="#banPeriod">Banned Period (sec)</a></span>. Default is <span class="val">Yes</span>. This helps to block botnet attacks that repeatedly sending junk requests.</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="gracePeriod"><h3>Grace Period (sec)<span class="ls-permlink"><a href="#gracePeriod"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies how long new connections can be accepted after the number of connections established from one IP is over the <span class="tagl"><a href="#softLimit">Connection Soft Limit</a></span>. Within this period, new connections will be accepted if the total connections is still below the <span class="tagl"><a href="#hardLimit">Connection Hard Limit</a></span>. After this period has elapsed, if the number of connections still higher than the <span class="tagl"><a href="#softLimit">Connection Soft Limit</a></span>, then the offending IP will be blocked for the <span class="tagl"><a href="#banPeriod">Banned Period (sec)</a></span>.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span><span title="Security" class="ls-icon-security"></span> Set to a proper number big enough for downloading a complete page but low enough to prevent deliberate attacks.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="banPeriod"><h3>Banned Period (sec)<span class="ls-permlink"><a href="#banPeriod"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies how long new connections will be rejected from an IP if, after the <span class="tagl"><a href="#gracePeriod">Grace Period (sec)</a></span> has elapsed, the number of connections is still more than the <span class="tagl"><a href="#softLimit">Connection Soft Limit</a></span>. If IPs are getting banned repeatedly, we suggest that you increase your banned period to stiffen the penalty for abuse.</p> <h4>Syntax</h4><p>Integer number</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="cgiResource"><h3>CGI Settings<span class="ls-permlink"><a href="#cgiResource"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The following settings control CGI processes. Memory and process limits also serve as the default for other external applications if limits have not been set explicitly for those applications.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="cgidSock"><h3>CGI Daemon Socket<span class="ls-permlink"><a href="#cgidSock"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>A unique socket address used to communicate with the CGI daemon. LiteSpeed server uses a standalone CGI daemon to spawn CGI scripts for best performance and security. If you need to change this location, specify a Unix domain socket here.<br/><br/> Default value: <span class="val">uds://$SERVER_ROOT/admin/lscgid/.cgid.sock</span></p> <h4>Syntax</h4><p>UDS://path</p> <h4>Example</h4><div class="ls-example">UDS://tmp/lshttpd/cgid.sock</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxCGIInstances"><h3>Max CGI Instances<span class="ls-permlink"><a href="#maxCGIInstances"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the maximum number of concurrent CGI processes the server can start. For each request to a CGI script, the server needs to start a standalone CGI process. On a Unix system, the number of concurrent processes is limited. Excessive concurrent processes will degrade the performance of the whole system and are one way to perform a DoS attack. LiteSpeed server pipelines requests to CGI scripts and limits concurrent CGI processes to ensure the optimal performance and reliability. The hard limit is <span class="val">2000</span>.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span><span title="Performance" class="ls-icon-performance"></span> A higher limit does not necessarily translate to faster performance. In most cases, a lower limit gives better performance and security. A higher limit will only help when I/O latency is excessive during CGI processing.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="minUID"><h3>Minimum UID<span class="ls-permlink"><a href="#minUID"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the minimum user ID allowed to run external applications when running as a specified user. Execution of an external script with a user ID lower than the value specified here will be denied.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> Set it high enough to exclude all system/privileged users.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="minGID"><h3>Minimum GID<span class="ls-permlink"><a href="#minGID"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the minimum group ID allowed to run external applications when running as a specified group. Execution of an external script with a group ID lower than the value specified here will be denied.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> Set it high enough to exclude all groups used by system users.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="forceGID"><h3>Force GID<span class="ls-permlink"><a href="#forceGID"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies a group ID to be used for all external applications started in suEXEC mode. When set to non-zero value, all suEXEC external applications (CGI/FastCGI/LSAPI) will use this group ID. This can be used to prevent an external application from accessing files owned by other users.<br/><br/> For example, in a shared hosting environment, LiteSpeed runs as user "www-data", group "www-data". Each docroot is owned by a user account, with a group of "www-data" and permission mode 0750. If Force GID is set to "nogroup" (or any group other than 'www-data'), all suEXEC external applications will run as a particular user but in the group "nogroup". These external application processes will still be able to access files owned by that particular user (because of their user ID), but will not have group permission to access anyone else's files. The server, on the other hand, still can serve files under any user's docroot directory (because of its group ID).</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> Set it high enough to exclude all groups used by system users.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="umask"><h3>umask<span class="ls-permlink"><a href="#umask"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets default umask for CGI processes. See <span class="cmd"> man 2 umask </span> for details. This also serves as the default value for external applications <span class="tagl"><a href="ExtApp_Help.html#extUmask">umask</a></span>.</p> <h4>Syntax</h4><p>value valid range [000]-[777].</p> <h4>See Also</h4><p class="ls-text-small">ExtApp <span class="tagl"><a href="ExtApp_Help.html#extUmask">umask</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="CGIPriority"><h3>CGI Priority<span class="ls-permlink"><a href="#CGIPriority"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies priority of the external application process. Value ranges from <span class="val">-20</span> to <span class="val">20</span>. A lower number means a higher priority.<br/><br/> A CGI process cannot have a higher priority than the web server. If this priority is set to a lower number than the server's, the server's priority will be used for this value.</p> <h4>Syntax</h4><p>int</p> <h4>See Also</h4><p class="ls-text-small">Server <span class="tagl"><a href="ServGeneral_Help.html#serverPriority">Priority</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="CPUSoftLimit"><h3>CPU Soft Limit (sec)<span class="ls-permlink"><a href="#CPUSoftLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies CPU consumption time limit in seconds for a CGI process. When the process reaches the soft limit, it will be notified by a signal. The operating system's default setting will be used if the value is absent or set to <span class="val">0</span>.</p> <h4>Syntax</h4><p>Integer number</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="CPUHardLimit"><h3>CPU Hard Limit<span class="ls-permlink"><a href="#CPUHardLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies maximum CPU consumption time limit in seconds for a CGI process. If the process continues to consume CPU time and reach the hard limit, the process will be force killed. The operating system's default setting will be used if the value is absent or set to <span class="val">0</span>.</p> <h4>Syntax</h4><p>Integer number</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="memSoftLimit"><h3>Memory Soft Limit (bytes)<span class="ls-permlink"><a href="#memSoftLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the memory consumption limit in bytes for an external application process or an external application started by the server.<br/><br/> The main purpose of this limit is to prevent excessive memory usage because of software bugs or intentional attacks, not to impose a limit on normal usage. Make sure to leave enough head room, otherwise your application may fail and 503 error may be returned. It can be set at the server- level or at an individual external application level. The server-level limit will be used if it is not set at the individual application level.<br/><br/> The operating system's default setting will be used if the value is absent at both levels or set to <span class="val">0</span>.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Attention" class="ls-icon-attention"></span> Do not over adjust this limit. This may result in 503 errors if your application needs more memory.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="memHardLimit"><h3>Memory Hard Limit (bytes)<span class="ls-permlink"><a href="#memHardLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Much the same as <span class="tagl"><a href="#memSoftLimit">Memory Soft Limit (bytes)</a></span>, except the soft limit can be raised up to the hard limit from within a user process. The hard limit can be set at server level or at an individual external application level. The server-level limit will be used if it is not set at an individual application level.<br/><br/> The operating system's default will be used if the value is absent at both levels or set to <span class="val">0</span>.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Attention" class="ls-icon-attention"></span> Do not over adjust this limit. This may result in 503 errors if your application need more memory.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="procSoftLimit"><h3>Process Soft Limit<span class="ls-permlink"><a href="#procSoftLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Limits the total number of processes that can be created on behalf of a user. All existing processes will be counted against this limit, not just new processes to be started.<br/><br/> The limit can be set at the server level or at an individual external application level. The server-level limit will be used if it is not set at an individual application level. The operating system's default setting will be used if this value is 0 or absent at both levels.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> PHP scripts can call for forking processes. The main purpose of this limit is as a last line of defense to prevent fork bombs and other attacks caused by PHP processes creating other processes.<br/><br/> Setting this setting too low can severely hurt functionality. The setting will thus be ignored below certain levels.<br/><br/> When <b>Run On Start Up</b> is set to "Yes (Daemon mode)", the actual process limit will be higher than this setting to make sure parent processes are not limited.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="procHardLimit"><h3>Process Hard Limit<span class="ls-permlink"><a href="#procHardLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Much the same as <span class="tagl"><a href="#procSoftLimit">Process Soft Limit</a></span>, except the soft limit can be raised up to the hard limit from within a user process. The hard limit can be set at the server level or at an individual external application level. The server-level limit will be used if it is not set at an individual application level. The operating system's default value will be used if the value is absent at both levels or set to <span class="val">0</span>.</p> <h4>Syntax</h4><p>Integer number</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="cgroups"><h3>cgroups<span class="ls-permlink"><a href="#cgroups"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>A Linux kernel feature that limits, accounts for, and isolates the resource usage (CPU, memory, disk I/O, network, etc.) of a collection of processes. You must be running cgroups v2 which is determined by the existence of the file <span class="val">/sys/fs/cgroup/cgroup.controllers</span>.<br/><br/> Setting this to <span class="val">Disabled</span> at the Server level will disable this setting server-wide. In all other cases, the Server level setting can be overridden at the Virtual Host level.<br/><br/> Default values:<br/> <b>Server level:</b> Off<br/> <b>VH level:</b> Inherit Server level setting</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="lsrecaptcha"><h3>reCAPTCHA Protection<span class="ls-permlink"><a href="#lsrecaptcha"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>reCAPTCHA Protection is a service provided as a way to mitigate heavy server load. reCAPTCHA Protection will activate after one of the below situations is hit. Once active, all requests by NON TRUSTED(as configured) clients will be redirected to a reCAPTCHA validation page. After validation, the client will be redirected to their desired page.<br/><br/> The following situations will activate reCAPTCHA Protection:<br/> 1. The server or vhost concurrent requests count passes the configured connection limit.<br/> 2. Anti-DDoS is enabled and a client is hitting a url in a suspicious manner. The client will redirect to reCAPTCHA first instead of getting denied when triggered.<br/> 3. A new rewrite rule environment is provided to activate reCAPTCHA via RewriteRules. 'verifycaptcha' can be set to redirect clients to reCAPTCHA. A special value ': deny' can be set to deny the client if it failed too many times. For example, [E=verifycaptcha] will always redirect to reCAPTCHA until verified. [E=verifycaptcha: deny] will redirect to reCAPTCHA until Max Tries is hit, after which the client will be denied.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableRecaptcha"><h3>Enable reCAPTCHA<span class="ls-permlink"><a href="#enableRecaptcha"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Enable the reCAPTCHA Protection feature at the current level. This setting must be set to <span class="val">Yes</span> at the Server level before the reCAPTCHA Protection feature can be used.<br/><br/> Default values:<br/> <b>Server-level:</b> <span class="val">Yes</span><br/> <b>VH-Level:</b> Inherit Server level setting</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="recaptchaSiteKey"><h3>Site Key<span class="ls-permlink"><a href="#recaptchaSiteKey"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The site key is the public key provided by Google via its reCAPTCHA service. A default Site Key will be used if not set.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="recaptchaSecretKey"><h3>Secret Key<span class="ls-permlink"><a href="#recaptchaSecretKey"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The secret key is the private key provided by Google via its reCAPTCHA service. A default Secret Key will be used if not set.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="recaptchaType"><h3>reCAPTCHA Type<span class="ls-permlink"><a href="#recaptchaType"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specify the reCAPTCHA type to use with the key pairs.<br/> If a key pair has not been provided and this setting is set to <span class="val">Not Set</span>, a default key pair of type <span class="val">Invisible</span> will be used.<br/><br/> <span class="val">Checkbox</span> will display a checkbox reCAPTCHA for the visitor to validate.<br/><br/> <span class="val">Invisible</span> will attempt to validate the reCAPTCHA automatically and if successful, will redirect to the desired page.<br/><br/> <span class="val">hCaptcha</span> can be used to support reCAPTCHA provider <a href="https://www.hcaptcha.com" target="_blank" rel="noopener noreferrer">hCaptcha</a>.<br/><br/> Default value is <span class="val">Invisible</span>.</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="recaptchaMaxTries"><h3>Max Tries<span class="ls-permlink"><a href="#recaptchaMaxTries"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Max Tries specifies the maximum number of reCAPTCHA attempts permitted before denying the visitor.<br/><br/> Default value is <span class="val">3</span>.</p> <h4>Syntax</h4><p>Integer number</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="recaptchaAllowedRobotHits"><h3>Allowed Robot Hits<span class="ls-permlink"><a href="#recaptchaAllowedRobotHits"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Number of hits per 10 seconds to allow ‘good bots’ to pass. Bots will still be throttled when the server is under load.<br/><br/> Default value is <span class="val">3</span>.</p> <h4>Syntax</h4><p>Integer number</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="recaptchaBotWhiteList"><h3>Bot White List<span class="ls-permlink"><a href="#recaptchaBotWhiteList"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>List of custom user agents to allow access. Will be subject to the ‘good bots’ limitations, including allowedRobotHits.</p> <h4>Syntax</h4><p>List of user agents, one per line. Regex is supported.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="recaptchaRegConnLimit"><h3>Connection Limit<span class="ls-permlink"><a href="#recaptchaRegConnLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The number of concurrent connections (SSL & non-SSL) needed to activate reCAPTCHA. reCAPTCHA will be used until concurrent connections drop below this number.<br/><br/> Default value is <span class="val">15000</span>.</p> <h4>Syntax</h4><p>Integer number</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="recaptchaSslConnLimit"><h3>SSL Connection Limit<span class="ls-permlink"><a href="#recaptchaSslConnLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The number of concurrent SSL connections needed to activate reCAPTCHA. reCAPTCHA will be used until concurrent connections drop below this number.<br/><br/> Default value is <span class="val">10000</span>.</p> <h4>Syntax</h4><p>Integer number</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="bubbleWrap"><h3>Bubblewrap Container<span class="ls-permlink"><a href="#bubbleWrap"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Set to <span class="val">Enabled</span> if you wish to start CGI processes (including PHP programs) in a bubblewrap sandbox. See <a href=" https://wiki.archlinux.org/title/Bubblewrap " target="_blank" rel="noopener noreferrer"> https://wiki.archlinux.org/title/Bubblewrap </a> for details on using bubblewrap. Bubblewrap must be installed on your system prior to using this setting.<br/><br/> This setting cannot be turned on at the Virtual Host level if set to "Disabled" at the Server level.<br/><br/> Default values:<br/> <b>Server level:</b> Disabled<br/> <b>VH level:</b> Inherit Server level setting</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="bubbleWrapCmd"><h3>Bubblewrap Command<span class="ls-permlink"><a href="#bubbleWrapCmd"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The full bubblewrap use command, including the bubblewrap program itself. More on configuring this command can be found here: <a href=" https://openlitespeed.org/kb/bubblewrap-in-openlitespeed/ " target="_blank" rel="noopener noreferrer"> https://openlitespeed.org/kb/bubblewrap-in-openlitespeed/ </a>. If not specified, the default command listed below will be used.<br/><br/> Default value: <span class="cmd">/bin/bwrap --ro-bind /usr /usr --ro-bind /lib /lib --ro-bind-try /lib64 /lib64 --ro-bind /bin /bin --ro-bind /sbin /sbin --dir /var --dir /tmp --proc /proc --symlink ../tmp var/tmp --dev /dev --ro-bind-try /etc/localtime /etc/localtime --ro-bind-try /etc/ld.so.cache /etc/ld.so.cache --ro-bind-try /etc/resolv.conf /etc/resolv.conf --ro-bind-try /etc/ssl /etc/ssl --ro-bind-try /etc/pki /etc/pki --ro-bind-try /etc/man_db.conf /etc/man_db.conf --ro-bind-try /home/$USER /home/$USER --bind-try /var/lib/mysql/mysql.sock /var/lib/mysql/mysql.sock --bind-try /home/mysql/mysql.sock /home/mysql/mysql.sock --bind-try /tmp/mysql.sock /tmp/mysql.sock --unshare-all --share-net --die-with-parent --dir /run/user/$UID ‘$PASSWD 65534’ ‘$GROUP 65534’</span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="namespace"><h3>Namespace Container<span class="ls-permlink"><a href="#namespace"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Set to <span class="val">Enabled</span> if you wish to start CGI processes (including PHP programs) in a namespace container sandbox. Only used when <span class="tagl"><a href="ServSecurity_Help.html#bubbleWrap">Bubblewrap Container</a></span> is set to <span class="val">Disabled</span>.<br/><br/> When not <span class="val">Disabled</span> at the Server level, this settings value can be overridden at the Virtual Host level.<br/><br/> Default values:<br/> <b>Server level:</b> <span class="val">Disabled</span><br/> <b>Virtual Host Level:</b> Inherit Server level setting</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="namespaceConf"><h3>Namespace Template File<span class="ls-permlink"><a href="#namespaceConf"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Path to an existing configuration file containing a list of directories to be mounted along with the methods used to mount them. When <span class="tagl"><a href="ServSecurity_Help.html#namespace">Namespace Container</a></span> is set to <span class="val">Enabled</span> and this value is not set, the following secure default configuration settings will be used:<br/><br/> <span class="val"> $HOMEDIR/.lsns/tmp /tmp,tmp<br/> /usr,ro-bind<br/> /lib,ro-bind<br/> /lib64,ro-bind-try<br/> /bin,ro-bind<br/> /sbin,ro-bind<br/> /var,dir<br/> /var/www,ro-bind-try<br/> /proc,proc<br/> ../tmp var/tmp,symlink<br/> /dev,dev<br/> /etc/localtime,ro-bind-try<br/> /etc/ld.so.cache,ro-bind-try<br/> /etc/resolv.conf,ro-bind-try<br/> /etc/ssl,ro-bind-try<br/> /etc/pki,ro-bind-try<br/> /etc/man_db.conf,ro-bind-try<br/> /usr/local/bin/msmtp /etc/alternatives/mta,ro-bind-try<br/> /usr/local/bin/msmtp /usr/sbin/exim,ro-bind-try<br/> $HOMEDIR,bind-try<br/> /var/lib/mysql/mysql.sock,bind-try<br/> /home/mysql/mysql.sock,bind-try<br/> /tmp/mysql.sock,bind-try<br/> /run/mysqld/mysqld.sock,bind-try<br/> /var/run/mysqld.sock,bind-try<br/> /run/user/$UID,bind-try<br/> $PASSWD<br/> $GROUP<br/> /etc/exim.jail/$USER.conf $HOMEDIR/.msmtprc,copy-try<br/> /etc/php.ini,ro-bind-try<br/> /etc/php-fpm.conf,ro-bind-try<br/> /etc/php-fpm.d,ro-bind-try<br/> /var/run,ro-bind-try<br/> /var/lib,ro-bind-try<br/> /etc/imunify360/user_config/,ro-bind-try<br/> /etc/sysconfig/imunify360,ro-bind-try<br/> /opt/plesk/php,ro-bind-try<br/> /opt/alt,bind-try<br/> /opt/cpanel,bind-try<br/> /opt/psa,bind-try<br/> /var/lib/php/sessions,bind-try </span></p> <h4>Syntax</h4><p>An absolute path or a relative path to $SERVER_ROOT.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessDenyDir"><h3>Access Denied Directories<span class="ls-permlink"><a href="#accessDenyDir"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies directories that should be blocked from access. Add directories that contain sensitive data to this list to prevent accidentally exposing sensitive files to clients. Append a "*" to the path to include all sub-directories. If both <span class="tagl"><a href="#followSymbolLink">Follow Symbolic Link</a></span> and <span class="tagl"><a href="#checkSymbolLink">Check Symbolic Link</a></span> are enabled, symbolic links will be checked against the denied directories.</p> <h4>Syntax</h4><p>Comma-delimited list of directories</p> <h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> Of critical importance: This setting only prevents serving static files from these directories. This does not prevent exposure by external scripts such as PHP/Ruby/CGI.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessControl"><h3>Access Control<span class="ls-permlink"><a href="#accessControl"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies what sub networks and/or IP addresses can access the server. At the server level, this setting will affect all virtual hosts. You can also set up access control unique to each virtual host at the virtual host level. Virtual host level settings will NOT override server level settings.<br/><br/> Blocking/Allowing an IP is determined by the combination of the allowed list and the denied list. If you want to block only certain IPs or sub-networks, put <span class="val">*</span> or <span class="val">ALL</span> in the <span class="tagl"><a href="#accessControl_allow">Allowed List</a></span> and list the blocked IPs or sub-networks in the <span class="tagl"><a href="#accessControl_deny">Denied List</a></span>. If you want to allow only certain IPs or sub-networks, put <span class="val">*</span> or <span class="val">ALL</span> in the <span class="tagl"><a href="#accessControl_deny">Denied List</a></span> and list the allowed IPs or sub-networks in the <span class="tagl"><a href="#accessControl_allow">Allowed List</a></span>. The setting of the smallest scope that fits for an IP will be used to determine access.<br/><br/> <b>Server Level:</b> Trusted IPs or sub-networks must be specified in the <span class="tagl"><a href="#accessControl_allow">Allowed List</a></span> by adding a trailing "T". Trusted IPs or sub-networks are not affected by connection/throttling limits. Only server level access control can set up trusted IPs/sub-networks.</p> <h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> Use this at the server level for general restrictions that apply to all virtual hosts.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessControl_allow"><h3>Allowed List<span class="ls-permlink"><a href="#accessControl_allow"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the list of IPs or sub-networks allowed. <span class="val">*</span> or <span class="val">ALL</span> are accepted.</p> <h4>Syntax</h4><p>Comma delimited list of IP addresses or sub-networks. A trailing "T" can be used to indicate a trusted IP or sub-network, such as <span class="val">192.168.1.*T</span>.</p> <h4>Example</h4><div class="ls-example"><b>Sub-networks:</b> 192.168.1.0/255.255.255.0, 192.168.1.0/24, 192.168.1, or 192.168.1.*<br/> <b>IPv6 addresses:</b> ::1 or [::1]<br/> <b>IPv6 subnets:</b> 3ffe:302:11:2:20f:1fff:fe29:717c/64 or [3ffe:302:11:2:20f:1fff:fe29:717c]/64</div><h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> Trusted IPs or sub-networks set at the server level access control will be excluded from connection/throttling limits.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessControl_deny"><h3>Denied List<span class="ls-permlink"><a href="#accessControl_deny"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the list of IPs or sub-networks disallowed.</p> <h4>Syntax</h4><p>Comma delimited list of IP addresses or sub-networks. <span class="val">*</span> or <span class="val">ALL</span> are accepted.</p> <h4>Example</h4><div class="ls-example"><b>Sub-networks:</b> 192.168.1.0/255.255.255.0, 192.168.1.0/24, 192.168.1, or 192.168.1.*<br/> <b>IPv6 addresses:</b> ::1 or [::1]<br/> <b>IPv6 subnets:</b> 3ffe:302:11:2:20f:1fff:fe29:717c/64 or [3ffe:302:11:2:20f:1fff:fe29:717c]/64</div></article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������Proxy_Context.html����������������������������������������������������������������������������������0000644�����������������00000037466�15027525531�0010304 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Proxy Context</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Proxy Context." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 9</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><span class="current"><a href="Proxy_Context.html">Proxy Context</a></span></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="LSAPI_Context.html">LiteSpeed SAPI Context</a></div><div class="center"><a href="Context_Help.html">Context</a></div><div class="next"><a href="CGI_Context.html">CGI Context</a> »</div></div> <h1>Proxy Context</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header><a href="#proxyContext">Proxy Context</a></header><p> <a href="#expuri">URI</a> | <a href="#proxyWebServer">Web Server</a> | <a href="#extraHeaders">Header Operations</a> | <a href="#realm">Realm</a> | <a href="#authName">Authentication Name</a> | <a href="#required">Require (Authorized Users/Groups)</a> | <a href="#accessAllowed">Access Allowed</a> | <a href="#accessDenied">Access Denied</a> | <a href="#extAuthorizer">Authorizer</a> | <a href="#addDefaultCharset">Add Default Charset</a> | <a href="#defaultCharsetCustomized">Customized Default Charset</a> | <a href="#enableIpGeo">Enable GeoLocation Lookup</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="proxyContext"><h3>Proxy Context<span class="ls-permlink"><a href="#proxyContext"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>A Proxy Context enables this virtual host as a transparent reverse proxy server. This proxy server can run in front of any web servers or application servers that support HTTP protocol. The External web server that this virtual host proxies for has to be defined in <span class="tagP"><a href="#ExtApp_Help">External Apps</a></span> before you can set up a Proxy Context.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expuri"><h3>URI<span class="ls-permlink"><a href="#expuri"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the URI for this context.</p> <h4>Syntax</h4><p>The URI can be a plain URI (starting with "/") or a Perl compatible regular expression URI (starting with "exp:"). If a plain URI ends with a "/", then this context will include all sub-URIs under this URI. If the context maps to a directory on the file system, a trailing "/" must be added.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#location">Location</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="proxyWebServer"><h3>Web Server<span class="ls-permlink"><a href="#proxyWebServer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the name of the external web server. This external web server must be defined in the <span class="tagP"><a href="#ExtApp_Help">External Apps</a></span> section at the server or virtual host level.</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extraHeaders"><h3>Header Operations<span class="ls-permlink"><a href="#extraHeaders"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies additional response/request headers to be added. Multiple header directives can be added with one directive per line. "NONE" can be used to disable parent header inheritance. If no directive is provided 'Header' is assumed.</p> <h4>Syntax</h4><p>[Header]|RequestHeader [condition] set|append|merge|add|unset header [value] [early|env=[!]variable]</p> <h4>Example</h4><div class="ls-example">set Cache-control no-cache<br/> append Cache-control no-store<br/> Header set My-header cust_header_val<br/> RequestHeader set My-req-header cust_req_header_val</div><h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> Syntax and usage are similar to <a href="https://httpd.apache.org/docs/2.2/mod/mod_headers.html#header" target="_blank" rel="noopener noreferrer">Apache's mod_headers directives</a> for supported operations.<br/><br/> <span title="Information" class="ls-icon-info"></span> The 'Header' directive is is optional and can be excluded or left in when copying rules from elsewhere without issue.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="realm"><h3>Realm<span class="ls-permlink"><a href="#realm"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the authorization realm for this context. When specified, a valid username and password must be provided in order to access this context. <span class="tagl"><a href="VHSecurity_Help.html#realms">Authorization Realms</a></span> are set up in the <span class="tagP"><a href="#VHSecurity_Help">Virtual Host Security</a></span> section. This setting uses each realm's <span class="tagl"><a href="VHSecurity_Help.html#realmName">Realm Name</a></span>.</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="authName"><h3>Authentication Name<span class="ls-permlink"><a href="#authName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies an alternative name for the authorization realm for the current context. If not specified, the original realm name will be used. The authentication name is displayed on the browser's login pop-up.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="required"><h3>Require (Authorized Users/Groups)<span class="ls-permlink"><a href="#required"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies which user/group can access this context. This allows you to use one user/group database (specified in <span class="tagl"><a href="#realm">Realm</a></span>) across a number of contexts, but only allow certain users/groups from that database to access this context.</p> <h4>Syntax</h4><p>Syntax is compatible with Apache's Require directive. For example: <ul> <li><span class="val">user username [username ...]</span><br/> Only listed users can access this context.</li> <li> <span class="val">group groupid [groupid ...]</span><br/> Only users belonging to the listed groups can access this context.</li> </ul> If this setting is not specified, all valid users will be allowed to access this resource.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessAllowed"><h3>Access Allowed<span class="ls-permlink"><a href="#accessAllowed"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies which IPs or sub-networks are allowed to access resources under this context. Together with <span class="tagl"><a href="#accessDenied">Access Denied</a></span> and server/virtual host level access control, accessibility is determined by the smallest scope that a client's IP address falls into.</p> <h4>Syntax</h4><p>Comma-delimited list of IPs/sub-networks.</p> <h4>Example</h4><div class="ls-example">Sub-networks can be written as <span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span>, or <span class="val">192.168.1.*</span>.</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessDenied"><h3>Access Denied<span class="ls-permlink"><a href="#accessDenied"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies which IPs or sub-networks are NOT allowed to access resources under this context. Together with <span class="tagl"><a href="#accessAllowed">Access Allowed</a></span> and server/virtual host-level access control, accessibility is determined by the smallest scope that a client's IP address falls into.</p> <h4>Syntax</h4><p>Comma-delimited list of IPs/sub-networks.</p> <h4>Example</h4><div class="ls-example">Sub-networks can be written as <span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span>, or <span class="val">192.168.1.*</span>.</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAuthorizer"><h3>Authorizer<span class="ls-permlink"><a href="#extAuthorizer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies an external application that can be used to generate authorized/unauthorized decisions. Currently, only the FastCGI Authorizer is available. For more details about the FastCGI Authorizer role, please visit <a href=" https://fastcgi-archives.github.io/ " target="_blank" rel="noopener noreferrer"> https://fastcgi-archives.github.io/ </a>.</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="addDefaultCharset"><h3>Add Default Charset<span class="ls-permlink"><a href="#addDefaultCharset"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to add a character set tag to the "Content-Type" response header, when content type is either "text/html" or "text/plain" without any parameters. When set to <span class="val">Off</span>, this function is disabled. When set to <span class="val">On</span>, either the character set specified by <span class="tagl"><a href="#defaultCharsetCustomized">Customized Default Charset</a></span> or the default "iso-8859-1" will be added.</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="defaultCharsetCustomized"><h3>Customized Default Charset<span class="ls-permlink"><a href="#defaultCharsetCustomized"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies a character set to be used when <span class="tagl"><a href="#addDefaultCharset">Add Default Charset</a></span> is <span class="val">On</span>. This is optional. The default value is <span class="val">iso-8859-1</span>. This entry has no effect when <span class="tagl"><a href="#addDefaultCharset">Add Default Charset</a></span> is <span class="val">Off</span>.</p> <h4>Syntax</h4><p>Name of a character set.</p> <h4>Example</h4><div class="ls-example">utf-8</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableIpGeo"><h3>Enable GeoLocation Lookup<span class="ls-permlink"><a href="#enableIpGeo"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p> Specifies whether to enable/disable IP Geolocation lookup. Can be set at server, virtual host, or context level. IP Geolocation is disabled by default when using value "Not Set".</p> <h4>Syntax</h4><p>Select from radio box</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="ServGeneral_Help.html#useIpInProxyHeader">Use Client IP in Header</a></span>, <span class="tagl"><a href="ServGeneral_Help.html#geoipDBFile">DB File Path</a></span>,</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������security.html���������������������������������������������������������������������������������������0000644�����������������00000022631�15027525531�0007312 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Security</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Security." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 9</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><span class="current"><a href="security.html">Security</a></span></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="admin.html">Administration</a></div><div class="center"><a href="index.html">Home</a></div><div class="next"><a href="config.html">Configuration</a> »</div></div> <h1>Security</h1> <p>LiteSpeed Web Server is designed with security as a top consideration. LSWS supports SSL, has access control at server and virtual host levels, and context-specific realm protection. Besides these standard features, LSWS also has the following special security features: </p> <ol> <li><h3>Connection level limits:</h3> <ul> <li> IP-level throttling limits network bandwidth to and from a single IP address regardless of the number of connections. </li> <li> IP-level connection accounting limits the number of concurrent connections from a single IP address. You can controll this with the connection soft limit, connection hard limit, grace period, and banned period settings in the WebAdmin console. </li> </ul> </li> <li><h3>Request checking:</h3> <p> Every HTTP request is vetted by LiteSpeed Web Server. "/." is not allowed in a decoded URL, thus denying accessing hidden files and parent directories.</p> <p>Request size is limited by LiteSpeed Web Server's max request URL length, max request header length, and max request body length settings. </p> </li> <li><h3>Static file checking:</h3> <p>LiteSpeed Web Server will serve a static file only if the following conditions are satisfied: </p> <ul> <li>The file is readable by everyone.</li> <li>The file is not executable.</li> <li>The file is not in the access denied directory list.</li> <li>The file does not contain symbolic link if symbolic links are not allowed. </li> <li>By default, LiteSpeed Web Server does not index a directory by listing its files, it has to be enabled explicitly.</li> </ul> </li> <li><h3>External application firewall:</h3> <p>LiteSpeed Web Server forwards requests to external applications to process/generate dynamic content. Those applications can use a lot of system resources. The performance of the whole system will be severely degraded when system resource consumption reaches a certain point -- when swapping space has to be used, for example. One way to conduct a DoS attack is to flood the web server with concurrent requests to a cumbersome external application.</p> <p>LiteSpeed Web Server can pipeline requests and control the concurrent level of external application use to prevent overconsumption of system resources. LSWS caches requests and only forwards completed requests to the external application. This means the external application will not be held waiting while the server is receiving the request. LSWS also caches the external application's response so that the external application can be released as soon as the response is completed and does not have to wait for the client to receive the complete response. This way the server can utilize fewer external application instances to serve more concurrent requests and achieve higher performance and scalability. LiteSpeed Web Server also uses its own virtual memory to cache the request and response body to minimize the usage of system memory without sacrificing performance. </p></li> <li><h3>CGI resources consumption limit:</h3> <p>LiteSpeed Web Server restricts the amount of system resources that can be consumed by CGI applications. For each request to a CGI script, the web server needs to start a standalone CGI process to handle it. On a Unix system, the number of concurrent processes is limited. With the CGI resources consumption limit, you can configure the maximum number of concurrent CGI instances that the web server can launch. Excessive concurrent processes will degrade the performance of the whole system. (CGI processes are a common weapon for DoS attacks.) A system process limit can be specified per user in order to control the number of processes that can be spawned by a CGI application. Each process is further confined by CPU and memory limits.</p> </li> <li><h3>Enhanced CGI/FastCGI security with suEXEC:</h3> <p>In order to reduce the security risks of a CGI or Fast CGI script, LiteSpeed Web Server can restrict the system resources the CGI script can access by running it in "suEXEC" mode. "suEXEC" starts the CGI or Fast CGI script with a different user ID from that of the web server. This greatly improves security in shared hosting environment by preventing one user's CGI script from accessing other users' files.</p> </li> </ol> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> �������������������������������������������������������������������������������������������������������config.html�����������������������������������������������������������������������������������������0000644�����������������00000023742�15027525531�0006714 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Configuration</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Configuration." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 9</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <span class="current"><a href="config.html">Configuration</a></span> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="security.html">Security</a></div><div class="center"><a href="index.html">Home</a></div><div class="next"><a href="webconsole.html">Web Console</a> »</div></div> <h1>Configuration</h1> <section> <a name="con"></a><h3><b>Concepts</b></h3> <p>Here are some basic concepts you should know before going into the detail of the configuration.</p> <a name="vh"></a><h3>Virtual Hosts</h3> <p>LiteSpeed web server can host multiple web sites (virtual hosts) with one server instance.</p> <p>Traditionally, virtual hosts are classified into two types: IP-based virtual hosts and name-based virtual hosts. IP-based virtual hosts are web sites that have their own unique IP addresses. Name-based virtual hosts are web sites that are distinguished by their domain name and thus may share an IP address with other sites. There is no clear distinction between these two categories in LiteSpeed Web Server. IP-based virtual hosts are considered just a special kind of name-based virtual host. Both of them can be easily configured, or even mixed together.</p> <p>Unlike other web servers, LiteSpeed Web Server does not have a default web site. Every web site is configured as a virtual host even if only one web site is hosted.</p> <a name="l"></a><h3>Listeners</h3> <p>In LiteSpeed Web Server, a listener is a server socket that listens on a specific IP address and TCP port. If you imagine the web server as a building, the listeners are the doors (each with its own IP address and port). Clients (browsers) have to go through a door (a listener) to submit their requests.</p> <p>For each listener, an IP address and a port number need to be specified. IP address can be any valid local IP address, or you can set a wildcard IP (*) that refers to all available IP addresses on that machine. A port is an integer between 0 and 65535. The default port for HTTP is 80 and 443 for HTTPS. Other ports can be used, though, on UNIX machines, only the super user "root" has permission to use ports below 1024.</p> <p>Only one listener is allowed for each IP and port combination. Thus, if a listener is configured to one port with the wildcard IP address, you cannot configure another listener to the same port, even if you specify a particular IP. For example, if there are multiple IP addresses on the web server machine, and HTTP traffic needs to be allowed on port 8080 for all IP addresses, this can be configured in two ways: set up one listener using the wildcard IP (*) and port 8080, or set up multiple listeners, one for each IP, all listening to port 8080. These two methods cannot be mixed on a single port.</p> <p>There are two types of listeners in LiteSpeed Web Server: plain and secure (SSL). Each secure listener requires a paired SSL private key and SSL certificate. The private key can be generated with an SSL toolkit like OpenSSL. The SSL certificate can be self-signed or obtained from an SSL certificate issuer like VeriSign or Thawte. You can share the same private key and certificate pair among multiple listeners. </p> <a name="map"></a><h3>Listener to Virtual Host Mapping</h3> <p>LiteSpeed's Listener to Virtual Host Mapping provides extra flexibility, allowing you to:</p> <ul> <li>map one listener to one virtual host.</li> <li>map one listener to different virtual hosts for different domain names.</li> <li>map multiple listeners to the same virtual host.</li> <li>map multiple listeners to multiple virtual hosts depending on their domain names.</li> </ul> <p>In Listener to Virtual Host Mapping, every listener has a virtual host lookup table with key-value pairs that specify a domain name (key) for a particular virtual host (value).</p> <p>When a browser tries to retrieve a web page from a web server, it first uses a DNS lookup to find the IP address associated with that domain name. It then sends a request to establish a TCP connection with the web server on a specific IP and port. If there is a listener assigned to that IP and port, a connection is established. The browser then sends an HTTP request, which includes, in the header, the domain name of the web site being accessed. The web server checks the lookup table associated with that listener for the domain name in the request. If a match is found, the request is routed to the virtual host for processing.</p> <p>In order to make a virtual host accessible through a specific listener, you must make sure that:</p> <ol> <li>DNS is configured properly to map the domain name of the web site to the IP used by that listener. How to configure DNS is beyond the scope of this document.</li> <li>A mapping to the virtual host for that domain name exists in the listener's lookup table.</li> </ol> <p>A catchall virtual host can be specified for one listener with the wild card domain name "*". When the server cannot find a matching virtual host, the request will be routed to the catchall virtual host. If there is no such catchall virtual host configured, the web server will return error code 404.</p> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ������������������������������External_WS.html������������������������������������������������������������������������������������0000644�����������������00000025727�15027525531�0007647 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Web Server</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Web Server." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 9</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><span class="current"><a href="External_WS.html">Web Server</a></span></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="External_Servlet.html">Servlet Engine</a></div><div class="center"><a href="ExtApp_Help.html">External Apps</a></div><div class="next"><a href="External_PL.html">Piped Logger</a> »</div></div> <h1>Web Server</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header>Web Server</header><p> <a href="#extAppName">Name</a> | <a href="#expWSAddress">Address</a> | <a href="#maxConns">Max Connections</a> | <a href="#pcKeepAliveTimeout">Connection Keepalive Timeout</a> | <a href="#env">Environment</a> | <a href="#initTimeout">Initial Request Timeout (secs)</a> | <a href="#retryTimeout">Retry Timeout (secs)</a> | <a href="#respBuffer">Response Buffering</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="extAppName"><h3>Name<span class="ls-permlink"><a href="#extAppName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>A unique name for this external application. You will refer to it by this name when you use it in other parts of the configuration.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expWSAddress"><h3>Address<span class="ls-permlink"><a href="#expWSAddress"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>HTTP,HTTPS, or Unix Domain Sockets (UDS) address used by the external web server.</p> <h4>Syntax</h4><p>IPv4/IPv6 address(:port), UDS://path, or unix:path. Add "https://" in front of an IPv4/IPv6 address if the external web server uses HTTPS. Port is optional for IPv4/IPv6 addresses if the external web server uses the standard ports 80 or 443.</p> <h4>Example</h4><div class="ls-example">192.168.0.10<br/> 127.0.0.1:5434<br/> https://10.0.8.9<br/> https://127.0.0.1:5438<br/> UDS://tmp/lshttpd/php.sock<br/> unix:/tmp/lshttpd/php.sock</div><h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> If you proxy to another web server running on the same machine using an IPv4/IPv6 address, set the IP address to <span class="val">localhost</span> or <span class="val">127.0.0.1</span>, so the external application is inaccessible from other machines.<br/> <span title="Performance" class="ls-icon-performance"></span> Unix Domain Sockets generally provide higher performance than IPv4 or IPv6 sockets.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxConns"><h3>Max Connections<span class="ls-permlink"><a href="#maxConns"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the maximum number of concurrent connections that can be established between the server and an external application. This setting controls how many requests can be processed concurrently by an external application, however, the real limit also depends on the external application itself. Setting this value higher will not help if the external application is not fast enough or cannot scale to a large number of concurrent requests.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> Setting a high value does not directly translate to higher performance. Setting the limit to a value that will not overload the external application will provide the best performance/throughput.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="pcKeepAliveTimeout"><h3>Connection Keepalive Timeout<span class="ls-permlink"><a href="#pcKeepAliveTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the maximum time in seconds to keep an idle persistent connection open.<br/><br/> When set to "-1", the connection will never timeout. When set to 0 or greater, the connection will be closed after this time in seconds has passed.</p> <h4>Syntax</h4><p>int</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="env"><h3>Environment<span class="ls-permlink"><a href="#env"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies extra environment variables for the external application.</p> <h4>Syntax</h4><p>Key=value. Multiple variables can be separated by "ENTER"</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="initTimeout"><h3>Initial Request Timeout (secs)<span class="ls-permlink"><a href="#initTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the maximum time in seconds the server will wait for the external application to respond to the first request over a new established connection. If the server does not receive any data from the external application within this timeout limit, it will mark this connection as bad. This helps to identify communication problems with external applications as quickly as possible. If some requests take longer to process, increase this limit to avoid 503 error messages.</p> <h4>Syntax</h4><p>Integer number</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="retryTimeout"><h3>Retry Timeout (secs)<span class="ls-permlink"><a href="#retryTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the period of time that the server waits before retrying an external application that had a prior communication problem.</p> <h4>Syntax</h4><p>Integer number</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="respBuffer"><h3>Response Buffering<span class="ls-permlink"><a href="#respBuffer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to buffer responses received from external applications. If a "nph-" (Non-Parsed-Header) script is detected, buffering is turned off for responses with full HTTP headers.</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> �����������������������������������������Redirect_Context.html�������������������������������������������������������������������������������0000644�����������������00000035343�15027525531�0010714 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Redirect Context</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Redirect Context." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 9</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><span class="current"><a href="Redirect_Context.html">Redirect Context</a></span></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="LB_Context.html">Load Balancer Context</a></div><div class="center"><a href="Context_Help.html">Context</a></div><div class="next"><a href="App_Server_Context.html">App Server Context</a> »</div></div> <h1>Redirect Context</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header><a href="#redirectContext">Redirect Context</a></header><p> <a href="#expuri">URI</a> | <a href="#externalredirect">External Redirect</a> | <a href="#statuscode">Status Code</a> | <a href="#destinationuri">Destination URI</a> | <a href="#extraHeaders">Header Operations</a> | <a href="#realm">Realm</a> | <a href="#authName">Authentication Name</a> | <a href="#required">Require (Authorized Users/Groups)</a> | <a href="#accessAllowed">Access Allowed</a> | <a href="#accessDenied">Access Denied</a> | <a href="#extAuthorizer">Authorizer</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="redirectContext"><h3>Redirect Context<span class="ls-permlink"><a href="#redirectContext"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>A Redirect Context can be used to forward one URI or a group of URIs to another location. The destination URI can be either on the same web site (an internal redirect) or an absolute URI pointing to another web site (an external redirect).</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expuri"><h3>URI<span class="ls-permlink"><a href="#expuri"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the URI for this context.</p> <h4>Syntax</h4><p>The URI can be a plain URI (starting with "/") or a Perl compatible regular expression URI (starting with "exp:"). If a plain URI ends with a "/", then this context will include all sub-URIs under this URI. If the context maps to a directory on the file system, a trailing "/" must be added.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#location">Location</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="externalredirect"><h3>External Redirect<span class="ls-permlink"><a href="#externalredirect"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether this redirect is external. For external redirection, <span class="tagl"><a href="#statuscode">Status Code</a></span> may be specified and <span class="tagl"><a href="#destinationuri">Destination URI</a></span> can start either with "/" or "http(s)://". For internal redirection, <span class="tagl"><a href="#destinationuri">Destination URI</a></span> must start with "/".</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="statuscode"><h3>Status Code<span class="ls-permlink"><a href="#statuscode"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the response status code of the external redirection. If the status code is between 300 and 399, <span class="tagl"><a href="#destinationuri">Destination URI</a></span> can be specified.</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="destinationuri"><h3>Destination URI<span class="ls-permlink"><a href="#destinationuri"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the target location of the redirect. If this redirected URI maps to a URI in another redirect context, it will be redirected again.</p> <h4>Syntax</h4><p>This URI can either be a relative URI on the same web site starting with "/", or an absolute URI pointing to different web site starting with "http(s)://". If the <span class="tagl"><a href="#expuri">URI</a></span> contains regular expressions, the destination can reference the matched variables, such as $1 or $2.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extraHeaders"><h3>Header Operations<span class="ls-permlink"><a href="#extraHeaders"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies additional response/request headers to be added. Multiple header directives can be added with one directive per line. "NONE" can be used to disable parent header inheritance. If no directive is provided 'Header' is assumed.</p> <h4>Syntax</h4><p>[Header]|RequestHeader [condition] set|append|merge|add|unset header [value] [early|env=[!]variable]</p> <h4>Example</h4><div class="ls-example">set Cache-control no-cache<br/> append Cache-control no-store<br/> Header set My-header cust_header_val<br/> RequestHeader set My-req-header cust_req_header_val</div><h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> Syntax and usage are similar to <a href="https://httpd.apache.org/docs/2.2/mod/mod_headers.html#header" target="_blank" rel="noopener noreferrer">Apache's mod_headers directives</a> for supported operations.<br/><br/> <span title="Information" class="ls-icon-info"></span> The 'Header' directive is is optional and can be excluded or left in when copying rules from elsewhere without issue.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="realm"><h3>Realm<span class="ls-permlink"><a href="#realm"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the authorization realm for this context. When specified, a valid username and password must be provided in order to access this context. <span class="tagl"><a href="VHSecurity_Help.html#realms">Authorization Realms</a></span> are set up in the <span class="tagP"><a href="#VHSecurity_Help">Virtual Host Security</a></span> section. This setting uses each realm's <span class="tagl"><a href="VHSecurity_Help.html#realmName">Realm Name</a></span>.</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="authName"><h3>Authentication Name<span class="ls-permlink"><a href="#authName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies an alternative name for the authorization realm for the current context. If not specified, the original realm name will be used. The authentication name is displayed on the browser's login pop-up.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="required"><h3>Require (Authorized Users/Groups)<span class="ls-permlink"><a href="#required"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies which user/group can access this context. This allows you to use one user/group database (specified in <span class="tagl"><a href="#realm">Realm</a></span>) across a number of contexts, but only allow certain users/groups from that database to access this context.</p> <h4>Syntax</h4><p>Syntax is compatible with Apache's Require directive. For example: <ul> <li><span class="val">user username [username ...]</span><br/> Only listed users can access this context.</li> <li> <span class="val">group groupid [groupid ...]</span><br/> Only users belonging to the listed groups can access this context.</li> </ul> If this setting is not specified, all valid users will be allowed to access this resource.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessAllowed"><h3>Access Allowed<span class="ls-permlink"><a href="#accessAllowed"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies which IPs or sub-networks are allowed to access resources under this context. Together with <span class="tagl"><a href="#accessDenied">Access Denied</a></span> and server/virtual host level access control, accessibility is determined by the smallest scope that a client's IP address falls into.</p> <h4>Syntax</h4><p>Comma-delimited list of IPs/sub-networks.</p> <h4>Example</h4><div class="ls-example">Sub-networks can be written as <span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span>, or <span class="val">192.168.1.*</span>.</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessDenied"><h3>Access Denied<span class="ls-permlink"><a href="#accessDenied"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies which IPs or sub-networks are NOT allowed to access resources under this context. Together with <span class="tagl"><a href="#accessAllowed">Access Allowed</a></span> and server/virtual host-level access control, accessibility is determined by the smallest scope that a client's IP address falls into.</p> <h4>Syntax</h4><p>Comma-delimited list of IPs/sub-networks.</p> <h4>Example</h4><div class="ls-example">Sub-networks can be written as <span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span>, or <span class="val">192.168.1.*</span>.</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAuthorizer"><h3>Authorizer<span class="ls-permlink"><a href="#extAuthorizer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies an external application that can be used to generate authorized/unauthorized decisions. Currently, only the FastCGI Authorizer is available. For more details about the FastCGI Authorizer role, please visit <a href=" https://fastcgi-archives.github.io/ " target="_blank" rel="noopener noreferrer"> https://fastcgi-archives.github.io/ </a>.</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ���������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������AdminListeners_General_Help.html��������������������������������������������������������������������0000644�����������������00000017634�15027525531�0013000 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Admin Listeners General</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Admin Listeners General." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 9</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <span class="current"><a href="AdminListeners_General_Help.html"> Admin Listener General </a></span> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="AdminSecurity_Help.html">Admin Console Security</a></div><div class="center"><a href="webconsole.html">Web Console</a></div><div class="next"><a href="AdminListeners_SSL_Help.html">Admin Listeners SSL</a> »</div></div> <h1>Admin Listeners General</h1><section class="ls-spacer-small-bottom">Admin Listeners are dedicated to the Admin Server. Secure (SSL) listeners are recommended for the Admin Server.</section> <h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header>General</header><p> <a href="#listenerName">Listener Name</a> | <a href="#listenerIP">IP Address</a> | <a href="#listenerPort">Port</a> | <a href="#listenerSecure">Secure</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="listenerName"><h3>Listener Name<span class="ls-permlink"><a href="#listenerName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>A unique name for this listener.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="listenerIP"><h3>IP Address<span class="ls-permlink"><a href="#listenerIP"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the IP of this listener. All available IP addresses are listed. IPv6 addresses are enclosed in "[ ]".<br/><br/> To listen on all IPv4 IP addresses, select <span class="val">ANY</span>. To listen on all IPv4 and IPv6 IP addresses, select <span class="val">[ANY]</span>.<br/><br/> In order to serve both IPv4 and IPv6 clients, an IPv4-mapped IPv6 address should be used instead of a plain IPv4 address. An IPv4-mapped IPv6 address is written as [::FFFF:x.x.x.x].</p> <h4>Syntax</h4><p>Select from drop down list</p> <h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> If your machine has multiple IPs on different sub-networks, you can select a specific IP to only allow traffic from the corresponding sub-network.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="listenerPort"><h3>Port<span class="ls-permlink"><a href="#listenerPort"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the TCP port of the listener. Only the super user ("root") can use ports lower than <span class="val">1024</span>. Port <span class="val">80</span> is the default HTTP port. Port <span class="val">443</span> is the default HTTPS port.</p> <h4>Syntax</h4><p>Integer number</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="listenerSecure"><h3>Secure<span class="ls-permlink"><a href="#listenerSecure"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether this is a secure (SSL) listener. For secure listeners, additional SSL settings need to be set properly.</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ����������������������������������������������������������������������������������������������������ja-JP/ServTuning_Help.html��������������������������������������������������������������������������0000644�����������������00000153666�15027525531�0011435 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Open LiteSpeed Web Serverユーザーズマニュアル - サーバーのチューニング</title> <meta name="description" content="Open LiteSpeed Web Serverユーザーズマニュアル - サーバーのチューニング." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="../img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h3 class="ls-text-thin">OpenLiteSpeed Web Server <a href="index.html"> ユーザーズマニュアル</a></h3> <h5 class="ls-text-muted">Version 1.8 — Rev. 0</h5> <hr/> <div> <ul> <li><a href="license.html">ライセンス</a></li> <li><a href="intro.html">はじめに</a></li> <li><a href="install.html">インストール</a></li> <li> <a href="admin.html">管理</a> <ul class="level2"> <li><a href="ServerStat_Help.html">サービスマネージャ</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">セキュリティ</a></li> <li><a href="config.html">設定</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">サーバー全般</a></li> <li><a href="ServLog_Help.html">サーバーログ</a></li> <li><span class="current"><a href="ServTuning_Help.html">サーバーのチューニング</a></span></li> <li><a href="ServSecurity_Help.html">サーバーのセキュリティ</a></li> <li><a href="ExtApp_Help.html">外部アプリ</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGIアプリ</a></li> <li><a href="External_FCGI_Auth.html">Fast CGIオーソライザー</a></li> <li><a href="External_LSAPI.html">LSAPIアプリ</a></li> <li><a href="External_Servlet.html">サーブレットエンジン</a></li> <li><a href="External_WS.html">Webサーバー</a></li> <li><a href="External_PL.html">パイプロガー</a></li> <li><a href="External_LB.html">ロードバランサ</a></li> </ul> <li><a href="ScriptHandler_Help.html">スクリプトハンドラ</a></li> <li><a href="Rails_Help.html">Rack/Railsの設定</a></li> <li><a href="Module_Help.html">モジュール設定</a></li> <li><a href="Listeners_General_Help.html">リスナー全般</a></li> <li><a href="Listeners_SSL_Help.html">リスナーのSSL</a></li> <li><a href="Templates_Help.html">テンプレート</a></li> <li><a href="VirtualHosts_Help.html">バーチャルホストの基本</a></li> <li><a href="VHGeneral_Help.html">バーチャルホスト全般</a></li> <li><a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a></li> <li><a href="VHSSL_Help.html">バーチャルホストのSSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">コンテキスト</a></li> <ul class="level3"> <li><a href="Static_Context.html">静的コンテテキスト</a></li> <li><a href="Java_Web_App_Context.html">Java Webアプリのコンテキスト</a></li> <li><a href="Servlet_Context.html">サーブレットコンテキスト</a></li> <li><a href="FCGI_Context.html">Fast CGIコンテキスト</a></li> <li><a href="LSAPI_Context.html">LSAPIコンテキスト</a></li> <li><a href="Proxy_Context.html">プロキシコンテキスト</a></li> <li><a href="CGI_Context.html">CGIコンテキスト</a></li> <li><a href="LB_Context.html">ロードバランサコンテキスト</a></li> <li><a href="Redirect_Context.html">コンテキストのリダイレクト</a></li> <li><a href="Rails_Context.html">Rack/Railsのコンテキスト</a></li> <li><a href="Module_Context.html">モジュールハンドラのコンテキスト</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socketプロキシ</a></li> </ul> </li> <li><a href="webconsole.html">Webコンソール</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">管理コンソール全般</a></li> <li><a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a></li> <li><a href="AdminListeners_General_Help.html">管理リスナー全般</a></li> <li><a href="AdminListeners_SSL_Help.html">管理リスナーのSSL</a></li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="ServLog_Help.html">サーバーログ</a></div><div class="center"><a href="config.html">設定</a></div><div class="next"><a href="ServSecurity_Help.html">サーバーのセキュリティ</a> »</div></div> <h1>サーバーのチューニング</h1><h2 id="top">目次</h2><section class="toc"><section class="toc-row"><header>OSの最適化</header><p> <a href="#shmDefaultDir">デフォルトのSHMディレクトリ</a> | <a href="#proxyProtocol">PROXY protocol</a></p></section> <section class="toc-row"><header>接続のチューニング</header><p> <a href="#maxConnections">最大接続数</a> | <a href="#maxSSLConnections">最大SSL接続数</a> | <a href="#connTimeout">コネクションタイムアウト(秒)</a> | <a href="#maxKeepAliveReq">最大キープアライブ要求</a> | <a href="#keepAliveTimeout">キープアライブタイムアウト(秒)</a> | <a href="#sndBufSize">送信バッファサイズ(バイト)</a> | <a href="#rcvBufSize">受信バッファサイズ(バイト)</a></p></section> <section class="toc-row"><header>要求/応答のチューニング</header><p> <a href="#maxReqURLLen">最大リクエストURLの長さ(バイト)</a> | <a href="#maxReqHeaderSize">最大要求ヘッダーサイズ(バイト)</a> | <a href="#maxReqBodySize">最大リクエストボディサイズ(バイト)</a> | <a href="#maxDynRespHeaderSize">最大動的応答ヘッダーサイズ(バイト)</a> | <a href="#maxDynRespSize">最大動的応答ボディサイズ(バイト)</a></p></section> <section class="toc-row"><header>静的ファイル配信の最適化</header><p> <a href="#maxCachedFileSize">最大キャッシュサイズの小さいファイルサイズ(バイト)</a> | <a href="#totalInMemCacheSize">小ファイルキャッシュサイズ合計(バイト)</a> | <a href="#maxMMapFileSize">最大MMAPファイルサイズ(バイト)</a> | <a href="#totalMMapCacheSize">MMAPキャッシュサイズ合計(バイト)</a> | <a href="#useSendfile">sendfile()を使用する</a> | <a href="#useAIO">Use AIO</a> | <a href="#AIOBlockSize">AIO Block Size</a> | <a href="#fileETag">ファイルETag</a></p></section> <section class="toc-row"><header>GZIP圧縮チューニング</header><p> <a href="#enableGzipCompress">圧縮を有効にする</a> | <a href="#compressibleTypes">圧縮可能なタイプ</a> | <a href="#enableDynGzipCompress">動的圧縮を有効にする</a> | <a href="#gzipCompressLevel">圧縮レベル(動的コンテンツ)</a> | <a href="#gzipAutoUpdateStatic">静的ファイルの自動更新</a> | <a href="#gzipStaticCompressLevel">圧縮レベル(静的コンテンツ)</a> | <a href="#brStaticCompressLevel">Brotli Compression Level (Static File)</a> | <a href="#gzipCacheDir">静的GZIPキャッシュディレクトリ</a> | <a href="#gzipMaxFileSize">最大静的ファイルサイズ(バイト)</a> | <a href="#gzipMinFileSize">最小静的ファイルサイズ(バイト)</a></p></section> <section class="toc-row"><header>SSLグローバル設定</header><p> <a href="#sslDefaultCiphers">Default Cipher Suite</a> | <a href="#sslStrongDhKey">SSL Strong DH Key</a> | <a href="#sslEnableMultiCerts">複数のSSL証明書を有効にする</a> | <a href="#sslSessionCache">セッションキャッシュを有効にする</a> | <a href="#sslSessionCacheSize">セッションキャッシュサイズ(バイト)</a> | <a href="#sslSessionCacheTimeout">セッションキャッシュタイムアウト(秒)</a> | <a href="#sslSessionTickets">セッションチケットを有効にする</a> | <a href="#sslSessionTicketLifetime">SSLセッションチケットの有効期間(秒)</a> | <a href="#sslSessionTicketKeyFile">SSLセッションチケットキーファイル</a> | <a href="#sslOcspProxy">OCSP Proxy</a> | <a href="#sslStrictSni">Strict SNI Certificate</a></p></section> <section class="toc-row"><header>HTTP3/QUIC</header><p> <a href="#quicEnable">Enable HTTP3/QUIC</a> | <a href="#quicShmDir">QUIC SHM Directory</a> | <a href="#quicVersions">HTTP3/QUIC Versions</a> | <a href="#quicCongestionCtrl">Congestion Control</a> | <a href="#quicCfcw">Connection Flow Control Window</a> | <a href="#quicMaxCfcw">Max Connection Flow Control Window</a> | <a href="#quicSfcw">Stream Flow Control Window</a> | <a href="#quicMaxSfcw">Max Stream Flow Control Window</a> | <a href="#quicMaxStreams">Max Concurrent Streams Per Connection</a> | <a href="#quicHandshakeTimeout">Handshake Timeout</a> | <a href="#quicIdleTimeout">Idle Timeout</a> | <a href="#quicEnableDPLPMTUD">Enable DPLPMTUD</a> | <a href="#quicBasePLPMTU">PLPMTU Base Value</a> | <a href="#quicMaxPLPMTU">PLPMTU Max Value</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="shmDefaultDir"><h3>デフォルトのSHMディレクトリ<span class="ls-permlink"><a href="#shmDefaultDir"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>共有メモリのデフォルトディレクトリを指定されたパスに変更します。 ディレクトリが存在しない場合は作成されます。 特に指定のない限り、すべてのSHMデータはこのディレクトリに保存されます。</p> <h4>構文</h4><p>パス</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="proxyProtocol"><h3>PROXY protocol<span class="ls-permlink"><a href="#proxyProtocol"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>List of IPs/subnets for front-end proxies that communicate with this server using PROXY protocol. Once set, the server will use PROXY protocol for incoming connections from listed IPs/subnets or fall back to a regular connection if PROXY protocol is unavailable.<br/><br/> Applies to HTTP, HTTPS, HTTP2, and websocket connections.</p> <h4>構文</h4><p>Comma delimited list of IP addresses or sub-networks.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxConnections"><h3>最大接続数<span class="ls-permlink"><a href="#maxConnections"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>サーバーが受け入れることができる同時接続の最大数を指定します。 これには、プレーンTCP接続とSSL接続の両方が含まれます。 最大同時接続制限に達すると、サーバーはアクティブな要求が完了するとキープアライブ接続を閉じます。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> サーバーが "root"ユーザーによって起動されると、サーバーはプロセスごとのファイル記述子の制限を自動的に調整しようとしますが、失敗した場合は手動でこの制限を増やす必要があります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxSSLConnections"><h3>最大SSL接続数<span class="ls-permlink"><a href="#maxSSLConnections"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>サーバーが受け入れる同時SSL接続の最大数を指定します。 同時SSL接続と非SSL接続の合計が<span class="tagl"><a href="#maxConnections">最大接続数</a></span>で指定された制限を超えることはできないため、許可される同時SSL接続の実際の数はこの制限より小さくなければなりません。</p> <h4>構文</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="connTimeout"><h3>コネクションタイムアウト(秒)<span class="ls-permlink"><a href="#connTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>1つの要求の処理中に許容される最大接続アイドル時間を指定します。 この時間の間、接続がアイドル状態の場合、つまりI/Oアクティビティがない場合は、接続が閉じられます。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p>[セキュリティ]潜在的なDoS攻撃の間に不在接続を回復するのに役立つように、この値を低く設定します。</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#keepAliveTimeout">キープアライブタイムアウト(秒)</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxKeepAliveReq"><h3>最大キープアライブ要求<span class="ls-permlink"><a href="#maxKeepAliveReq"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>キープアライブ(永続的)セッションを介して処理できる要求の最大数を指定します。 この制限に達すると接続は終了します。 バーチャルホストごとにこの制限を設定することもできます。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p>[パフォーマンス]適度に高い値に設定します。 "1"または "0"の値はキープアライブを無効にします。</p> <h4>参照</h4><p class="ls-text-small">Virtual Host <span class="tagl"><a href="VirtualHosts_Help.html#vhMaxKeepAliveReq">最大キープアライブ要求</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="keepAliveTimeout"><h3>キープアライブタイムアウト(秒)<span class="ls-permlink"><a href="#keepAliveTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>キープアライブ接続からの要求間の最大アイドル時間を指定します。 この期間中に新しい要求が受信されない場合、接続は閉じられます。 この設定は、HTTP/1.1接続にのみ適用されます。 HTTP/2接続は、設計によって長いキープアライブタイムアウトを持ち、この設定の影響を受けません。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p>[セキュリティ & パフォーマンス]ロードする必要がある単一のページで参照されるアセットが多くある場合、クライアントからの後続のリクエストを待機するのに十分な時間だけこの値を設定することをお勧めします。 キープアライブ接続で次のページが配信されることを期待して、これを長く設定しないでください。 多くのアイドル状態のキープアライブ接続を維持することはサーバーリソースの浪費であり、(D)DoS攻撃によって活用される可能性があります。 <span class="val">2-5</span>秒はほとんどのアプリケーションにとって妥当な範囲です。 LiteSpeedは非キープアライブ環境で非常に効率的です。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sndBufSize"><h3>送信バッファサイズ(バイト)<span class="ls-permlink"><a href="#sndBufSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>各TCPソケットの送信バッファサイズ。 <span class="val">512K</span>は許容されるバッファの最大サイズです。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p>[パフォーマンス]オペレーティングシステムのデフォルトのバッファサイズを使用するには、この値を "未設定"のままにするか、0に設定することをお勧めします。<br/> [パフォーマンス] Webサイトで大きな静的ファイルが使用されている場合は、送信バッファサイズを大きくしてパフォーマンスを向上させてください。<br/> [パフォーマンス]これを低い値に設定すると、ソケットあたりのスループットとメモリ使用量が減少し、メモリがボトルネックになった場合にサーバーがより多くの同時ソケットを持つことが可能になります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="rcvBufSize"><h3>受信バッファサイズ(バイト)<span class="ls-permlink"><a href="#rcvBufSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>各TCPソケットの受信バッファーサイズ。 <span class="val">512K</span>は許容されるバッファの最大サイズです。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p>[パフォーマンス]オペレーティングシステムのデフォルトのバッファサイズを使用するには、この値を "未設定"のままにするか、0に設定することをお勧めします。<br/> [パフォーマンス]大きい受信バッファは、大きなペイロード、すなわちファイルアップロードで着信要求を処理するときのパフォーマンスを向上させます。<br/> [パフォーマンス]これを低い値に設定すると、ソケットあたりのスループットとメモリ使用量が減少し、メモリがボトルネックになった場合にサーバーがより多くの同時ソケットを持つことが可能になります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxReqURLLen"><h3>最大リクエストURLの長さ(バイト)<span class="ls-permlink"><a href="#maxReqURLLen"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>リクエストURLの最大サイズを指定します。 URLは、クエリ文字列を含むサーバーリソースへのアクセスに使用されるフルテキストアドレスです。 <span class="val">8192</span>バイトがハードリミットです。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p>[セキュリティとパフォーマンス]メモリ使用量を減らし、偽のリクエストとDoS攻撃を特定するのに役立つよう、適度に低く設定します。<br/> HTTP GETメソッドがPOSTの代わりに大きなクエリ文字列とともに使用されていない限り、2-3KはほとんどのWebサイトにとって十分です。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxReqHeaderSize"><h3>最大要求ヘッダーサイズ(バイト)<span class="ls-permlink"><a href="#maxReqHeaderSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>要求URLを含むHTTP要求ヘッダーの最大サイズを指定します。 ハード制限は<span class="val">16380</span>バイトです。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p>[セキュリティとパフォーマンス]メモリ使用量を減らし、偽のリクエストとDoS攻撃を特定するのに役立つよう、適度に低く設定します。<br/> 4-8Kは、ほとんどのWebサイトで十分です。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxReqBodySize"><h3>最大リクエストボディサイズ(バイト)<span class="ls-permlink"><a href="#maxReqBodySize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>HTTPリクエスト本文の最大サイズを指定します。 32ビットOSの場合、<span class="val">2GB</span>はハード制限です。 64ビットOSの場合、実質的に無制限です。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p>[セキュリティ] DoS攻撃を防ぐには、この制限を実際に必要なものだけに制限してください。 スワッピング空間には、この制限に対応するための十分な空き領域が必要です。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxDynRespHeaderSize"><h3>最大動的応答ヘッダーサイズ(バイト)<span class="ls-permlink"><a href="#maxDynRespHeaderSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>動的に生成される応答の最大ヘッダーサイズを指定します。 ハードリミットは<span class="val">8KB</span>です。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p>[信頼性 & パフォーマンス]適度に低く設定すると、外部アプリケーションによって動的に生成された不正な応答を認識するのに役立ちます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxDynRespSize"><h3>最大動的応答ボディサイズ(バイト)<span class="ls-permlink"><a href="#maxDynRespSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>動的に生成される応答の最大ボディサイズを指定します。 ハードリミットは<span class="val">2047MB</span>です。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p>[信頼性 & パフォーマンス]不適切なレスポンスを識別するのに役立ちます。 不正なスクリプトに無限ループが含まれて無限大の応答が生じることは珍しいことではありません。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxCachedFileSize"><h3>最大キャッシュサイズの小さいファイルサイズ(バイト)<span class="ls-permlink"><a href="#maxCachedFileSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>事前に割り当てられたメモリバッファにキャッシュされる最大の静的ファイルを指定します。 静的ファイルは、メモリバッファキャッシュ、メモリマップキャッシュ、プレーンリード/ライト、およびsendfile()の4つの方法で提供できます。 サイズがこの設定より小さいファイルはメモリバッファキャッシュから提供されます。 サイズがこの設定より大きく、<span class="tagl"><a href="#maxMMapFileSize">最大MMAPファイルサイズ(バイト)</a></span>より小さいファイルは、メモリマップドキャッシュから処理されます。 <span class="tagl"><a href="#maxMMapFileSize">最大MMAPファイルサイズ(バイト)</a></span>より大きいサイズのファイルは、プレーン・リード/ライトまたはsendfile()を介して処理されます。 メモリバッファキャッシュから4Kより小さい静的ファイルを提供することが最適です。</p> <h4>構文</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="totalInMemCacheSize"><h3>小ファイルキャッシュサイズ合計(バイト)<span class="ls-permlink"><a href="#totalInMemCacheSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>小さな静的ファイルをキャッシュ/提供するためにバッファーキャッシュに割り振ることができる合計メモリーを指定します。</p> <h4>構文</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxMMapFileSize"><h3>最大MMAPファイルサイズ(バイト)<span class="ls-permlink"><a href="#maxMMapFileSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>メモリマップされる最大の静的ファイル(MMAP)を指定します。 静的ファイルは、メモリバッファキャッシュ、メモリマップキャッシュ、プレーンリード/ライト、およびsendfile()の4つの方法で提供できます。 サイズが<span class="tagl"><a href="#maxCachedFileSize">最大キャッシュサイズの小さいファイルサイズ(バイト)</a></span>より小さいファイルはメモリバッファキャッシュから提供されます。 サイズが<span class="tagl"><a href="#maxCachedFileSize">最大キャッシュサイズの小さいファイルサイズ(バイト)</a></span>よりも大きいが最大MAPファイルサイズより小さいファイルは、メモリマップドキャッシュから提供されます。 最大MMAPファイルサイズよりも大きいファイルは、プレーンな読み取り/書き込みまたはsendfile()を介して提供されます。 サーバは32ビットのアドレス空間(2GB)を持っているので、非常に大きなファイルをメモリに格納することは推奨されません。</p> <h4>構文</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="totalMMapCacheSize"><h3>MMAPキャッシュサイズ合計(バイト)<span class="ls-permlink"><a href="#totalMMapCacheSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>中規模の静的ファイルをキャッシュ/配信するためにメモリマップされたキャッシュに割り当てることができる合計メモリを指定します。</p> <h4>構文</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="useSendfile"><h3>sendfile()を使用する<span class="ls-permlink"><a href="#useSendfile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>静的ファイルを提供するためにsendfile()システムコールを使用するかどうかを指定します。 静的ファイルは、メモリバッファキャッシュ、メモリマップキャッシュ、プレーンリード/ライト、およびsendfile()の4つの方法で提供できます。 <span class="tagl"><a href="#maxCachedFileSize">最大キャッシュサイズの小さいファイルサイズ(バイト)</a></span>より小さいファイルはメモリバッファキャッシュから提供されます。 <span class="tagl"><a href="#maxCachedFileSize">最大キャッシュサイズの小さいファイルサイズ(バイト)</a></span>より大きいが、<span class="tagl"><a href="#maxMMapFileSize">最大MMAPファイルサイズ(バイト)</a></span>より小さいファイルは、メモリマップドキャッシュから提供されます。 <span class="tagl"><a href="#maxMMapFileSize">最大MMAPファイルサイズ(バイト)</a></span>より大きいファイルは、プレーンな読み取り/書き込みまたはsendfile()で処理されます。 Sendfile()は、非常に大きな静的ファイルを処理するときにCPU使用率を大幅に下げることができる「ゼロコピー」システムコールです。 Sendfile()は最適化されたネットワークカードカーネルドライバを必要とするため、一部の小規模ベンダーのネットワークアダプタには適していない可能性があります。</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="useAIO"><h3>Use AIO<span class="ls-permlink"><a href="#useAIO"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Specifies whether to use asynchronous I/O to serve static files along with the AIO implementation to use. Options <span class="val">LINUX AIO</span> and <span class="val">io_uring</span> are only available on Linux machines.<br/><br/> Default value: <span class="val">No</span></p> <h4>構文</h4><p>ドロップダウンリストから選択</p> <h4>ヒント</h4><p><span title="Performance" class="ls-icon-performance"></span> AIO can help improve performance in servers with a high I/O wait.<br/> <span title="Attention" class="ls-icon-attention"></span> When <span class="val">io_uring</span> is selected but not supported on the current machine, <span class="val">Linux AIO</span> will be used instead.</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#AIOBlockSize">AIO Block Size</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="AIOBlockSize"><h3>AIO Block Size<span class="ls-permlink"><a href="#AIOBlockSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Specifies the sent block size for AIO. This block size multiplied by the total files being processed should be less than the physical memory of the server, otherwise, AIO will not help. If your server has enough memory, you can choose a bigger size.<br/><br/> Default value: <span class="val">128K</span></p> <h4>構文</h4><p>ドロップダウンリストから選択</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#useAIO">Use AIO</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="fileETag"><h3>ファイルETag<span class="ls-permlink"><a href="#fileETag"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>ファイルのinode、last-modified time、およびsize属性を使用するかどうかを指定します。 静的ファイル用のETag HTTP応答ヘッダーを生成します。 3つの属性はすべてデフォルトで有効になっています。 ミラー化されたサーバーから同じファイルを提供する予定の場合は、iノードを含めないでください。 それ以外の場合、1つのファイルに対して生成されるETagは、異なるサーバーで異なります。</p> <h4>構文</h4><p>チェックボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableGzipCompress"><h3>圧縮を有効にする<span class="ls-permlink"><a href="#enableGzipCompress"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>静的HTTP応答と動的HTTP応答の両方のGZIP圧縮を制御します。</p> <h4>構文</h4><p>ラジオボックスから選択</p> <h4>ヒント</h4><p>[パフォーマンス]ネットワーク帯域幅を節約するために有効にします。 html、css、およびjavascriptファイルなどのテキストベースの応答が最大の利益をもたらし、平均で元のサイズの半分に圧縮できます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="compressibleTypes"><h3>圧縮可能なタイプ<span class="ls-permlink"><a href="#compressibleTypes"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>圧縮できるMIMEタイプを指定します。</p> <h4>構文</h4><p>MIMEタイプのリストをカンマで区切って指定します。 ワイルドカード "*"と否定記号 "!" はtext/*、!text/jsなどで許可されています。</p> <h4>例</h4><div class="ls-example">text/cssではないtext/*を圧縮する場合は、次のようなルールを設定できます。 <span class="val">text/*, !text/css</span>. "!"はそのMIMEタイプを除外します。</div><h4>ヒント</h4><p>[パフォーマンス] GZIP圧縮の恩恵を受けるタイプのみを許可します。 gif / png / jpegイメージやフラッシュファイルなどのバイナリファイルは、圧縮の恩恵を受けません。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableDynGzipCompress"><h3>動的圧縮を有効にする<span class="ls-permlink"><a href="#enableDynGzipCompress"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>動的に生成されるHTTPレスポンスのGZIP圧縮を制御します。 動的なGZIP圧縮を有効にするには、<span class="tagl"><a href="#enableGzipCompress">圧縮を有効にする</a></span>を<span class="val">はい</span>に設定する必要があります。</p> <h4>構文</h4><p>ラジオボックスから選択</p> <h4>ヒント</h4><p>[パフォーマンス]動的応答を圧縮すると、CPUとメモリの使用率は向上しますが、ネットワーク帯域幅は節約されます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="gzipCompressLevel"><h3>圧縮レベル(動的コンテンツ)<span class="ls-permlink"><a href="#gzipCompressLevel"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>動的コンテンツの圧縮レベルを指定します。 <span class="val">1</span>(最低)から<span class="val">9</span>(最高)までの範囲です。 デフォルトは<span class="val">2</span>です。</p> <h4>構文</h4><p>1と9の間の数字。</p> <h4>ヒント</h4><p>[パフォーマンス]高い圧縮レベルは、より多くのメモリとCPUサイクルを使用します。 マシンに追加の電源がある場合は、それをより高いレベルに設定することができます。 6と9の間に大きな違いはありませんが、9ではCPUサイクルが多く使用されます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="gzipAutoUpdateStatic"><h3>静的ファイルの自動更新<span class="ls-permlink"><a href="#gzipAutoUpdateStatic"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Sサーバが圧縮可能な静的ファイルのGZIP圧縮バージョンを自動的に作成/更新するかどうかを指定します。 <span class="tagl"><a href="#compressibleTypes">圧縮可能なタイプ</a></span>にリストされているMIMEタイプのファイルが要求されたときに<span class="val">はい</span>に設定されている場合、サーバーは圧縮ファイルのタイムスタンプに応じてファイルの対応する圧縮バージョンを作成または更新できます。 この圧縮ファイルは、<span class="tagl"><a href="#gzipCacheDir">静的GZIPキャッシュディレクトリ</a></span>の下に作成されます。 ファイル名は元のファイルのパスのMD5ハッシュに基づいています。</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="gzipStaticCompressLevel"><h3>圧縮レベル(静的コンテンツ)<span class="ls-permlink"><a href="#gzipStaticCompressLevel"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>静的コンテンツの圧縮レベルを指定します。 <span class="val">1</span>(最低)から<span class="val">9</span>(最高)までの範囲です。 デフォルトは<span class="val">6</span>です。</p> <h4>構文</h4><p>1から9の間の数字。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="brStaticCompressLevel"><h3>Brotli Compression Level (Static File)<span class="ls-permlink"><a href="#brStaticCompressLevel"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Specifies the level of Brotli compression applied to static files. Ranges from <span class="val">0</span> (disabled) to <span class="val">11</span> (highest).<br/><br/> When set to <span class="val">0</span>, brotli compression will be disabled globally.<br/><br/> Default value: 5</p> <h4>構文</h4><p>Number between 0 and 11.</p> <h4>ヒント</h4><p><span title="Performance" class="ls-icon-performance"></span> Save network bandwidth. Text-based responses such as html, css, and javascript files benefit the most and on average can be compressed to half of their original size.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="gzipCacheDir"><h3>静的GZIPキャッシュディレクトリ<span class="ls-permlink"><a href="#gzipCacheDir"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>静的コンテンツ用の圧縮ファイルの格納に使用されるディレクトリのパスを指定します。 デフォルトは<span class="tagl"><a href="#swappingDir">スワップディレクトリ</a></span>です。</p> <h4>構文</h4><p>ディレクトリパス</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="gzipMaxFileSize"><h3>最大静的ファイルサイズ(バイト)<span class="ls-permlink"><a href="#gzipMaxFileSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>静的ファイルの最大サイズを指定します。 サーバーは自動的に圧縮ファイルを作成します。</p> <h4>構文</h4><p>1K以上のバイト数</p> <h4>ヒント</h4><p>[パフォーマンス]大規模なファイルに対してサーバーが圧縮ファイルを作成/更新することはお勧めできません。 圧縮は、サーバープロセス全体をブロックし、圧縮が完了するまで、それ以上の要求は処理できません。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="gzipMinFileSize"><h3>最小静的ファイルサイズ(バイト)<span class="ls-permlink"><a href="#gzipMinFileSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>静的ファイルの最小サイズを指定します。 サーバーは対応する圧縮ファイルを作成します。</p> <h4>構文</h4><p>バイト数は200より小さくない。</p> <h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> 帯域幅の節約はごくわずかなため、非常に小さいファイルを圧縮する必要はありません。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslDefaultCiphers"><h3>Default Cipher Suite<span class="ls-permlink"><a href="#sslDefaultCiphers"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Default cipher suite for SSL certificates.<br/><br/> Default value: Server Internal Default (Based on current best practices)</p> <h4>構文</h4><p>Colon-separated string of cipher specifications.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslStrongDhKey"><h3>SSL Strong DH Key<span class="ls-permlink"><a href="#sslStrongDhKey"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Specifies whether to use 2048 or 1024 bit DH keys for SSL handshakes. If set to "Yes", 2048 bit DH keys will be used for 2048 bit SSL keys and certificates. 1024 bit DH keys will still be used in other situations. Default is "Yes".<br/><br/> Earlier versions of Java do not support DH key size higher than 1024 bits. If Java client compatibility is required, this should be set to "No".</p> <h4>構文</h4><p>radio</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslEnableMultiCerts"><h3>複数のSSL証明書を有効にする<span class="ls-permlink"><a href="#sslEnableMultiCerts"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>リスナー/バーチャルホストが複数のSSL証明書を設定できるようにします。 複数の証明書が有効な場合、証明書/キーは命名規則に従うことが想定されます。 証明書の名前がserver.crtの場合、その他の可能な証明書名はserver.crt.rsa、server.crt.dsa、server.crt.eccです。 「未設定」の場合、デフォルトは「いいえ」です。</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslSessionCache"><h3>セッションキャッシュを有効にする<span class="ls-permlink"><a href="#sslSessionCache"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>セッションIDキャッシングを有効にします。 「未設定」の場合、デフォルトは「いいえ」です。 (Opensslデフォルト)</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslSessionCacheSize"><h3>セッションキャッシュサイズ(バイト)<span class="ls-permlink"><a href="#sslSessionCacheSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>キャッシュに格納するSSLセッションIDの最大数を設定します。 デフォルトは1,000,000です。</p> <h4>構文</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslSessionCacheTimeout"><h3>セッションキャッシュタイムアウト(秒)<span class="ls-permlink"><a href="#sslSessionCacheTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>この値は、再ネゴシエーションが必要な前にセッションIDがキャッシュ内で有効である期間を決定します。 デフォルトは3,600です。</p> <h4>構文</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslSessionTickets"><h3>セッションチケットを有効にする<span class="ls-permlink"><a href="#sslSessionTickets"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>セッションチケットを有効にします。 「未設定」の場合、サーバーはopenSSLのデフォルトチケットを使用します。</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslSessionTicketLifetime"><h3>SSLセッションチケットの有効期間(秒)<span class="ls-permlink"><a href="#sslSessionTicketLifetime"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>この値は、再ネゴシエーションが必要となる前にセッションチケットが有効になる期間を決定します。 デフォルトは3,600です。</p> <h4>構文</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslSessionTicketKeyFile"><h3>SSLセッションチケットキーファイル<span class="ls-permlink"><a href="#sslSessionTicketKeyFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>SSLチケットキーを管理者が作成または維持できるようにします。 ファイルの長さは48バイトでなければなりません。 このオプションを空のままにすると、ロードバランサは独自のキーセットを生成してローテーションします。<br/><br/> 重要:転送秘密を維持するには、<b> SSLセッションチケットの有効期間</b>秒単位でキーを変更することを強くお勧めします。 これができない場合は、このフィールドを空のままにすることをお勧めします。</p> <h4>構文</h4><p>パス</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslOcspProxy"><h3>OCSP Proxy<span class="ls-permlink"><a href="#sslOcspProxy"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Socket address used as the proxy server address for OCSP verification. Leave this setting unset If not using a proxy.<br/><br/> Default value: <span class="val">not set</span></p> <h4>構文</h4><p>Socket Address</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslStrictSni"><h3>Strict SNI Certificate<span class="ls-permlink"><a href="#sslStrictSni"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Specifies whether to strictly require a dedicated virtual host certificate configuration. When enabled, SSL connections to virtual hosts without a dedicated certificate configuration will fail instead of using a default catch-all certificate.<br/><br/> Default value: <span class="val">No</span></p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="quicEnable"><h3>Enable HTTP3/QUIC<span class="ls-permlink"><a href="#quicEnable"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Enables the HTTP3/QUIC network protocol server wide. Default value is <span class="val">Yes</span>.</p> <h4>構文</h4><p>ラジオボックスから選択</p> <h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> When this setting is set to <span class="val">Yes</span>, HTTP3/QUIC can still be disabled at the listener level through the <span class="tagl"><a href="Listeners_SSL_Help.html#allowQuic">Open HTTP3/QUIC (UDP) port</a></span> setting, or at the virtual host level through the <span class="tagl"><a href="VHSSL_Help.html#vhEnableQuic">Enable HTTP3/QUIC</a></span> setting.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="quicShmDir"><h3>QUIC SHM Directory<span class="ls-permlink"><a href="#quicShmDir"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Specifies the directory used to save QUIC data to shared memory.<br/><br/> By default, the server's default SHM directory, <span class="val">/dev/shm</span>, will be used.</p> <h4>構文</h4><p>Path</p> <h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> A RAM based partition, such as <span class="val">/dev/shm</span>, is recommended.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="quicVersions"><h3>HTTP3/QUIC Versions<span class="ls-permlink"><a href="#quicVersions"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>A list of enabled HTTP3/QUIC versions. This setting should only be used to limit HTTP3/QUIC support to the versions listed and is best left blank.</p> <h4>構文</h4><p>Comma-separated list</p> <h4>例</h4><div class="ls-example">h3-29, h3-Q050</div><h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> It is recommended to leave this setting blank to have the the best configuration applied automatically.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="quicCongestionCtrl"><h3>Congestion Control<span class="ls-permlink"><a href="#quicCongestionCtrl"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>The congestion control algorithm used. This can be set manually or left up to the QUIC library in use by selecting the "Default" option.<br/><br/> Default value: Default</p> <h4>構文</h4><p>ドロップダウンリストから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="quicCfcw"><h3>Connection Flow Control Window<span class="ls-permlink"><a href="#quicCfcw"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>The initial size of the buffer allocated for a QUIC connection. Default value is <span class="val">1.5M</span>.</p> <h4>構文</h4><p>Number between 64K and 512M</p> <h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> A larger window size will use more memory.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="quicMaxCfcw"><h3>Max Connection Flow Control Window<span class="ls-permlink"><a href="#quicMaxCfcw"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Specifies the maximum size that a connection flow control window buffer is allowed to reach due to window auto-tuning.<br/><br/> Default value is <span class="val">0</span>, which means that the value of <span class="tagl"><a href="ServTuning_Help.html#quicCfcw">Connection Flow Control Window</a></span> is used and no auto-tuning is performed.</p> <h4>構文</h4><p>0 or a number between 64K and 512M</p> <h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> A larger window size will use more memory.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="quicSfcw"><h3>Stream Flow Control Window<span class="ls-permlink"><a href="#quicSfcw"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>The initial amount of data a QUIC connection is willing to receive per stream. Default value is <span class="val">1M</span>.</p> <h4>構文</h4><p>Number between 64K and 128M</p> <h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> A larger window size will use more memory.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="quicMaxSfcw"><h3>Max Stream Flow Control Window<span class="ls-permlink"><a href="#quicMaxSfcw"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Specifies the maximum size that a stream flow control window is allowed to reach due to window auto-tuning.<br/><br/> Default value is <span class="val">0</span>, which means that the value of <span class="tagl"><a href="ServTuning_Help.html#quicSfcw">Stream Flow Control Window</a></span> is used and no auto-tuning is performed.</p> <h4>構文</h4><p>0 or a number between 64K and 128M</p> <h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> A larger window size will use more memory.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="quicMaxStreams"><h3>Max Concurrent Streams Per Connection<span class="ls-permlink"><a href="#quicMaxStreams"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>The maximum number of concurrent streams allowed per QUIC connection. Default value is <span class="val">100</span>.</p> <h4>構文</h4><p>Integer number between 10 and 1000</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="quicHandshakeTimeout"><h3>Handshake Timeout<span class="ls-permlink"><a href="#quicHandshakeTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>The time in seconds a new QUIC connection is given to complete its handshake, after which the connection is aborted. Default value is <span class="val">10</span>.</p> <h4>構文</h4><p>Integer number between 1 and 15</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="quicIdleTimeout"><h3>Idle Timeout<span class="ls-permlink"><a href="#quicIdleTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>The time in seconds after which an idle QUIC connection will be closed. Default value is <span class="val">30</span>.</p> <h4>構文</h4><p>Integer number between 10 and 30</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="quicEnableDPLPMTUD"><h3>Enable DPLPMTUD<span class="ls-permlink"><a href="#quicEnableDPLPMTUD"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Enable Datagram Packetization Layer Path Maximum Transmission Unit Discovery (DPLPMTUD).<br/><br/> <b> <a href=" https://tools.ietf.org/html/rfc8899 " target="_blank" rel="noopener noreferrer"> Background on DPLPMTUD (RFC 8899) </a> </b><br/><br/> Default value: Yes</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="quicBasePLPMTU"><h3>PLPMTU Base Value<span class="ls-permlink"><a href="#quicBasePLPMTU"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>The maximum value of PLPMTU (maximum packet size without headers) in bytes that QUIC will use by default. Setting this to <span class="val">0</span> will allow QUIC to pick the size.<br/><br/> This setting should be set lower than <span class="tagl"><a href="#quicMaxPLPMTU">PLPMTU Max Value</a></span>.<br/><br/> Default value: 0</p> <h4>構文</h4><p>0 or integer number between 1200 and 65527</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="quicMaxPLPMTU"><h3>PLPMTU Max Value<span class="ls-permlink"><a href="#quicMaxPLPMTU"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>The PLPMTU (maximum packet size without headers) probe upper limit in bytes. This setting is used to limit the "maximum packet size" in the DPLPMTUD search space. Setting this to <span class="val">0</span> will allow QUIC to pick the size (By default LSQUIC assumes that MTU is 1,500 bytes (Ethernet)).<br/><br/> This setting should be set higher than <span class="tagl"><a href="#quicBasePLPMTU">PLPMTU Base Value</a></span>.<br/> Default value: 0</p> <h4>構文</h4><p>0 or integer number between 1200 and 65527</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ��������������������������������������������������������������������������ja-JP/AdminSecurity_Help.html�����������������������������������������������������������������������0000644�����������������00000025313�15027525531�0012074 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Open LiteSpeed Web Serverユーザーズマニュアル - 管理コンソールのセキュリティ</title> <meta name="description" content="Open LiteSpeed Web Serverユーザーズマニュアル - 管理コンソールのセキュリティ." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="../img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h3 class="ls-text-thin">OpenLiteSpeed Web Server <a href="index.html"> ユーザーズマニュアル</a></h3> <h5 class="ls-text-muted">Version 1.8 — Rev. 0</h5> <hr/> <div> <ul> <li><a href="license.html">ライセンス</a></li> <li><a href="intro.html">はじめに</a></li> <li><a href="install.html">インストール</a></li> <li> <a href="admin.html">管理</a> <ul class="level2"> <li><a href="ServerStat_Help.html">サービスマネージャ</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">セキュリティ</a></li> <li><a href="config.html">設定</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">サーバー全般</a></li> <li><a href="ServLog_Help.html">サーバーログ</a></li> <li><a href="ServTuning_Help.html">サーバーのチューニング</a></li> <li><a href="ServSecurity_Help.html">サーバーのセキュリティ</a></li> <li><a href="ExtApp_Help.html">外部アプリ</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGIアプリ</a></li> <li><a href="External_FCGI_Auth.html">Fast CGIオーソライザー</a></li> <li><a href="External_LSAPI.html">LSAPIアプリ</a></li> <li><a href="External_Servlet.html">サーブレットエンジン</a></li> <li><a href="External_WS.html">Webサーバー</a></li> <li><a href="External_PL.html">パイプロガー</a></li> <li><a href="External_LB.html">ロードバランサ</a></li> </ul> <li><a href="ScriptHandler_Help.html">スクリプトハンドラ</a></li> <li><a href="Rails_Help.html">Rack/Railsの設定</a></li> <li><a href="Module_Help.html">モジュール設定</a></li> <li><a href="Listeners_General_Help.html">リスナー全般</a></li> <li><a href="Listeners_SSL_Help.html">リスナーのSSL</a></li> <li><a href="Templates_Help.html">テンプレート</a></li> <li><a href="VirtualHosts_Help.html">バーチャルホストの基本</a></li> <li><a href="VHGeneral_Help.html">バーチャルホスト全般</a></li> <li><a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a></li> <li><a href="VHSSL_Help.html">バーチャルホストのSSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">コンテキスト</a></li> <ul class="level3"> <li><a href="Static_Context.html">静的コンテテキスト</a></li> <li><a href="Java_Web_App_Context.html">Java Webアプリのコンテキスト</a></li> <li><a href="Servlet_Context.html">サーブレットコンテキスト</a></li> <li><a href="FCGI_Context.html">Fast CGIコンテキスト</a></li> <li><a href="LSAPI_Context.html">LSAPIコンテキスト</a></li> <li><a href="Proxy_Context.html">プロキシコンテキスト</a></li> <li><a href="CGI_Context.html">CGIコンテキスト</a></li> <li><a href="LB_Context.html">ロードバランサコンテキスト</a></li> <li><a href="Redirect_Context.html">コンテキストのリダイレクト</a></li> <li><a href="Rails_Context.html">Rack/Railsのコンテキスト</a></li> <li><a href="Module_Context.html">モジュールハンドラのコンテキスト</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socketプロキシ</a></li> </ul> </li> <li><a href="webconsole.html">Webコンソール</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">管理コンソール全般</a></li> <li><span class="current"><a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a></span></li> <li><a href="AdminListeners_General_Help.html">管理リスナー全般</a></li> <li><a href="AdminListeners_SSL_Help.html">管理リスナーのSSL</a></li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="AdminGeneral_Help.html">管理コンソールの一般</a></div><div class="center"><a href="webconsole.html">Webコンソール</a></div><div class="next"><a href="AdminListeners_General_Help.html">リスナー管理者全般</a> »</div></div> <h1>管理コンソールのセキュリティ</h1><h2 id="top">目次</h2><section class="toc"><section class="toc-row"><header><a href="#accessControl">アクセス制御</a></header><p> <a href="#accessControl_allow">許可リスト</a> | <a href="#accessControl_deny">拒否リスト</a></p></section> <section class="toc-row"><header><a href="#adminUser">WebAdminユーザー</a></header><p> </p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="accessControl"><h3>アクセス制御<span class="ls-permlink"><a href="#accessControl"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>どのサブネットワークおよび/またはIPアドレスがサーバーにアクセスできるかを指定します。 サーバレベルでは、この設定はすべてのバーチャルホストに影響します。 バーチャルホストレベルで各バーチャルホストに固有のアクセス制御を設定することもできます。 バーチャルホストレベルの設定はサーバーレベルの設定を上書きしません。 <br/><br/> ブロック/ IPの許可は、許可リストと拒否リストの組み合わせによって決まります。 特定のIPまたはサブネットワークのみをブロックする場合は、<span class="tagl"><a href="#accessControl_allow">許可リスト</a></span>に<span class="val">*</span>または<span class="val">ALL</span>を入れ、ブロックされたIPまたはサブネットワークを<span class="tagl"><a href="#accessControl_deny">拒否リスト</a></span>。<br/> 特定のIPまたはサブネットワークのみを許可する場合は、<span class="tagl"><a href="#accessControl_deny">拒否リスト</a></span>に<span class="val">*</span>または<span class="val">ALL</span>を入れ、許可されたIPまたはサブネットワークを<span class="tagl"><a href="#accessControl_allow">許可リスト</a></span>。<br/> IPに適合する最小スコープの設定は、アクセスを決定するために使用されます。<br/><br/> <b>サーバーレベル:</b>信頼できるIPまたはサブネットワークは、<span class="tagl"><a href="#accessControl_allow">許可リスト</a></span>に、末尾の "T"を追加することで指定する必要があります。 信頼できるIPまたはサブネットワークは、接続/スロットリング制限の影響を受けません。 信頼できるIP/サブネットワークは、サーバーレベルのアクセス制御でのみ設定できます。</p> <h4>ヒント</h4><p>[セキュリティ]すべてのバーチャルホストに適用される一般的な制限については、サーバーレベルでこれを使用してください。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessControl_allow"><h3>許可リスト<span class="ls-permlink"><a href="#accessControl_allow"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>許可されるIPまたはサブネットワークのリストを指定します。 <span class="val">*</span>または<span class="val">ALL</span>が受け入れられます。</p> <h4>構文</h4><p>IPアドレスまたはサブネットワークのカンマ区切りリスト。 末尾の「T」は、<span class="val">192.168.1.*T</span>などの信頼できるIPまたはサブネットワークを示すために使用できます。</p> <h4>例</h4><div class="ls-example"><b>Sub-networks:</b> 192.168.1.0/255.255.255.0, 192.168.1.0/24, 192.168.1, or 192.168.1.*<br/> <b>IPv6 addresses:</b> ::1 or [::1] <br/> <b>IPv6 subnets:</b> 3ffe:302:11:2:20f:1fff:fe29:717c/64 or [3ffe:302:11:2:20f:1fff:fe29:717c]/64</div><h4>ヒント</h4><p>[セキュリティ]サーバーレベルのアクセス制御で設定された信頼されたIPまたはサブネットワークは、接続/スロットリングの制限から除外されます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessControl_deny"><h3>拒否リスト<span class="ls-permlink"><a href="#accessControl_deny"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>許可されていないIPまたはサブネットワークのリストを指定します。</p> <h4>構文</h4><p>IPアドレスまたはサブネットワークのカンマ区切りリスト。 <span class="val">*</span>または<span class="val">ALL</span>が受け入れられます。</p> <h4>例</h4><div class="ls-example"><b>Sub-networks:</b> 192.168.1.0/255.255.255.0, 192.168.1.0/24, 192.168.1, or 192.168.1.*<br/> <b>IPv6 addresses:</b> ::1 or [::1] <br/> <b>IPv6 subnets:</b> 3ffe:302:11:2:20f:1fff:fe29:717c/64 or [3ffe:302:11:2:20f:1fff:fe29:717c]/64</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="adminUser"><h3>WebAdminユーザー<span class="ls-permlink"><a href="#adminUser"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>WebAdmin Consoleのユーザー名とパスワードを変更します。 変更を保存するには、古いパスワードを入力して確認する必要があります。</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ���������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������ja-JP/External_LB.html������������������������������������������������������������������������������0000644�����������������00000015012�15027525531�0010476 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Open LiteSpeed Web Serverユーザーズマニュアル - ロードバランサー</title> <meta name="description" content="Open LiteSpeed Web Serverユーザーズマニュアル - ロードバランサー." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="../img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h3 class="ls-text-thin">OpenLiteSpeed Web Server <a href="index.html"> ユーザーズマニュアル</a></h3> <h5 class="ls-text-muted">Version 1.8 — Rev. 0</h5> <hr/> <div> <ul> <li><a href="license.html">ライセンス</a></li> <li><a href="intro.html">はじめに</a></li> <li><a href="install.html">インストール</a></li> <li> <a href="admin.html">管理</a> <ul class="level2"> <li><a href="ServerStat_Help.html">サービスマネージャ</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">セキュリティ</a></li> <li><a href="config.html">設定</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">サーバー全般</a></li> <li><a href="ServLog_Help.html">サーバーログ</a></li> <li><a href="ServTuning_Help.html">サーバーのチューニング</a></li> <li><a href="ServSecurity_Help.html">サーバーのセキュリティ</a></li> <li><a href="ExtApp_Help.html">外部アプリ</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGIアプリ</a></li> <li><a href="External_FCGI_Auth.html">Fast CGIオーソライザー</a></li> <li><a href="External_LSAPI.html">LSAPIアプリ</a></li> <li><a href="External_Servlet.html">サーブレットエンジン</a></li> <li><a href="External_WS.html">Webサーバー</a></li> <li><a href="External_PL.html">パイプロガー</a></li> <li><span class="current"><a href="External_LB.html">ロードバランサ</a></span></li> </ul> <li><a href="ScriptHandler_Help.html">スクリプトハンドラ</a></li> <li><a href="Rails_Help.html">Rack/Railsの設定</a></li> <li><a href="Module_Help.html">モジュール設定</a></li> <li><a href="Listeners_General_Help.html">リスナー全般</a></li> <li><a href="Listeners_SSL_Help.html">リスナーのSSL</a></li> <li><a href="Templates_Help.html">テンプレート</a></li> <li><a href="VirtualHosts_Help.html">バーチャルホストの基本</a></li> <li><a href="VHGeneral_Help.html">バーチャルホスト全般</a></li> <li><a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a></li> <li><a href="VHSSL_Help.html">バーチャルホストのSSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">コンテキスト</a></li> <ul class="level3"> <li><a href="Static_Context.html">静的コンテテキスト</a></li> <li><a href="Java_Web_App_Context.html">Java Webアプリのコンテキスト</a></li> <li><a href="Servlet_Context.html">サーブレットコンテキスト</a></li> <li><a href="FCGI_Context.html">Fast CGIコンテキスト</a></li> <li><a href="LSAPI_Context.html">LSAPIコンテキスト</a></li> <li><a href="Proxy_Context.html">プロキシコンテキスト</a></li> <li><a href="CGI_Context.html">CGIコンテキスト</a></li> <li><a href="LB_Context.html">ロードバランサコンテキスト</a></li> <li><a href="Redirect_Context.html">コンテキストのリダイレクト</a></li> <li><a href="Rails_Context.html">Rack/Railsのコンテキスト</a></li> <li><a href="Module_Context.html">モジュールハンドラのコンテキスト</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socketプロキシ</a></li> </ul> </li> <li><a href="webconsole.html">Webコンソール</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">管理コンソール全般</a></li> <li><a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a></li> <li><a href="AdminListeners_General_Help.html">管理リスナー全般</a></li> <li><a href="AdminListeners_SSL_Help.html">管理リスナーのSSL</a></li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="External_PL.html">パイプロガー</a></div><div class="center"><a href="ExtApp_Help.html">外部アプリケーション</a></div><div class="next"> </div></div> <h1>ロードバランサー</h1><h2 id="top">目次</h2><section class="toc"><section class="toc-row"><header>ロードバランサ</header><p> <a href="#extAppName">名前</a> | <a href="#extWorkers">ワーカー</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="extAppName"><h3>名前<span class="ls-permlink"><a href="#extAppName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>この外部アプリケーションの一意の名前。 設定の他の部分でこの名前を使用するときは、この名前で参照します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extWorkers"><h3>ワーカー<span class="ls-permlink"><a href="#extWorkers"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>以前に外部ロードバランサで定義されたワーカーグループのリスト。</p> <h4>構文</h4><p>ExternalAppType::ExternalAppNameという形式のカンマ区切りリスト</p> <h4>例</h4><div class="ls-example">fcgi::localPHP, proxy::backend1</div></article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������ja-JP/Rewrite_Help.html�����������������������������������������������������������������������������0000644�����������������00000034422�15027525531�0010736 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Open LiteSpeed Web Serverユーザーズマニュアル - Rewrite</title> <meta name="description" content="Open LiteSpeed Web Serverユーザーズマニュアル - Rewrite." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="../img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h3 class="ls-text-thin">OpenLiteSpeed Web Server <a href="index.html"> ユーザーズマニュアル</a></h3> <h5 class="ls-text-muted">Version 1.8 — Rev. 0</h5> <hr/> <div> <ul> <li><a href="license.html">ライセンス</a></li> <li><a href="intro.html">はじめに</a></li> <li><a href="install.html">インストール</a></li> <li> <a href="admin.html">管理</a> <ul class="level2"> <li><a href="ServerStat_Help.html">サービスマネージャ</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">セキュリティ</a></li> <li><a href="config.html">設定</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">サーバー全般</a></li> <li><a href="ServLog_Help.html">サーバーログ</a></li> <li><a href="ServTuning_Help.html">サーバーのチューニング</a></li> <li><a href="ServSecurity_Help.html">サーバーのセキュリティ</a></li> <li><a href="ExtApp_Help.html">外部アプリ</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGIアプリ</a></li> <li><a href="External_FCGI_Auth.html">Fast CGIオーソライザー</a></li> <li><a href="External_LSAPI.html">LSAPIアプリ</a></li> <li><a href="External_Servlet.html">サーブレットエンジン</a></li> <li><a href="External_WS.html">Webサーバー</a></li> <li><a href="External_PL.html">パイプロガー</a></li> <li><a href="External_LB.html">ロードバランサ</a></li> </ul> <li><a href="ScriptHandler_Help.html">スクリプトハンドラ</a></li> <li><a href="Rails_Help.html">Rack/Railsの設定</a></li> <li><a href="Module_Help.html">モジュール設定</a></li> <li><a href="Listeners_General_Help.html">リスナー全般</a></li> <li><a href="Listeners_SSL_Help.html">リスナーのSSL</a></li> <li><a href="Templates_Help.html">テンプレート</a></li> <li><a href="VirtualHosts_Help.html">バーチャルホストの基本</a></li> <li><a href="VHGeneral_Help.html">バーチャルホスト全般</a></li> <li><a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a></li> <li><a href="VHSSL_Help.html">バーチャルホストのSSL</a></li> <li><span class="current"><a href="Rewrite_Help.html">Rewrite</a></span></li> <li><a href="Context_Help.html">コンテキスト</a></li> <ul class="level3"> <li><a href="Static_Context.html">静的コンテテキスト</a></li> <li><a href="Java_Web_App_Context.html">Java Webアプリのコンテキスト</a></li> <li><a href="Servlet_Context.html">サーブレットコンテキスト</a></li> <li><a href="FCGI_Context.html">Fast CGIコンテキスト</a></li> <li><a href="LSAPI_Context.html">LSAPIコンテキスト</a></li> <li><a href="Proxy_Context.html">プロキシコンテキスト</a></li> <li><a href="CGI_Context.html">CGIコンテキスト</a></li> <li><a href="LB_Context.html">ロードバランサコンテキスト</a></li> <li><a href="Redirect_Context.html">コンテキストのリダイレクト</a></li> <li><a href="Rails_Context.html">Rack/Railsのコンテキスト</a></li> <li><a href="Module_Context.html">モジュールハンドラのコンテキスト</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socketプロキシ</a></li> </ul> </li> <li><a href="webconsole.html">Webコンソール</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">管理コンソール全般</a></li> <li><a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a></li> <li><a href="AdminListeners_General_Help.html">管理リスナー全般</a></li> <li><a href="AdminListeners_SSL_Help.html">管理リスナーのSSL</a></li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="VHSSL_Help.html">Virtual Host SSL</a></div><div class="center"><a href="config.html">設定</a></div><div class="next"><a href="Context_Help.html">コンテキスト</a> »</div></div> <h1>Rewrite</h1><h2 id="top">目次</h2><section class="toc"><section class="toc-row"><header>Rewrite Control</header><p> <a href="#enableRewrite">Rewriteを有効にする</a> | <a href="#autoLoadHtaccess">Auto Load from .htaccess</a> | <a href="#rewriteLogLevel">ログレベル</a></p></section> <section class="toc-row"><header>Rewriteマップ</header><p> <a href="#rewriteMapName">名前</a> | <a href="#rewriteMapLocation">ロケーション</a></p></section> <section class="toc-row"><header>Rewriteルール</header><p> <a href="#rewriteRules">Rewriteルール</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="enableRewrite"><h3>Rewriteを有効にする<span class="ls-permlink"><a href="#enableRewrite"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>LiteSpeedのURL書き換えエンジンを有効にするかどうかを指定します。 このオプションは、バーチャルホストまたはコンテキストレベルでカスタマイズでき、明示的に上書きされるまでディレクトリツリーに沿って継承されます。</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="autoLoadHtaccess"><h3>Auto Load from .htaccess<span class="ls-permlink"><a href="#autoLoadHtaccess"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Autoload rewrite rules contained in a directory's .htaccess file when first accessing that directory if an HttpContext for that directory using the <b>rewritefile</b> directive does not already exist. Once initially loaded, a graceful restart must be performed for any further changes to that .htaccess file to take effect.<br/><br/> Virtual Host-level setting overrides Server-level setting. Default values:<br/><br/> <b>Server-level:</b> No<br/><br/> <b>VH-Level:</b> Inherit Server-level setting</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="rewriteLogLevel"><h3>ログレベル<span class="ls-permlink"><a href="#rewriteLogLevel"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>書き換えエンジンのデバッグ出力の詳細レベルを指定します。 この値の範囲は<span class="val">0</span>-<span class="val">9</span>です。<span class="val">0</span>はロギングを無効にします。<span class="val">9</span>は最も詳細なログを生成します。 このオプションを有効にするには、サーバーとバーチャルホストのエラーログ<span class="tagl"><a href="ServGeneral_Help.html#log_logLevel">ログレベル</a></span>を少なくとも<span class="val">INFO</span>以上に設定する必要があります。 これは、書き換えルールをテストする場合に便利です。</p> <h4>構文</h4><p>整数</p> <h4>参照</h4><p class="ls-text-small">Server <span class="tagl"><a href="ServGeneral_Help.html#log_logLevel">ログレベル</a></span>, Virtual Host <span class="tagl"><a href="VHGeneral_Help.html#vhlog_logLevel">ログレベル</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="rewriteMapName"><h3>名前<span class="ls-permlink"><a href="#rewriteMapName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>バーチャルホスト・レベルでの再書き込みマップの一意の名前を指定します。 この名前は、書き換えルールのマッピング参照によって使用されます。 この名前を参照するときは、次の構文のいずれかを使用する必要があります: <blockquote><code> $\{MapName:LookupKey\}<br/> $\{MapName:LookupKey|DefaultValue\} </code></blockquote><br/> LiteSpeedのリライトエンジンの実装は、Apacheのリライトエンジンの仕様に準拠しています。 書き直しマップの詳細については、<a href="http://httpd.apache.org/docs/current/mod/mod_rewrite.html" target="_blank" rel="noopener noreferrer">Apacheのmod_rewrite文書</a>を参照してください。</p> <h4>構文</h4><p>文字列</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="rewriteMapLocation"><h3>ロケーション<span class="ls-permlink"><a href="#rewriteMapLocation"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p><span class="val">MapType:MapSource</span>構文を使用して、書き換えマップの場所を指定します。<br/> LiteSpeedの書き換えエンジンは、次の3種類の書き換えマップをサポートしています: <ul> <li><b>標準プレーンテキスト</b> <blockquote> <b>MapType:</b> txt; <br/> <b>MapSource:</b> ファイルパスを有効なプレーンASCIIファイルに変換します。 </blockquote> このファイルの各行には空白で区切られた2つの要素が含まれていなければなりません。 最初の要素はキーで、2番目の要素は値です。 コメントには先頭に「<span class="val">#</span>」という記号を付けることができます。 </li> <li><b>ランダム化されたプレーンテキスト</b> <blockquote> <b>MapType:</b> rnd;<br/> <b>MapSource:</b> 有効なプレーンASCIIファイルのファイルパス。 </blockquote> ファイル形式は、標準のプレーンテキストファイルと似ていますが、2番目の要素には "<span class="val"> | </span>"記号で区切られた 複数の選択肢があり、書き換えエンジンによってランダムに選択できます。 </li> <li><b>内部機能</b> <blockquote> <b>MapType:</b> int;<br/> <b>MapSource:</b> 内部文字列関数 </blockquote> 4つの機能を利用できます: <ul> <li><b>toupper:</b> 検索キーを大文字に変換します。</li> <li><b>tolower:</b> 検索キーを小文字に変換します。</li> <li><b>escape:</b> 検索キーでURLエンコーディングを実行します。</li> <li><b>unescape:</b> 検索キーでURLデコードを実行します。</li> </ul> </li> Apacheで利用可能な次のマップタイプはLiteSpeedでは実装されていません:<br/> ハッシュファイルと外部書き換えプログラム。 </ul> LiteSpeedのリライトエンジンの実装は、Apacheのリライトエンジンの仕様に準拠しています。 書き直しマップの詳細については、<a href="http://httpd.apache.org/docs/current/mod/mod_rewrite.html" target="_blank" rel="noopener noreferrer">Apacheのmod_rewrite文書</a>を参照してください。</p> <h4>構文</h4><p>文字列</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="rewriteRules"><h3>Rewriteルール<span class="ls-permlink"><a href="#rewriteRules"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>バーチャルホストまたはコンテキスト・レベルでの書き換えルールのリストを指定します。 書き換えルールは、<span class="val">RewriteRule</span>ディレクティブから構成され、オプションとして複数の<span class="val">RewriteCond</span>ディレクティブが前に付いています。 <ul> <li>各ディレクティブは1行だけを取る必要があります。</li> <li><span class="val">RewriteCond</span>と<span class="val">RewriteRule</span>は、Apacheのリライト命令構文に従います。 あなたのApache設定ファイルから書き換え命令文をコピー&ペーストするだけです。</li> <li>LiteSpeedとApache mod_rewriteには小さな違いがあります 実装: <ul> <li>LiteSpeed書き換えエンジンでは、<span class="val">%\ {LA-U:変数\} </span>と<span class="val">%\ {LA-F:変数\} </span>は無視されます</li> <li>LiteSpeed書き換えエンジンに2つの新しいサーバー変数が追加されました。: LiteSpeed書き換えエンジンに2つの新しいサーバー変数が追加されました。 <span class="val">%\{CURRENT_URI\}</span>は、書き換えエンジンによって処理されている現在のURIを表し、<span class="val">%\{SCRIPT_NAME\}</span>は対応するCGI環境変数と同じ意味を持ちます。</li> </ul></li> </ul> LiteSpeedのリライトエンジンの実装は、Apacheのリライトエンジンの仕様に従います。 書き換えルールの詳細については、<a href="http://httpd.apache.org/docs/current/mod/mod_rewrite.html" target="_blank" rel="noopener noreferrer">Apacheのmod_rewriteドキュメント</a>と<a href="http://httpd.apache.org/docs/current/rewrite/" target="_blank" rel="noopener noreferrer">ApacheのURL書き換えガイド</a>を参照してください。</p> <h4>構文</h4><p>文字列</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������ja-JP/Listeners_General_Help.html�������������������������������������������������������������������0000644�����������������00000032151�15027525531�0012717 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Open LiteSpeed Web Serverユーザーズマニュアル - リスナー全般</title> <meta name="description" content="Open LiteSpeed Web Serverユーザーズマニュアル - リスナー全般." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="../img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h3 class="ls-text-thin">OpenLiteSpeed Web Server <a href="index.html"> ユーザーズマニュアル</a></h3> <h5 class="ls-text-muted">Version 1.8 — Rev. 0</h5> <hr/> <div> <ul> <li><a href="license.html">ライセンス</a></li> <li><a href="intro.html">はじめに</a></li> <li><a href="install.html">インストール</a></li> <li> <a href="admin.html">管理</a> <ul class="level2"> <li><a href="ServerStat_Help.html">サービスマネージャ</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">セキュリティ</a></li> <li><a href="config.html">設定</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">サーバー全般</a></li> <li><a href="ServLog_Help.html">サーバーログ</a></li> <li><a href="ServTuning_Help.html">サーバーのチューニング</a></li> <li><a href="ServSecurity_Help.html">サーバーのセキュリティ</a></li> <li><a href="ExtApp_Help.html">外部アプリ</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGIアプリ</a></li> <li><a href="External_FCGI_Auth.html">Fast CGIオーソライザー</a></li> <li><a href="External_LSAPI.html">LSAPIアプリ</a></li> <li><a href="External_Servlet.html">サーブレットエンジン</a></li> <li><a href="External_WS.html">Webサーバー</a></li> <li><a href="External_PL.html">パイプロガー</a></li> <li><a href="External_LB.html">ロードバランサ</a></li> </ul> <li><a href="ScriptHandler_Help.html">スクリプトハンドラ</a></li> <li><a href="Rails_Help.html">Rack/Railsの設定</a></li> <li><a href="Module_Help.html">モジュール設定</a></li> <li><span class="current"><a href="Listeners_General_Help.html">リスナー全般</a></span></li> <li><a href="Listeners_SSL_Help.html">リスナーのSSL</a></li> <li><a href="Templates_Help.html">テンプレート</a></li> <li><a href="VirtualHosts_Help.html">バーチャルホストの基本</a></li> <li><a href="VHGeneral_Help.html">バーチャルホスト全般</a></li> <li><a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a></li> <li><a href="VHSSL_Help.html">バーチャルホストのSSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">コンテキスト</a></li> <ul class="level3"> <li><a href="Static_Context.html">静的コンテテキスト</a></li> <li><a href="Java_Web_App_Context.html">Java Webアプリのコンテキスト</a></li> <li><a href="Servlet_Context.html">サーブレットコンテキスト</a></li> <li><a href="FCGI_Context.html">Fast CGIコンテキスト</a></li> <li><a href="LSAPI_Context.html">LSAPIコンテキスト</a></li> <li><a href="Proxy_Context.html">プロキシコンテキスト</a></li> <li><a href="CGI_Context.html">CGIコンテキスト</a></li> <li><a href="LB_Context.html">ロードバランサコンテキスト</a></li> <li><a href="Redirect_Context.html">コンテキストのリダイレクト</a></li> <li><a href="Rails_Context.html">Rack/Railsのコンテキスト</a></li> <li><a href="Module_Context.html">モジュールハンドラのコンテキスト</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socketプロキシ</a></li> </ul> </li> <li><a href="webconsole.html">Webコンソール</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">管理コンソール全般</a></li> <li><a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a></li> <li><a href="AdminListeners_General_Help.html">管理リスナー全般</a></li> <li><a href="AdminListeners_SSL_Help.html">管理リスナーのSSL</a></li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="Module_Help.html">モジュール設定</a></div><div class="center"><a href="config.html">設定</a></div><div class="next"><a href="Listeners_SSL_Help.html">リスナーSSL</a> »</div></div> <h1>リスナー全般</h1><h2 id="top">目次</h2><section class="toc"><section class="toc-row"><header>アドレス設定</header><p> <a href="#listenerName">リスナー名</a> | <a href="#listenerIP">IPアドレス</a> | <a href="#listenerPort">ポート</a> | <a href="#listenerBinding">バインディング</a> | <a href="#reusePort">Enable REUSEPORT</a> | <a href="#listenerSecure">セキュア</a></p></section> <section class="toc-row"><header><a href="#virtualHostMapping">バーチャルホストマッピング</a></header><p> <a href="#virtualHostName">バーチャルホスト</a> | <a href="#domainName">ドメイン</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="listenerName"><h3>リスナー名<span class="ls-permlink"><a href="#listenerName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このリスナーの一意の名前。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="listenerIP"><h3>IPアドレス<span class="ls-permlink"><a href="#listenerIP"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このリスナーのIPを指定します。 使用可能なすべてのIPアドレスがリストされます。 IPv6アドレスは "[]"で囲まれています。 すべてのIPv4 IPアドレスをリッスンするには、<span class="val">ANY</span>を選択します。 すべてのIPv4とIPv6のIPアドレスをリッスンするには、<span class="val">[ANY]</span>を選択します。 IPv4とIPv6の両方のクライアントにサービスを提供するには、プレーンなIPv4アドレスの代わりに、IPv4でマップされたIPv6アドレスを使用する必要があります。 IPv4でマップされたIPv6アドレスは[:: FFFF:x.x.x.x]と書かれています。</p> <h4>構文</h4><p>ドロップダウンリストから選択</p> <h4>ヒント</h4><p>[セキュリティ]お使いのマシンに異なるサブネットワーク上に複数のIPがある場合、特定のIPを選択して、対応するサブネットワークからのトラフィックのみを許可することができます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="listenerPort"><h3>ポート<span class="ls-permlink"><a href="#listenerPort"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>リスナーのTCPポートを指定します。 スーパーユーザー("root")のみが<span class="val">1024</span>より小さいポートを使用できます。 ポート<span class="val">80</span>はデフォルトのHTTPポートです。 ポート<span class="val">443</span>はデフォルトのHTTPSポートです。</p> <h4>構文</h4><p>65535までの整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="listenerBinding"><h3>バインディング<span class="ls-permlink"><a href="#listenerBinding"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>リスナーが割り当てられているlshttpd子プロセスを指定します。 リスナーをプロセスに手動で関連付けることによって、異なるリスナーへのリクエストを処理するために、異なる子プロセスを使用できます。 デフォルトでは、すべての子プロセスにリスナーが割り当てられます。</p> <h4>構文</h4><p>チェックボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="reusePort"><h3>Enable REUSEPORT<span class="ls-permlink"><a href="#reusePort"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Use SO_REUSEPORT socket option to distribute incoming traffic to multiple workers. This setting is only effective for multi-worker licenses. When enabled, all workers are automatically bound to this listener and "Binding" configuration is ignored.<br/><br/> Default value: On</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="listenerSecure"><h3>セキュア<span class="ls-permlink"><a href="#listenerSecure"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Sこれがセキュア(SSL)リスナーかどうかを指定します。 セキュアリスナーの場合は、追加のSSL設定を適切に設定する必要があります。</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="virtualHostMapping"><h3>バーチャルホストマッピング<span class="ls-permlink"><a href="#virtualHostMapping"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>リスナーとバーチャルホストの関係を指定します。 リスナーとバーチャルホストはドメイン名によって関連付けられています。 HTTP要求は、一致するドメイン名を持つバーチャルホストにルーティングされます。 1つのリスナーは、異なるドメイン名の複数のバーチャルホストにマップできます。 1つのバーチャルホストを異なるリスナーからマップすることもできます。 1人のリスナーは、ドメイン名の値「*」を持つ1つのキャッチオールバーチャルホストを許可できます。 リスナーのマッピングに明示的に一致するドメイン名がない場合、 リスナーはその要求をそのキャッチオールバーチャルホストに転送します。</p> <h4>ヒント</h4><p>[パフォーマンス]必要なマッピングのみを追加します。 リスナーが1つのバーチャルホストにのみマッピングされている場合は、キャッチオールマッピング "*"のみを設定します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="virtualHostName"><h3>バーチャルホスト<span class="ls-permlink"><a href="#virtualHostName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>バーチャルホストの名前を指定します。</p> <h4>構文</h4><p>ドロップダウンリストから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="domainName"><h3>ドメイン<span class="ls-permlink"><a href="#domainName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>マッピングドメイン名を指定します。 ドメイン名は大文字と小文字を区別せず、先頭の "www." 削除されます。 ワイルドカード文字「*」と「?」 は許可されます。 「?」 1文字のみを表します。 「*」は任意の数の文字を表します。 重複したドメイン名は許可されません。</p> <h4>構文</h4><p>カンマで区切られたリスト。</p> <h4>例</h4><div class="ls-example">www?.example.com<br/> "*.mydomain.com"はmydomain.comのすべてのサブドメインと一致します。<br/> 「*」はそれ自体がキャッチオールドメインであり、不一致のドメイン名と一致します。</div><h4>ヒント</h4><p>[パフォーマンス]リスナーが1つのバーチャルホスト専用の場合は、不要なチェックを避けるために、ドメイン名に常に<span class="val">*</span>を使用します。 可能であれば、ワイルドカード文字(キャッチオールドメイン以外)を使用するドメイン名は避けてください。</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> �����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������ja-JP/AdminListeners_SSL_Help.html������������������������������������������������������������������0000644�����������������00000052526�15027525531�0012764 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Open LiteSpeed Web Serverユーザーズマニュアル - リスナー管理者SSL</title> <meta name="description" content="Open LiteSpeed Web Serverユーザーズマニュアル - リスナー管理者SSL." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="../img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h3 class="ls-text-thin">OpenLiteSpeed Web Server <a href="index.html"> ユーザーズマニュアル</a></h3> <h5 class="ls-text-muted">Version 1.8 — Rev. 0</h5> <hr/> <div> <ul> <li><a href="license.html">ライセンス</a></li> <li><a href="intro.html">はじめに</a></li> <li><a href="install.html">インストール</a></li> <li> <a href="admin.html">管理</a> <ul class="level2"> <li><a href="ServerStat_Help.html">サービスマネージャ</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">セキュリティ</a></li> <li><a href="config.html">設定</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">サーバー全般</a></li> <li><a href="ServLog_Help.html">サーバーログ</a></li> <li><a href="ServTuning_Help.html">サーバーのチューニング</a></li> <li><a href="ServSecurity_Help.html">サーバーのセキュリティ</a></li> <li><a href="ExtApp_Help.html">外部アプリ</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGIアプリ</a></li> <li><a href="External_FCGI_Auth.html">Fast CGIオーソライザー</a></li> <li><a href="External_LSAPI.html">LSAPIアプリ</a></li> <li><a href="External_Servlet.html">サーブレットエンジン</a></li> <li><a href="External_WS.html">Webサーバー</a></li> <li><a href="External_PL.html">パイプロガー</a></li> <li><a href="External_LB.html">ロードバランサ</a></li> </ul> <li><a href="ScriptHandler_Help.html">スクリプトハンドラ</a></li> <li><a href="Rails_Help.html">Rack/Railsの設定</a></li> <li><a href="Module_Help.html">モジュール設定</a></li> <li><a href="Listeners_General_Help.html">リスナー全般</a></li> <li><a href="Listeners_SSL_Help.html">リスナーのSSL</a></li> <li><a href="Templates_Help.html">テンプレート</a></li> <li><a href="VirtualHosts_Help.html">バーチャルホストの基本</a></li> <li><a href="VHGeneral_Help.html">バーチャルホスト全般</a></li> <li><a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a></li> <li><a href="VHSSL_Help.html">バーチャルホストのSSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">コンテキスト</a></li> <ul class="level3"> <li><a href="Static_Context.html">静的コンテテキスト</a></li> <li><a href="Java_Web_App_Context.html">Java Webアプリのコンテキスト</a></li> <li><a href="Servlet_Context.html">サーブレットコンテキスト</a></li> <li><a href="FCGI_Context.html">Fast CGIコンテキスト</a></li> <li><a href="LSAPI_Context.html">LSAPIコンテキスト</a></li> <li><a href="Proxy_Context.html">プロキシコンテキスト</a></li> <li><a href="CGI_Context.html">CGIコンテキスト</a></li> <li><a href="LB_Context.html">ロードバランサコンテキスト</a></li> <li><a href="Redirect_Context.html">コンテキストのリダイレクト</a></li> <li><a href="Rails_Context.html">Rack/Railsのコンテキスト</a></li> <li><a href="Module_Context.html">モジュールハンドラのコンテキスト</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socketプロキシ</a></li> </ul> </li> <li><a href="webconsole.html">Webコンソール</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">管理コンソール全般</a></li> <li><a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a></li> <li><a href="AdminListeners_General_Help.html">管理リスナー全般</a></li> <li><span class="current"><a href="AdminListeners_SSL_Help.html">管理リスナーのSSL</a></span></li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="AdminListeners_General_Help.html">リスナー管理者全般</a></div><div class="center"><a href="webconsole.html">Webコンソール</a></div><div class="next"> </div></div> <h1>リスナー管理者SSL</h1><section class="ls-spacer-small-bottom">リスナー管理は管理サーバー専用です。 管理サーバーには、セキュア(SSL)リスナーを推奨します。</section> <h2 id="top">目次</h2><section class="toc"><section class="toc-row"><header><a href="#sslCert">SSL秘密鍵と証明書</a></header><p> <a href="#keyFile">秘密鍵ファイル</a> | <a href="#certFile">証明書ファイル</a> | <a href="#certChain">チェーン証明書</a> | <a href="#CACertPath">CA証明書パス</a> | <a href="#CACertFile">CA証明書ファイル</a></p></section> <section class="toc-row"><header><a href="#sslProtocolSetting">SSLプロトコル</a></header><p> <a href="#ciphers">暗号</a> | <a href="#enableECDHE">ECDH鍵交換を有効にする</a> | <a href="#enableDHE">DHキー交換を有効にする</a> | <a href="#DHParam">DHパラメータ</a></p></section> <section class="toc-row"><header>セキュリティ & 機能</header><p> <a href="#renegProtection">SSL再交渉保護</a> | <a href="#sslSessionCache">セッションキャッシュを有効にする</a> | <a href="#sslSessionTickets">セッションチケットを有効にする</a> | <a href="#enableSpdy">SPDY/HTTP2を有効にする</a> | <a href="#allowQuic">Open HTTP3/QUIC (UDP) port</a></p></section> <section class="toc-row"><header>クライアントの検証</header><p> <a href="#clientVerify">クライアントの検証</a> | <a href="#verifyDepth">検証の深さ</a> | <a href="#crlPath">クライアントの失効パス</a> | <a href="#crlFile">クライアント失効ファイル</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="sslCert"><h3>SSL秘密鍵と証明書<span class="ls-permlink"><a href="#sslCert"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>すべてのSSLリスナーには、ペアのSSL秘密鍵とSSL証明書が必要です。 複数のSSLリスナーは、同じ鍵と証明書を共有できます。<br/> OpenSSLなどのSSLソフトウェアパッケージを使用して、SSL秘密鍵を自分で生成することができます。 SSL証明書は、VeriSignやThawteのような認可された証明書の発行者から購入することもできます。 自分で証明書に署名することもできます。 自己署名証明書はWebブラウザから信頼されないため、重要なデータを含む公開Webサイトでは使用しないでください。 ただし、自己署名証明書は内部使用に十分適しており、 例えば LiteSpeed WebサーバーのWebAdminコンソールへのトラフィックを暗号化します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="keyFile"><h3>秘密鍵ファイル<span class="ls-permlink"><a href="#keyFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>SSL秘密鍵ファイルのファイル名。キーファイルは暗号化しないでください。</p> <h4>構文</h4><p>ファイル名への絶対パス又は$SERVER_ROOTからの相対パス</p> <h4>ヒント</h4><p>[セキュリティ]秘密鍵ファイルは、サーバーが実行されるユーザーへの読み取り専用アクセスを可能にするセキュリティ保護されたディレクトリに配置する必要があります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="certFile"><h3>証明書ファイル<span class="ls-permlink"><a href="#certFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>SSL証明書ファイルのファイル名。</p> <h4>構文</h4><p>ファイル名への絶対パス又は$SERVER_ROOTからの相対パス</p> <h4>ヒント</h4><p>[セキュリティ]証明書ファイルは、サーバーが実行されるユーザーへの読み取り専用アクセスを可能にする安全なディレクトリに配置する必要があります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="certChain"><h3>チェーン証明書<span class="ls-permlink"><a href="#certChain"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>証明書がチェーン証明書であるかどうかを指定します。 チェーン証明を格納するファイルは、PEM形式でなければならず、証明書は最下位レベル(実際のクライアントまたはサーバー証明書)から最上位(ルート)CAまでの連鎖の順序でなければなりません。</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="CACertPath"><h3>CA証明書パス<span class="ls-permlink"><a href="#CACertPath"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>証明機関(CA)の証明書が保存されるディレクトリを指定します。 これらの証明書は、クライアント証明書の認証およびサーバー証明書チェーンの構築に使用されます。サーバー証明書チェーンは、サーバー証明書に加えてブラウザーにも送信されます。</p> <h4>構文</h4><p>path</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="CACertFile"><h3>CA証明書ファイル<span class="ls-permlink"><a href="#CACertFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>チェーン証明書の証明機関(CA)のすべての証明書を含むファイルを指定します。 このファイルは、PEMでエンコードされた証明書ファイルを単に優先順に連結したものです。 これは、「CA証明書パス」の代替として、またはこれに加えて使用することができる。 これらの証明書は、クライアント証明書の認証およびサーバー証明書チェーンの構築に使用されます。サーバー証明書チェーンは、サーバー証明書に加えてブラウザーにも送信されます。</p> <h4>構文</h4><p>ファイル名への絶対パス又は$SERVER_ROOTからの相対パス</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslProtocolSetting"><h3>SSLプロトコル<span class="ls-permlink"><a href="#sslProtocolSetting"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>リスナーが受け入れたSSLプロトコルをカスタマイズします。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="ciphers"><h3>暗号<span class="ls-permlink"><a href="#ciphers"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>SSLハンドシェイクのネゴシエーション時に使用する暗号スイートを指定します。 LSWSは、SSL v3.0、TLS v1.0、およびTLS v1.2で実装された暗号スイートをサポートしています。</p> <h4>構文</h4><p>コロンで区切られた暗号仕様の文字列。</p> <h4>例</h4><div class="ls-example">ECDHE-RSA-AES128-SHA256:RC4:HIGH:!MD5:!aNULL:!EDH</div><h4>ヒント</h4><p>[セキュリティ] SSL暗号のベストプラクティスに従ったデフォルトの暗号を使用する場合は、このフィールドを空白のままにすることをお勧めします。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableECDHE"><h3>ECDH鍵交換を有効にする<span class="ls-permlink"><a href="#enableECDHE"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>さらにSSL暗号化のために楕円曲線 Diffie-Hellman鍵交換を使用できます。</p> <h4>構文</h4><p>ラジオボックスから選択</p> <h4>ヒント</h4><p>[セキュリティ] ECDH鍵交換は、RSA鍵だけを使用するより安全です。 ECDHとDHキーの交換は同等に安全です。<br/><br/> [パフォーマンス] ECDH鍵交換を有効にするとCPU負荷が増加し、RSA鍵だけを使用する場合よりも遅くなります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableDHE"><h3>DHキー交換を有効にする<span class="ls-permlink"><a href="#enableDHE"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>さらにSSL暗号化のためにDiffie-Hellman鍵交換を使用できます。</p> <h4>構文</h4><p>ラジオボックスから選択</p> <h4>ヒント</h4><p>[セキュリティ] DHキーの交換は、RSAキーを使用するよりも安全です。 ECDHとDHキーの交換は同等に安全です。<br/><br/> [パフォーマンス] DHキー交換を有効にするとCPU負荷が増加し、ECDHキー交換とRSAよりも遅くなります。 ECDH鍵交換が利用可能である場合に優先される。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="DHParam"><h3>DHパラメータ<span class="ls-permlink"><a href="#DHParam"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>DHキー交換に必要なDiffie-Hellmanパラメータファイルの場所を指定します。</p> <h4>構文</h4><p>ファイル名への絶対パス又は$SERVER_ROOTからの相対パス</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="renegProtection"><h3>SSL再交渉保護<span class="ls-permlink"><a href="#renegProtection"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>SSL再交渉保護を有効にするかどうかを指定します。 SSLハンドシェイクベースの攻撃に対して防御します。 デフォルト値は "Yes"です。</p> <h4>構文</h4><p>ラジオボックスから選択</p> <h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> This setting can be enabled at the listener and virtual host levels.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslSessionCache"><h3>セッションキャッシュを有効にする<span class="ls-permlink"><a href="#sslSessionCache"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>セッションIDキャッシングを有効にします。 「未設定」の場合、デフォルトは「いいえ」です。 (Opensslデフォルト)</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslSessionTickets"><h3>セッションチケットを有効にする<span class="ls-permlink"><a href="#sslSessionTickets"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>セッションチケットを有効にします。 「未設定」の場合、サーバーはopenSSLのデフォルトチケットを使用します。</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableSpdy"><h3>SPDY/HTTP2を有効にする<span class="ls-permlink"><a href="#enableSpdy"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>HTTP/2とSPDYは、ページロード時間を短縮する目的で、HTTPネットワークプロトコルの新バージョンです。 より多くの情報は<a href=" http://en.wikipedia.org/wiki/HTTP/2 " target="_blank" rel="noopener noreferrer"> http://en.wikipedia.org/wiki/HTTP/2 </a>で見つけることができます。</p> <h4>構文</h4><p>有効にするプロトコルを確認します。 すべてのボックスをチェックしないと、SPDYとHTTP/2のサポート(デフォルト)が有効になります。 SPDYとHTTP/2を無効にする場合は、「なし」のみをチェックし、その他のチェックボックスはすべてオフにします。</p> <h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> This setting can be set at the listener and virtual host levels.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="allowQuic"><h3>Open HTTP3/QUIC (UDP) port<span class="ls-permlink"><a href="#allowQuic"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Allows the use of the HTTP3/QUIC network protocol for virtual hosts mapped to this listener. For this setting to take effect, <span class="tagl"><a href="ServTuning_Help.html#quicEnable">Enable HTTP3/QUIC</a></span> must also be set to <span class="val">Yes</span> at the server level. Default value is <span class="val">Yes</span>.</p> <h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> When this setting is set to <span class="val">Yes</span>, HTTP3/QUIC can still be disabled at the virtual host level through the <span class="tagl"><a href="VHSSL_Help.html#vhEnableQuic">Enable HTTP3/QUIC</a></span> setting.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="clientVerify"><h3>クライアントの検証<span class="ls-permlink"><a href="#clientVerify"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>クライアント証明書認証のタイプを指定します。 使用できるタイプは次のとおりです: <ul> <li><b>None:</b> クライアント証明書は必要ありません。</li> <li><b>Optional:</b> クライアント証明書はオプションです。</li> <li><b>Require:</b> クライアントには有効な証明書が必要です。</li> <li><b>Optional_no_ca:</b> オプションと同じです。</li> </ul> デフォルトは "None"です。</p> <h4>構文</h4><p>ドロップダウンリストから選択</p> <h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> "None"または "Require"をお勧めします。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="verifyDepth"><h3>検証の深さ<span class="ls-permlink"><a href="#verifyDepth"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>クライアントに有効な証明書がないと判断する前に、証明書の検証の深さを指定します。 デフォルトは "1"です。</p> <h4>構文</h4><p>ドロップダウンリストから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="crlPath"><h3>クライアントの失効パス<span class="ls-permlink"><a href="#crlPath"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>取り消されたクライアント証明書のPEMエンコードされたCA CRLファイルを含むディレクトリを指定します。 このディレクトリのファイルはPEMでエンコードする必要があります。 これらのファイルは、ハッシュファイル名、hash-value.rNによってアクセスされます。 ハッシュファイル名の作成については、openSSLまたはApache mod_sslのドキュメントを参照してください。</p> <h4>構文</h4><p>パス</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="crlFile"><h3>クライアント失効ファイル<span class="ls-permlink"><a href="#crlFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>取り消されたクライアント証明書を列挙するPEMエンコードCA CRLファイルを含むファイルを指定します。 これは、代わりに、または<span class="tagl"><a href="#crlPath">クライアントの失効パス</a></span>に加えて使用することができます。</p> <h4>構文</h4><p>ファイル名への絶対パス又は$SERVER_ROOTからの相対パス</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ��������������������������������������������������������������������������������������������������������������������������������������������������������������������������ja-JP/Module_Context.html���������������������������������������������������������������������������0000644�����������������00000042630�15027525531�0011276 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Open LiteSpeed Web Serverユーザーズマニュアル - モジュールハンドラコンテキスト</title> <meta name="description" content="Open LiteSpeed Web Serverユーザーズマニュアル - モジュールハンドラコンテキスト." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="../img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h3 class="ls-text-thin">OpenLiteSpeed Web Server <a href="index.html"> ユーザーズマニュアル</a></h3> <h5 class="ls-text-muted">Version 1.8 — Rev. 0</h5> <hr/> <div> <ul> <li><a href="license.html">ライセンス</a></li> <li><a href="intro.html">はじめに</a></li> <li><a href="install.html">インストール</a></li> <li> <a href="admin.html">管理</a> <ul class="level2"> <li><a href="ServerStat_Help.html">サービスマネージャ</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">セキュリティ</a></li> <li><a href="config.html">設定</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">サーバー全般</a></li> <li><a href="ServLog_Help.html">サーバーログ</a></li> <li><a href="ServTuning_Help.html">サーバーのチューニング</a></li> <li><a href="ServSecurity_Help.html">サーバーのセキュリティ</a></li> <li><a href="ExtApp_Help.html">外部アプリ</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGIアプリ</a></li> <li><a href="External_FCGI_Auth.html">Fast CGIオーソライザー</a></li> <li><a href="External_LSAPI.html">LSAPIアプリ</a></li> <li><a href="External_Servlet.html">サーブレットエンジン</a></li> <li><a href="External_WS.html">Webサーバー</a></li> <li><a href="External_PL.html">パイプロガー</a></li> <li><a href="External_LB.html">ロードバランサ</a></li> </ul> <li><a href="ScriptHandler_Help.html">スクリプトハンドラ</a></li> <li><a href="Rails_Help.html">Rack/Railsの設定</a></li> <li><a href="Module_Help.html">モジュール設定</a></li> <li><a href="Listeners_General_Help.html">リスナー全般</a></li> <li><a href="Listeners_SSL_Help.html">リスナーのSSL</a></li> <li><a href="Templates_Help.html">テンプレート</a></li> <li><a href="VirtualHosts_Help.html">バーチャルホストの基本</a></li> <li><a href="VHGeneral_Help.html">バーチャルホスト全般</a></li> <li><a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a></li> <li><a href="VHSSL_Help.html">バーチャルホストのSSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">コンテキスト</a></li> <ul class="level3"> <li><a href="Static_Context.html">静的コンテテキスト</a></li> <li><a href="Java_Web_App_Context.html">Java Webアプリのコンテキスト</a></li> <li><a href="Servlet_Context.html">サーブレットコンテキスト</a></li> <li><a href="FCGI_Context.html">Fast CGIコンテキスト</a></li> <li><a href="LSAPI_Context.html">LSAPIコンテキスト</a></li> <li><a href="Proxy_Context.html">プロキシコンテキスト</a></li> <li><a href="CGI_Context.html">CGIコンテキスト</a></li> <li><a href="LB_Context.html">ロードバランサコンテキスト</a></li> <li><a href="Redirect_Context.html">コンテキストのリダイレクト</a></li> <li><a href="Rails_Context.html">Rack/Railsのコンテキスト</a></li> <li><span class="current"><a href="Module_Context.html">モジュールハンドラのコンテキスト</a></span></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socketプロキシ</a></li> </ul> </li> <li><a href="webconsole.html">Webコンソール</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">管理コンソール全般</a></li> <li><a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a></li> <li><a href="AdminListeners_General_Help.html">管理リスナー全般</a></li> <li><a href="AdminListeners_SSL_Help.html">管理リスナーのSSL</a></li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="App_Server_Context.html">App Server Context</a></div><div class="center"><a href="Context_Help.html">コンテキスト</a></div><div class="next"> </div></div> <h1>モジュールハンドラコンテキスト</h1><h2 id="top">目次</h2><section class="toc"><section class="toc-row"><header><a href="#moduleContext">モジュールハンドラコンテキスト</a></header><p> <a href="#expuri">URI</a> | <a href="#moduleNameSel">Module</a> | <a href="#extraHeaders">Extra Headers</a> | <a href="#realm">レルム</a> | <a href="#authName">認証名</a> | <a href="#required">必要(許可ユーザー/グループ)</a> | <a href="#accessAllowed">アクセス許可</a> | <a href="#accessDenied">アクセス拒否</a> | <a href="#extAuthorizer">承認者</a> | <a href="#addDefaultCharset">デフォルトの文字セットを追加</a> | <a href="#defaultCharsetCustomized">カスタマイズされたデフォルトの文字セット</a> | <a href="#enableIpGeo">IPジオロケーションを有効にする</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="moduleContext"><h3>モジュールハンドラコンテキスト<span class="ls-permlink"><a href="#moduleContext"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>モジュールハンドラコンテキストは、登録されたモジュールにURIを関連付けます。 モジュールは[サーバーモジュールの構成]タブに登録する必要があります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expuri"><h3>URI<span class="ls-permlink"><a href="#expuri"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストのURIを指定します。</p> <h4>構文</h4><p>URIは、プレーンURI( "/"で始まる)またはPerl互換の正規表現URI( "exp:"で始まる)にすることができます。 プレーンURIが "/"で終わる場合、このコンテキストはこのURIの下にすべてのサブURIを含みます。 コンテキストがファイルシステム上のディレクトリにマップされている場合は、末尾に「/」を追加する必要があります。</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#location">ロケーション</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="moduleNameSel"><h3>Module<span class="ls-permlink"><a href="#moduleNameSel"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>モジュールの名前。 モジュールはサーバーモジュールの設定タブに登録する必要があります。 登録されると、モジュール名がリスナーおよび仮想ホスト構成のドロップダウンボックスで使用可能になります。</p> <h4>構文</h4><p>ドロップダウンリストから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extraHeaders"><h3>Extra Headers<span class="ls-permlink"><a href="#extraHeaders"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>追加される余分な応答ヘッダーを指定します。 1行に1つのヘッダーを追加できます。 親コンテンツから継承したヘッダーを無効にするには、"NONE"を入力します。</p> <h4>構文</h4><p>各行に "[HeaderName]: [HeaderValue]"</p> <h4>例</h4><div class="ls-example">Cache-control: no-cache, no-store <br/> My-header: Custom header value</div><h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> Syntax and usage are similar to <a href="https://httpd.apache.org/docs/2.2/mod/mod_headers.html#header" target="_blank" rel="noopener noreferrer">Apache's mod_headers directives</a> for supported operations.<br/><br/> <span title="Information" class="ls-icon-info"></span> The 'Header' directive is is optional and can be excluded or left in when copying rules from elsewhere without issue.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="realm"><h3>レルム<span class="ls-permlink"><a href="#realm"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストの認可レルムを指定します。 このコンテキストにアクセスするには、有効なユーザー名とパスワードを指定する必要があります。 <span class="tagl"><a href="VHSecurity_Help.html#realms">認可レルム</a></span>は<span class="tagP"><a href="#VHSecurity_Help">バーチャルホストのセキュリティ</a></span>セクションに設定されています。 この設定では、各レルムの<span class="tagl"><a href="VHSecurity_Help.html#realmName">レルム名</a></span>が使用されます。</p> <h4>構文</h4><p>選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="authName"><h3>認証名<span class="ls-permlink"><a href="#authName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>現在のコンテキストの認証レルムの代替名を指定します。 指定しない場合、元のレルム名が使用されます。 認証名は、ブラウザのログインポップアップに表示されます。</p> <h4>構文</h4><p>テキスト</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="required"><h3>必要(許可ユーザー/グループ)<span class="ls-permlink"><a href="#required"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストにアクセスできるユーザー/グループを指定します。 これにより、複数のコンテキストにわたって1つのユーザー/グループデータベース(<span class="tagl"><a href="#realm">レルム</a></span>で指定)を使用できますが、そのデータベースの特定のユーザー/グループのみがこのコンテキストにアクセスできます。</p> <h4>構文</h4><p>構文はApache Requireディレクティブと互換性があります。 例えば: <ul> <li><span class="val">user username [username ...]</span> <br/> リストされたユーザーだけがこのコンテキストにアクセスできます。</li> <li> <span class="val">group groupid [groupid ...]</span><br/> リストされたグループに属するユーザーのみがこのコンテキストにアクセスできます。</li> </ul> この設定を指定しないと、すべての有効なユーザーがこのリソースにアクセスできます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessAllowed"><h3>アクセス許可<span class="ls-permlink"><a href="#accessAllowed"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストでリソースにアクセスできるIPまたはサブネットワークを指定します。 <span class="tagl"><a href="#accessDenied">アクセス拒否</a></span>とサーバー/バーチャルホスト・レベルのアクセス制御とともに、アクセシビリティは、クライアントのIPアドレスが入る最小の範囲によって決まります。</p> <h4>構文</h4><p>IP/サブネットワークのカンマ区切りリスト。</p> <h4>例</h4><div class="ls-example">サブネットワークは以下のように書くことができます <span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span>, 又は <span class="val">192.168.1.*</span>.</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessDenied"><h3>アクセス拒否<span class="ls-permlink"><a href="#accessDenied"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストでリソースにアクセスできないIPまたはサブネットワークを指定します。 <span class="tagl"><a href="#accessAllowed">アクセス許可</a></span>とサーバー/バーチャルホストレベルのアクセス制御とともに、アクセシビリティはクライアントのIPアドレスが入る最小の範囲で決まります。</p> <h4>構文</h4><p>IP/サブネットワークのカンマ区切りリスト。</p> <h4>例</h4><div class="ls-example">サブネットワークは以下のように書くことができます <span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span>, 又は <span class="val">192.168.1.*</span>.</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAuthorizer"><h3>承認者<span class="ls-permlink"><a href="#extAuthorizer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>権限のある/権限のないかの決定を生成するために使用できる外部アプリケーションを指定します。 現在、FastCGI Authorizerのみが使用可能です。 FastCGI Authorizerの役割の詳細については、<a href=" https://fastcgi-archives.github.io/ " target="_blank" rel="noopener noreferrer"> https://fastcgi-archives.github.io/ </a>を参照してください。 。</p> <h4>構文</h4><p>ドロップダウンリストから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="addDefaultCharset"><h3>デフォルトの文字セットを追加<span class="ls-permlink"><a href="#addDefaultCharset"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>コンテンツタイプが "text/html"または "text/plain"のいずれかのパラメータがない場合、文字セットタグを "Content-Type"レスポンスヘッダーに追加するかどうかを指定します。 <span class="val">Off</span>に設定すると、この機能は無効になります。 <span class="val">On</span>に設定すると、<span class="tagl"><a href="#defaultCharsetCustomized">カスタマイズされたデフォルトの文字セット</a></span>で指定された文字セットまたはデフォルトの "iso-8859-1"のいずれかが追加されます。</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="defaultCharsetCustomized"><h3>カスタマイズされたデフォルトの文字セット<span class="ls-permlink"><a href="#defaultCharsetCustomized"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p><span class="tagl"><a href="#addDefaultCharset">デフォルトの文字セットを追加</a></span>が<span class="val">On</span>のときに使用される文字セットを指定します。 これはオプションです。 デフォルト値は<span class="val"> iso-8859-1 </span>です。 <span class="tagl"><a href="#addDefaultCharset">デフォルトの文字セットを追加</a></span>が<span class="val"> Off </span>の場合、このエントリは無効です。</p> <h4>構文</h4><p>文字セットの名前。</p> <h4>例</h4><div class="ls-example">utf-8</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableIpGeo"><h3>IPジオロケーションを有効にする<span class="ls-permlink"><a href="#enableIpGeo"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p> IPジオロケーション検索を有効/無効にするかどうかを指定します。 サーバ、バーチャルホスト、コンテキストレベルで設定できます。 値 「未設定」を使用すると、IPジオロケーションはデフォルトで無効になります。</p> <h4>構文</h4><p>ラジオボックスから選択</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="ServGeneral_Help.html#useIpInProxyHeader">ヘッダーにクライアントIPを使用する</a></span>, <span class="tagl"><a href="ServGeneral_Help.html#geoipDBFile">DBファイルのパス</a></span>,</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ��������������������������������������������������������������������������������������������������������ja-JP/webconsole.html�������������������������������������������������������������������������������0000644�����������������00000013334�15027525531�0010504 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Open LiteSpeed Web Serverユーザーズマニュアル - Webコンソール</title> <meta name="description" content="Open LiteSpeed Web Serverユーザーズマニュアル - Webコンソール." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="../img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h3 class="ls-text-thin">OpenLiteSpeed Web Server <a href="index.html"> ユーザーズマニュアル</a></h3> <h5 class="ls-text-muted">Version 1.8 — Rev. 0</h5> <hr/> <div> <ul> <li><a href="license.html">ライセンス</a></li> <li><a href="intro.html">はじめに</a></li> <li><a href="install.html">インストール</a></li> <li> <a href="admin.html">管理</a> <ul class="level2"> <li><a href="ServerStat_Help.html">サービスマネージャ</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">セキュリティ</a></li> <li><a href="config.html">設定</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">サーバー全般</a></li> <li><a href="ServLog_Help.html">サーバーログ</a></li> <li><a href="ServTuning_Help.html">サーバーのチューニング</a></li> <li><a href="ServSecurity_Help.html">サーバーのセキュリティ</a></li> <li><a href="ExtApp_Help.html">外部アプリ</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGIアプリ</a></li> <li><a href="External_FCGI_Auth.html">Fast CGIオーソライザー</a></li> <li><a href="External_LSAPI.html">LSAPIアプリ</a></li> <li><a href="External_Servlet.html">サーブレットエンジン</a></li> <li><a href="External_WS.html">Webサーバー</a></li> <li><a href="External_PL.html">パイプロガー</a></li> <li><a href="External_LB.html">ロードバランサ</a></li> </ul> <li><a href="ScriptHandler_Help.html">スクリプトハンドラ</a></li> <li><a href="Rails_Help.html">Rack/Railsの設定</a></li> <li><a href="Module_Help.html">モジュール設定</a></li> <li><a href="Listeners_General_Help.html">リスナー全般</a></li> <li><a href="Listeners_SSL_Help.html">リスナーのSSL</a></li> <li><a href="Templates_Help.html">テンプレート</a></li> <li><a href="VirtualHosts_Help.html">バーチャルホストの基本</a></li> <li><a href="VHGeneral_Help.html">バーチャルホスト全般</a></li> <li><a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a></li> <li><a href="VHSSL_Help.html">バーチャルホストのSSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">コンテキスト</a></li> <ul class="level3"> <li><a href="Static_Context.html">静的コンテテキスト</a></li> <li><a href="Java_Web_App_Context.html">Java Webアプリのコンテキスト</a></li> <li><a href="Servlet_Context.html">サーブレットコンテキスト</a></li> <li><a href="FCGI_Context.html">Fast CGIコンテキスト</a></li> <li><a href="LSAPI_Context.html">LSAPIコンテキスト</a></li> <li><a href="Proxy_Context.html">プロキシコンテキスト</a></li> <li><a href="CGI_Context.html">CGIコンテキスト</a></li> <li><a href="LB_Context.html">ロードバランサコンテキスト</a></li> <li><a href="Redirect_Context.html">コンテキストのリダイレクト</a></li> <li><a href="Rails_Context.html">Rack/Railsのコンテキスト</a></li> <li><a href="Module_Context.html">モジュールハンドラのコンテキスト</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socketプロキシ</a></li> </ul> </li> <li><span class="current"><a href="webconsole.html">Webコンソール</a></span> <ul class="level2"> <li><a href="AdminGeneral_Help.html">管理コンソール全般</a></li> <li><a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a></li> <li><a href="AdminListeners_General_Help.html">管理リスナー全般</a></li> <li><a href="AdminListeners_SSL_Help.html">管理リスナーのSSL</a></li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="config.html">設定</a></div><div class="center"><a href="index.html">ホーム</a></div><div class="next"><a href="CompilePHP_Help.html">PHPのコンパイル</a> »</div></div> <h1>Webコンソール</h1> <p>Web Consoleセクションは、WebAdmin Consoleの設定を制御します。これらの設定の一部は次のとおりです:</p> <ul> <li>セッションタイムアウト</li> <li>ログ設定</li> <li>アクセス制御</li> <li>管理者の作成/削除</li> <li>管理者パスワードをリセット</li> <li>WebAdminリスナー & SSL設定</li> </ul> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������ja-JP/Listeners_SSL_Help.html�����������������������������������������������������������������������0000644�����������������00000063432�15027525531�0012011 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Open LiteSpeed Web Serverユーザーズマニュアル - リスナーSSL</title> <meta name="description" content="Open LiteSpeed Web Serverユーザーズマニュアル - リスナーSSL." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="../img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h3 class="ls-text-thin">OpenLiteSpeed Web Server <a href="index.html"> ユーザーズマニュアル</a></h3> <h5 class="ls-text-muted">Version 1.8 — Rev. 0</h5> <hr/> <div> <ul> <li><a href="license.html">ライセンス</a></li> <li><a href="intro.html">はじめに</a></li> <li><a href="install.html">インストール</a></li> <li> <a href="admin.html">管理</a> <ul class="level2"> <li><a href="ServerStat_Help.html">サービスマネージャ</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">セキュリティ</a></li> <li><a href="config.html">設定</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">サーバー全般</a></li> <li><a href="ServLog_Help.html">サーバーログ</a></li> <li><a href="ServTuning_Help.html">サーバーのチューニング</a></li> <li><a href="ServSecurity_Help.html">サーバーのセキュリティ</a></li> <li><a href="ExtApp_Help.html">外部アプリ</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGIアプリ</a></li> <li><a href="External_FCGI_Auth.html">Fast CGIオーソライザー</a></li> <li><a href="External_LSAPI.html">LSAPIアプリ</a></li> <li><a href="External_Servlet.html">サーブレットエンジン</a></li> <li><a href="External_WS.html">Webサーバー</a></li> <li><a href="External_PL.html">パイプロガー</a></li> <li><a href="External_LB.html">ロードバランサ</a></li> </ul> <li><a href="ScriptHandler_Help.html">スクリプトハンドラ</a></li> <li><a href="Rails_Help.html">Rack/Railsの設定</a></li> <li><a href="Module_Help.html">モジュール設定</a></li> <li><a href="Listeners_General_Help.html">リスナー全般</a></li> <li><span class="current"><a href="Listeners_SSL_Help.html">リスナーのSSL</a></span></li> <li><a href="Templates_Help.html">テンプレート</a></li> <li><a href="VirtualHosts_Help.html">バーチャルホストの基本</a></li> <li><a href="VHGeneral_Help.html">バーチャルホスト全般</a></li> <li><a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a></li> <li><a href="VHSSL_Help.html">バーチャルホストのSSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">コンテキスト</a></li> <ul class="level3"> <li><a href="Static_Context.html">静的コンテテキスト</a></li> <li><a href="Java_Web_App_Context.html">Java Webアプリのコンテキスト</a></li> <li><a href="Servlet_Context.html">サーブレットコンテキスト</a></li> <li><a href="FCGI_Context.html">Fast CGIコンテキスト</a></li> <li><a href="LSAPI_Context.html">LSAPIコンテキスト</a></li> <li><a href="Proxy_Context.html">プロキシコンテキスト</a></li> <li><a href="CGI_Context.html">CGIコンテキスト</a></li> <li><a href="LB_Context.html">ロードバランサコンテキスト</a></li> <li><a href="Redirect_Context.html">コンテキストのリダイレクト</a></li> <li><a href="Rails_Context.html">Rack/Railsのコンテキスト</a></li> <li><a href="Module_Context.html">モジュールハンドラのコンテキスト</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socketプロキシ</a></li> </ul> </li> <li><a href="webconsole.html">Webコンソール</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">管理コンソール全般</a></li> <li><a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a></li> <li><a href="AdminListeners_General_Help.html">管理リスナー全般</a></li> <li><a href="AdminListeners_SSL_Help.html">管理リスナーのSSL</a></li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="Listeners_General_Help.html">リスナー全般</a></div><div class="center"><a href="config.html">設定</a></div><div class="next"><a href="Templates_Help.html">バーチャルホストテンプレート</a> »</div></div> <h1>リスナーSSL</h1><h2 id="top">目次</h2><section class="toc"><section class="toc-row"><header><a href="#sslCert">SSL秘密鍵と証明書</a></header><p> <a href="#keyFile">秘密鍵ファイル</a> | <a href="#certFile">証明書ファイル</a> | <a href="#certChain">チェーン証明書</a> | <a href="#CACertPath">CA証明書パス</a> | <a href="#CACertFile">CA証明書ファイル</a></p></section> <section class="toc-row"><header><a href="#sslProtocolSetting">SSLプロトコル</a></header><p> <a href="#ciphers">暗号</a> | <a href="#enableECDHE">ECDH鍵交換を有効にする</a> | <a href="#enableDHE">DHキー交換を有効にする</a> | <a href="#DHParam">DHパラメータ</a></p></section> <section class="toc-row"><header>セキュリティ & 機能</header><p> <a href="#renegProtection">SSL再交渉保護</a> | <a href="#sslSessionCache">セッションキャッシュを有効にする</a> | <a href="#sslSessionTickets">セッションチケットを有効にする</a> | <a href="#enableSpdy">SPDY/HTTP2を有効にする</a> | <a href="#allowQuic">Open HTTP3/QUIC (UDP) port</a></p></section> <section class="toc-row"><header><a href="#sslOCSP">OCSPステープリング</a></header><p> <a href="#enableStapling">OCSPステープルを有効にする</a> | <a href="#ocspRespMaxAge">OCSPの応答最大年齢(秒)</a> | <a href="#ocspResponder">OCSPレスポンダ</a> | <a href="#ocspCACerts">OCSP CA証明書</a></p></section> <section class="toc-row"><header>クライアントの検証</header><p> <a href="#clientVerify">クライアントの検証</a> | <a href="#verifyDepth">検証の深さ</a> | <a href="#crlPath">クライアントの失効パス</a> | <a href="#crlFile">クライアント失効ファイル</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="sslCert"><h3>SSL秘密鍵と証明書<span class="ls-permlink"><a href="#sslCert"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>すべてのSSLリスナーには、ペアのSSL秘密鍵とSSL証明書が必要です。 複数のSSLリスナーは、同じ鍵と証明書を共有できます。<br/> OpenSSLなどのSSLソフトウェアパッケージを使用して、SSL秘密鍵を自分で生成することができます。 SSL証明書は、VeriSignやThawteのような認可された証明書の発行者から購入することもできます。 自分で証明書に署名することもできます。 自己署名証明書はWebブラウザから信頼されないため、重要なデータを含む公開Webサイトでは使用しないでください。 ただし、自己署名証明書は内部使用に十分適しており、 例えば LiteSpeed WebサーバーのWebAdminコンソールへのトラフィックを暗号化します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="keyFile"><h3>秘密鍵ファイル<span class="ls-permlink"><a href="#keyFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>SSL秘密鍵ファイルのファイル名。キーファイルは暗号化しないでください。</p> <h4>構文</h4><p>ファイル名への絶対パス又は$SERVER_ROOTからの相対パス</p> <h4>ヒント</h4><p>[セキュリティ]秘密鍵ファイルは、サーバーが実行されるユーザーへの読み取り専用アクセスを可能にするセキュリティ保護されたディレクトリに配置する必要があります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="certFile"><h3>証明書ファイル<span class="ls-permlink"><a href="#certFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>SSL証明書ファイルのファイル名。</p> <h4>構文</h4><p>ファイル名への絶対パス又は$SERVER_ROOTからの相対パス</p> <h4>ヒント</h4><p>[セキュリティ]証明書ファイルは、サーバーが実行されるユーザーへの読み取り専用アクセスを可能にする安全なディレクトリに配置する必要があります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="certChain"><h3>チェーン証明書<span class="ls-permlink"><a href="#certChain"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>証明書がチェーン証明書であるかどうかを指定します。 チェーン証明を格納するファイルは、PEM形式でなければならず、証明書は最下位レベル(実際のクライアントまたはサーバー証明書)から最上位(ルート)CAまでの連鎖の順序でなければなりません。</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="CACertPath"><h3>CA証明書パス<span class="ls-permlink"><a href="#CACertPath"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>証明機関(CA)の証明書が保存されるディレクトリを指定します。 これらの証明書は、クライアント証明書の認証およびサーバー証明書チェーンの構築に使用されます。サーバー証明書チェーンは、サーバー証明書に加えてブラウザーにも送信されます。</p> <h4>構文</h4><p>path</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="CACertFile"><h3>CA証明書ファイル<span class="ls-permlink"><a href="#CACertFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>チェーン証明書の証明機関(CA)のすべての証明書を含むファイルを指定します。 このファイルは、PEMでエンコードされた証明書ファイルを単に優先順に連結したものです。 これは、「CA証明書パス」の代替として、またはこれに加えて使用することができる。 これらの証明書は、クライアント証明書の認証およびサーバー証明書チェーンの構築に使用されます。サーバー証明書チェーンは、サーバー証明書に加えてブラウザーにも送信されます。</p> <h4>構文</h4><p>ファイル名への絶対パス又は$SERVER_ROOTからの相対パス</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslProtocolSetting"><h3>SSLプロトコル<span class="ls-permlink"><a href="#sslProtocolSetting"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>リスナーが受け入れたSSLプロトコルをカスタマイズします。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="ciphers"><h3>暗号<span class="ls-permlink"><a href="#ciphers"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>SSLハンドシェイクのネゴシエーション時に使用する暗号スイートを指定します。 LSWSは、SSL v3.0、TLS v1.0、およびTLS v1.2で実装された暗号スイートをサポートしています。</p> <h4>構文</h4><p>コロンで区切られた暗号仕様の文字列。</p> <h4>例</h4><div class="ls-example">ECDHE-RSA-AES128-SHA256:RC4:HIGH:!MD5:!aNULL:!EDH</div><h4>ヒント</h4><p>[セキュリティ] SSL暗号のベストプラクティスに従ったデフォルトの暗号を使用する場合は、このフィールドを空白のままにすることをお勧めします。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableECDHE"><h3>ECDH鍵交換を有効にする<span class="ls-permlink"><a href="#enableECDHE"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>さらにSSL暗号化のために楕円曲線 Diffie-Hellman鍵交換を使用できます。</p> <h4>構文</h4><p>ラジオボックスから選択</p> <h4>ヒント</h4><p>[セキュリティ] ECDH鍵交換は、RSA鍵だけを使用するより安全です。 ECDHとDHキーの交換は同等に安全です。<br/><br/> [パフォーマンス] ECDH鍵交換を有効にするとCPU負荷が増加し、RSA鍵だけを使用する場合よりも遅くなります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableDHE"><h3>DHキー交換を有効にする<span class="ls-permlink"><a href="#enableDHE"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>さらにSSL暗号化のためにDiffie-Hellman鍵交換を使用できます。</p> <h4>構文</h4><p>ラジオボックスから選択</p> <h4>ヒント</h4><p>[セキュリティ] DHキーの交換は、RSAキーを使用するよりも安全です。 ECDHとDHキーの交換は同等に安全です。<br/><br/> [パフォーマンス] DHキー交換を有効にするとCPU負荷が増加し、ECDHキー交換とRSAよりも遅くなります。 ECDH鍵交換が利用可能である場合に優先される。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="DHParam"><h3>DHパラメータ<span class="ls-permlink"><a href="#DHParam"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>DHキー交換に必要なDiffie-Hellmanパラメータファイルの場所を指定します。</p> <h4>構文</h4><p>ファイル名への絶対パス又は$SERVER_ROOTからの相対パス</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="renegProtection"><h3>SSL再交渉保護<span class="ls-permlink"><a href="#renegProtection"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>SSL再交渉保護を有効にするかどうかを指定します。 SSLハンドシェイクベースの攻撃に対して防御します。 デフォルト値は "Yes"です。</p> <h4>構文</h4><p>ラジオボックスから選択</p> <h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> This setting can be enabled at the listener and virtual host levels.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslSessionCache"><h3>セッションキャッシュを有効にする<span class="ls-permlink"><a href="#sslSessionCache"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>セッションIDキャッシングを有効にします。 「未設定」の場合、デフォルトは「いいえ」です。 (Opensslデフォルト)</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslSessionTickets"><h3>セッションチケットを有効にする<span class="ls-permlink"><a href="#sslSessionTickets"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>セッションチケットを有効にします。 「未設定」の場合、サーバーはopenSSLのデフォルトチケットを使用します。</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableSpdy"><h3>SPDY/HTTP2を有効にする<span class="ls-permlink"><a href="#enableSpdy"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>HTTP/2とSPDYは、ページロード時間を短縮する目的で、HTTPネットワークプロトコルの新バージョンです。 より多くの情報は<a href=" http://en.wikipedia.org/wiki/HTTP/2 " target="_blank" rel="noopener noreferrer"> http://en.wikipedia.org/wiki/HTTP/2 </a>で見つけることができます。</p> <h4>構文</h4><p>有効にするプロトコルを確認します。 すべてのボックスをチェックしないと、SPDYとHTTP/2のサポート(デフォルト)が有効になります。 SPDYとHTTP/2を無効にする場合は、「なし」のみをチェックし、その他のチェックボックスはすべてオフにします。</p> <h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> This setting can be set at the listener and virtual host levels.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="allowQuic"><h3>Open HTTP3/QUIC (UDP) port<span class="ls-permlink"><a href="#allowQuic"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Allows the use of the HTTP3/QUIC network protocol for virtual hosts mapped to this listener. For this setting to take effect, <span class="tagl"><a href="ServTuning_Help.html#quicEnable">Enable HTTP3/QUIC</a></span> must also be set to <span class="val">Yes</span> at the server level. Default value is <span class="val">Yes</span>.</p> <h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> When this setting is set to <span class="val">Yes</span>, HTTP3/QUIC can still be disabled at the virtual host level through the <span class="tagl"><a href="VHSSL_Help.html#vhEnableQuic">Enable HTTP3/QUIC</a></span> setting.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslOCSP"><h3>OCSPステープリング<span class="ls-permlink"><a href="#sslOCSP"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>オンライン証明書ステータスプロトコル(OCSP)は、デジタル証明書が有効かどうかを確認するより効率的な方法です。 OCSP応答者である他のサーバーと通信して、証明書失効リスト(CRL)をチェックする代わりに証明書が有効であることを確認します。<br/> OCSPステープリングは、このプロトコルのさらなる改良であり、証明書が要求されるたびにではなく、定期的な間隔でサーバーがOCSPレスポンダを確認できるようにします。 詳細については、<a href=" http://en.wikipedia.org/wiki/OCSP_Stapling " target="_blank" rel="noopener noreferrer"> OCSP Wikipedia </a>のページをご覧ください。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableStapling"><h3>OCSPステープルを有効にする<span class="ls-permlink"><a href="#enableStapling"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>OCSPステープルを有効にするかどうかを決定します。これは、公開鍵証明書を検証するより効率的な方法です。</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="ocspRespMaxAge"><h3>OCSPの応答最大年齢(秒)<span class="ls-permlink"><a href="#ocspRespMaxAge"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このオプションは、OCSP応答の許容可能な最大経過時間を設定します。 OCSP応答がこの最大年齢より古い場合、サーバーはOCSP応答者に新しい応答を要求します。 デフォルト値は<span class="val">86400</span>です。 この値を<span class="val">-1</span>に設定すると、最大年齢を無効にすることができます。</p> <h4>構文</h4><p>秒数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="ocspResponder"><h3>OCSPレスポンダ<span class="ls-permlink"><a href="#ocspResponder"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>使用するOCSPレスポンダのURLを指定します。 設定されていない場合、サーバーは認証局の発行者証明書に記載されているOCSPレスポンダに接続を試みます。 一部の発行者証明書には、OCSPレスポンダURLが指定されていない場合があります。</p> <h4>構文</h4><p><span class="val">http://</span>で始まるURL</p> <h4>例</h4><div class="ls-example"><span class="val">http://rapidssl-ocsp.geotrust.com </span></div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="ocspCACerts"><h3>OCSP CA証明書<span class="ls-permlink"><a href="#ocspCACerts"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>OCSP認証局(CA)証明書が格納されるファイルの場所を指定します。 これらの証明書は、OCSPレスポンダからのレスポンスを確認するために使用されます(また、そのレスポンスが偽装されていないか、または妥協されていないことを確認してください)。 このファイルには、証明書チェーン全体が含まれている必要があります。 このファイルにルート証明書が含まれていない場合、LSWSはファイルに追加することなくシステムディレクトリのルート証明書を見つけることができますが、この検証に失敗した場合はルート証明書をこのファイルに追加してください。<br/><br/> この設定はオプションです。 この設定が設定されていない場合、サーバーは自動的に<span class="tagl"><a href="#CACertFile">CA証明書ファイル</a></span>をチェックします。</p> <h4>構文</h4><p>ファイル名への絶対パス又は$SERVER_ROOTからの相対パス</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="clientVerify"><h3>クライアントの検証<span class="ls-permlink"><a href="#clientVerify"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>クライアント証明書認証のタイプを指定します。 使用できるタイプは次のとおりです: <ul> <li><b>None:</b> クライアント証明書は必要ありません。</li> <li><b>Optional:</b> クライアント証明書はオプションです。</li> <li><b>Require:</b> クライアントには有効な証明書が必要です。</li> <li><b>Optional_no_ca:</b> オプションと同じです。</li> </ul> デフォルトは "None"です。</p> <h4>構文</h4><p>ドロップダウンリストから選択</p> <h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> "None"または "Require"をお勧めします。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="verifyDepth"><h3>検証の深さ<span class="ls-permlink"><a href="#verifyDepth"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>クライアントに有効な証明書がないと判断する前に、証明書の検証の深さを指定します。 デフォルトは "1"です。</p> <h4>構文</h4><p>ドロップダウンリストから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="crlPath"><h3>クライアントの失効パス<span class="ls-permlink"><a href="#crlPath"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>取り消されたクライアント証明書のPEMエンコードされたCA CRLファイルを含むディレクトリを指定します。 このディレクトリのファイルはPEMでエンコードする必要があります。 これらのファイルは、ハッシュファイル名、hash-value.rNによってアクセスされます。 ハッシュファイル名の作成については、openSSLまたはApache mod_sslのドキュメントを参照してください。</p> <h4>構文</h4><p>パス</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="crlFile"><h3>クライアント失効ファイル<span class="ls-permlink"><a href="#crlFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>取り消されたクライアント証明書を列挙するPEMエンコードCA CRLファイルを含むファイルを指定します。 これは、代わりに、または<span class="tagl"><a href="#crlPath">クライアントの失効パス</a></span>に加えて使用することができます。</p> <h4>構文</h4><p>ファイル名への絶対パス又は$SERVER_ROOTからの相対パス</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ��������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������ja-JP/ExtApp_Help.html������������������������������������������������������������������������������0000644�����������������00000034347�15027525531�0010524 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Open LiteSpeed Web Serverユーザーズマニュアル - 外部アプリケーション</title> <meta name="description" content="Open LiteSpeed Web Serverユーザーズマニュアル - 外部アプリケーション." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="../img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h3 class="ls-text-thin">OpenLiteSpeed Web Server <a href="index.html"> ユーザーズマニュアル</a></h3> <h5 class="ls-text-muted">Version 1.8 — Rev. 0</h5> <hr/> <div> <ul> <li><a href="license.html">ライセンス</a></li> <li><a href="intro.html">はじめに</a></li> <li><a href="install.html">インストール</a></li> <li> <a href="admin.html">管理</a> <ul class="level2"> <li><a href="ServerStat_Help.html">サービスマネージャ</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">セキュリティ</a></li> <li><a href="config.html">設定</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">サーバー全般</a></li> <li><a href="ServLog_Help.html">サーバーログ</a></li> <li><a href="ServTuning_Help.html">サーバーのチューニング</a></li> <li><a href="ServSecurity_Help.html">サーバーのセキュリティ</a></li> <li><span class="current"><a href="ExtApp_Help.html">外部アプリ</a></span></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGIアプリ</a></li> <li><a href="External_FCGI_Auth.html">Fast CGIオーソライザー</a></li> <li><a href="External_LSAPI.html">LSAPIアプリ</a></li> <li><a href="External_Servlet.html">サーブレットエンジン</a></li> <li><a href="External_WS.html">Webサーバー</a></li> <li><a href="External_PL.html">パイプロガー</a></li> <li><a href="External_LB.html">ロードバランサ</a></li> </ul> <li><a href="ScriptHandler_Help.html">スクリプトハンドラ</a></li> <li><a href="Rails_Help.html">Rack/Railsの設定</a></li> <li><a href="Module_Help.html">モジュール設定</a></li> <li><a href="Listeners_General_Help.html">リスナー全般</a></li> <li><a href="Listeners_SSL_Help.html">リスナーのSSL</a></li> <li><a href="Templates_Help.html">テンプレート</a></li> <li><a href="VirtualHosts_Help.html">バーチャルホストの基本</a></li> <li><a href="VHGeneral_Help.html">バーチャルホスト全般</a></li> <li><a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a></li> <li><a href="VHSSL_Help.html">バーチャルホストのSSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">コンテキスト</a></li> <ul class="level3"> <li><a href="Static_Context.html">静的コンテテキスト</a></li> <li><a href="Java_Web_App_Context.html">Java Webアプリのコンテキスト</a></li> <li><a href="Servlet_Context.html">サーブレットコンテキスト</a></li> <li><a href="FCGI_Context.html">Fast CGIコンテキスト</a></li> <li><a href="LSAPI_Context.html">LSAPIコンテキスト</a></li> <li><a href="Proxy_Context.html">プロキシコンテキスト</a></li> <li><a href="CGI_Context.html">CGIコンテキスト</a></li> <li><a href="LB_Context.html">ロードバランサコンテキスト</a></li> <li><a href="Redirect_Context.html">コンテキストのリダイレクト</a></li> <li><a href="Rails_Context.html">Rack/Railsのコンテキスト</a></li> <li><a href="Module_Context.html">モジュールハンドラのコンテキスト</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socketプロキシ</a></li> </ul> </li> <li><a href="webconsole.html">Webコンソール</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">管理コンソール全般</a></li> <li><a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a></li> <li><a href="AdminListeners_General_Help.html">管理リスナー全般</a></li> <li><a href="AdminListeners_SSL_Help.html">管理リスナーのSSL</a></li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="ServSecurity_Help.html">サーバーのセキュリティ</a></div><div class="center"><a href="config.html">設定</a></div><div class="next"><a href="ScriptHandler_Help.html">スクリプトハンドラ</a> »</div></div> <h1>外部アプリケーション</h1><section class="ls-spacer-small-bottom">LiteSpeed Webサーバーは、動的コンテンツを処理および生成するために外部アプリケーションに要求を転送できます。 LiteSpeed Web Serverは、2.0以降、CGI、FastCGI、Webサーバー、サーブレットエンジン、LiteSpeed SAPIアプリケーション、ロードバランサ、およびパイプロガーの7種類の外部アプリケーションをサポートしています。 <ul> <li>CGIはCommon Gateway Interfaceの略です。 現在の標準はCGI / 1.1です。 CGIアプリケーションはスタンドアロンプロセスで動作します。 各要求に対してCGIプロセスが開始され、要求終了後に終了します。 </li> <li>FastCGIは、プロプライエタリなAPI(アプリケーションプログラミングインターフェイス)のオーバーヘッドと複雑さを導入することなく、CGIに内在するパフォーマンスの問題を解決する、高速でオープンで安全なWebサーバーインターフェイスです。 詳細については、{ext-href} https://fastcgi-archives.github.io/ {ext-href-end} https://fastcgi-archives.github.io/ {ext-href-end-a}をご覧ください。 LiteSpeed Web Serverでは、FastCGIアプリケーションは動的応答の生成(応答者の役割)または要求の承認(承認者の役割)の2つの役割を果たすことができます。 LiteSpeed Web Serverは、ローカルFastCGIとリモートFastCGIの2種類のFastCGIアプリケーションをさらに定義します。 ローカルFastCGIアプリケーションは、オンデマンドでWebサーバーによって自動的に開始されます。 リモートFastCGIアプリケーションは、Webサーバーによって開始されません。 (これらはリモートマシン上または同じマシン上で実行できます。) </li> <li>WebサーバーはHTTP 1.0 / 1.1プロトコルをサポートするサーバーアプリケーションです。 LiteSpeed Webサーバーは、透過的な逆プロキシとして機能し、Webサーバーとアプリケーションサーバーを高速化および保護します。 バックエンドWebサーバーと通信する場合、LiteSpeedは常に最高のパフォーマンスを達成するために永続的な接続を利用しようとします。</li> <li>サーブレットエンジンは、JavaサーブレットとJava Server Pagesを実装するApache TomcatやJettyのようなアプリケーションです。 LiteSpeedはAJPv1.3(Apache JServプロトコルバージョン1.3)を介してサーブレットエンジンと通信できます。 サーブレットエンジンはWebサーバーから起動できず、リモートマシン上で実行するように設定できます。 </li> <li>LiteSpeed SAPI(LiteSpeed Server Application Programming Interface)アプリケーションは、LiteSpeed Web Serverと最大限の効率を達成するために特別に設計された高速でスケーラブルなサーバーインターフェイスであるLiteSpeed Web Serverと通信するアプリケーションです。 LSAPIの動作メカニズムはFastCGIに似ていますが、LSAPIアプリケーションは同等のFastCGIアプリケーションより最大30%高速です。 LSAPIは、サポートされるアプリケーションに対してFastCGIよりも強く推奨されます。 (LSAPIは現在、PHP、Ruby、Pythonで書かれたアプリケーションをサポートしています)。 LSAPIの詳細については、次のURLを参照してください。 {ext-href}http://www.litespeedtech.com/products/litespeed-sapi/overview/{ext-href-end}http://www.litespeedtech.com/products/litespeed-sapi/overview/{ext-href-end-a}. </li> <li>ロードバランサはバーチャル外部アプリケーションで、ワークロードに基づいてバックエンドワーカーアプリケーションに要求を割り当てます。 ワーカーアプリケーションは、CGI、FastCGI、Webサーバー、サーブレットエンジン、またはLSAPIアプリケーションです。 1つのロードバランサの下でさまざまな種類のアプリケーションを混在させることができます。 ロードバランサとパイプロガーはワーカーアプリケーションとして使用できません。</li> <li>パイプロガーは、アクセスログをリアルタイムで処理したり、アクセスログをデータベースに書き込んだり、リアルタイム統計計算を実行したりするアプリケーションです。</li> </ul> CGIアプリケーションとは異なり、FastCGIアプリケーション、LSAPIアプリケーション、およびサーブレットエンジンは、要求の処理後に終了しません。 アプリケーションプロセスは維持され、持続し、できるだけ多くの要求を処理します。 ソケット接続は、複数のリクエストに対しても再利用できます。 外部アプリケーションは、{PAGE = ExtApp_Help}セクションで設定できます。 ただし、外部アプリケーションは単独では機能しません。 Webサーバーがどのアプリケーションにどの要求を送信するかを知るように、追加の設定を構成する必要があります。 LiteSpeed Web Serverでこれを設定するには、2つの方法があります: <ol> <li> 外部アプリケーションを特定のコンテキストのハンドラとして設定します。</li> <li> ファイルサフィックスバインディングを使用して、外部アプリケーションをスクリプト言語のハンドラとして設定します。</li> </ol> FastCGIアプリケーション、LSAPIアプリケーション、Webサーバー、サーブレットエンジン、およびロードバランサは、コンテキストまたはスクリプトサフィックスを処理するように構成する前に、{PAGE=ExtApp_Help}セクションで定義する必要があります。 {PAGE=ExtApp_Help}セクションでCGIアプリケーションを定義する必要はありません。 外部アプリケーションは、サーバーレベルまたはバーチャルホストレベルで構成できます。 サーバーレベルで構成すると、アプリケーションはすべてのバーチャルホストで使用できます。 バーチャルホストレベルで設定すると、そのバーチャルホストだけが使用できます。</section> <h2 id="top">目次</h2><section class="toc"><section class="toc-row"><header>外部アプリケーション設定</header><p> <a href="#extAppType">タイプ</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="extAppType"><h3>タイプ<span class="ls-permlink"><a href="#extAppType"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>外部アプリケーションのタイプを指定します。 アプリケーションタイプは、提供するサービスまたはサーバーとの通信に使用するプロトコルによって区別されます。 以下から選んでください。 <ul> <li><span class="val">FastCGI</span>: <span class="val">Responder</span>ロールを持つFastCGIアプリケーションです。</li> <li><span class="val">FastCGI Authorizer</span>: <span class="val">Authorizer</span>ロールを持つFastCGIアプリケーション</li> <li><span class="val">Servlet Engine</span>: tomcatなどのAJPv13コネクタを持つサーブレットエンジンです。</li> <li><span class="val">Web Server</span>: HTTPプロトコルをサポートするWebサーバーまたはアプリケーションサーバー。</li> <li><span class="val">LiteSpeed SAPI App</span>: LSAPIプロトコルを使用してWebサーバーと通信するアプリケーションです。</li> <li><span class="val">Load Balancer</span>:ワーカーアプリケーション間の負荷を分散できるバーチャルアプリケーションです。</li> <li><span class="val">Piped Logger</span>: STDINストリームで受け取ったアクセスログエントリを処理できるアプリケーションです。</li> </ul></p> <h4>構文</h4><p>ドロップダウンリストから選択</p> <h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> ほとんどのアプリケーションは、LSAPIまたはFastCGIプロトコルを使用します。 LSAPIはPHP、Ruby、Pythonをサポートしています。 PerlはFastCGIで使用できます。 (PHP、Ruby、およびPythonはFastCGIを使用して実行するように設定することもできますが、LSAPIを使用する方が高速です)。Javaはサーブレットエンジンを使用します。</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> �����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������ja-JP/license.html����������������������������������������������������������������������������������0000644�����������������00000164611�15027525531�0007773 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Open LiteSpeed Web Serverユーザーズマニュアル - ライセンス</title> <meta name="description" content="Open LiteSpeed Web Serverユーザーズマニュアル - ライセンス." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="../img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h3 class="ls-text-thin">OpenLiteSpeed Web Server <a href="index.html"> ユーザーズマニュアル</a></h3> <h5 class="ls-text-muted">Version 1.8 — Rev. 0</h5> <hr/> <div> <ul> <li><span class="current"><a href="license.html">ライセンス</a></span></li> <li><a href="intro.html">はじめに</a></li> <li><a href="install.html">インストール</a></li> <li> <a href="admin.html">管理</a> <ul class="level2"> <li><a href="ServerStat_Help.html">サービスマネージャ</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">セキュリティ</a></li> <li><a href="config.html">設定</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">サーバー全般</a></li> <li><a href="ServLog_Help.html">サーバーログ</a></li> <li><a href="ServTuning_Help.html">サーバーのチューニング</a></li> <li><a href="ServSecurity_Help.html">サーバーのセキュリティ</a></li> <li><a href="ExtApp_Help.html">外部アプリ</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGIアプリ</a></li> <li><a href="External_FCGI_Auth.html">Fast CGIオーソライザー</a></li> <li><a href="External_LSAPI.html">LSAPIアプリ</a></li> <li><a href="External_Servlet.html">サーブレットエンジン</a></li> <li><a href="External_WS.html">Webサーバー</a></li> <li><a href="External_PL.html">パイプロガー</a></li> <li><a href="External_LB.html">ロードバランサ</a></li> </ul> <li><a href="ScriptHandler_Help.html">スクリプトハンドラ</a></li> <li><a href="Rails_Help.html">Rack/Railsの設定</a></li> <li><a href="Module_Help.html">モジュール設定</a></li> <li><a href="Listeners_General_Help.html">リスナー全般</a></li> <li><a href="Listeners_SSL_Help.html">リスナーのSSL</a></li> <li><a href="Templates_Help.html">テンプレート</a></li> <li><a href="VirtualHosts_Help.html">バーチャルホストの基本</a></li> <li><a href="VHGeneral_Help.html">バーチャルホスト全般</a></li> <li><a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a></li> <li><a href="VHSSL_Help.html">バーチャルホストのSSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">コンテキスト</a></li> <ul class="level3"> <li><a href="Static_Context.html">静的コンテテキスト</a></li> <li><a href="Java_Web_App_Context.html">Java Webアプリのコンテキスト</a></li> <li><a href="Servlet_Context.html">サーブレットコンテキスト</a></li> <li><a href="FCGI_Context.html">Fast CGIコンテキスト</a></li> <li><a href="LSAPI_Context.html">LSAPIコンテキスト</a></li> <li><a href="Proxy_Context.html">プロキシコンテキスト</a></li> <li><a href="CGI_Context.html">CGIコンテキスト</a></li> <li><a href="LB_Context.html">ロードバランサコンテキスト</a></li> <li><a href="Redirect_Context.html">コンテキストのリダイレクト</a></li> <li><a href="Rails_Context.html">Rack/Railsのコンテキスト</a></li> <li><a href="Module_Context.html">モジュールハンドラのコンテキスト</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socketプロキシ</a></li> </ul> </li> <li><a href="webconsole.html">Webコンソール</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">管理コンソール全般</a></li> <li><a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a></li> <li><a href="AdminListeners_General_Help.html">管理リスナー全般</a></li> <li><a href="AdminListeners_SSL_Help.html">管理リスナーのSSL</a></li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev"> </div><div class="center"><a href="index.html">ホーム</a></div><div class="next"><a href="intro.html">導入</a> »</div></div> <section class="ls-eula"> <h1>GNU一般公衆利用許諾契約書v3</h1> <h3>GNU一般公衆利用許諾契約書<br /> バージョン 3, 2007年6月29日</h3> <p>Copyright (C) 2007 フリーソフトウェア財団, Inc. <http://fsf.org/> 本ライセンス文書を、一字一句忠実に複製、頒布することは許可する。しか し変更は認めない</p> <h4>はじめに</h4> <p>GNU 一般公衆利用許諾書は、ソフトウェアやその他の種類の著作物のための、フリーかつコピーレフトを主張するライセンスです。</p> <p>ソフトウェアやその他の実用的著作物向けのライセンスの大半は、あなたから著作物を共有したり変更したりする自由を奪い去るよう設計されています。</p> <p>それらとは対照的に、GNU一般公衆利用許諾書は、あなたに対してあるプログラムの全てのバージョンを共有、変更する自由を保証すること、すなわち、そのソフトウェアがそのユーザすべてにとってフリーでありつづけることを保証することを目的としています。</p> <p>私たちフリーソフトウェア財団(Free Software Foundation)は、GNU一般公衆利用許諾書を私たちのソフトウェアの大半に適用しています。</p> <p>その作者が私たちと同様の方法で公開するならば、他のいかなる著作物にも適用することが可能です。もちろん、あなたのプログラムにも適用することができます。</p> <p>私たちがフリーソフトウェアについて語るとき、私たちは自由について言及しているのであって、価格は問題にしていません。</p> <p>私たちが用意した一般公衆利用許諾書の数々は、フリーソフトウェアのコピーを頒布する(そして希望によっては頒布に際して手数料を要求する)自由をあなたに保証すべく設計されています。</p> <p>すなわち、ソースコードを受領するか、望めばそれを手に入れられるということ、ソフトウェアを変更し、その一部を新たなフリープログラムで利用することができるということ、そしてこうしたことが可能であることをあなたが知っているということが保証されるのです。</p> <p>あなたの権利を守るため、私たちは誰か他人が上記のようなあなたの権利を否定したり、権利を放棄するように求めることを防ぐ必要があります。</p> <p>そこで、あなたがソフトウェアのコピーを頒布したり改変したりする場合、あなたにはある種の責任が発生します。それは、他人の自由を尊重するという責任です。</p> <p>たとえば、本許諾書が適用されたプログラムのコピーをあなたが頒布する場合、それが無料であろうと手数料を取る場合であろうと、あなたは受領者たちに、あなた自身が受け取ったのと同じ自由を渡さなければなりません。</p> <p>あなたは、彼らもまた、ソースコードを受領するか後に得られることを保証しなければなりません。</p> <p>そしてあなたは、彼らに本許諾書の条項を示し、彼らの権利について彼らに知らしめなければなりません。</p> <p>GNU GPLを利用する開発者は、あなたの権利を2段階の手順を踏んで守ります。</p> <p>その手順とは、(1) ソフトウェアに著作権を主張し、(2) あなたに本許諾書を提示して、ソフトウェアを複製、頒布、または改変する法的な許可を与える、というものです。</p> <p>開発者や作者を守るため、GPLでは、このフリーソフトウェアには何の保証もないということを明確に説明しています。</p> <p>ユーザと開発者両方の便宜のため、GPLでは改変されたバージョンには変更された旨を印づけるよう要求しており、改変されたバージョンの問題が、誤って以前のバージョンの作者に帰せられることがないようにしています。</p> <p>一部の機器は、それらに収録されたソフトウェアを改変した上で再びインストールしたり、実行したりするために必要なアクセスを、製造者には拒否しないにもかわらずユーザに対しては拒否するよう設計されています。</p> <p>これは、ユーザが自らの有するソフトウェアを変更する自由を守るというGPLの目的とは、根本的に相容れません。</p> <p>このような技術の濫用は、往々にして個人使用向けの製品の分野で見られるものですが、まさにこのような分野こそ、こうした慣行が最も容認しがたいものとなるのです。</p> <p>そこで私たちは、このバージョンのGPLを、そうした製品においてこの種の慣行を禁止するように設計しました。</p> <p>もし同種の問題が他の領域にまで相当程度広がってきた場合には、私たちはユーザの自由を守るためのに必要とされるだけ、GPLの将来のバージョンにおいてこの規定をそうした領域にも拡大すべく準備を整えています。</p> <p>最後に、すべてのプログラムはソフトウェア特許によって絶え間なく脅かされています。</p> <p>およそ国家は、特許が汎用コンピュータにおけるソフトウェアの開発と利用を制限することを認めるべきではありません。</p> <p>しかし、そういったことを認めてしまっている地域においては、私たちは、特許がフリーなプログラムに適用され、実質的にプログラムがプロプライエタリにされてしまうという特別な脅威を避けたいと思います。</p> <p>こうした事態を防ぐために、GPLでは、プログラムを非フリーとするために特許を使うことはできないということを保証します。</p> <p>複製、頒布、改変に関する正確な利用条件は以下で述べていきます。</p> <h3>利用条件</h3> <h4>0. 定義</h4> <p>「本許諾書」(The License)とは、GNU 一般公衆利用許諾書のバージョン3を指す。</p> <p>「『コピーライト』」(Copyright)とは、いわゆる著作権のみならず、半導体マスクのようなその他の作品に適用される、著作権に類似した法的権利をも意味する。</p> <p>「『プログラム』」(The Program)とは、本許諾書の下でライセンスされた、『コピーライト』が主張可能な作品すべてを意味する。個々のライセンシーは「あなた」として表現される。ライセンシーは個人でも組織でも構わない。</p> <p>ある作品の「改変」(modify)とは、その作品の全体ないし一部を、『コピーライト』の許可を必要とするようなやり方で複製ないし翻案することを意味する。</p> <p>ただし、完全に同一なコピーを作成する場合は除く。</p>改変の結果出来た作品は、以前の作品の「改変されたバージョン」(modified version)、または、以前の作品を「基にした」(based on)作品と呼ばれる。</p> <p>「『保護された作品』」(covered work)とは、改変されていない『プログラム』か、『プログラム』を基にした作品のいずれかを指す。</p> <p>ある作品の「普及」(propagate)とは、コンピュータ上で実行すること、または私的なコピーを改変することを除き、適用可能な『コピーライト』法規の下で許可無く行うと、権利侵害として、直接的、あるいは間接的にあなたが責任を問われる何らかの行為を意味する。</p> <p>普及には、複製、頒布(改変の有無を問わない)、公衆への利用可能化が含まれ、またいくつかの国々では他の活動も含まれる可能性がある。</p> <p>ある作品の「伝達」(convey)とは、第三者がコピーを作成ないし受領するのを可能とする普及行為すべてを意味する。</p> <p>ただし、コンピュータネットワーク越しにユーザとやりとりするだけで、コピーの転送は伴わない場合は、伝達ではない。</p> <p>対話的なユーザインターフェースが「『適切な法的告知』」(Appropriate Legal Notices)を表示するという場合、そのインターフェースは(1)適切な『コピーライト』告知を表示し、(2)ユーザに対して、その作品には何の保証もない(別途保証が提供されている場合は除く)ということ、ライセンシーはその作品を本許諾書の下で伝達できるということ、そして本許諾書のコピーを見るにはどうしたらよいかということを便利かつ顕著に視認できるような機能を含むものとする。</p> <p>もしインターフェースが、メニューのようなユーザコマンドやオプションの一覧を表示するならば、その一覧中には上記の基準を満たすようなアイテムが目立つように含まれていなければならない。</p> <h4>1. ソースコード</h4> <p>ある作品の「ソースコード」(source code)とは、その作品に改変を加えるに当たって好ましいと考えられる形式のことである。</p> <p>「オブジェクトコード」 (object code)とは、作品がとりうるソースコード以外の形式すべてを意味する。</p> <p>「標準インターフェース」(Standard Interface)とは、標準化団体として認知された組織によって定義された公式な標準か、ある特定のプログラミング言語向けに指定されたインターフェースの場合には、その言語を利用する開発者の間で広く使われているインターフェースのことを指す。</p> <p>実行可能な作品の「『システムライブラリ』」(System Libraries)とは、(a)「主要コンポーネント」(Major Component)の頒布物に通常含まれるが、その主要コンポーネントの一部ではなく、かつ(b)作品をその「主要コンポーネント」といっしょに利用することを可能にする、あるいは公衆にとってソースコード形式で利用可能な実装がひとつは存在する標準インターフェースを提供するためにのみ機能するものすべてを意味する。ただし、全体としての作品そのものは除く。</p> <p>ここでいう「主要コンポーネント」とは、実行可能な作品がその上で実行されるある特定のオペレーティングシステム(そういったものが必要ならば)の主要で不可欠な一部分(カーネルやウィンドウシステムなど)、あるいはその作品を作成するのに使われるコンパイラ、実行するのに使われるオブジェクトコードインタプリタなどを意味する。</p> <p>オブジェクトコード形式の作品に「『対応するソース』」(Corresponding Source)とは、その作品を生成、インストール、(実行可能な作品に関しては)オブジェクトコードを実行、または作品を改変する上で必要とされるソースコードのすべてを意味する。この場合、そうした活動をコントロールするためのスクリプトは『対応するソース』に含まれるが、その作品にとっての『システムライブラリ』や、先ほど列挙した活動を行う上で改変されることなく利用されるものの作品の一部ではない、汎用のツールや一般的に利用可能なフリープログラムは除外される。</p> <p>例えば『対応するソース』には、その作品のソースファイルと連携するインターフェース定義ファイルに加え、共有ライブラリや動的にリンクされた下位プログラムと作品のその他の部分との間での親密なデータのやりとりやコントロールフローなどのために、その作品が設計上明確に必要とする、そうした共有ライブラリや下位プログラムのソースコードなどが含まれる。</p> <p>『対応するソース』には、ユーザが『対応するソース』の他の部分から自動的に再生成できるものを含む必要はない。</p> <p>ソースコード形式の作品にとっての『対応するソース』とは、その作品そのものである。</p> <h4>2. 基本的な許可</h4> <p>本許諾書の下で認められるすべての権利は、『プログラム』に主張される『コピーライト』の条項に基づき授与されるものであり、ここで述べられた条件が満たされている限り覆すことはできない。</p> <p>本許諾書は、改変されていない『プログラム』をあなたが無制限に実行することを許可し、明示的に確約する。</p> <p>『保護された作品』を実行することから得られた出力結果は、その出力内容が『保護された作品』を構成する場合のみ本許諾書で保護される。</p> <p>本許諾書は、あなたが有するフェアユースまたはその同等物の権利を、『コピーライト』法規によって提供される通りに承認する。</p> <p>その他の状況においてあなたのライセンスが有効である限り、『保護された作品』の、伝達を伴わない作成、実行、および普及は無条件に行うことができる。</p> <p>他者にあなた専用の改変を行わせる、あるいは他者にあなたがそういった作品を実行するための機能を提供させるということが唯一の目的であれば、『保護された作品』を他者に伝達することができる。</p> <p>ただしその場合、あなたが『コピーライト』を支配していない部分すべての伝達に関しては、本許諾書の条項に従わなければならない。</p> <p>従って、あなたのために『保護された作品』を作成または実行する者は、専らあなたのためだけに、あなたの監督と支配の下で、あなたとの関係の範囲外ではあなたが『コピーライト』を有する一部分のいかなるコピーをも作成することを禁止するという条件の下で行わなければならないということになる。</p> <p>上記以外のあらゆる状況下においては、伝達は以下で述べる条件の下でのみ許可される。再許諾は認められない。下記第10項により、再許諾は必要ないからである。</p> <h4>3. ユーザの法的権利を、技術的保護手段の回避を禁ずる法律から守る</h4> <p>『保護された作品』は、1996年12月20日に採択されたWIPO著作権条約第11項の下での義務を満たす適用可能な法のいずれか、あるいはそれに類似の法が、回避の禁止または制限の対象として規定する、「効果的な技術的手段」(effective technological measure)の一部として見なされてはならない。</p> <p>あなたが『保護された作品』を伝達する場合、『保護された作品』に関して本許諾書の下で権利を行使することにより、技術的手段の回避に影響が出る範囲において、そのような手段の回避を禁じるいかなる法的権力をも放棄することになる。</p> <p>また、あなたはその作品のユーザに対して、技術的手段の回避を禁じるためにあなたや第三者の法的権利を強制するための手段として、その作品の動作や改変を制限するいかなる意図も否認することになる。</p> <h4>4. 一字一句忠実なコピーの伝達</h4> <p>あなたは、自分が受領した『プログラム』のソースコードと一字一句同じコピーであれば、いかなる媒体でも伝達することができる。</p> <p>ただしその場合、あなたはそれぞれのコピーにおいて、目立つように、かつ適切な形で、ふさわしい『コピーライト』告知を掲載しなければならない。</p> <p>すなわち、本許諾書と、下記第7項に従い追加された非許可的条項のすべてがそのコードに適用される旨の告知を掲載し、あらゆる保証が存在しない旨の告知をすべてそのまま保全し、かつ『プログラム』の受領者すべてに、『プログラム』といっしょにこの許諾書のコピーを与えなければならない。</p> <p>あなたは、自分が伝達するコピーのそれぞれに関していかなる価格を付けても良いし、無料で伝達しても構わない。</p> <p>また、報酬を取ってサポートや保証保護(warranty protection)を提供しても良い。</p> <h4>5. 改変されたバージョンのソースの伝達</h4> <p>あなたは、『プログラム』を基にした作品、あるいはそうした作品を『プログラム』から作成するための改変点を、上記第4項の規定に従ってソースコード形式で伝達することができる。ただしその場合、あなたは以下に示す条件のすべてを満たさなければならない:</p> <ul> <li> a)作品には、あなたが作品を改変したということと、改変に関連した日時を記述した告知を目立つように載せなければならない。 </li> <li> b)作品には、それが本許諾書と、下記第7項に従って追加された条件すべての下で公開されていることを記述した告知を目立つように載せなければならない。この条件は、上記第4項における「告知をすべてそのまま保全」するための条項を改変する。 </li> <li> c)作品の全部分を、総体として、コピーを所有するに至った人全員に、本許諾書の下でライセンスしなければならない。そこで、本許諾書は、本許諾書第7項に基づく適用可能な追加的条項のすべてとともに、作品全体に、すなわちその全部分に、それらがどのようにパッケージされているかに関わらず適用されることになる。本許諾書は、これ以外のやり方には作品をライセンスする許可を与えないが、あなたが本許諾書以外で別途許可を得ていた場合には、それによって得られた許可まで無効とするものではない。 </li> <li> d)改変された作品が対話的なユーザインターフェースを有する場合、それらのインターフェースは『適切な法的告知』を表示しなければならない。ただし、『プログラム』に元々『適切な法的告知』を表示しない対話的なインターフェースがある場合、あなたの作品で表示するようにする必要はない。 </li> </ul> <p>一巻の記憶装置の中か頒布媒体上で、『保護された作品』と、本来『保護された作品』の拡張ではなく、『保護された作品』とより大規模なプログラムを形成するような形で結合されているわけでもないその他の分離かつ独立した作品とをまとめた編集物は、編集作業とそれに由来する『コピーライト』が、個々の作品が許可する範囲を越えて編集物のユーザの作品へのアクセスや法的権利を制限するのに使われない限り、「集積物」(aggregate)と呼ばれる。単に『保護された作品』を集積物に含めるだけでは、その集積物の他の部分にまで本許諾書が適用されるということにはならない。</p> <h4>6. ソース以外の形式における伝達</h4> <p>あなたは、オブジェクトコード形式の『保護された著作物』を、上記第4項および第5項の規定に従って伝達することができる。ただしその場合、あなたは機械読み取り可能な『対応するソース』も本許諾書の条件に従って、以下のいずれかの方法で伝達しなければならない。</p> <ul> <li> a)オブジェクトコードを物理的製品(物理的頒布媒体を含む)で、あるいはそれに組み込んで伝達する。その際、『対応するソース』を、ソフトウェアのやりとりで一般的に使われる耐久性のある物理的媒体に固定していっしょに頒布する。 </li> <li> b)オブジェクトコードを物理的製品(物理的頒布媒体を含む)で、あるいはそれに組み込んで伝達する。その際、最低でも3年間、あるいはあなたがその製品モデルに補修用部品やカスタマーサポートを提供する限り有効な、書面による申し出を添付する。その申し出には、(1)オブジェクトコードを所有する者すべてに対して、その製品に含まれるソフトウェアのうち本許諾書で保護されるものすべてに『対応するソース』のコピーを、ソフトウェアのやりとりで一般的に使われる耐久性のある物理的媒体で頒布する旨を記載する。その際、物理的にこのソースの伝達を行うのにかかる正当なコスト以上の価格を要求してはならない。あるいは、(2)『対応するソース』を無料でネットワークサーバから複製するためのアクセスを提供する旨を記載する。 </li> <li> c)オブジェクトコードの個々のコピーを、対応するソースを提供するという書面による申し出のコピーといっしょに伝達する。この選択肢は特別な場合、かつ非商業的な場合のみに、そしてあなたがオブジェクトコードを上記小項6bに合致した申し出といっしょに受領した場合にのみに認められる。 </li> <li> d)オブジェクトコードを、指定の場所から複製するためのアクセスを提供することによって伝達し、『対応するソース』に対しても同じ場所を通じて同じ方法で複製するための同等のアクセスを提供する。伝達は無料でも手数料を課しても構わないが、『対応するソース』に対して追加的な課金を行ってはならない。受領者に対して、『対応するソース』をオブジェクトコードといっしょに複製することを義務づける必要はない。オブジェクトコードの複製元がネットワークサーバの場合、対応するソースは同等の複製機能をサポートする異なったサーバ(あなたか第三者が運営)上にあっても良い。その場合、オブジェクトコードの傍らに、『対応するソース』はどこで見つけられるかを明確に指示しておかなければならない。どのサーバが『対応するソース』をホストするかに関わらず、あなたは『対応するソース』がこれらの条項を満たすために必要なかぎり利用可能であることを保証する責任がある。 </li> <li> e)オブジェクトコードをピア・ツー・ピア伝送を使って伝達する。ただしこの場合、あなたは上記小項6dに従い、その作品のオブジェクトコードと『対応するソース』がどこで一般公衆に無料で提供されるのかということを他のピアに知らせておかなければならない。 </li> </ul> <p>オブジェクトコードの分離した一部であり、そのソースコードが『対応するソース』から『システムライブラリ』として除外されているものは、オブジェクトコード作品を伝達する場合に含める必要はない。</p> <p>「ユーザ製品」(UserProduct)とは、(1)「コンシューマ製品」(consumerproduct)、すなわち、個人、子供、あるいは家庭用に通常使用される有形個人資産すべてか、あるいは(2)居住所における導入を目的に設計ないし販売されるものすべてを指す。</p> <p>ある物品がコンシューマ製品であるかを決定する際疑義がある場合には、極力範囲を広げる方向で決定されるべきである。</p> <p>ここで、ある特定のユーザによって受領されたある特定の製品にとっての「通常使用」(nomallyused)とは、その種の製品において典型的な、あるいは一般的な利用のことであり、その特定のユーザが置かれた状況や、その特定のユーザがその製品を実際にどう使っているか、どう使うことを予期しているか、あるいは予期されているかとは関係ない。</p> <p>その製品に相当な商業的、産業的または非コンシューマ的な利用法があったとしても、そうした利用がその製品の唯一重要な利用形態を代表するものでない限り、その製品はコンシューマ製品である。</p> <p>ユーザ製品の「『インストール用情報』」(InstallationInformation)とは、ユーザ製品内の『保護された作品』に関して、『対応するソース』の改変されたバージョンから得られる『保護された作品』の改変されたバージョンを、インストール、実行するために必要な手法、手順、認証キーやその他の情報 すべてを意味する。</p> <p>この情報は、改変されたオブジェクトコードの継続的な動作が、改変が為されたということによってのみ拒否されたり妨害されることが決してないことを保証するのに十分なものでなければならない。</p> <p>本節の下において、作品をユーザ製品の内で、またはユーザ製品と共に、あるいは特にユーザ製品での利用を念頭においてオブジェクトコードで伝達し、またその伝達がユーザ製品の受領者への所有と利用の権利の永遠ないし有期の移転の一部として起こる場合(移転がどのように行われるかは問わない)、この条項の下で『対応するソース』は『インストール用情報』と共に提供されなければならない。</p> <p>しかしこの条件は、あなたと第三者のいずれもが改変されたオブジェクトコードをユーザ製品にインストールする能力を有していない際には適用されない(例えば、作品がROMにインストールされている場合)。</p> <p>『インストール用情報』を提供する条件には、受領者によって改変ないしインストールされた作品、あるいはそうした作品が改変ないしインストールされたユーザ製品に対し、サービスや保証、アップデートを提供しつづけるという条件は含まれない。</p> <p>改変自体がネットワークの運用に実質的かつ有害な影響をもたらし、ネットワークを介したコミュニケーションのプロトコルや規則に違反する場合には、ネットワークアクセスを拒否しても構わない。</p> <p>伝達される『対応するソース』や提供される『インストール用情報』が本節を満たすためには、それらが公に文書化された形式で(かつ公衆に対してソースコード形式で利用可能な実装とともに)提供されなければならない。</p> <p>この場合、これらの圧縮展開や読み込み、複製に特別なパスワードやキーを必要としてならない。</p> <h4>7. 追加的条項</h4> <p>「追加的許可」(Additionalpermissions)とは、本許諾書が課す条件に一つかそれ以上の例外を設けることにより、本許諾書の条項を補足する条項のことである。</p> <p>『プログラム』全体に適用可能な追加的許可は、適用可能な法の下でそれらが有効である限り、あたかもそれらが本許諾書に含まれているかのように扱われなければならない。</p> <p>追加的許可が『プログラム』の一部にのみ適用される場合、その部分に関してはそういった追加的許可の下で別途利用可能だが、『プログラム』全体としては追加的許可に関わりなく本許諾書によってのみ管理される。</p> <p>あなたが『保護された作品』のコピーを伝達する場合、あなたは追加的許可をそのコピー、あるいはその一部から削除することを選択できる(追加的許可は、あなたが作品をある種の形で改変する際には、そうした許可自身の削除を要求するような形で書かれてもよい)。</p> <p>あなたは、あなたによって『保護された作品』に追加され、あなたが適切な『コピーライト』許可を有するか、与えることができる限り、その一部分に追加的許可を設定することができる。</p> <p>本許諾書の他の条件に関わらず、あなたが『保護された作品』に追加した一部分について(その部分の『コピーライト』保有者らによって正式に許可されていれば)、本許諾書の条項を、以下に示す条項で補足することができる: </p> <ul> <li> a)本許諾書第15項および第16項の条項とは異なった形で保証の否認や責任の限定を主張する。あるいは、 </li> <li> b)追加した一部分において、明示的で妥当な法的告知や作者特定の保全、またはそれを含む作品において『適切な法的告知』の表示を要求する。あるいは、 </li> <li> c)追加した一部分の出自を不当に表示することを禁じるか、あるいはそのような一部分の改変されたバージョンはオリジナルのバージョンとは異なっているということを適切な方法で印づけることを要求する。あるいは、 </li> <li> d)その一部分のライセンサーや作者の名前を、宣伝目的で利用することを制限する。あるいは、 </li> <li> e)商品名や商標、サービスマークの利用に関して、商標法に従い権利を授与することを拒否する。あるいは、 </li> <li> f)その一部分(あるいはその改変されたバージョン)を伝達する者に、受領者への責任に関して契約上の引き受けがあり、そうした責任が直接的にそういったライセンサーや作者にまで課せられる場合、その一部分のライセンサーや作者の免責を要求する。 </li> </ul> <p>他の非許可的な追加的条項は下記第10項が意味するところの「さらなる権利制限」(further restrictions)とみなされる。</p>あなたが受領した『プログラム』、あるいはその一部に、それが本許諾書とともにさらなる権利制限である条項によっても管理されていると述べた告知が含まれている場合には、あなたはそういった条項を削除して構わない。</p> <p>あるライセンス文書にさらなる権利制限がふくまれているが、しかし本許諾書の下での再許諾や伝達を許可しているならば、あなたはそのライセンス文書の条項によって管理されている一部分を『保護された作品』に追加することができる。ただしその場合、さらなる権利制限はそのような再許諾や伝達では無効としなければならない。</p> <p>あなたが本節に従って『保護された著作物』に条項を追加した場合、あなたは関係するソースファイル中に、それらのファイルに適用される追加的条項に関する声明、あるいは適用可能な条項を見つけることができる場所を示す告知を掲載しなければならない。</p> <p>追加的条項は、それが許可的であろうと非許可的であろうと、別途書面化されたライセンスという形式で述べられてもよいし、本許諾書への例外として述べられてもよい。上記の要件はどちらの場合でも適用される。</p> <h4>8. 終了</h4> <p>あなたは『保護された作品』を、本許諾書の下で明示的に提供されている場合を除いて、普及、または改変してはならない。</p>それ以外に『保護された作品』を普及、または改変しようとする試みはすべて無効であり、本許諾書の下であなたに認められた権利(下記第11項の第3段落に従い授与されたパテントライセンスすべてを含む)を自動的に終了させることになる。</p> <p>しかしながら、あなたが本許諾書への違反をすべて中止するならば、あなたがある特定の『コピーライト』保有者から得たライセンスは、(a)その『コピーライト』保有者が明白かつ決定的にあなたへのライセンスを終了させるか、あるいはさせないまでは暫定的に、(b)その『コピーライト』保有者が、あなたに対し違反について、何らかの正当な手段によりライセンス停止後60日以内に通知することができなかった場合には永続的に、回復される。</p> <p>加えて、あなたがある特定の『コピーライト』保有者から得たライセンスは、その『コピーライト』保有者があなたに対して違反を何らかの正当な手段で通知し、それより前にその『コピーライト』保有者から、(当該作品に限らずその『コピーライト』保有者の作品のいずれかに関して)本許諾書に関する違反の通知を受領したことがなく、さらにあなたがその通知を受領してから30日以内に違反を正した場合、永続的に回復される。</p> <p>本節に従いあなたの権利が終了した場合でも、本許諾書に従ってあなたからコピーや権利を受領した当事者が得た許諾は終了しない。</p> <p>あなたの権利が終了され、永続的に回復されなかった場合には、あなたは同じライセンス対象に関し下記第10項に従って新たにライセンスを受領する資格を失うものとする。</p> <h4>9. コピーの所有に必要とされない受諾</h4> <p>あなたは、『プログラム』のコピーを受領あるいは実行するために本許諾書を受諾する必要はない。コピーを受領するためにピア・ツー・ピア伝送を使った結果としてのみ発生する『保護された作品』の付随的な普及も、同様に受諾を必要としない。</P> <p>しかしながら、他の場合においては、本許諾書以外にあなたに対して『保護された作品』の普及や改変をする許可を認めるものはない。これらの行為は、本許諾書を受諾しない限り『コピーライト』を侵害することになる。</p> <p>そこで、『保護された作品』を改変あるいは普及することにより、あなたはそうした行為を行うために本許諾書を受諾したということを示したことになる。</p> <h4>10. 下流の受領者への自動的許諾</h4> <p>あなたが『保護された作品』を伝達するたびに、受領者は自動的にオリジナルのライセンサーから、本許諾書に従いその作品を実行、改変、普及するライセンスを得る。なお、あなたには第三者が本許諾書に従うことを強制する責任はない。</p> <p>「主体取引」(entitytransaction)とは、ある組織そのもの、ないしその組織の実質的に全ての資産の支配権が移転するか、あるいは組織の細分化や合併が行われるような取引を指す。もし主体取引の結果として『保護された作品』の普及が起こった場合、作品のコピーを受領したそれぞれの取引当事者は、利害関係のある当事者の先任者から、その先任者が前段落に従って有する、あるいは与えることができる、その作品に関するライセンスもまたすべて受領する。加えて個々の取引当事者は、利害関係のある先任者から、その先任者が有しているか、適正な努力によって得ることが可能な限りにおいて、その作品の『対応するソース』の所有権も得る権利を有する。</p> <p>あなたは本許諾書の下で授与された、あるいは確約された権利の行使に対して、本許諾書が規定する以上のさらなる権利制限を課してはならない。たとえば、あなたはライセンス料、ロイヤルティや他の料金を、本許諾書の下で認められている権利の行使に関して課してはならない。また、あなたは『プログラム』やその一部の作成、利用、販売、販売の申し出、取り込みによって何らかのパテントクレームが侵害されたとして、訴訟(訴訟における反対請求ないし反訴を含む)を開始してはならない。</p> <h4>11. 特許</h4> <p>「貢献者」(contributor)とは、本許諾書の下で『プログラム』、あるいは『プログラム』が基にした作品を利用することを正式に許可した『コピーライト』保有者のことを指す。従って、そのようにしてライセンスされた作品は、貢献者による「貢献者バージョン」(contributor version)と呼ばれる。</p> <p>ある貢献者の「必須パテントクレーム」(essential patent claims)とは、すでに取得しているか、あるいは今後取得する見込みがあるため、その貢献者が現在所有ないし支配していると言える特許のうち、貢献者バージョンに対して、本許諾書で許可されているような作成や利用、販売といった何らかの形の行為を行うことによって侵害される可能性があるパテントクレームのすべてを意味する。ただし、貢献者バージョンをさらに改変した結果としてのみ侵害されるようなクレームは含まれない。</p> <p>この定義において、「支配」には本許諾書が課す条件と整合的なやり方で特許の再許諾を認める権利も含まれる。</p> <p>個々の貢献者はあなたに対して、その貢献者の必須パテントクレームに関し、あなたがその貢献者バージョンの内容を作成、利用、販売、販売の申し出、取り込み、その他実行、改変、普及するために必要な、非排他的で全世界的に有効、かつロイヤルティフリーのパテントライセンスを授与する。</p> <p>以下の3段落において「『パテントライセンス』」とは、ある特許を実施しないという明示的な協定やコミットメントのすべてを指す(例えば、ある特許の実施に対する明示的な許可や、特許侵害訴訟を提起しないという誓約など)。そのような『パテントライセンス』をある当事者に「授与」するとは、その当事者と特許を実施しないという協定やコミットメントを結ぶことを意味する。</p> <p>もしあなたが、『保護された作品』の伝達を、それがある『パテントライセンス』に依存しており、よってその作品の『対応するソース』は、すべての人にとって、公衆が利用可能なネットワークサーバや他の容易にアクセス可能な手段を通じ、無料かつ本許諾書に従って複製可能ではないということを知りながら行うならば、あなたは(1)『対応するソース』も同様に利用可能にするか、(2)この特定の作品に関して『パテントライセンス』から得られる便益を自ら剥奪するか、あるいは(3)下流の受領者に対しても、本許諾書の条項と整合的な形で、『パテントライセンス』が拡大されるように計らうかのいずれかを行わなければならない。</p> <p>ここで「『パテントライセンス』に依存するのを知りながら」というのは、あなたが『保護された作品』をある国で伝達すること、あるいはあなたの受領者が『保護された著作物』をある国で利用することが、『パテントライセンス』を授与されない限り、その国において、あなたにとってそれが有効だと信じるだけの理由がある一つかそれ以上の同定可能な特許を侵害するということを実際に知っているということである。</p> <p>ある一対一の取引や協定に基づき、あるいは関連して、あなたが『保護された作品』の伝達、または伝達によって引き起こされる普及を行い、その際『保護された作品』を受領した一部の当事者に対して、『保護された作品』の特定のコピーの利用、普及、改変、または伝達を正式に許可するような『パテントライセンス』を授与するならば、あなたが授与した『パテントライセンス』は『保護された作品』やそれを基にした作品のすべての受領者にまで自動的に拡大されることになる。</p> <p>ある『パテントライセンス』が「差別的」(discriminatory)であるとは、本許諾書の下で明確に認められた一つかそれ以上の権利を、『パテントライセンス』がカバーする範囲内に含まなかったり、そうした権利の行使を禁じたり、あるいは権利を行使しないことを条件として課すようなものである場合を指す。あなたを一方の当事者とし、ソフトウェアの頒布を生業とする第三者との間で、あなたは第三者に対し、作品を伝達する活動の程度に基づいて支払いを行う一方、第三者は、あなたから『保護された作品』を受領したすべての当事者に対して「差別的」な『パテントライセンス』を、(a)あなたが伝達した『保護された作品』のコピー(またはそうしたコピーから作成されたコピー)に対して、または(b)『保護された作品』を含む特定製品や編集物を、主要な、あるいは関連した対象として授与する、というような協定を結んでいる場合、あなたは『保護された作品』を伝達してはならない。</p> <p>ただし、あなたがそのような協定を締結したり、『パテントライセンス』を授与されたのが2007年3月28日より以前である場合は本節の例外とする。</p> <p>本許諾書に含まれる一切の記述は、適用可能な特許法の下であなたが利用可能な暗黙のライセンス、その他侵害への防御手段を排除したり制限したりするように解釈されてはならない。</p> <h4>12. 他者の自由を明け渡してはならない</h4> <p>何らかの条件(裁判所の指令や協定など)があなたに課せられ、それが本許諾書の条件と矛盾したとしても、あなたが本許諾書の条件を免れることにはならない。</p> <p>あなたが、『保護された作品』を、本許諾書が課す義務と他の関連した義務の両方を同時に満たすような形で伝達できないのであれば、結果としてあなたがそれを伝達することは全く不可能ということになる。例えばあなたが、自分が『プログラム』を伝達した人々がさらに伝達を行う場合には、彼らからロイヤルティを徴収する、というような義務を負う条項に同意していた場合、あなたがそういった条項と本許諾書の両方を満たすには、『プログラム』の伝達を完全に止めてしまうしかないだろう。</p> <h4>13. GNU Affero一般公衆利用許諾書との利用</h4> <p>本許諾書に含まれる他の条件に関わらず、あなたには、『保護された作品』をGNU Affero一般公衆利用許諾書バージョン3の下で許諾された作品とリンクまたは結合して単一の結合物とし、その結果物を伝達する許可が与えられる。本許諾書の条項は『保護された作品』である部分に関してはそのまま適用されるが、結合物それ自体としては、GNU Affero一般公衆利用許諾書の第13項が規定する、ネットワークを介したやりとりに関する特殊な条件も適用されることになる。</p> <h4>14. 本許諾書の改訂されたバージョン</h4> <p>フリーソフトウェア財団は、改訂された、あるいは新しいバージョンのGNU一般公衆利用許諾書を折りに触れて発行することができる。そのような新バージョンは、その精神においては現在のバージョンと似たものになるだろうが、細部については新たな問題や懸念を解決すべく異なるものになるだろう。</p> <p>それぞれのバージョンには、見分けがつくようなバージョン番号が振られている。『プログラム』に、ある特定のバージョン番号が振られたGNU一般公衆利用許諾書かそれ以降のバージョンのいずれか(or any later version)」が適用されると指定されていた場合、あなたは指定された番号のバージョンか、それ以降にフリーソフトウェア財団によって発行されたいずれかのバージョンのどちらの利用条件に従うかを選ぶことができる。</p> <p>『プログラム』が本許諾書のバージョン番号を指定していなかった場合には、あなたはフリーソフトウェア財団がそれまでに発行したバージョンの中からどれを選択しても構わない。</p> <p>『プログラム』において、GNU一般公衆利用許諾書の将来のバージョンのうちどれが適用されうるかは代理人が決定できる、と指定されていた場合、その代理人が、あるバージョンを受諾すると述べた公的な声明は、あなたに対し、その『プログラム』に関してそのバージョンのGNU GPLを選ぶことを永続的かつ正式に許可するのと等しい。</p> <p>本許諾書の今後のバージョンでは、あなたに追加的な、または従来とは異なった形での許可を与えるかもしれない。しかしながら、作者や『コピーライト』保有者に対し、あなたが以降のバージョンに従うことを選んだ結果として、追加的な義務が課せられることはない。</p> <h4>15. 保証の否認</h4> <p>『プログラム』には、適用可能な法で許可されている範囲において何の保証もない。書面で述べられていない限り、『コピーライト』保有者やその他の当事者は『プログラム』を「あるがまま(as is)」で、明示的、暗示的を問わず、いかなる種類の保証もなく提供する。この保証には、商用可能性や特定目的への適合性の暗黙的保証が含まれるが、これらに限定されない。</p> <p>『プログラム』の質や性能に関するリスクはすべてあなたに帰属する。『プログラム』に問題があると判明した場合、あなたは必要なすべての対応、補修、修正にかかる費用を負うものとする。</p> <h4>16.責任の限定</h4> <p>適用可能な法において義務づけられるか、書面による同意がない限り、『コピーライト』保有者あるいはその他『プログラム』を上記で許可された通りに改変あるいは伝達する当事者は、たとえそうした保有者や他の当事者が損害が発生する可能性について事前に通知されていたとしても、あなたに対して損害賠償責任を有することはない。</p> <p>ここでいう損害には、『プログラム』の利用あるいは利用できないことから発生した一般的、特殊的、偶然的、必然的な損害のすべてが含まれる(データの消失やデータの不正確な解釈、あなたや第三者によって被った、あるいは『プログラム』が他のプログラムといっしょにうまく動作しなかったために引き起こされた損害などが含まれるが、これらに限定されない)。</p> <h4>17.第15項と第16項の解釈について</h4> <p>上記のような保証の否認や責任の限定が、特定国内においてそういった条項が指定する通りの法的効力を持ち得ない場合、再審裁判所は、『プログラム』に関連したすべての民事責任の絶対的棄権に最も近く肉薄する国内法を適用すべきである。ただし、報酬の見返りとして責任の保証や引き受けが『プログラム』のコピーに付随する場合は除く。</p> <h3>利用条件はここまで</h3> <h4>以上の条項をあなたの新しいプログラムに適用する方法</h4> <p>あなたが新たなプログラムを開発したとして、公衆によってそれが利用される可能性を最大限高めたいならば、そのプログラムをフリーソフトウェアとし、本許諾書の条項の下で誰でも再頒布ないし変更できるようにするのが最善の道です。</p> <p>そうするためには、プログラムに以下のような告知を付け加えてください。その場合、保証が除外されているということを最も効果的に明言するため、それぞれのソースファイルの冒頭に告示を付け加えるのが最も安全です。少なくとも、「Copyright」から始まる行と、告知全文がある場所へのポインタだけは各ファイルに含めておいてください。</p> <ul> <プログラムの名前と、それが何をするかについての簡単な説明を1行程度。> <li>Copyright (C) <年> <作者の名前> </li> <li> このプログラムはフリーソフトウェアです。あなたはこれを、フリーソフト ウェア財団によって発行されたGNU一般公衆利用許諾書(バージョン3か、そ れ以降のバージョンのうちどれか)が定める条件の下で再頒布または改変す ることができます。 </li> <li> このプログラムは有用であることを願って頒布されますが、*全くの無保証* です。商業可能性の保証や特定目的への適合性は、言外に示されたものも含 め、全く存在しません。詳しくはGNU一般公衆利用許諾書をご覧ください。 </li> <li> あなたはこのプログラムと共に、GNU一般公衆利用許諾書のコピーを一部受 け取っているはずです。もし受け取っていなければ、http://www.gnu.org/l icenses/をご覧ください。 </li> </ul> <p>電子や紙のメールであなたに問い合わせる方法についての情報も書き加えましょう。</p> <p>プログラムが端末で対話的に機能するものならば、対話モードで起動した際に以下のような短い告知が出力されるようにしてください: </p> <ul> <li> <プログラム名> Copyright (C) <年> <作者の名前> </li> <li> このプログラムは*全くの無保証*で提供されます。詳しくは「show w」とタイプして下さい。 </li> <li> これはフリーソフトウェアであり、ある条件の下で再頒布することが奨励されています。詳しくは「show c」とタイプして下さい。 </li> </ul> <p> ここで、バーチャル的なコマンド「show w」と「show c」は一般公衆利用許諾書の適切な部分を表示するようになっていなければなりません。もちろん、あなたのプログラムのコマンドは例と違っていてもかまいません。GUIインターフェースならば、代わりに「…について」ボックスを使うのも良いでしょう。</p> <p>また、必要ならばあなたは、(プログラマーとして働いていたら)あなたの雇用主、あるいは場合によっては学校に依頼して、そのプログラムに関する「著作権放棄声明(copyright disclaimer)」に署名してもらうべきです。この点に関するより詳しい情報や、GNU GPLを適用し、その条項に従うにはどうすればよいのかについては、http://www.gnu.org/licenses/をご覧ください。</p> <p>GNU一般公衆利用許諾書では、あなたのプログラムをプロプライエタリなプログラムに統合することを認めていません。あなたのプログラムがサブルーチンライブラリならば、プロプライエタリなアプリケーションとあなたのライブラリをリンクすることを許可したほうがより有益であると考えるかもしれません。</p> <p>もしこれがあなたの望むことならば、この許諾書の代わりにGNU劣等一般公衆利用許諾書を適用してください。ただしその前に、ぜひこれをお読みください。</p> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> �����������������������������������������������������������������������������������������������������������������������ja-JP/Servlet_Context.html��������������������������������������������������������������������������0000644�����������������00000043620�15027525531�0011475 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Open LiteSpeed Web Serverユーザーズマニュアル - サーブレットコンテキスト</title> <meta name="description" content="Open LiteSpeed Web Serverユーザーズマニュアル - サーブレットコンテキスト." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="../img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h3 class="ls-text-thin">OpenLiteSpeed Web Server <a href="index.html"> ユーザーズマニュアル</a></h3> <h5 class="ls-text-muted">Version 1.8 — Rev. 0</h5> <hr/> <div> <ul> <li><a href="license.html">ライセンス</a></li> <li><a href="intro.html">はじめに</a></li> <li><a href="install.html">インストール</a></li> <li> <a href="admin.html">管理</a> <ul class="level2"> <li><a href="ServerStat_Help.html">サービスマネージャ</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">セキュリティ</a></li> <li><a href="config.html">設定</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">サーバー全般</a></li> <li><a href="ServLog_Help.html">サーバーログ</a></li> <li><a href="ServTuning_Help.html">サーバーのチューニング</a></li> <li><a href="ServSecurity_Help.html">サーバーのセキュリティ</a></li> <li><a href="ExtApp_Help.html">外部アプリ</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGIアプリ</a></li> <li><a href="External_FCGI_Auth.html">Fast CGIオーソライザー</a></li> <li><a href="External_LSAPI.html">LSAPIアプリ</a></li> <li><a href="External_Servlet.html">サーブレットエンジン</a></li> <li><a href="External_WS.html">Webサーバー</a></li> <li><a href="External_PL.html">パイプロガー</a></li> <li><a href="External_LB.html">ロードバランサ</a></li> </ul> <li><a href="ScriptHandler_Help.html">スクリプトハンドラ</a></li> <li><a href="Rails_Help.html">Rack/Railsの設定</a></li> <li><a href="Module_Help.html">モジュール設定</a></li> <li><a href="Listeners_General_Help.html">リスナー全般</a></li> <li><a href="Listeners_SSL_Help.html">リスナーのSSL</a></li> <li><a href="Templates_Help.html">テンプレート</a></li> <li><a href="VirtualHosts_Help.html">バーチャルホストの基本</a></li> <li><a href="VHGeneral_Help.html">バーチャルホスト全般</a></li> <li><a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a></li> <li><a href="VHSSL_Help.html">バーチャルホストのSSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">コンテキスト</a></li> <ul class="level3"> <li><a href="Static_Context.html">静的コンテテキスト</a></li> <li><a href="Java_Web_App_Context.html">Java Webアプリのコンテキスト</a></li> <li><span class="current"><a href="Servlet_Context.html">サーブレットコンテキスト</a></span></li> <li><a href="FCGI_Context.html">Fast CGIコンテキスト</a></li> <li><a href="LSAPI_Context.html">LSAPIコンテキスト</a></li> <li><a href="Proxy_Context.html">プロキシコンテキスト</a></li> <li><a href="CGI_Context.html">CGIコンテキスト</a></li> <li><a href="LB_Context.html">ロードバランサコンテキスト</a></li> <li><a href="Redirect_Context.html">コンテキストのリダイレクト</a></li> <li><a href="Rails_Context.html">Rack/Railsのコンテキスト</a></li> <li><a href="Module_Context.html">モジュールハンドラのコンテキスト</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socketプロキシ</a></li> </ul> </li> <li><a href="webconsole.html">Webコンソール</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">管理コンソール全般</a></li> <li><a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a></li> <li><a href="AdminListeners_General_Help.html">管理リスナー全般</a></li> <li><a href="AdminListeners_SSL_Help.html">管理リスナーのSSL</a></li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="Java_Web_App_Context.html">Java Web アプリコンテキスト</a></div><div class="center"><a href="Context_Help.html">コンテキスト</a></div><div class="next"><a href="FCGI_Context.html">Fast CGIコンテキスト</a> »</div></div> <h1>サーブレットコンテキスト</h1><h2 id="top">目次</h2><section class="toc"><section class="toc-row"><header><a href="#servletContext">サーブレットコンテキスト</a></header><p> <a href="#expuri">URI</a> | <a href="#servletEngine">サーブレットエンジン</a> | <a href="#extraHeaders">Extra Headers</a> | <a href="#realm">レルム</a> | <a href="#authName">認証名</a> | <a href="#required">必要(許可ユーザー/グループ)</a> | <a href="#accessAllowed">アクセス許可</a> | <a href="#accessDenied">アクセス拒否</a> | <a href="#extAuthorizer">承認者</a> | <a href="#addDefaultCharset">デフォルトの文字セットを追加</a> | <a href="#defaultCharsetCustomized">カスタマイズされたデフォルトの文字セット</a> | <a href="#enableIpGeo">IPジオロケーションを有効にする</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="servletContext"><h3>サーブレットコンテキスト<span class="ls-permlink"><a href="#servletContext"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>サーブレットは、サーブレットコンテキストを介して個別にインポートできます。 サーブレットコンテキストは、サーブレットのURIとサーブレットエンジンの名前を指定するだけです。 Webアプリケーション全体をインポートしたくない場合や、異なるサーブレットを異なる認可レルムで保護したい場合にのみ、これを使用する必要があります。 このURIには、<span class="tagl"><a href="#javaWebAppContext">Java Webアプリコンテキスト</a></span>と同じ要件があります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expuri"><h3>URI<span class="ls-permlink"><a href="#expuri"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストのURIを指定します。</p> <h4>構文</h4><p>URIは、プレーンURI( "/"で始まる)またはPerl互換の正規表現URI( "exp:"で始まる)にすることができます。 プレーンURIが "/"で終わる場合、このコンテキストはこのURIの下にすべてのサブURIを含みます。 コンテキストがファイルシステム上のディレクトリにマップされている場合は、末尾に「/」を追加する必要があります。</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#location">ロケーション</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="servletEngine"><h3>サーブレットエンジン<span class="ls-permlink"><a href="#servletEngine"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このWebアプリケーションを提供するサーブレットエンジンの名前を指定します。 サーブレットエンジンは、サーバーまたはバーチャルホストレベルの<span class="tagP"><a href="#ExtApp_Help">外部アプリケーション</a></span>セクションで定義する必要があります。</p> <h4>構文</h4><p>選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extraHeaders"><h3>Extra Headers<span class="ls-permlink"><a href="#extraHeaders"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>追加される余分な応答ヘッダーを指定します。 1行に1つのヘッダーを追加できます。 親コンテンツから継承したヘッダーを無効にするには、"NONE"を入力します。</p> <h4>構文</h4><p>各行に "[HeaderName]: [HeaderValue]"</p> <h4>例</h4><div class="ls-example">Cache-control: no-cache, no-store <br/> My-header: Custom header value</div><h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> Syntax and usage are similar to <a href="https://httpd.apache.org/docs/2.2/mod/mod_headers.html#header" target="_blank" rel="noopener noreferrer">Apache's mod_headers directives</a> for supported operations.<br/><br/> <span title="Information" class="ls-icon-info"></span> The 'Header' directive is is optional and can be excluded or left in when copying rules from elsewhere without issue.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="realm"><h3>レルム<span class="ls-permlink"><a href="#realm"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストの認可レルムを指定します。 このコンテキストにアクセスするには、有効なユーザー名とパスワードを指定する必要があります。 <span class="tagl"><a href="VHSecurity_Help.html#realms">認可レルム</a></span>は<span class="tagP"><a href="#VHSecurity_Help">バーチャルホストのセキュリティ</a></span>セクションに設定されています。 この設定では、各レルムの<span class="tagl"><a href="VHSecurity_Help.html#realmName">レルム名</a></span>が使用されます。</p> <h4>構文</h4><p>選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="authName"><h3>認証名<span class="ls-permlink"><a href="#authName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>現在のコンテキストの認証レルムの代替名を指定します。 指定しない場合、元のレルム名が使用されます。 認証名は、ブラウザのログインポップアップに表示されます。</p> <h4>構文</h4><p>テキスト</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="required"><h3>必要(許可ユーザー/グループ)<span class="ls-permlink"><a href="#required"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストにアクセスできるユーザー/グループを指定します。 これにより、複数のコンテキストにわたって1つのユーザー/グループデータベース(<span class="tagl"><a href="#realm">レルム</a></span>で指定)を使用できますが、そのデータベースの特定のユーザー/グループのみがこのコンテキストにアクセスできます。</p> <h4>構文</h4><p>構文はApache Requireディレクティブと互換性があります。 例えば: <ul> <li><span class="val">user username [username ...]</span> <br/> リストされたユーザーだけがこのコンテキストにアクセスできます。</li> <li> <span class="val">group groupid [groupid ...]</span><br/> リストされたグループに属するユーザーのみがこのコンテキストにアクセスできます。</li> </ul> この設定を指定しないと、すべての有効なユーザーがこのリソースにアクセスできます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessAllowed"><h3>アクセス許可<span class="ls-permlink"><a href="#accessAllowed"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストでリソースにアクセスできるIPまたはサブネットワークを指定します。 <span class="tagl"><a href="#accessDenied">アクセス拒否</a></span>とサーバー/バーチャルホスト・レベルのアクセス制御とともに、アクセシビリティは、クライアントのIPアドレスが入る最小の範囲によって決まります。</p> <h4>構文</h4><p>IP/サブネットワークのカンマ区切りリスト。</p> <h4>例</h4><div class="ls-example">サブネットワークは以下のように書くことができます <span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span>, 又は <span class="val">192.168.1.*</span>.</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessDenied"><h3>アクセス拒否<span class="ls-permlink"><a href="#accessDenied"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストでリソースにアクセスできないIPまたはサブネットワークを指定します。 <span class="tagl"><a href="#accessAllowed">アクセス許可</a></span>とサーバー/バーチャルホストレベルのアクセス制御とともに、アクセシビリティはクライアントのIPアドレスが入る最小の範囲で決まります。</p> <h4>構文</h4><p>IP/サブネットワークのカンマ区切りリスト。</p> <h4>例</h4><div class="ls-example">サブネットワークは以下のように書くことができます <span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span>, 又は <span class="val">192.168.1.*</span>.</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAuthorizer"><h3>承認者<span class="ls-permlink"><a href="#extAuthorizer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>権限のある/権限のないかの決定を生成するために使用できる外部アプリケーションを指定します。 現在、FastCGI Authorizerのみが使用可能です。 FastCGI Authorizerの役割の詳細については、<a href=" https://fastcgi-archives.github.io/ " target="_blank" rel="noopener noreferrer"> https://fastcgi-archives.github.io/ </a>を参照してください。 。</p> <h4>構文</h4><p>ドロップダウンリストから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="addDefaultCharset"><h3>デフォルトの文字セットを追加<span class="ls-permlink"><a href="#addDefaultCharset"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>コンテンツタイプが "text/html"または "text/plain"のいずれかのパラメータがない場合、文字セットタグを "Content-Type"レスポンスヘッダーに追加するかどうかを指定します。 <span class="val">Off</span>に設定すると、この機能は無効になります。 <span class="val">On</span>に設定すると、<span class="tagl"><a href="#defaultCharsetCustomized">カスタマイズされたデフォルトの文字セット</a></span>で指定された文字セットまたはデフォルトの "iso-8859-1"のいずれかが追加されます。</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="defaultCharsetCustomized"><h3>カスタマイズされたデフォルトの文字セット<span class="ls-permlink"><a href="#defaultCharsetCustomized"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p><span class="tagl"><a href="#addDefaultCharset">デフォルトの文字セットを追加</a></span>が<span class="val">On</span>のときに使用される文字セットを指定します。 これはオプションです。 デフォルト値は<span class="val"> iso-8859-1 </span>です。 <span class="tagl"><a href="#addDefaultCharset">デフォルトの文字セットを追加</a></span>が<span class="val"> Off </span>の場合、このエントリは無効です。</p> <h4>構文</h4><p>文字セットの名前。</p> <h4>例</h4><div class="ls-example">utf-8</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableIpGeo"><h3>IPジオロケーションを有効にする<span class="ls-permlink"><a href="#enableIpGeo"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p> IPジオロケーション検索を有効/無効にするかどうかを指定します。 サーバ、バーチャルホスト、コンテキストレベルで設定できます。 値 「未設定」を使用すると、IPジオロケーションはデフォルトで無効になります。</p> <h4>構文</h4><p>ラジオボックスから選択</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="ServGeneral_Help.html#useIpInProxyHeader">ヘッダーにクライアントIPを使用する</a></span>, <span class="tagl"><a href="ServGeneral_Help.html#geoipDBFile">DBファイルのパス</a></span>,</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ����������������������������������������������������������������������������������������������������������������ja-JP/External_FCGI_Auth.html�����������������������������������������������������������������������0000644�����������������00000066345�15027525531�0011711 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Open LiteSpeed Web Serverユーザーズマニュアル - Fast CGI 認証</title> <meta name="description" content="Open LiteSpeed Web Serverユーザーズマニュアル - Fast CGI 認証." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="../img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h3 class="ls-text-thin">OpenLiteSpeed Web Server <a href="index.html"> ユーザーズマニュアル</a></h3> <h5 class="ls-text-muted">Version 1.8 — Rev. 0</h5> <hr/> <div> <ul> <li><a href="license.html">ライセンス</a></li> <li><a href="intro.html">はじめに</a></li> <li><a href="install.html">インストール</a></li> <li> <a href="admin.html">管理</a> <ul class="level2"> <li><a href="ServerStat_Help.html">サービスマネージャ</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">セキュリティ</a></li> <li><a href="config.html">設定</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">サーバー全般</a></li> <li><a href="ServLog_Help.html">サーバーログ</a></li> <li><a href="ServTuning_Help.html">サーバーのチューニング</a></li> <li><a href="ServSecurity_Help.html">サーバーのセキュリティ</a></li> <li><a href="ExtApp_Help.html">外部アプリ</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGIアプリ</a></li> <li><span class="current"><a href="External_FCGI_Auth.html">Fast CGIオーソライザー</a></span></li> <li><a href="External_LSAPI.html">LSAPIアプリ</a></li> <li><a href="External_Servlet.html">サーブレットエンジン</a></li> <li><a href="External_WS.html">Webサーバー</a></li> <li><a href="External_PL.html">パイプロガー</a></li> <li><a href="External_LB.html">ロードバランサ</a></li> </ul> <li><a href="ScriptHandler_Help.html">スクリプトハンドラ</a></li> <li><a href="Rails_Help.html">Rack/Railsの設定</a></li> <li><a href="Module_Help.html">モジュール設定</a></li> <li><a href="Listeners_General_Help.html">リスナー全般</a></li> <li><a href="Listeners_SSL_Help.html">リスナーのSSL</a></li> <li><a href="Templates_Help.html">テンプレート</a></li> <li><a href="VirtualHosts_Help.html">バーチャルホストの基本</a></li> <li><a href="VHGeneral_Help.html">バーチャルホスト全般</a></li> <li><a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a></li> <li><a href="VHSSL_Help.html">バーチャルホストのSSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">コンテキスト</a></li> <ul class="level3"> <li><a href="Static_Context.html">静的コンテテキスト</a></li> <li><a href="Java_Web_App_Context.html">Java Webアプリのコンテキスト</a></li> <li><a href="Servlet_Context.html">サーブレットコンテキスト</a></li> <li><a href="FCGI_Context.html">Fast CGIコンテキスト</a></li> <li><a href="LSAPI_Context.html">LSAPIコンテキスト</a></li> <li><a href="Proxy_Context.html">プロキシコンテキスト</a></li> <li><a href="CGI_Context.html">CGIコンテキスト</a></li> <li><a href="LB_Context.html">ロードバランサコンテキスト</a></li> <li><a href="Redirect_Context.html">コンテキストのリダイレクト</a></li> <li><a href="Rails_Context.html">Rack/Railsのコンテキスト</a></li> <li><a href="Module_Context.html">モジュールハンドラのコンテキスト</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socketプロキシ</a></li> </ul> </li> <li><a href="webconsole.html">Webコンソール</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">管理コンソール全般</a></li> <li><a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a></li> <li><a href="AdminListeners_General_Help.html">管理リスナー全般</a></li> <li><a href="AdminListeners_SSL_Help.html">管理リスナーのSSL</a></li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="External_FCGI.html">Fast CGI アプリ</a></div><div class="center"><a href="ExtApp_Help.html">外部アプリケーション</a></div><div class="next"><a href="External_LSAPI.html">LiteSpeed SAPI アプリ</a> »</div></div> <h1>Fast CGI 認証</h1><h2 id="top">目次</h2><section class="toc"><section class="toc-row"><header>Fast CGI 認可者</header><p> <a href="#extAppName">名前</a> | <a href="#extAppAddress">アドレス</a> | <a href="#maxConns">最大接続数</a> | <a href="#env">環境</a> | <a href="#initTimeout">初期要求タイムアウト(秒)</a> | <a href="#retryTimeout">リトライタイムアウト(秒)</a> | <a href="#persistConn">永続的な接続</a> | <a href="#pcKeepAliveTimeout">キープアライブタイムアウト(秒)</a> | <a href="#respBuffer">応答バッファリング</a> | <a href="#autoStart">自動スタート</a> | <a href="#extAppPath">コマンド</a> | <a href="#backlog">バックログ</a> | <a href="#instances">インスタンス</a> | <a href="#extUser">suEXECユーザー</a> | <a href="#extGroup">suEXECグループ</a> | <a href="#extUmask">umask</a> | <a href="#runOnStartUp">起動時に実行</a> | <a href="#extMaxIdleTime">最大アイドル時間</a> | <a href="#extAppPriority">優先度</a> | <a href="#memSoftLimit">メモリソフトリミット(バイト)</a> | <a href="#memHardLimit">メモリハードリミット</a> | <a href="#procSoftLimit">プロセスソフトリミット</a> | <a href="#procHardLimit">プロセスハードリミット</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="extAppName"><h3>名前<span class="ls-permlink"><a href="#extAppName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>この外部アプリケーションの一意の名前。 設定の他の部分でこの名前を使用するときは、この名前で参照します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAppAddress"><h3>アドレス<span class="ls-permlink"><a href="#extAppAddress"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>外部アプリケーションによって使用される一意のソケットアドレス。 IPv4/IPv6ソケットとUnixドメインソケット(UDS)がサポートされています。 IPv4/IPv6ソケットは、ネットワークを介した通信に使用できます。 UDSは、外部アプリケーションがサーバーと同じマシンにある場合にのみ使用できます。</p> <h4>構文</h4><p>IPv4またはIPV6アドレス:ポートまたはUDS://パス</p> <h4>例</h4><div class="ls-example">127.0.0.1:5434<br/> UDS://tmp/lshttpd/php.sock.</div><h4>ヒント</h4><p>[セキュリティ]外部アプリケーションが同じマシン上で実行される場合は、UDSが優先されます。 IPv4|IPV6ソケットを使用する必要がある場合は、IPアドレスを<span class="val">localhost</span>または<span class="val">127.0.0.1</span>に設定して、外部アプリケーションに他のマシンからアクセスできないようにします。<br/> [パフォーマンス] Unixドメインソケットは、通常、IPv4ソケットよりも高いパフォーマンスを提供します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxConns"><h3>最大接続数<span class="ls-permlink"><a href="#maxConns"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>サーバーと外部アプリケーションの間で確立できる同時接続の最大数を指定します。 この設定は、外部アプリケーションによって同時に処理できる要求の数を制御しますが、実際の制限は外部アプリケーション自体によっても異なります。 この値を高く設定すると、外部アプリケーションの速度が不十分であるか、多数の同時要求に対応できない場合に役立ちません。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p>[パフォーマンス]高い値を設定しても、高いパフォーマンスに直接変換されるわけではありません。 制限を外部アプリケーションに負荷をかけない値に設定すると、最高のパフォーマンス/スループットが得られます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="env"><h3>環境<span class="ls-permlink"><a href="#env"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>外部アプリケーション用の追加の環境変数を指定します。</p> <h4>構文</h4><p>Key=value. 複数の変数は "ENTER"で区切ることができます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="initTimeout"><h3>初期要求タイムアウト(秒)<span class="ls-permlink"><a href="#initTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>サーバーが、新しいアプリケーションが新しい確立された接続を介して最初の要求に応答するのを待つ最長時間を秒単位で指定します。 サーバーがこのタイムアウト制限内に外部アプリケーションからデータを受信しない場合、この接続は不良とマークされます。 これにより、外部アプリケーションとの通信の問題をできるだけ迅速に特定することができます。 処理に時間がかかるリクエストがある場合は、この制限を増やして503のエラー・メッセージを避けてください。</p> <h4>構文</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="retryTimeout"><h3>リトライタイムアウト(秒)<span class="ls-permlink"><a href="#retryTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>以前の通信に問題があった外部アプリケーションを再試行する前に、サーバーが待機する時間を指定します。</p> <h4>構文</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="persistConn"><h3>永続的な接続<span class="ls-permlink"><a href="#persistConn"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>要求後に接続を開いたままにするかどうかを指定します。 処理されました。 永続的接続はパフォーマンスを向上させる可能性がありますが、一部のFastCGI外部アプリケーションは永続的接続を完全にサポートしません。 デフォルトは "オン"です。</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="pcKeepAliveTimeout"><h3>キープアライブタイムアウト(秒)<span class="ls-permlink"><a href="#pcKeepAliveTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>アイドル状態の永続的な接続を開いたままにする最大時間を指定します。 "-1"に設定すると、接続はタイムアウトしません。 0以上に設定すると、この時間が経過した後に接続が閉じられます。</p> <h4>構文</h4><p>int</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="respBuffer"><h3>応答バッファリング<span class="ls-permlink"><a href="#respBuffer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>外部から受信した応答をバッファリングするかどうかを指定します。 アプリケーション。 "nph-" (Non-Parsed-Header)スクリプトが検出された場合、完全なHTTPヘッダーを持つ応答ではバッファリングがオフになります。</p> <h4>構文</h4><p>ドロップダウンリストから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="autoStart"><h3>自動スタート<span class="ls-permlink"><a href="#autoStart"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Webサーバーでアプリケーションを自動的に開始するかどうかを指定します。 同じマシン上で実行されているFastCGIおよびLSAPIアプリケーションのみを自動的に起動することができます。 <span class="tagl"><a href="#extAppAddress">アドレス</a></span>のIPはローカルIPでなければなりません。 メインサーバプロセスではなくLiteSpeed CGIデーモンを起動すると、システムのオーバーヘッドを軽減できます。</p> <h4>構文</h4><p>ドロップダウンリストから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAppPath"><h3>コマンド<span class="ls-permlink"><a href="#extAppPath"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>外部アプリケーションを実行するためのパラメータを含む完全なコマンドラインを指定します。 <span class="tagl"><a href="#autoStart">自動スタート</a></span>が有効な場合は必須値です。 パラメータにスペースまたはタブ文字が含まれている場合は、パラメータを二重引用符または一重引用符で囲む必要があります。</p> <h4>構文</h4><p>オプションのパラメータを含む実行可能ファイルへのフルパス。</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#autoStart">自動スタート</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="backlog"><h3>バックログ<span class="ls-permlink"><a href="#backlog"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>リスニングソケットのバックログを指定します。 <span class="tagl"><a href="#autoStart">自動スタート</a></span>が有効な場合は必須です。</p> <h4>構文</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="instances"><h3>インスタンス<span class="ls-permlink"><a href="#instances"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>サーバーが作成する外部アプリケーションの最大インスタンスを指定します。 <span class="tagl"><a href="#autoStart">自動スタート</a></span>が有効な場合は必須です。 ほとんどのFastCGI/LSAPIアプリケーションは、プロセスインスタンスごとに1つの要求しか処理できません。これらのタイプのアプリケーションの場合、インスタンスは<span class="tagl"><a href="#maxConns">最大接続数</a></span>の値に一致するように設定する必要があります。 一部のFastCGI / LSAPIアプリケーションでは、複数の子プロセスを生成して複数の要求を同時に処理できます。 これらのタイプのアプリケーションでは、インスタンスを "1"に設定し、環境変数を使用してアプリケーションが生成できる子プロセスの数を制御する必要があります。</p> <h4>構文</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extUser"><h3>suEXECユーザー<span class="ls-permlink"><a href="#extUser"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>外部アプリケーションが実行されるユーザー名を指定します。 設定されていない場合、外部アプリケーションはWebサーバーのユーザーとして実行されます。</p> <h4>構文</h4><p>有効なユーザー名。</p> <h4>参照</h4><p class="ls-text-small">extGroup</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extGroup"><h3>suEXECグループ<span class="ls-permlink"><a href="#extGroup"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>外部アプリケーションが実行されるグループ名を指定します。</p> <h4>構文</h4><p>有効なグループ名。</p> <h4>参照</h4><p class="ls-text-small">extUser</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extUmask"><h3>umask<span class="ls-permlink"><a href="#extUmask"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>この外部アプリケーションのプロセスのデフォルトumaskを設定します。 詳細は、<span class="cmd">man 2 umask</span>を参照してください。 デフォルト値はサーバーレベルの<span class="tagl"><a href="ServSecurity_Help.html#umask">umask</a></span>設定から取得されます。</p> <h4>構文</h4><p>有効範囲[000]〜[777]の値。</p> <h4>参照</h4><p class="ls-text-small">CGI <span class="tagl"><a href="ServSecurity_Help.html#umask">umask</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="runOnStartUp"><h3>起動時に実行<span class="ls-permlink"><a href="#runOnStartUp"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>サーバーの起動時に外部アプリケーションを起動するかどうかを指定します。 自身の子プロセスを管理できる外部アプリケーション、および<span class="tagl"><a href="#instances">インスタンス</a></span>の値が "1"に設定されている場合にのみ適用されます。 有効にすると、実行時ではなくサーバーの起動時に外部プロセスが作成されます。</p> <h4>構文</h4><p>ラジオボックスから選択</p> <h4>ヒント</h4><p>[パフォーマンス] Railsアプリケーションのように、設定された外部プロセスに重大な起動オーバーヘッドがある場合、このオプションを有効にして最初のページ応答時間を短縮する必要があります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extMaxIdleTime"><h3>最大アイドル時間<span class="ls-permlink"><a href="#extMaxIdleTime"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>サーバーが外部アプリケーションを停止するまでの最大アイドル時間を指定します。 "-1"に設定すると、外部アプリケーションはサーバーによって停止されません。 デフォルト値は "-1"です。 この機能により、アイドル状態のアプリケーションが使用するリソースを解放することができます。 最大限のセキュリティを確保するために、setuidモードで動作する多くのアプリケーションを定義する必要がある場合には、マスホスティング環境で特に便利です。</p> <h4>構文</h4><p>ラジオボックスから選択</p> <h4>ヒント</h4><p>[パフォーマンス]この機能は、大規模なホスティング環境で特に便利です。 あるバーチャルホストが所有するファイルが別のバーチャルホストの外部アプリケーションスクリプトによってアクセスされないようにするため、大量ホスティングではSetUIDモードで同時に多くの異なるアプリケーションを実行する必要があります。 これらの外部アプリケーションが不必要にアイドリングしないように、この最大アイドル時間を低く設定します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAppPriority"><h3>優先度<span class="ls-permlink"><a href="#extAppPriority"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>外部アプリケーション・プロセスの優先度を指定します。 値の範囲は<span class="val">−20</span>〜<span class="val">20</span>です。 数字が小さいほど優先度が高くなります。 外部アプリケーションプロセスは、Webサーバーよりも高い優先度を持つことはできません。 この優先度がサーバーの数値より低い数値に設定されている場合は、サーバーの優先度がこの値に使用されます。</p> <h4>構文</h4><p>整数</p> <h4>参照</h4><p class="ls-text-small">Server <span class="tagl"><a href="ServGeneral_Help.html#serverPriority">プライオリティ</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="memSoftLimit"><h3>メモリソフトリミット(バイト)<span class="ls-permlink"><a href="#memSoftLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>外部アプリケーション・プロセスまたはサーバーによって開始された外部アプリケーションのメモリー消費制限をバイト単位で指定します。<br/><br/> この制限の主な目的は、ソフトウェアのバグや意図的な攻撃のために過度のメモリ使用を防止し、通常の使用に制限を設けないことです。 十分なヘッドスペースを確保してください。そうしないと、アプリケーションが失敗し、503エラーが返される可能性があります。 サーバーレベルまたは個々の外部アプリケーションレベルで設定できます。 サーバーレベルの制限は、個々のアプリケーションレベルで設定されていない場合に使用されます。<br/><br/> オペレーティングシステムのデフォルト設定は、値が両方のレベルにないか、<span class="val">0</span>に設定されている場合に使用されます。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p>[注意]この制限を過度に調整しないでください。 アプリケーションでより多くのメモリが必要な場合は、503のエラーが発生する可能性があります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="memHardLimit"><h3>メモリハードリミット<span class="ls-permlink"><a href="#memHardLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>ソフトリミットをユーザープロセス内のハードリミットまで上げることができることを除けば、<span class="tagl"><a href="#memSoftLimit">メモリソフトリミット(バイト)</a></span>と同じくらい同じです。 ハード・リミットは、サーバー・レベルまたは個々の外部アプリケーション・レベルで設定できます。 サーバーレベルの制限は、個々のアプリケーションレベルで設定されていない場合に使用されます。 <br/><br/> 値が両方のレベルにないか、<span class="val">0</span>に設定されている場合、オペレーティングシステムのデフォルトが使用されます。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p><span title="Attention" class="ls-icon-attention"></span> Do not over adjust this limit. This may result in 503 errors if your application need more memory.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="procSoftLimit"><h3>プロセスソフトリミット<span class="ls-permlink"><a href="#procSoftLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>ユーザーに代わって作成できるプロセスの総数を制限します。 既存のすべてのプロセスは、開始される新しいプロセスだけでなく、この限度に対してカウントされます。 制限は、サーバーレベルまたは個々の外部アプリケーションレベルで設定できます。<br/> サーバーレベルの制限は、個々のアプリケーションレベルで設定されていない場合に使用されます。 この値が0または両方のレベルにない場合、オペレーティングシステムのデフォルト設定が使用されます。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> PHPスクリプトはプロセスをフォークするために呼び出すことができます。 この制限の主な目的は、フォーク爆弾や他のプロセスを作成するPHPプロセスによって引き起こされる他の攻撃を防ぐための最終防衛線です。<br/> この設定を低すぎると、機能が著しく損なわれる可能性があります。 この設定は特定のレベル以下では無視されます。<br/> suEXECデーモンモードを使用する場合、親プロセスが制限されないように、実際のプロセス制限はこの設定よりも高くなります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="procHardLimit"><h3>プロセスハードリミット<span class="ls-permlink"><a href="#procHardLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>ソフトリミットをユーザープロセス内のハードリミットまで上げることができることを除けば、<span class="tagl"><a href="#procSoftLimit">プロセスソフトリミット</a></span>とほとんど同じです。 ハードリミットは、サーバー・レベルまたは個々の外部アプリケーションレベルで設定できます。 サーバーレベルの制限は、個々のアプリケーションレベルで設定されていない場合に使用されます。 オペレーティングシステムのデフォルト値は、値が両方のレベルにないか、<span class="val">0</span>に設定されている場合に使用されます。</p> <h4>構文</h4><p>整数</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> �������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������ja-JP/VHWebSocket_Help.html�������������������������������������������������������������������������0000644�����������������00000022300�15027525531�0011431 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Open LiteSpeed Web Serverユーザーズマニュアル - Webソケットプロキシ</title> <meta name="description" content="Open LiteSpeed Web Serverユーザーズマニュアル - Webソケットプロキシ." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="../img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h3 class="ls-text-thin">OpenLiteSpeed Web Server <a href="index.html"> ユーザーズマニュアル</a></h3> <h5 class="ls-text-muted">Version 1.8 — Rev. 0</h5> <hr/> <div> <ul> <li><a href="license.html">ライセンス</a></li> <li><a href="intro.html">はじめに</a></li> <li><a href="install.html">インストール</a></li> <li> <a href="admin.html">管理</a> <ul class="level2"> <li><a href="ServerStat_Help.html">サービスマネージャ</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">セキュリティ</a></li> <li><a href="config.html">設定</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">サーバー全般</a></li> <li><a href="ServLog_Help.html">サーバーログ</a></li> <li><a href="ServTuning_Help.html">サーバーのチューニング</a></li> <li><a href="ServSecurity_Help.html">サーバーのセキュリティ</a></li> <li><a href="ExtApp_Help.html">外部アプリ</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGIアプリ</a></li> <li><a href="External_FCGI_Auth.html">Fast CGIオーソライザー</a></li> <li><a href="External_LSAPI.html">LSAPIアプリ</a></li> <li><a href="External_Servlet.html">サーブレットエンジン</a></li> <li><a href="External_WS.html">Webサーバー</a></li> <li><a href="External_PL.html">パイプロガー</a></li> <li><a href="External_LB.html">ロードバランサ</a></li> </ul> <li><a href="ScriptHandler_Help.html">スクリプトハンドラ</a></li> <li><a href="Rails_Help.html">Rack/Railsの設定</a></li> <li><a href="Module_Help.html">モジュール設定</a></li> <li><a href="Listeners_General_Help.html">リスナー全般</a></li> <li><a href="Listeners_SSL_Help.html">リスナーのSSL</a></li> <li><a href="Templates_Help.html">テンプレート</a></li> <li><a href="VirtualHosts_Help.html">バーチャルホストの基本</a></li> <li><a href="VHGeneral_Help.html">バーチャルホスト全般</a></li> <li><a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a></li> <li><a href="VHSSL_Help.html">バーチャルホストのSSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">コンテキスト</a></li> <ul class="level3"> <li><a href="Static_Context.html">静的コンテテキスト</a></li> <li><a href="Java_Web_App_Context.html">Java Webアプリのコンテキスト</a></li> <li><a href="Servlet_Context.html">サーブレットコンテキスト</a></li> <li><a href="FCGI_Context.html">Fast CGIコンテキスト</a></li> <li><a href="LSAPI_Context.html">LSAPIコンテキスト</a></li> <li><a href="Proxy_Context.html">プロキシコンテキスト</a></li> <li><a href="CGI_Context.html">CGIコンテキスト</a></li> <li><a href="LB_Context.html">ロードバランサコンテキスト</a></li> <li><a href="Redirect_Context.html">コンテキストのリダイレクト</a></li> <li><a href="Rails_Context.html">Rack/Railsのコンテキスト</a></li> <li><a href="Module_Context.html">モジュールハンドラのコンテキスト</a></li> </ul> <li><span class="current"><a href="VHWebSocket_Help.html">Web Socketプロキシ</a></span></li> </ul> </li> <li><a href="webconsole.html">Webコンソール</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">管理コンソール全般</a></li> <li><a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a></li> <li><a href="AdminListeners_General_Help.html">管理リスナー全般</a></li> <li><a href="AdminListeners_SSL_Help.html">管理リスナーのSSL</a></li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="Context_Help.html">コンテキスト</a></div><div class="center"><a href="config.html">設定</a></div><div class="next"> </div></div> <h1>Webソケットプロキシ</h1><section class="ls-spacer-small-bottom"><a href="http://en.wikipedia.org/wiki/WebSocket"> WebSocket </a>は、HTTPの代わりにインターネット上でリアルタイムの双方向通信を行うためのプロトコルです。 バージョン1.1.1以降、OpenLiteSpeedはWebSocketプロキシを使用してWebSocketバックエンドをサポートしています。 これらのプロキシは、WebSocket通信を{ITEM=wsaddr}フィールドで指定された適切なバックエンドに送信します。</section> <h2 id="top">目次</h2><section class="toc"><section class="toc-row"><header>Webソケットプロキシ</header><p> <a href="#wsuri">URI</a> | <a href="#wsaddr">アドレス</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="wsuri"><h3>URI<span class="ls-permlink"><a href="#wsuri"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このWebSocketバックエンドを使用するURIを指定します。 このURIへのトラフィックは、WebSocketのアップグレード要求が含まれている場合にのみWebSocketバックエンドに転送されます。<br/><br/> このアップグレード要求のないトラフィックは、このURIが属するコンテキストに自動的に転送されます。 このURIに対してContextが存在しない場合、LSWSはこのトラフィックを、<span class="val">$DOC_ROOT/URI</span>の場所で静的コンテキストにアクセスしているものとして扱います。</p> <h4>構文</h4><p>URIは、プレーンURI( "/"で始まる)またはPerlと互換性のある正規表現URI( "exp:"で始まる)にすることができます。 プレーンURIが "/"で終わる場合、このWebSocketバックエンドはこのURIの下にすべてのサブURIを含みます。</p> <h4>例</h4><div class="ls-example">WebSocketプロキシをコンテキストとともに使用すると、同じページでさまざまな種類のトラフィックをさまざまな方法で処理できるため、パフォーマンスが最適化されます。 WebSocketトラフィックをWebSocketバックエンドに送信し、LSWSがページの静的コンテンツまたはLSAPIコンテキストを提供できるように静的コンテキストを設定し、LSWSがPHPコンテンツ(両方ともLSSがWebSocketバックエンドより効率的に機能する)を提供できるようにします。</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="wsaddr"><h3>アドレス<span class="ls-permlink"><a href="#wsaddr"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>WebSocketバックエンドによって使用される一意のソケットアドレス。 IPv4ソケット、IPv6ソケット、Unixドメインソケット(UDS)がサポートされています。 IPv4およびIPv6ソケットは、ネットワークを介した通信に使用できます。 UDSは、WebSocketバックエンドがサーバーと同じマシンに存在する場合にのみ使用できます。</p> <h4>構文</h4><p>IPv4またはIPV6アドレス:ポートまたはUDS://パス</p> <h4>例</h4><div class="ls-example">127.0.0.1:5434 <br/> UDS://tmp/lshttpd/php.sock.</div><h4>ヒント</h4><p>[セキュリティ] WebSocketバックエンドが同じマシン上で実行される場合、UDSが優先されます。 IPv4またはIPv6ソケットを使用する必要がある場合は、IPアドレスをlocalhostまたは127.0.0.1に設定して、WebSocketバックエンド 他のマシンからはアクセスできません。<br/> [パフォーマンス] Unixドメインソケットは、一般にIPv4またはIPv6ソケットよりも高いパフォーマンスを提供します。</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ��������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������ja-JP/ServerStat_Help.html��������������������������������������������������������������������������0000644�����������������00000056201�15027525531�0011416 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Open LiteSpeed Web Serverユーザーズマニュアル - WebAdminコンソール - サービス管理</title> <meta name="description" content="Open LiteSpeed Web Serverユーザーズマニュアル - WebAdminコンソール - サービス管理." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="../img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h3 class="ls-text-thin">OpenLiteSpeed Web Server <a href="index.html"> ユーザーズマニュアル</a></h3> <h5 class="ls-text-muted">Version 1.8 — Rev. 0</h5> <hr/> <div> <ul> <li><a href="license.html">ライセンス</a></li> <li><a href="intro.html">はじめに</a></li> <li><a href="install.html">インストール</a></li> <li> <a href="admin.html">管理</a> <ul class="level2"> <li><span class="current"><a href="ServerStat_Help.html">サービスマネージャ</a></span></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">セキュリティ</a></li> <li><a href="config.html">設定</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">サーバー全般</a></li> <li><a href="ServLog_Help.html">サーバーログ</a></li> <li><a href="ServTuning_Help.html">サーバーのチューニング</a></li> <li><a href="ServSecurity_Help.html">サーバーのセキュリティ</a></li> <li><a href="ExtApp_Help.html">外部アプリ</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGIアプリ</a></li> <li><a href="External_FCGI_Auth.html">Fast CGIオーソライザー</a></li> <li><a href="External_LSAPI.html">LSAPIアプリ</a></li> <li><a href="External_Servlet.html">サーブレットエンジン</a></li> <li><a href="External_WS.html">Webサーバー</a></li> <li><a href="External_PL.html">パイプロガー</a></li> <li><a href="External_LB.html">ロードバランサ</a></li> </ul> <li><a href="ScriptHandler_Help.html">スクリプトハンドラ</a></li> <li><a href="Rails_Help.html">Rack/Railsの設定</a></li> <li><a href="Module_Help.html">モジュール設定</a></li> <li><a href="Listeners_General_Help.html">リスナー全般</a></li> <li><a href="Listeners_SSL_Help.html">リスナーのSSL</a></li> <li><a href="Templates_Help.html">テンプレート</a></li> <li><a href="VirtualHosts_Help.html">バーチャルホストの基本</a></li> <li><a href="VHGeneral_Help.html">バーチャルホスト全般</a></li> <li><a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a></li> <li><a href="VHSSL_Help.html">バーチャルホストのSSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">コンテキスト</a></li> <ul class="level3"> <li><a href="Static_Context.html">静的コンテテキスト</a></li> <li><a href="Java_Web_App_Context.html">Java Webアプリのコンテキスト</a></li> <li><a href="Servlet_Context.html">サーブレットコンテキスト</a></li> <li><a href="FCGI_Context.html">Fast CGIコンテキスト</a></li> <li><a href="LSAPI_Context.html">LSAPIコンテキスト</a></li> <li><a href="Proxy_Context.html">プロキシコンテキスト</a></li> <li><a href="CGI_Context.html">CGIコンテキスト</a></li> <li><a href="LB_Context.html">ロードバランサコンテキスト</a></li> <li><a href="Redirect_Context.html">コンテキストのリダイレクト</a></li> <li><a href="Rails_Context.html">Rack/Railsのコンテキスト</a></li> <li><a href="Module_Context.html">モジュールハンドラのコンテキスト</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socketプロキシ</a></li> </ul> </li> <li><a href="webconsole.html">Webコンソール</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">管理コンソール全般</a></li> <li><a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a></li> <li><a href="AdminListeners_General_Help.html">管理リスナー全般</a></li> <li><a href="AdminListeners_SSL_Help.html">管理リスナーのSSL</a></li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev"> </div><div class="center"><a href="admin.html">管理</a></div><div class="next"><a href="Real_Time_Stats_Help.html">Real-Time Statistics</a> »</div></div> <h1>WebAdminコンソール - サービス管理</h1><section class="ls-spacer-small-bottom">サービスマネージャは、サーバーを監視し、特定のトップレベル機能を制御するための制御室として機能します。 以下の機能を提供します: (サービスマネージャは、アクションメニューまたはホームページからクリックしてアクセスできます。) <ul> <li>サーバー、リスナー、およびバーチャルホストの現在の状態を監視します。</li> <li>正常に再起動して構成の変更を適用します。</li> <li>特定のバーチャルホストを有効または無効にします。</li> <li>ログビューアからサーバーログを表示します。</li> <li>リアルタイムのサーバー統計を監視する。</li> </ul></section> <h2 id="top">目次</h2><section class="toc"><section class="toc-row"><header>サーバー</header><p> <a href="#sname">名前 - サーバー</a> | <a href="#pid">PID</a> | <a href="#servAction">アクション</a> | <a href="#restart">変更を適用する/緩やかなリスタート</a> | <a href="#viewlog">サーバーログビューア</a> | <a href="#realtimerpt">リアルタイム統計</a> | <a href="#toggleDebugLog">デバッグログを切り替える</a></p></section> <section class="toc-row"><header>リスナー</header><p> <a href="#lname">名前 - リスナー</a> | <a href="#lstatus">ステータス - リスナー</a> | <a href="#lmap">バーチャルホストマッピング</a></p></section> <section class="toc-row"><header>バーチャルホスト</header><p> <a href="#vname">名前 - バーチャルホスト</a> | <a href="#vstatus">ステータス - バーチャルホスト</a> | <a href="#vaction">アクション - バーチャルホスト</a> | <a href="#venable">有効</a> | <a href="#vdisable">無効</a> | <a href="#vreload">再起動 - バーチャルホスト</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="sname"><h3>名前 - サーバー<span class="ls-permlink"><a href="#sname"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このサーバーを識別する一意の名前。 これは一般的な設定で指定された<span class="tagl"><a href="ServGeneral_Help.html#serverName">サーバー名</a></span>です。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="pid"><h3>PID<span class="ls-permlink"><a href="#pid"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>現在のサーバープロセスのPID(プロセスID)。</p> <h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> PIDは、サーバーが再起動されるたびに変更されます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="servAction"><h3>アクション<span class="ls-permlink"><a href="#servAction"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このメニューからは、次の6つのアクションを使用できます: <span class="val">緩やかな再起動</span>, <span class="val">デバッグログの切り替え</span>, <span class="val">サーバーログビューア</span>, <span class="val">リアルタイム統計</span>, <span class="val">バージョンマネージャ</span>, and <span class="val">PHPをコンパイル</span>. <ul><li><span class="tagl"><a href="#restart">変更を適用する/緩やかなリスタート</a></span>は、処理中のリクエストを中断することなく、正常にサーバプロセスを再起動します。</li> <li><span class="tagl"><a href="#toggleDebugLog">デバッグログを切り替える</a></span>は、デバッグログのオン/オフを切り替えます。</li> <li><span class="tagl"><a href="#viewlog">サーバーログビューア</a></span>は、ログビューアを介してサーバーログを表示できます。</li> <li><span class="tagl"><a href="#realtimerpt">リアルタイム統計</a></span>は、リアルタイムのサーバステータスを表示できます。</li> <li><span class="tagl"><a href="#vermgr">バージョン管理</a></span>は、LSWSの新しいバージョンをダウンロードし、異なるバージョン間で切り替えることができます。</li> <li>PHPをコンパイルすると、PHPをLiteSpeed Web Server用にコンパイルできます。</li> </ul></p> <h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> シェルユーティリティ<span class="cmd">$SERVER_ROOT/bin/lswsctrl</span>を使用してサーバープロセスを制御することもできますが、ログインシェルが必要です。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="restart"><h3>変更を適用する/緩やかなリスタート<span class="ls-permlink"><a href="#restart"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p><span class="val">緩やかな再起動</span>をクリックすると、新しいサーバープロセスが開始されます。 <span class="val">緩やかな再起動</span>の場合、古いサーバープロセスは、すべての要求が完了した後(または<span class="tagl"><a href="#gracefulRestartTimeout">緩やかな再起動タイムアウト(秒)</a></span>に達すると)終了します。<br/><br/> 設定の変更は、次回の再起動時に適用されます。 <span class="val">緩やかな再起動</span>は、サーバーのダウンタイムなしにこれらの変更を適用します。</p> <h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> 緩やかな再起動は、新しいサーバー・プロセスを生成するために2秒以下で完了します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="viewlog"><h3>サーバーログビューア<span class="ls-permlink"><a href="#viewlog"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Tサーバーログビューアは、現在のサーバーログを参照してエラーまたは問題をチェックするための便利なツールです。 ログ・ビューアーは、サーバーログファイルを指定されたログ・レベルのブロックで検索します。 <br/><br/> デフォルトのブロックサイズは20KBです。 <span class="val">Begin</span>、<span class="val">End</span>、<span class="val">Next</span>、<span class="val">Prev</span>ボタンを使用して、大きなログファイルをナビゲートできます。</p> <h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> 動的に生成されるページのサイズは、<span class="tagl"><a href="ServTuning_Help.html#maxDynRespSize">最大動的応答ボディサイズ(バイト)</a></span>によって制限されます。 したがって、ブロックが大きすぎると、ページが切り捨てられることがあります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="realtimerpt"><h3>リアルタイム統計<span class="ls-permlink"><a href="#realtimerpt"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>リアルタイム統計のリンクは、リアルタイムのサーバステータスレポートを含むページにつながります。 これは、システムを監視するのに便利なツールです。 <br/><br/> このレポートには、サーバー統計のスナップショットが表示されます。 このスナップショットのリフレッシュレートは、右上隅のリフレッシュインターバルドロップダウンリストによって制御されます。<br/><br/> このレポートには、次のセクションが含まれています: <ul><li>サーバーの正常性は、基本的なサーバーの統計情報、稼働時間、負荷、および阻止されたDDoS阻止IPを示します。</li> <li>現在のトラフィックのスループット、接続、およびリクエストの統計情報を表示します。</li> <li>バーチャルホストは、各バーチャルホストの要求処理状況と外部アプリケーションの状態を表示します</li> <li>外部アプリケーションは、現在実行中の外部アプリケーションとその使用状況の統計情報を表示します。 CGIデーモンプロセスlscgidは、常に外部アプリケーションとして実行されます。</li> </ul><br/><br/> リアルタイム統計の行の多くにグラフアイコンがあります。 このアイコンをクリックすると、その行の統計がリアルタイムで更新されたグラフが開きます。<br/><br/> 「サーバー」セクションの「要求」の横に、「詳細」というラベルの付いたリンクがあります。 このリンクをクリックすると、Requests Snapshotが表示されます。ここでは、どのクライアントが特定の種類のリクエストを行っているのか、サイトのどの部分がボトルネックになっているのかを詳しく見ることができます。 青色の領域のフィールドを使用すると、スナップショットをフィルタリングしてサーバーの特定の部分を分離したり、特定の処理を実行しているクライアントを探すことができます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="toggleDebugLog"><h3>デバッグログを切り替える<span class="ls-permlink"><a href="#toggleDebugLog"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>デバッグログの切り替えは、<span class="tagl"><a href="ServGeneral_Help.html#log_debugLevel">デバッグレベル</a></span>の値を<span class="val">NONE</span>と<span class="val">HIGH</span>の間で切り替えます。 デバッグロギングはパフォーマンスに影響を与え、ハードドライブをすばやく埋めることができるため、通常は本番サーバーで<span class="tagl"><a href="ServGeneral_Help.html#log_debugLevel">デバッグレベル</a></span>を<span class="val">NONE</span>に設定する必要があります。 この機能を代わりに使用して、本番サーバー上の問題をデバッグするために、デバッグログを素早くオン/オフすることができます。 このようにデバッグロギングをオンまたはオフにしても、サーバー構成に表示されるものは変更されません。</p> <h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> <span class="tagl"><a href="#toggleDebugLog">デバッグログを切り替える</a></span>は、<span class="tagl"><a href="ServGeneral_Help.html#log_logLevel">ログレベル</a></span>が<span class="val">DEBUG</span>に設定されている場合にのみ機能します。<br/> [パフォーマンス]重要! デバッグログには、各要求と応答の詳細情報が含まれています。 アクティブデバッグロギングは、サービスパフォーマンスを著しく低下させ、非常に短時間でディスクスペースを飽和させる可能性があります。 この機能は、サーバーの問題を診断しようとすると、短時間しか使用しないでください</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="ServGeneral_Help.html#log_debugLevel">デバッグレベル</a></span>, <span class="tagl"><a href="ServGeneral_Help.html#log_logLevel">ログレベル</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="lname"><h3>名前 - リスナー<span class="ls-permlink"><a href="#lname"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このリスナーを識別する固有の名前。 これは、リスナーを設定するときに指定した<span class="tagl"><a href="Listeners_General_Help.html#listenerName">リスナー名</a></span>です。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="lstatus"><h3>ステータス - リスナー<span class="ls-permlink"><a href="#lstatus"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このリスナーの現在のステータス。 ステータスは<span class="val">Running</span>か<span class="val">Error</span>のいずれかです。</p> <h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> リスナーが<span class="val">Error</span>状態にある場合は、サーバーログを表示して理由を調べることができます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="lmap"><h3>バーチャルホストマッピング<span class="ls-permlink"><a href="#lmap"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>特定のリスナーからのバーチャルホストへの現在確立されているマッピングを表示します。 バーチャルホスト名は括弧内に表示され、このリスナーに一致するドメイン名が続きます。</p> <h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> バーチャルホストが正常にロードされていない場合(バーチャルホストの致命的なエラー)、そのバーチャルホストへのマッピングは表示されません。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vname"><h3>名前 - バーチャルホスト<span class="ls-permlink"><a href="#vname"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このバーチャルホストを識別する一意の名前。 これは、このバーチャルホストを設定するときに指定した<span class="tagl"><a href="VirtualHosts_Help.html#vhName">バーチャルホスト名</a></span>です。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vstatus"><h3>ステータス - バーチャルホスト<span class="ls-permlink"><a href="#vstatus"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>バーチャルホストの現在のステータス。 ステータスは<span class="val">Running</span>、<span class="val">Stopped</span>、<span class="val">Restart Required</span>、または<span class="val">Running - Removed from onfiguration</span>です。 <ul> <li><span class="val">Running</span>は、バーチャルホストがロードされ、サービス中であることを意味します。</li> <li><span class="val">Stopped</span>は、バーチャルホストがロードされていてもサービスされていない(無効になっている)ことを意味します。 </li> <li><span class="val">Restart Required</span>は、これが新しく追加されたバーチャルホストであり、サーバがまだ設定をロードしていないことを意味します。 </li> <li><span class="val">Running - Removed from Configuration</span>は、バーチャルホストがサーバの設定から削除されたが、まだ稼働中であることを意味します。 </li> </ul></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vaction"><h3>アクション - バーチャルホスト<span class="ls-permlink"><a href="#vaction"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このフィールドには、バーチャルホストを無効化、有効化、または再起動するためのボタンが表示されます。 1つのバーチャルホストで実行されたアクションは、残りのWebサーバーには影響しません。</p> <h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> バーチャルホストをコンテンツを更新するときに一時的に無効にすることをお勧めします。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="venable"><h3>有効<span class="ls-permlink"><a href="#venable"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p><span class="val">有効</span>アクションは、停止したバーチャルホストを起動します。 これにより、新しい要求を受け入れることができます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vdisable"><h3>無効<span class="ls-permlink"><a href="#vdisable"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p><span class="val">無効</span>アクションは、実行中のバーチャルホストを停止します。 新しいリクエストは受け付けられませんが、処理中のリクエストは通常通り終了します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vreload"><h3>再起動 - バーチャルホスト<span class="ls-permlink"><a href="#vreload"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Restartアクションにより、Webサーバーはこのバーチャルホストの最新の構成をロードします。 処理中のリクエストは古い設定で終了します。 新しい設定は新しいリクエストにのみ適用されます。 バーチャルホストへのすべてのハングは、この方法でオンザフライで適用できます。</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> �����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������ja-JP/CGI_Context.html������������������������������������������������������������������������������0000644�����������������00000056356�15027525531�0010465 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Open LiteSpeed Web Serverユーザーズマニュアル - CGIコンテキスト</title> <meta name="description" content="Open LiteSpeed Web Serverユーザーズマニュアル - CGIコンテキスト." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="../img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h3 class="ls-text-thin">OpenLiteSpeed Web Server <a href="index.html"> ユーザーズマニュアル</a></h3> <h5 class="ls-text-muted">Version 1.8 — Rev. 0</h5> <hr/> <div> <ul> <li><a href="license.html">ライセンス</a></li> <li><a href="intro.html">はじめに</a></li> <li><a href="install.html">インストール</a></li> <li> <a href="admin.html">管理</a> <ul class="level2"> <li><a href="ServerStat_Help.html">サービスマネージャ</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">セキュリティ</a></li> <li><a href="config.html">設定</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">サーバー全般</a></li> <li><a href="ServLog_Help.html">サーバーログ</a></li> <li><a href="ServTuning_Help.html">サーバーのチューニング</a></li> <li><a href="ServSecurity_Help.html">サーバーのセキュリティ</a></li> <li><a href="ExtApp_Help.html">外部アプリ</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGIアプリ</a></li> <li><a href="External_FCGI_Auth.html">Fast CGIオーソライザー</a></li> <li><a href="External_LSAPI.html">LSAPIアプリ</a></li> <li><a href="External_Servlet.html">サーブレットエンジン</a></li> <li><a href="External_WS.html">Webサーバー</a></li> <li><a href="External_PL.html">パイプロガー</a></li> <li><a href="External_LB.html">ロードバランサ</a></li> </ul> <li><a href="ScriptHandler_Help.html">スクリプトハンドラ</a></li> <li><a href="Rails_Help.html">Rack/Railsの設定</a></li> <li><a href="Module_Help.html">モジュール設定</a></li> <li><a href="Listeners_General_Help.html">リスナー全般</a></li> <li><a href="Listeners_SSL_Help.html">リスナーのSSL</a></li> <li><a href="Templates_Help.html">テンプレート</a></li> <li><a href="VirtualHosts_Help.html">バーチャルホストの基本</a></li> <li><a href="VHGeneral_Help.html">バーチャルホスト全般</a></li> <li><a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a></li> <li><a href="VHSSL_Help.html">バーチャルホストのSSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">コンテキスト</a></li> <ul class="level3"> <li><a href="Static_Context.html">静的コンテテキスト</a></li> <li><a href="Java_Web_App_Context.html">Java Webアプリのコンテキスト</a></li> <li><a href="Servlet_Context.html">サーブレットコンテキスト</a></li> <li><a href="FCGI_Context.html">Fast CGIコンテキスト</a></li> <li><a href="LSAPI_Context.html">LSAPIコンテキスト</a></li> <li><a href="Proxy_Context.html">プロキシコンテキスト</a></li> <li><span class="current"><a href="CGI_Context.html">CGIコンテキスト</a></span></li> <li><a href="LB_Context.html">ロードバランサコンテキスト</a></li> <li><a href="Redirect_Context.html">コンテキストのリダイレクト</a></li> <li><a href="Rails_Context.html">Rack/Railsのコンテキスト</a></li> <li><a href="Module_Context.html">モジュールハンドラのコンテキスト</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socketプロキシ</a></li> </ul> </li> <li><a href="webconsole.html">Webコンソール</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">管理コンソール全般</a></li> <li><a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a></li> <li><a href="AdminListeners_General_Help.html">管理リスナー全般</a></li> <li><a href="AdminListeners_SSL_Help.html">管理リスナーのSSL</a></li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="Proxy_Context.html">プロキシコンテキスト</a></div><div class="center"><a href="Context_Help.html">コンテキスト</a></div><div class="next"><a href="LB_Context.html">ロードバランサコンテキスト</a> »</div></div> <h1>CGIコンテキスト</h1><h2 id="top">目次</h2><section class="toc"><section class="toc-row"><header><a href="#cgiContext">CGIコンテキスト</a></header><p> <a href="#expuri">URI</a> | <a href="#cgi_path">パス</a> | <a href="#extraHeaders">Extra Headers</a> | <a href="#allowSetUID">UIDの設定を許可する</a> | <a href="#realm">レルム</a> | <a href="#authName">認証名</a> | <a href="#required">必要(許可ユーザー/グループ)</a> | <a href="#accessAllowed">アクセス許可</a> | <a href="#accessDenied">アクセス拒否</a> | <a href="#extAuthorizer">承認者</a> | <a href="#addDefaultCharset">デフォルトの文字セットを追加</a> | <a href="#defaultCharsetCustomized">カスタマイズされたデフォルトの文字セット</a> | <a href="#enableRewrite">Rewriteを有効にする</a> | <a href="#rewriteInherit">継承を書き直す</a> | <a href="#rewriteBase">書き換えベース</a> | <a href="#rewriteRules">Rewriteルール</a> | <a href="#enableIpGeo">IPジオロケーションを有効にする</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="cgiContext"><h3>CGIコンテキスト<span class="ls-permlink"><a href="#cgiContext"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>CGIコンテキストは、特定のディレクトリ内のスクリプトをCGIスクリプトとして定義します。 このディレクトリは、ドキュメントルートの内側または外側にすることができます。 このディレクトリの下にあるファイルが要求されると、サーバは実行可能かどうかに関わらず、常にCGIスクリプトとして実行しようとします。 このように、CGIコンテキスト下のファイルの内容は常に保護されており、静的なコンテンツとして読み込むことができません。 すべてのCGIスクリプトをディレクトリに置いて、それらにアクセスするためのCGIコンテキストを設定することをお勧めします。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expuri"><h3>URI<span class="ls-permlink"><a href="#expuri"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストのURIを指定します。</p> <h4>構文</h4><p>URIは、プレーンURI( "/"で始まる)またはPerl互換の正規表現URI( "exp:"で始まる)にすることができます。 プレーンURIが "/"で終わる場合、このコンテキストはこのURIの下にすべてのサブURIを含みます。 コンテキストがファイルシステム上のディレクトリにマップされている場合は、末尾に「/」を追加する必要があります。</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#location">ロケーション</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="cgi_path"><h3>パス<span class="ls-permlink"><a href="#cgi_path"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>CGIスクリプトの場所を指定します。</p> <h4>構文</h4><p>パスは<span class="val">$VH_ROOT/myapp/cgi-bin/</span>のようなCGIスクリプトのグループが含まれているディレクトリにすることができます。 この場合、コンテキスト<span class="tagl"><a href="#expuri">URI</a></span>は<span class="val">/app1/cgi/</span>のように "/"で終わらなければなりません。 パスは、<span class="val">$VH_ROOT/myapp/myscript.pl</span>のように、CGIスクリプトを1つだけ指定することもできます。 このスクリプトには対応する<span class="tagl"><a href="#expuri">URI</a></span><span class="val">/myapp/myscript.pl</span>が必要です。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extraHeaders"><h3>Extra Headers<span class="ls-permlink"><a href="#extraHeaders"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>追加される余分な応答ヘッダーを指定します。 1行に1つのヘッダーを追加できます。 親コンテンツから継承したヘッダーを無効にするには、"NONE"を入力します。</p> <h4>構文</h4><p>各行に "[HeaderName]: [HeaderValue]"</p> <h4>例</h4><div class="ls-example">Cache-control: no-cache, no-store <br/> My-header: Custom header value</div><h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> Syntax and usage are similar to <a href="https://httpd.apache.org/docs/2.2/mod/mod_headers.html#header" target="_blank" rel="noopener noreferrer">Apache's mod_headers directives</a> for supported operations.<br/><br/> <span title="Information" class="ls-icon-info"></span> The 'Header' directive is is optional and can be excluded or left in when copying rules from elsewhere without issue.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="allowSetUID"><h3>UIDの設定を許可する<span class="ls-permlink"><a href="#allowSetUID"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>設定されたUIDビットがCGIスクリプトに許可されるかどうかを指定します。 設定されたUIDビットが許可され、CGIスクリプトに対して設定されたUIDビットが有効になっている場合、CGIスクリプトがどのユーザーに代わって起動されたかにかかわらず、CGIプロセスのユーザーIDは、CGIスクリプトの所有者のユーザーIDに切り替わります。<br/> デフォルトは「オフ」です。</p> <h4>構文</h4><p>ラジオボックスから選択</p> <h4>ヒント</h4><p>[セキュリティ]可能であれば、UID CGIスクリプトを設定しないでください。 本質的にセキュリティリスクです。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="realm"><h3>レルム<span class="ls-permlink"><a href="#realm"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストの認可レルムを指定します。 このコンテキストにアクセスするには、有効なユーザー名とパスワードを指定する必要があります。 <span class="tagl"><a href="VHSecurity_Help.html#realms">認可レルム</a></span>は<span class="tagP"><a href="#VHSecurity_Help">バーチャルホストのセキュリティ</a></span>セクションに設定されています。 この設定では、各レルムの<span class="tagl"><a href="VHSecurity_Help.html#realmName">レルム名</a></span>が使用されます。</p> <h4>構文</h4><p>選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="authName"><h3>認証名<span class="ls-permlink"><a href="#authName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>現在のコンテキストの認証レルムの代替名を指定します。 指定しない場合、元のレルム名が使用されます。 認証名は、ブラウザのログインポップアップに表示されます。</p> <h4>構文</h4><p>テキスト</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="required"><h3>必要(許可ユーザー/グループ)<span class="ls-permlink"><a href="#required"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストにアクセスできるユーザー/グループを指定します。 これにより、複数のコンテキストにわたって1つのユーザー/グループデータベース(<span class="tagl"><a href="#realm">レルム</a></span>で指定)を使用できますが、そのデータベースの特定のユーザー/グループのみがこのコンテキストにアクセスできます。</p> <h4>構文</h4><p>構文はApache Requireディレクティブと互換性があります。 例えば: <ul> <li><span class="val">user username [username ...]</span> <br/> リストされたユーザーだけがこのコンテキストにアクセスできます。</li> <li> <span class="val">group groupid [groupid ...]</span><br/> リストされたグループに属するユーザーのみがこのコンテキストにアクセスできます。</li> </ul> この設定を指定しないと、すべての有効なユーザーがこのリソースにアクセスできます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessAllowed"><h3>アクセス許可<span class="ls-permlink"><a href="#accessAllowed"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストでリソースにアクセスできるIPまたはサブネットワークを指定します。 <span class="tagl"><a href="#accessDenied">アクセス拒否</a></span>とサーバー/バーチャルホスト・レベルのアクセス制御とともに、アクセシビリティは、クライアントのIPアドレスが入る最小の範囲によって決まります。</p> <h4>構文</h4><p>IP/サブネットワークのカンマ区切りリスト。</p> <h4>例</h4><div class="ls-example">サブネットワークは以下のように書くことができます <span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span>, 又は <span class="val">192.168.1.*</span>.</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessDenied"><h3>アクセス拒否<span class="ls-permlink"><a href="#accessDenied"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストでリソースにアクセスできないIPまたはサブネットワークを指定します。 <span class="tagl"><a href="#accessAllowed">アクセス許可</a></span>とサーバー/バーチャルホストレベルのアクセス制御とともに、アクセシビリティはクライアントのIPアドレスが入る最小の範囲で決まります。</p> <h4>構文</h4><p>IP/サブネットワークのカンマ区切りリスト。</p> <h4>例</h4><div class="ls-example">サブネットワークは以下のように書くことができます <span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span>, 又は <span class="val">192.168.1.*</span>.</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAuthorizer"><h3>承認者<span class="ls-permlink"><a href="#extAuthorizer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>権限のある/権限のないかの決定を生成するために使用できる外部アプリケーションを指定します。 現在、FastCGI Authorizerのみが使用可能です。 FastCGI Authorizerの役割の詳細については、<a href=" https://fastcgi-archives.github.io/ " target="_blank" rel="noopener noreferrer"> https://fastcgi-archives.github.io/ </a>を参照してください。 。</p> <h4>構文</h4><p>ドロップダウンリストから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="addDefaultCharset"><h3>デフォルトの文字セットを追加<span class="ls-permlink"><a href="#addDefaultCharset"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>コンテンツタイプが "text/html"または "text/plain"のいずれかのパラメータがない場合、文字セットタグを "Content-Type"レスポンスヘッダーに追加するかどうかを指定します。 <span class="val">Off</span>に設定すると、この機能は無効になります。 <span class="val">On</span>に設定すると、<span class="tagl"><a href="#defaultCharsetCustomized">カスタマイズされたデフォルトの文字セット</a></span>で指定された文字セットまたはデフォルトの "iso-8859-1"のいずれかが追加されます。</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="defaultCharsetCustomized"><h3>カスタマイズされたデフォルトの文字セット<span class="ls-permlink"><a href="#defaultCharsetCustomized"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p><span class="tagl"><a href="#addDefaultCharset">デフォルトの文字セットを追加</a></span>が<span class="val">On</span>のときに使用される文字セットを指定します。 これはオプションです。 デフォルト値は<span class="val"> iso-8859-1 </span>です。 <span class="tagl"><a href="#addDefaultCharset">デフォルトの文字セットを追加</a></span>が<span class="val"> Off </span>の場合、このエントリは無効です。</p> <h4>構文</h4><p>文字セットの名前。</p> <h4>例</h4><div class="ls-example">utf-8</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableRewrite"><h3>Rewriteを有効にする<span class="ls-permlink"><a href="#enableRewrite"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>LiteSpeedのURL書き換えエンジンを有効にするかどうかを指定します。 このオプションは、バーチャルホストまたはコンテキストレベルでカスタマイズでき、明示的に上書きされるまでディレクトリツリーに沿って継承されます。</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="rewriteInherit"><h3>継承を書き直す<span class="ls-permlink"><a href="#rewriteInherit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>親コンテキストから書き換えルールを継承するかどうかを指定します。 書き換えが有効で継承されていない場合は、このコンテキストで定義されている書き換えのベースルールと書き換えルールが使用されます。</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="rewriteBase"><h3>書き換えベース<span class="ls-permlink"><a href="#rewriteBase"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>書き換えルールのベースURLを指定します。</p> <h4>構文</h4><p>URL</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="rewriteRules"><h3>Rewriteルール<span class="ls-permlink"><a href="#rewriteRules"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>バーチャルホストまたはコンテキスト・レベルでの書き換えルールのリストを指定します。 書き換えルールは、<span class="val">RewriteRule</span>ディレクティブから構成され、オプションとして複数の<span class="val">RewriteCond</span>ディレクティブが前に付いています。 <ul> <li>各ディレクティブは1行だけを取る必要があります。</li> <li><span class="val">RewriteCond</span>と<span class="val">RewriteRule</span>は、Apacheのリライト命令構文に従います。 あなたのApache設定ファイルから書き換え命令文をコピー&ペーストするだけです。</li> <li>LiteSpeedとApache mod_rewriteには小さな違いがあります 実装: <ul> <li>LiteSpeed書き換えエンジンでは、<span class="val">%\ {LA-U:変数\} </span>と<span class="val">%\ {LA-F:変数\} </span>は無視されます</li> <li>LiteSpeed書き換えエンジンに2つの新しいサーバー変数が追加されました。: LiteSpeed書き換えエンジンに2つの新しいサーバー変数が追加されました。 <span class="val">%\{CURRENT_URI\}</span>は、書き換えエンジンによって処理されている現在のURIを表し、<span class="val">%\{SCRIPT_NAME\}</span>は対応するCGI環境変数と同じ意味を持ちます。</li> </ul></li> </ul> LiteSpeedのリライトエンジンの実装は、Apacheのリライトエンジンの仕様に従います。 書き換えルールの詳細については、<a href="http://httpd.apache.org/docs/current/mod/mod_rewrite.html" target="_blank" rel="noopener noreferrer">Apacheのmod_rewriteドキュメント</a>と<a href="http://httpd.apache.org/docs/current/rewrite/" target="_blank" rel="noopener noreferrer">ApacheのURL書き換えガイド</a>を参照してください。</p> <h4>構文</h4><p>文字列</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableIpGeo"><h3>IPジオロケーションを有効にする<span class="ls-permlink"><a href="#enableIpGeo"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p> IPジオロケーション検索を有効/無効にするかどうかを指定します。 サーバ、バーチャルホスト、コンテキストレベルで設定できます。 値 「未設定」を使用すると、IPジオロケーションはデフォルトで無効になります。</p> <h4>構文</h4><p>ラジオボックスから選択</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="ServGeneral_Help.html#useIpInProxyHeader">ヘッダーにクライアントIPを使用する</a></span>, <span class="tagl"><a href="ServGeneral_Help.html#geoipDBFile">DBファイルのパス</a></span>,</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������ja-JP/Module_Help.html������������������������������������������������������������������������������0000644�����������������00000113231�15027525531�0010536 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Open LiteSpeed Web Serverユーザーズマニュアル - モジュール設定</title> <meta name="description" content="Open LiteSpeed Web Serverユーザーズマニュアル - モジュール設定." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="../img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h3 class="ls-text-thin">OpenLiteSpeed Web Server <a href="index.html"> ユーザーズマニュアル</a></h3> <h5 class="ls-text-muted">Version 1.8 — Rev. 0</h5> <hr/> <div> <ul> <li><a href="license.html">ライセンス</a></li> <li><a href="intro.html">はじめに</a></li> <li><a href="install.html">インストール</a></li> <li> <a href="admin.html">管理</a> <ul class="level2"> <li><a href="ServerStat_Help.html">サービスマネージャ</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">セキュリティ</a></li> <li><a href="config.html">設定</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">サーバー全般</a></li> <li><a href="ServLog_Help.html">サーバーログ</a></li> <li><a href="ServTuning_Help.html">サーバーのチューニング</a></li> <li><a href="ServSecurity_Help.html">サーバーのセキュリティ</a></li> <li><a href="ExtApp_Help.html">外部アプリ</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGIアプリ</a></li> <li><a href="External_FCGI_Auth.html">Fast CGIオーソライザー</a></li> <li><a href="External_LSAPI.html">LSAPIアプリ</a></li> <li><a href="External_Servlet.html">サーブレットエンジン</a></li> <li><a href="External_WS.html">Webサーバー</a></li> <li><a href="External_PL.html">パイプロガー</a></li> <li><a href="External_LB.html">ロードバランサ</a></li> </ul> <li><a href="ScriptHandler_Help.html">スクリプトハンドラ</a></li> <li><a href="Rails_Help.html">Rack/Railsの設定</a></li> <li><span class="current"><a href="Module_Help.html">モジュール設定</a></span></li> <li><a href="Listeners_General_Help.html">リスナー全般</a></li> <li><a href="Listeners_SSL_Help.html">リスナーのSSL</a></li> <li><a href="Templates_Help.html">テンプレート</a></li> <li><a href="VirtualHosts_Help.html">バーチャルホストの基本</a></li> <li><a href="VHGeneral_Help.html">バーチャルホスト全般</a></li> <li><a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a></li> <li><a href="VHSSL_Help.html">バーチャルホストのSSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">コンテキスト</a></li> <ul class="level3"> <li><a href="Static_Context.html">静的コンテテキスト</a></li> <li><a href="Java_Web_App_Context.html">Java Webアプリのコンテキスト</a></li> <li><a href="Servlet_Context.html">サーブレットコンテキスト</a></li> <li><a href="FCGI_Context.html">Fast CGIコンテキスト</a></li> <li><a href="LSAPI_Context.html">LSAPIコンテキスト</a></li> <li><a href="Proxy_Context.html">プロキシコンテキスト</a></li> <li><a href="CGI_Context.html">CGIコンテキスト</a></li> <li><a href="LB_Context.html">ロードバランサコンテキスト</a></li> <li><a href="Redirect_Context.html">コンテキストのリダイレクト</a></li> <li><a href="Rails_Context.html">Rack/Railsのコンテキスト</a></li> <li><a href="Module_Context.html">モジュールハンドラのコンテキスト</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socketプロキシ</a></li> </ul> </li> <li><a href="webconsole.html">Webコンソール</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">管理コンソール全般</a></li> <li><a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a></li> <li><a href="AdminListeners_General_Help.html">管理リスナー全般</a></li> <li><a href="AdminListeners_SSL_Help.html">管理リスナーのSSL</a></li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="App_Server_Help.html">App Server Settings</a></div><div class="center"><a href="config.html">設定</a></div><div class="next"><a href="Listeners_General_Help.html">リスナー全般</a> »</div></div> <h1>モジュール設定</h1><section class="ls-spacer-small-bottom">モジュールのサポートは、Openlitespeed 1.3およびLSWS Enterprise 5.0以降で利用できます。 必要なモジュールはすべて、サーバーモジュール設定タブに登録する必要があります。 モジュールファイルは、登録可能なサーバーのroot / modulesフォルダーに置く必要があります。 起動時に、サーバーは登録されているすべてのモジュールをロードします。 新しいモジュールが登録された後、サーバーを再起動する必要があります。 モジュールは、サーバーモジュール設定タブでグローバルに設定できます。 構成データは、リスナーおよびバーチャルホスト・モジュール構成が継承または変更するために使用できます。</section> <h2 id="top">目次</h2><section class="toc"><section class="toc-row"><header><a href="#servModules">サーバーモジュール</a></header><p> <a href="#modulename">モジュール</a> | <a href="#internalmodule">内部</a> | <a href="#modParams">モジュールのパラメータ</a> | <a href="#moduleEnabled">フックを有効にする</a> | <a href="#L4_BEGINSESSION">フック::L4_BEGINSESSION プライオリティ</a> | <a href="#L4_ENDSESSION">フック::L4_ENDSESSION プライオリティ</a> | <a href="#L4_RECVING">フック::L4_RECVING プライオリティ</a> | <a href="#L4_SENDING">フック::L4_SENDING プライオリティ</a> | <a href="#HTTP_BEGIN">フック::HTTP_BEGIN プライオリティ</a> | <a href="#RECV_REQ_HEADER">フック::RECV_REQ_HEADER プライオリティ</a> | <a href="#URI_MAP">フック::URI_MAP プライオリティ</a> | <a href="#HTTP_AUTH">フック::HTTP_AUTH プライオリティ</a> | <a href="#RECV_REQ_BODY">フック::RECV_REQ_BODY プライオリティ</a> | <a href="#RCVD_REQ_BODY">フック::RCVD_REQ_BODY プライオリティ</a> | <a href="#RECV_RESP_HEADER">Hook::RECV_RESP_HEADER Priority</a> | <a href="#RECV_RESP_BODY">フック::RECV_RESP_BODY プライオリティ</a> | <a href="#RCVD_RESP_BODY">フック::RCVD_RESP_BODY プライオリティ</a> | <a href="#HANDLER_RESTART">フック::HANDLER_RESTART プライオリティ</a> | <a href="#SEND_RESP_HEADER">フック::SEND_RESP_HEADER プライオリティ</a> | <a href="#SEND_RESP_BODY">フック::SEND_RESP_BODY プライオリティ</a> | <a href="#HTTP_END">フック::HTTP_END プライオリティ</a> | <a href="#MAIN_INITED">フック::MAIN_INITED プライオリティ</a> | <a href="#MAIN_PREFORK">フック::MAIN_PREFORK プライオリティ</a> | <a href="#MAIN_POSTFORK">フック::MAIN_POSTFORK プライオリティ</a> | <a href="#WORKER_POSTFORK">フック::WORKER_POSTFORK プライオリティ</a> | <a href="#WORKER_ATEXIT">フック::WORKER_ATEXIT プライオリティ</a> | <a href="#MAIN_ATEXIT">フック::MAIN_ATEXIT プライオリティ</a></p></section> <section class="toc-row"><header><a href="#listenerModules">リスナーモジュール</a></header><p> <a href="#modulename">モジュール</a> | <a href="#modParams">モジュールのパラメータ</a> | <a href="#moduleEnabled_lst">フックを有効にする</a></p></section> <section class="toc-row"><header><a href="#vhModules">バーチャルホストモジュール</a></header><p> <a href="#modulename">モジュール</a> | <a href="#modParams">モジュールのパラメータ</a> | <a href="#moduleEnabled_vh">フックを有効にする</a></p></section> <section class="toc-row"><header><a href="#vhModuleUrlFilters">バーチャルホストモジュールのコンテキスト</a></header><p> <a href="#expuri">URI</a> | <a href="#modParams">モジュールのパラメータ</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="servModules"><h3>サーバーモジュール<span class="ls-permlink"><a href="#servModules"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>サーバーモジュール構成は、モジュール構成データをグローバルに定義します。 一度定義されると、リスナーとバーチャルホストはモジュールとモジュール構成にアクセスできます。 <br/><br/> 処理されるすべてのモジュールは、サーバー構成に登録する必要があります。 サーバー構成では、モジュール・パラメーター・データのデフォルト値も定義されています。 これらの値は、リスナーおよびバーチャルホスト構成データによって継承または上書きできます。<br/><br/> モジュールの優先順位は、サーバーレベルでのみ定義され、リスナーとバーチャルホストの設定によって継承されます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="modulename"><h3>モジュール<span class="ls-permlink"><a href="#modulename"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>モジュールの名前。 モジュール名はモジュールファイル名と同じになります。 モジュール・ファイルは、サーバー・アプリケーションによってロードされるために$SERVER_ROOT/modules/modulename.soの下になければなりません。 サーバーは起動時に登録されたモジュールをロードします。 このためには、新しいモジュールが登録された後でサーバーを再起動する必要があります。</p> <h4>構文</h4><p>.soのライブラリ名。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="internalmodule"><h3>内部<span class="ls-permlink"><a href="#internalmodule"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>モジュールが外部の.soライブラリではなく、静的にリンクされている内部モジュールであるかどうかを指定します。</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="modParams"><h3>モジュールのパラメータ<span class="ls-permlink"><a href="#modParams"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>モジュールのパラメータを設定します。 モジュールパラメータは、モジュール開発者によって定義されます。<br/><br/> デフォルト値をグローバルに割り当てるようにサーバー構成内の値を設定します。 ユーザーは、この設定をリスナー、バーチャルホストまたはコンテキスト・レベルでオーバーライドできます。 「未設定」ラジオボタンが選択されている場合、それは上位レベルから継承されます。</p> <h4>構文</h4><p>モジュールインタフェースで指定されます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="moduleEnabled"><h3>フックを有効にする<span class="ls-permlink"><a href="#moduleEnabled"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>モジュールフックをグローバルに有効または無効にします。 <br/> 「未設定」ラジオボタンが選択され、モジュールにフック機能が含まれている場合、デフォルトが有効になります。 ユーザーは、各レベルでこのグローバル設定を上書きできます。</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="L4_BEGINSESSION"><h3>フック::L4_BEGINSESSION プライオリティ<span class="ls-permlink"><a href="#L4_BEGINSESSION"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このモジュールコールバックの優先度をL4 Begin Session フック内で設定します。<br/> TCP/IP接続が開始されると、L4 Begin Session フックがトリガーされます。 <br/><br/> モジュールにフックポイントがある場合にのみ有効です。 設定されていない場合、優先度はモジュールで定義されたデフォルト値になります。</p> <h4>構文</h4><p>整数値は-6000から6000です。値が小さいほど優先度が高くなります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="L4_ENDSESSION"><h3>フック::L4_ENDSESSION プライオリティ<span class="ls-permlink"><a href="#L4_ENDSESSION"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このモジュールコールバックの優先度をL4 End Session フック内で設定します。<br/> TCP/IP接続が終了すると、L4 End Session フックがトリガーされます。 <br/><br/> モジュールにフックポイントがある場合にのみ有効です。 設定されていない場合、優先度はモジュールで定義されたデフォルト値になります。</p> <h4>構文</h4><p>整数値は-6000から6000です。値が小さいほど優先度が高くなります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="L4_RECVING"><h3>フック::L4_RECVING プライオリティ<span class="ls-permlink"><a href="#L4_RECVING"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>L4 Receiving フック内のこのモジュールコールバックの優先度を設定します。<br/> TCP/IP接続がデータを受信すると、L4 Receiving フックがトリガーされます。 <br/><br/> モジュールにフックポイントがある場合にのみ有効です。 設定されていない場合、優先度はモジュールで定義されたデフォルト値になります。</p> <h4>構文</h4><p>整数値は-6000から6000です。値が小さいほど優先度が高くなります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="L4_SENDING"><h3>フック::L4_SENDING プライオリティ<span class="ls-permlink"><a href="#L4_SENDING"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このモジュールコールバックの優先度をL4 Sendingフック内で設定します。<br/> L4_SENDINGフックは、TCP/IP接続がデータを送信するときにトリガーされます。 <br/><br/> モジュールにフックポイントがある場合にのみ有効です。 設定されていない場合、優先度はモジュールで定義されたデフォルト値になります。</p> <h4>構文</h4><p>整数値は-6000から6000です。値が小さいほど優先度が高くなります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="HTTP_BEGIN"><h3>フック::HTTP_BEGIN プライオリティ<span class="ls-permlink"><a href="#HTTP_BEGIN"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>HTTP Begin フック内のこのモジュールコールバックの優先度を設定します。<br/> TCP/IP接続がHTTPセッションを開始すると、HTTP Begin フックがトリガーされます。 <br/><br/> モジュールにフックポイントがある場合にのみ有効です。 設定されていない場合、優先度はモジュールで定義されたデフォルト値になります。</p> <h4>構文</h4><p>整数値は-6000から6000です。値が小さいほど優先度が高くなります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="RECV_REQ_HEADER"><h3>フック::RECV_REQ_HEADER プライオリティ<span class="ls-permlink"><a href="#RECV_REQ_HEADER"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>HTTP受信要求ヘッダーフック内のこのモジュールコールバックの優先度を設定します。<br/> HTTP受信要求ヘッダーフックは、Webサーバーが要求ヘッダーを受信するとトリガーされます。 <br/><br/> モジュールにフックポイントがある場合にのみ有効です。 設定されていない場合、優先度はモジュールで定義されたデフォルト値になります。</p> <h4>構文</h4><p>整数値は-6000から6000です。値が小さいほど優先度が高くなります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="URI_MAP"><h3>フック::URI_MAP プライオリティ<span class="ls-permlink"><a href="#URI_MAP"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このモジュールコールバックの優先度をHTTP URIマップフック内で設定します。<br/> HTTP URI マップフックは、WebサーバーがURI要求をコンテキストにマップするときにトリガーされます。 <br/><br/> モジュールにフックポイントがある場合にのみ有効です。 設定されていない場合、優先度はモジュールで定義されたデフォルト値になります。</p> <h4>構文</h4><p>整数値は-6000から6000です。値が小さいほど優先度が高くなります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="HTTP_AUTH"><h3>フック::HTTP_AUTH プライオリティ<span class="ls-permlink"><a href="#HTTP_AUTH"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>HTTP認証フック内のこのモジュールコールバックの優先度を設定します。<br/> HTTP認証フックは、リソースマッピング後およびハンドラ処理の前にトリガされます。 HTTP組み込み認証の後に発生し、追加の認証チェックを実行するために使用できます。 <br/><br/> モジュールにフックポイントがある場合にのみ有効です。 設定されていない場合、優先度はモジュールで定義されたデフォルト値になります。</p> <h4>構文</h4><p>整数値は-6000から6000です。値が小さいほど優先度が高くなります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="RECV_REQ_BODY"><h3>フック::RECV_REQ_BODY プライオリティ<span class="ls-permlink"><a href="#RECV_REQ_BODY"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>HTTP受信要求ボディフック内のこのモジュールコールバックの優先度を設定します。 <br/><br/> Webサーバーが要求本体データを受信すると、HTTP受信要求ボディフックがトリガーされます。 <br/><br/> モジュールにフックポイントがある場合にのみ有効です。 設定されていない場合、優先度はモジュールで定義されたデフォルト値になります。</p> <h4>構文</h4><p>整数値は-6000から6000です。値が小さいほど優先度が高くなります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="RCVD_REQ_BODY"><h3>フック::RCVD_REQ_BODY プライオリティ<span class="ls-permlink"><a href="#RCVD_REQ_BODY"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>HTTP Received Request Body Hook内のこのモジュールコールバックの優先度を設定します。 <br/><br/> Webサーバーが要求本体データの受信を終了すると、HTTP受信要求本体フックがトリガーされます。 <br/><br/> モジュールにフックポイントがある場合にのみ有効です。 設定されていない場合、優先度はモジュールで定義されたデフォルト値になります。</p> <h4>構文</h4><p>整数値は-6000から6000です。値が小さいほど優先度が高くなります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="RECV_RESP_HEADER"><h3>Hook::RECV_RESP_HEADER Priority<span class="ls-permlink"><a href="#RECV_RESP_HEADER"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>HTTP受信応答ヘッダーフック内のこのモジュールコールバックの優先度を設定します。 <br/><br/> HTTP受信応答ヘッダーフックは、Webサーバーが応答ヘッダーを作成するときにトリガーされます。 <br/><br/> モジュールにフックポイントがある場合にのみ有効です。 設定されていない場合、優先度はモジュールで定義されたデフォルト値になります。</p> <h4>構文</h4><p>整数値は-6000から6000です。値が小さいほど優先度が高くなります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="RECV_RESP_BODY"><h3>フック::RECV_RESP_BODY プライオリティ<span class="ls-permlink"><a href="#RECV_RESP_BODY"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>HTTP受信応答ボティフック内のこのモジュールコールバックの優先度を設定します。 <br/><br/> HTTP受信応答ボティフックは、Webサーバーのバックエンドが応答本体を受信するとトリガーされます。 <br/><br/> モジュールにフックポイントがある場合にのみ有効です。 設定されていない場合、優先度はモジュールで定義されたデフォルト値になります。</p> <h4>構文</h4><p>整数値は-6000から6000です。値が小さいほど優先度が高くなります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="RCVD_RESP_BODY"><h3>フック::RCVD_RESP_BODY プライオリティ<span class="ls-permlink"><a href="#RCVD_RESP_BODY"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>HTTP受信応答ボディフック内のこのモジュールコールバックの優先度を設定します。 <br/><br/> HTTP受信応答ボディフックは、Webサーバーのバックエンドが応答本体の受信を終了するとトリガーされます。 <br/><br/> モジュールにフックポイントがある場合にのみ有効です。 設定されていない場合、優先度はモジュールで定義されたデフォルト値になります。</p> <h4>構文</h4><p>整数値は-6000から6000です。値が小さいほど優先度が高くなります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="HANDLER_RESTART"><h3>フック::HANDLER_RESTART プライオリティ<span class="ls-permlink"><a href="#HANDLER_RESTART"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このモジュールコールバックの優先度をHTTPハンドラの再起動フック内で設定します。<br/> Webサーバが現在の応答を破棄し、内部リダイレクトが要求されたときなど、最初から処理を開始する必要があるときに、HTTPハンドラの再起動フックがトリガされます。<br/><br/> モジュールにフックポイントがある場合にのみ有効です。 設定されていない場合、優先度はモジュールで定義されたデフォルト値になります。</p> <h4>構文</h4><p>整数値は-6000から6000です。値が小さいほど優先度が高くなります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="SEND_RESP_HEADER"><h3>フック::SEND_RESP_HEADER プライオリティ<span class="ls-permlink"><a href="#SEND_RESP_HEADER"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このモジュールコールバックの優先度を、HTTP送信応答ヘッダーフック内で設定します。 <br/><br/> Webサーバーが応答ヘッダーを送信する準備ができたら、HTTP送信応答ヘッダーフックがトリガーされます。 <br/><br/> モジュールにフックポイントがある場合にのみ有効です。 設定されていない場合、優先度はモジュールで定義されたデフォルト値になります。</p> <h4>構文</h4><p>整数値は-6000から6000です。値が小さいほど優先度が高くなります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="SEND_RESP_BODY"><h3>フック::SEND_RESP_BODY プライオリティ<span class="ls-permlink"><a href="#SEND_RESP_BODY"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>HTTP送信レスポンスボディフック内のこのモジュールコールバックの優先度を設定します。 <br/><br/> HTTP送信レスポンスボディフックは、Webサーバがレスポンスボディを送信するときにトリガされます。 <br/><br/> モジュールにフックポイントがある場合にのみ有効です。 設定されていない場合、優先度はモジュールで定義されたデフォルト値になります。</p> <h4>構文</h4><p>整数値は-6000から6000です。値が小さいほど優先度が高くなります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="HTTP_END"><h3>フック::HTTP_END プライオリティ<span class="ls-permlink"><a href="#HTTP_END"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>HTTPセッション終了フック内のこのモジュールコールバックの優先度を設定します。 <br/><br/> HTTPセッション終了フックは、HTTP接続が終了したときにトリガーされます。 <br/> モジュールにフックポイントがある場合にのみ有効です。 設定されていない場合、優先度はモジュールで定義されたデフォルト値になります。</p> <h4>構文</h4><p>整数値は-6000から6000です。値が小さいほど優先度が高くなります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="MAIN_INITED"><h3>フック::MAIN_INITED プライオリティ<span class="ls-permlink"><a href="#MAIN_INITED"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>メイン初期化フック内のこのモジュールコールバックの優先度を設定します。 <br/><br/> メイン初期化フックは、起動時、メイン(コントローラ)プロセスによってサーバー構成と初期化が完了した後、および要求が処理される前に一度起動されます。 <br/> モジュールにフックポイントがある場合にのみ有効です。 設定されていない場合、優先順位はモジュールで定義されたデフォルト値になります。</p> <h4>構文</h4><p>整数値は-6000から6000です。値が小さいほど優先度が高くなります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="MAIN_PREFORK"><h3>フック::MAIN_PREFORK プライオリティ<span class="ls-permlink"><a href="#MAIN_PREFORK"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Main Prefork フック内のこのモジュールコールバックの優先度を設定します。 <br/><br/> Main Prefork フックは、新しいワーカープロセスが開始(分岐)される直前にメイン(コントローラ)プロセスによってトリガされます。 これは各ワーカーに呼び出され、システムの起動時やワーカが再起動されたときに発生する可能性があります。 <br/> モジュールにフックポイントがある場合にのみ有効です。 設定されていない場合、優先度はモジュールで定義されたデフォルト値になります。</p> <h4>構文</h4><p>整数値は-6000から6000です。値が小さいほど優先度が高くなります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="MAIN_POSTFORK"><h3>フック::MAIN_POSTFORK プライオリティ<span class="ls-permlink"><a href="#MAIN_POSTFORK"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Main Postfork フック内のこのモジュールコールバックの優先度を設定します。<br/><br/> Main Postfork Hookは、新しいワーカープロセスが開始(フォーク)された直後にメイン(コントローラ)プロセスによってトリガされます。 これは各ワーカーに呼び出され、システムの起動時やワーカが再起動されたときに発生する可能性があります。 <br/> モジュールにフックポイントがある場合にのみ有効です。 設定されていない場合、優先度はモジュールで定義されたデフォルト値になります。</p> <h4>構文</h4><p>整数値は-6000から6000です。値が小さいほど優先度が高くなります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="WORKER_POSTFORK"><h3>フック::WORKER_POSTFORK プライオリティ<span class="ls-permlink"><a href="#WORKER_POSTFORK"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Worker Postfork Hook内のこのモジュールコールバックの優先度を設定します。 <br/><br/> Worker Postfork Hookは、メイン(コントローラ)プロセスによって作成された後、ワーカープロセスによってトリガされます。 対応するMain Postfork Hookは、このコールバックの前または後のメインプロセスによって呼び出されることに注意してください。ck. <br/> モジュールにフックポイントがある場合にのみ有効です。 設定されていない場合、優先度はモジュールで定義されたデフォルト値になります。</p> <h4>構文</h4><p>整数値は-6000から6000です。値が小さいほど優先度が高くなります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="WORKER_ATEXIT"><h3>フック::WORKER_ATEXIT プライオリティ<span class="ls-permlink"><a href="#WORKER_ATEXIT"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このモジュールコールバックの優先度を、終了時のワーカーのフック内で設定します。 <br/><br/> 退出時のワーカーは、退出する直前のワーカープロセスによってトリガされます。 これは、ワーカーによって呼び出される最後のフックポイントです。 <br/> モジュールにフックポイントがある場合にのみ有効です。 設定されていない場合、優先度はモジュールで定義されたデフォルト値になります。</p> <h4>構文</h4><p>整数値は-6000から6000です。値が小さいほど優先度が高くなります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="MAIN_ATEXIT"><h3>フック::MAIN_ATEXIT プライオリティ<span class="ls-permlink"><a href="#MAIN_ATEXIT"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>メインの出口フック内のこのモジュールコールバックの優先度を設定します <br/><br/> メインの出口フックは、終了する直前のメイン(コントローラ)プロセスによって起動されます。 これは、メインプロセスによって呼び出される最後のフックポイントです。. <br/> モジュールにフックポイントがある場合にのみ有効です。 設定されていない場合、優先度はモジュールで定義されたデフォルト値になります。</p> <h4>構文</h4><p>整数値は-6000から6000です。値が小さいほど優先度が高くなります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="listenerModules"><h3>リスナーモジュール<span class="ls-permlink"><a href="#listenerModules"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>リスナーモジュール設定データは、デフォルトでサーバーモジュール設定から継承されます。 リスナモジュールは、TCP / IPレイヤ4フックに限定されています。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="moduleEnabled_lst"><h3>フックを有効にする<span class="ls-permlink"><a href="#moduleEnabled_lst"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Listenerレベルでモジュールフックを有効または無効にします。 モジュールにTCP/IPレベルのフック(L4_BEGSESSION、L4_ENDSESSION、L4_RECVING、L4_SENDING)がある場合のみ、この設定が有効になります。<br/><br/> 「未設定」ラジオボタンが選択されている場合、デフォルトはServer設定から継承されます。 ユーザーはデフォルト設定を上書きするためにここで設定するだけです。</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vhModules"><h3>バーチャルホストモジュール<span class="ls-permlink"><a href="#vhModules"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>バーチャルホストモジュール構成データは、デフォルトでサーバーモジュール設定から継承されます。 バーチャルホストモジュールはHTTPレベルのフックに制限されています。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="moduleEnabled_vh"><h3>フックを有効にする<span class="ls-permlink"><a href="#moduleEnabled_vh"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>バーチャルホストまたはコンテキスト・レベルでモジュール・フックを使用可能または使用不可にします。 モジュールにHTTPレベルのフックがある場合のみ、この設定が有効になります。<br/><br/> 「未設定」ラジオボタンを選択すると、バーチャルホストレベルのデフォルト設定がサーバー設定から継承されます。 コンテキストレベルの設定は、バーチャルホストレベルから継承されます。 ユーザーはデフォルト設定を上書きするためにここで設定するだけです。</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vhModuleUrlFilters"><h3>バーチャルホストモジュールのコンテキスト<span class="ls-permlink"><a href="#vhModuleUrlFilters"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>バーチャルホストコンテキストのモジュール設定をカスタマイズするための集中管理された場所です。 コンテキストURIの設定は、バーチャルホストまたはサーバーレベルの設定を上書きします。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expuri"><h3>URI<span class="ls-permlink"><a href="#expuri"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストのURIを指定します。</p> <h4>構文</h4><p>URIは、プレーンURI( "/"で始まる)またはPerl互換の正規表現URI( "exp:"で始まる)にすることができます。 プレーンURIが "/"で終わる場合、このコンテキストはこのURIの下にすべてのサブURIを含みます。 コンテキストがファイルシステム上のディレクトリにマップされている場合は、末尾に「/」を追加する必要があります。</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#location">ロケーション</a></span></p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> �����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������ja-JP/Real_Time_Stats_Help.html���������������������������������������������������������������������0000644�����������������00000015555�15027525531�0012342 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Open LiteSpeed Web Serverユーザーズマニュアル - Real-Time Statistics</title> <meta name="description" content="Open LiteSpeed Web Serverユーザーズマニュアル - Real-Time Statistics." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="../img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h3 class="ls-text-thin">OpenLiteSpeed Web Server <a href="index.html"> ユーザーズマニュアル</a></h3> <h5 class="ls-text-muted">Version 1.8 — Rev. 0</h5> <hr/> <div> <ul> <li><a href="license.html">ライセンス</a></li> <li><a href="intro.html">はじめに</a></li> <li><a href="install.html">インストール</a></li> <li> <a href="admin.html">管理</a> <ul class="level2"> <li><a href="ServerStat_Help.html">サービスマネージャ</a></li> <li><span class="current"><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></span></li> </ul> </li> <li><a href="security.html">セキュリティ</a></li> <li><a href="config.html">設定</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">サーバー全般</a></li> <li><a href="ServLog_Help.html">サーバーログ</a></li> <li><a href="ServTuning_Help.html">サーバーのチューニング</a></li> <li><a href="ServSecurity_Help.html">サーバーのセキュリティ</a></li> <li><a href="ExtApp_Help.html">外部アプリ</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGIアプリ</a></li> <li><a href="External_FCGI_Auth.html">Fast CGIオーソライザー</a></li> <li><a href="External_LSAPI.html">LSAPIアプリ</a></li> <li><a href="External_Servlet.html">サーブレットエンジン</a></li> <li><a href="External_WS.html">Webサーバー</a></li> <li><a href="External_PL.html">パイプロガー</a></li> <li><a href="External_LB.html">ロードバランサ</a></li> </ul> <li><a href="ScriptHandler_Help.html">スクリプトハンドラ</a></li> <li><a href="Rails_Help.html">Rack/Railsの設定</a></li> <li><a href="Module_Help.html">モジュール設定</a></li> <li><a href="Listeners_General_Help.html">リスナー全般</a></li> <li><a href="Listeners_SSL_Help.html">リスナーのSSL</a></li> <li><a href="Templates_Help.html">テンプレート</a></li> <li><a href="VirtualHosts_Help.html">バーチャルホストの基本</a></li> <li><a href="VHGeneral_Help.html">バーチャルホスト全般</a></li> <li><a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a></li> <li><a href="VHSSL_Help.html">バーチャルホストのSSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">コンテキスト</a></li> <ul class="level3"> <li><a href="Static_Context.html">静的コンテテキスト</a></li> <li><a href="Java_Web_App_Context.html">Java Webアプリのコンテキスト</a></li> <li><a href="Servlet_Context.html">サーブレットコンテキスト</a></li> <li><a href="FCGI_Context.html">Fast CGIコンテキスト</a></li> <li><a href="LSAPI_Context.html">LSAPIコンテキスト</a></li> <li><a href="Proxy_Context.html">プロキシコンテキスト</a></li> <li><a href="CGI_Context.html">CGIコンテキスト</a></li> <li><a href="LB_Context.html">ロードバランサコンテキスト</a></li> <li><a href="Redirect_Context.html">コンテキストのリダイレクト</a></li> <li><a href="Rails_Context.html">Rack/Railsのコンテキスト</a></li> <li><a href="Module_Context.html">モジュールハンドラのコンテキスト</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socketプロキシ</a></li> </ul> </li> <li><a href="webconsole.html">Webコンソール</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">管理コンソール全般</a></li> <li><a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a></li> <li><a href="AdminListeners_General_Help.html">管理リスナー全般</a></li> <li><a href="AdminListeners_SSL_Help.html">管理リスナーのSSL</a></li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="ServerStat_Help.html">WebAdminコンソール - サービス管理</a></div><div class="center"><a href="admin.html">管理</a></div><div class="next"> </div></div> <h1>Real-Time Statistics</h1><h2 id="top">目次</h2><section class="toc"><section class="toc-row"><header>Server Health</header><p> <a href="#antiddos_blocked_ip">Anti-DDoS Blocked IP</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="antiddos_blocked_ip"><h3>Anti-DDoS Blocked IP<span class="ls-permlink"><a href="#antiddos_blocked_ip"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>A comma-separated list of IP addresses blocked by Anti-DDoS protection, each ending with a semi-colon and reason code indicating why the IP address was blocked.<br/><br/> Potential Reason Codes: <ul> <li><span class="val">A</span>: BOT_UNKNOWN</li> <li><span class="val">B</span>: BOT_OVER_SOFT</li> <li><span class="val">C</span>: BOT_OVER_HARD</li> <li><span class="val">D</span>: BOT_TOO_MANY_BAD_REQ</li> <li><span class="val">E</span>: BOT_CAPTCHA</li> <li><span class="val">F</span>: BOT_FLOOD</li> <li><span class="val">G</span>: BOT_REWRITE_RULE</li> <li><span class="val">H</span>: BOT_TOO_MANY_BAD_STATUS</li> <li><span class="val">I</span>: BOT_BRUTE_FORCE</li> </ul><br/><br/> The full list of blocked IPs is also available in the Real-Time Stats report file set in <span class="tagl"><a href="ServGeneral_Help.html#statDir">統計出力ディレクトリ</a></span>.</p> <h4>構文</h4><p><blocked_ip_address>;<reason_code></p> <h4>例</h4><div class="ls-example">1.0.100.50;E, 1.0.100.60;D, 1.0.100.70;F</div></article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ���������������������������������������������������������������������������������������������������������������������������������������������������ja-JP/LSAPI_Context.html����������������������������������������������������������������������������0000644�����������������00000043456�15027525531�0010730 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Open LiteSpeed Web Serverユーザーズマニュアル - LiteSpeed SAPIコンテキスト</title> <meta name="description" content="Open LiteSpeed Web Serverユーザーズマニュアル - LiteSpeed SAPIコンテキスト." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="../img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h3 class="ls-text-thin">OpenLiteSpeed Web Server <a href="index.html"> ユーザーズマニュアル</a></h3> <h5 class="ls-text-muted">Version 1.8 — Rev. 0</h5> <hr/> <div> <ul> <li><a href="license.html">ライセンス</a></li> <li><a href="intro.html">はじめに</a></li> <li><a href="install.html">インストール</a></li> <li> <a href="admin.html">管理</a> <ul class="level2"> <li><a href="ServerStat_Help.html">サービスマネージャ</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">セキュリティ</a></li> <li><a href="config.html">設定</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">サーバー全般</a></li> <li><a href="ServLog_Help.html">サーバーログ</a></li> <li><a href="ServTuning_Help.html">サーバーのチューニング</a></li> <li><a href="ServSecurity_Help.html">サーバーのセキュリティ</a></li> <li><a href="ExtApp_Help.html">外部アプリ</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGIアプリ</a></li> <li><a href="External_FCGI_Auth.html">Fast CGIオーソライザー</a></li> <li><a href="External_LSAPI.html">LSAPIアプリ</a></li> <li><a href="External_Servlet.html">サーブレットエンジン</a></li> <li><a href="External_WS.html">Webサーバー</a></li> <li><a href="External_PL.html">パイプロガー</a></li> <li><a href="External_LB.html">ロードバランサ</a></li> </ul> <li><a href="ScriptHandler_Help.html">スクリプトハンドラ</a></li> <li><a href="Rails_Help.html">Rack/Railsの設定</a></li> <li><a href="Module_Help.html">モジュール設定</a></li> <li><a href="Listeners_General_Help.html">リスナー全般</a></li> <li><a href="Listeners_SSL_Help.html">リスナーのSSL</a></li> <li><a href="Templates_Help.html">テンプレート</a></li> <li><a href="VirtualHosts_Help.html">バーチャルホストの基本</a></li> <li><a href="VHGeneral_Help.html">バーチャルホスト全般</a></li> <li><a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a></li> <li><a href="VHSSL_Help.html">バーチャルホストのSSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">コンテキスト</a></li> <ul class="level3"> <li><a href="Static_Context.html">静的コンテテキスト</a></li> <li><a href="Java_Web_App_Context.html">Java Webアプリのコンテキスト</a></li> <li><a href="Servlet_Context.html">サーブレットコンテキスト</a></li> <li><a href="FCGI_Context.html">Fast CGIコンテキスト</a></li> <li><span class="current"><a href="LSAPI_Context.html">LSAPIコンテキスト</a></span></li> <li><a href="Proxy_Context.html">プロキシコンテキスト</a></li> <li><a href="CGI_Context.html">CGIコンテキスト</a></li> <li><a href="LB_Context.html">ロードバランサコンテキスト</a></li> <li><a href="Redirect_Context.html">コンテキストのリダイレクト</a></li> <li><a href="Rails_Context.html">Rack/Railsのコンテキスト</a></li> <li><a href="Module_Context.html">モジュールハンドラのコンテキスト</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socketプロキシ</a></li> </ul> </li> <li><a href="webconsole.html">Webコンソール</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">管理コンソール全般</a></li> <li><a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a></li> <li><a href="AdminListeners_General_Help.html">管理リスナー全般</a></li> <li><a href="AdminListeners_SSL_Help.html">管理リスナーのSSL</a></li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="FCGI_Context.html">Fast CGIコンテキスト</a></div><div class="center"><a href="Context_Help.html">コンテキスト</a></div><div class="next"><a href="Proxy_Context.html">プロキシコンテキスト</a> »</div></div> <h1>LiteSpeed SAPIコンテキスト</h1><h2 id="top">目次</h2><section class="toc"><section class="toc-row"><header><a href="#lsapiContext">LiteSpeed SAPIコンテキスト</a></header><p> <a href="#expuri">URI</a> | <a href="#lsapiapp">LiteSpeed SAPIアプリ</a> | <a href="#extraHeaders">Extra Headers</a> | <a href="#realm">レルム</a> | <a href="#authName">認証名</a> | <a href="#required">必要(許可ユーザー/グループ)</a> | <a href="#accessAllowed">アクセス許可</a> | <a href="#accessDenied">アクセス拒否</a> | <a href="#extAuthorizer">承認者</a> | <a href="#addDefaultCharset">デフォルトの文字セットを追加</a> | <a href="#defaultCharsetCustomized">カスタマイズされたデフォルトの文字セット</a> | <a href="#enableIpGeo">IPジオロケーションを有効にする</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="lsapiContext"><h3>LiteSpeed SAPIコンテキスト<span class="ls-permlink"><a href="#lsapiContext"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>外部アプリケーションは直接使用することはできません。 スクリプトハンドラとして設定するか、コンテキストを介してURLにマップする必要があります。 LiteSpeed SAPIコンテキストは、URIをLSAPI(LiteSpeed Server Application Programming Interface)アプリケーションに関連付けます。 現在PHP、Ruby、PythonにはLSAPIモジュールがあります。 LiteSpeed Webサーバー用に特別に開発されたLSAPIは、LiteSpeed Webサーバーと通信するための最も効率的な方法です。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expuri"><h3>URI<span class="ls-permlink"><a href="#expuri"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストのURIを指定します。</p> <h4>構文</h4><p>URIは、プレーンURI( "/"で始まる)またはPerl互換の正規表現URI( "exp:"で始まる)にすることができます。 プレーンURIが "/"で終わる場合、このコンテキストはこのURIの下にすべてのサブURIを含みます。 コンテキストがファイルシステム上のディレクトリにマップされている場合は、末尾に「/」を追加する必要があります。</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#location">ロケーション</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="lsapiapp"><h3>LiteSpeed SAPIアプリ<span class="ls-permlink"><a href="#lsapiapp"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストに接続するLiteSpeed SAPIアプリケーションの名前を指定します。 このアプリケーションは、サーバーまたはバーチャルホストレベルの<span class="tagP"><a href="#ExtApp_Help">外部アプリケーション</a></span>セクションで定義する必要があります。</p> <h4>構文</h4><p>選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extraHeaders"><h3>Extra Headers<span class="ls-permlink"><a href="#extraHeaders"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>追加される余分な応答ヘッダーを指定します。 1行に1つのヘッダーを追加できます。 親コンテンツから継承したヘッダーを無効にするには、"NONE"を入力します。</p> <h4>構文</h4><p>各行に "[HeaderName]: [HeaderValue]"</p> <h4>例</h4><div class="ls-example">Cache-control: no-cache, no-store <br/> My-header: Custom header value</div><h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> Syntax and usage are similar to <a href="https://httpd.apache.org/docs/2.2/mod/mod_headers.html#header" target="_blank" rel="noopener noreferrer">Apache's mod_headers directives</a> for supported operations.<br/><br/> <span title="Information" class="ls-icon-info"></span> The 'Header' directive is is optional and can be excluded or left in when copying rules from elsewhere without issue.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="realm"><h3>レルム<span class="ls-permlink"><a href="#realm"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストの認可レルムを指定します。 このコンテキストにアクセスするには、有効なユーザー名とパスワードを指定する必要があります。 <span class="tagl"><a href="VHSecurity_Help.html#realms">認可レルム</a></span>は<span class="tagP"><a href="#VHSecurity_Help">バーチャルホストのセキュリティ</a></span>セクションに設定されています。 この設定では、各レルムの<span class="tagl"><a href="VHSecurity_Help.html#realmName">レルム名</a></span>が使用されます。</p> <h4>構文</h4><p>選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="authName"><h3>認証名<span class="ls-permlink"><a href="#authName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>現在のコンテキストの認証レルムの代替名を指定します。 指定しない場合、元のレルム名が使用されます。 認証名は、ブラウザのログインポップアップに表示されます。</p> <h4>構文</h4><p>テキスト</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="required"><h3>必要(許可ユーザー/グループ)<span class="ls-permlink"><a href="#required"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストにアクセスできるユーザー/グループを指定します。 これにより、複数のコンテキストにわたって1つのユーザー/グループデータベース(<span class="tagl"><a href="#realm">レルム</a></span>で指定)を使用できますが、そのデータベースの特定のユーザー/グループのみがこのコンテキストにアクセスできます。</p> <h4>構文</h4><p>構文はApache Requireディレクティブと互換性があります。 例えば: <ul> <li><span class="val">user username [username ...]</span> <br/> リストされたユーザーだけがこのコンテキストにアクセスできます。</li> <li> <span class="val">group groupid [groupid ...]</span><br/> リストされたグループに属するユーザーのみがこのコンテキストにアクセスできます。</li> </ul> この設定を指定しないと、すべての有効なユーザーがこのリソースにアクセスできます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessAllowed"><h3>アクセス許可<span class="ls-permlink"><a href="#accessAllowed"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストでリソースにアクセスできるIPまたはサブネットワークを指定します。 <span class="tagl"><a href="#accessDenied">アクセス拒否</a></span>とサーバー/バーチャルホスト・レベルのアクセス制御とともに、アクセシビリティは、クライアントのIPアドレスが入る最小の範囲によって決まります。</p> <h4>構文</h4><p>IP/サブネットワークのカンマ区切りリスト。</p> <h4>例</h4><div class="ls-example">サブネットワークは以下のように書くことができます <span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span>, 又は <span class="val">192.168.1.*</span>.</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessDenied"><h3>アクセス拒否<span class="ls-permlink"><a href="#accessDenied"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストでリソースにアクセスできないIPまたはサブネットワークを指定します。 <span class="tagl"><a href="#accessAllowed">アクセス許可</a></span>とサーバー/バーチャルホストレベルのアクセス制御とともに、アクセシビリティはクライアントのIPアドレスが入る最小の範囲で決まります。</p> <h4>構文</h4><p>IP/サブネットワークのカンマ区切りリスト。</p> <h4>例</h4><div class="ls-example">サブネットワークは以下のように書くことができます <span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span>, 又は <span class="val">192.168.1.*</span>.</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAuthorizer"><h3>承認者<span class="ls-permlink"><a href="#extAuthorizer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>権限のある/権限のないかの決定を生成するために使用できる外部アプリケーションを指定します。 現在、FastCGI Authorizerのみが使用可能です。 FastCGI Authorizerの役割の詳細については、<a href=" https://fastcgi-archives.github.io/ " target="_blank" rel="noopener noreferrer"> https://fastcgi-archives.github.io/ </a>を参照してください。 。</p> <h4>構文</h4><p>ドロップダウンリストから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="addDefaultCharset"><h3>デフォルトの文字セットを追加<span class="ls-permlink"><a href="#addDefaultCharset"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>コンテンツタイプが "text/html"または "text/plain"のいずれかのパラメータがない場合、文字セットタグを "Content-Type"レスポンスヘッダーに追加するかどうかを指定します。 <span class="val">Off</span>に設定すると、この機能は無効になります。 <span class="val">On</span>に設定すると、<span class="tagl"><a href="#defaultCharsetCustomized">カスタマイズされたデフォルトの文字セット</a></span>で指定された文字セットまたはデフォルトの "iso-8859-1"のいずれかが追加されます。</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="defaultCharsetCustomized"><h3>カスタマイズされたデフォルトの文字セット<span class="ls-permlink"><a href="#defaultCharsetCustomized"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p><span class="tagl"><a href="#addDefaultCharset">デフォルトの文字セットを追加</a></span>が<span class="val">On</span>のときに使用される文字セットを指定します。 これはオプションです。 デフォルト値は<span class="val"> iso-8859-1 </span>です。 <span class="tagl"><a href="#addDefaultCharset">デフォルトの文字セットを追加</a></span>が<span class="val"> Off </span>の場合、このエントリは無効です。</p> <h4>構文</h4><p>文字セットの名前。</p> <h4>例</h4><div class="ls-example">utf-8</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableIpGeo"><h3>IPジオロケーションを有効にする<span class="ls-permlink"><a href="#enableIpGeo"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p> IPジオロケーション検索を有効/無効にするかどうかを指定します。 サーバ、バーチャルホスト、コンテキストレベルで設定できます。 値 「未設定」を使用すると、IPジオロケーションはデフォルトで無効になります。</p> <h4>構文</h4><p>ラジオボックスから選択</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="ServGeneral_Help.html#useIpInProxyHeader">ヘッダーにクライアントIPを使用する</a></span>, <span class="tagl"><a href="ServGeneral_Help.html#geoipDBFile">DBファイルのパス</a></span>,</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������ja-JP/App_Server_Help.html��������������������������������������������������������������������������0000644�����������������00000061135�15027525531�0011364 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Open LiteSpeed Web Serverユーザーズマニュアル - App Server Settings</title> <meta name="description" content="Open LiteSpeed Web Serverユーザーズマニュアル - App Server Settings." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="../img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h3 class="ls-text-thin">OpenLiteSpeed Web Server <a href="index.html"> ユーザーズマニュアル</a></h3> <h5 class="ls-text-muted">Version 1.8 — Rev. 0</h5> <hr/> <div> <ul> <li><a href="license.html">ライセンス</a></li> <li><a href="intro.html">はじめに</a></li> <li><a href="install.html">インストール</a></li> <li> <a href="admin.html">管理</a> <ul class="level2"> <li><a href="ServerStat_Help.html">サービスマネージャ</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">セキュリティ</a></li> <li><a href="config.html">設定</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">サーバー全般</a></li> <li><a href="ServLog_Help.html">サーバーログ</a></li> <li><a href="ServTuning_Help.html">サーバーのチューニング</a></li> <li><a href="ServSecurity_Help.html">サーバーのセキュリティ</a></li> <li><a href="ExtApp_Help.html">外部アプリ</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGIアプリ</a></li> <li><a href="External_FCGI_Auth.html">Fast CGIオーソライザー</a></li> <li><a href="External_LSAPI.html">LSAPIアプリ</a></li> <li><a href="External_Servlet.html">サーブレットエンジン</a></li> <li><a href="External_WS.html">Webサーバー</a></li> <li><a href="External_PL.html">パイプロガー</a></li> <li><a href="External_LB.html">ロードバランサ</a></li> </ul> <li><a href="ScriptHandler_Help.html">スクリプトハンドラ</a></li> <li><a href="Rails_Help.html">Rack/Railsの設定</a></li> <li><a href="Module_Help.html">モジュール設定</a></li> <li><a href="Listeners_General_Help.html">リスナー全般</a></li> <li><a href="Listeners_SSL_Help.html">リスナーのSSL</a></li> <li><a href="Templates_Help.html">テンプレート</a></li> <li><a href="VirtualHosts_Help.html">バーチャルホストの基本</a></li> <li><a href="VHGeneral_Help.html">バーチャルホスト全般</a></li> <li><a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a></li> <li><a href="VHSSL_Help.html">バーチャルホストのSSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">コンテキスト</a></li> <ul class="level3"> <li><a href="Static_Context.html">静的コンテテキスト</a></li> <li><a href="Java_Web_App_Context.html">Java Webアプリのコンテキスト</a></li> <li><a href="Servlet_Context.html">サーブレットコンテキスト</a></li> <li><a href="FCGI_Context.html">Fast CGIコンテキスト</a></li> <li><a href="LSAPI_Context.html">LSAPIコンテキスト</a></li> <li><a href="Proxy_Context.html">プロキシコンテキスト</a></li> <li><a href="CGI_Context.html">CGIコンテキスト</a></li> <li><a href="LB_Context.html">ロードバランサコンテキスト</a></li> <li><a href="Redirect_Context.html">コンテキストのリダイレクト</a></li> <li><a href="Rails_Context.html">Rack/Railsのコンテキスト</a></li> <li><a href="Module_Context.html">モジュールハンドラのコンテキスト</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socketプロキシ</a></li> </ul> </li> <li><a href="webconsole.html">Webコンソール</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">管理コンソール全般</a></li> <li><a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a></li> <li><a href="AdminListeners_General_Help.html">管理リスナー全般</a></li> <li><a href="AdminListeners_SSL_Help.html">管理リスナーのSSL</a></li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="ScriptHandler_Help.html">スクリプトハンドラ</a></div><div class="center"><a href="config.html">設定</a></div><div class="next"><a href="Module_Help.html">モジュール設定</a> »</div></div> <h1>App Server Settings</h1><h2 id="top">目次</h2><section class="toc"><section class="toc-row"><header><a href="#railsDefaults">Rack/Rails Default Settings</a></header><p> <a href="#rubyBin">Rubyパス</a> | <a href="#appserverEnv">Run-Time Mode</a> | <a href="#maxConns">最大接続数</a> | <a href="#env">環境</a> | <a href="#initTimeout">初期要求タイムアウト(秒)</a> | <a href="#retryTimeout">リトライタイムアウト(秒)</a> | <a href="#pcKeepAliveTimeout">キープアライブタイムアウト(秒)</a> | <a href="#respBuffer">応答バッファリング</a> | <a href="#extMaxIdleTime">最大アイドル時間</a> | <a href="#backlog">バックログ</a> | <a href="#runOnStartUp">起動時に実行</a> | <a href="#extAppPriority">優先度</a> | <a href="#memSoftLimit">メモリソフトリミット(バイト)</a> | <a href="#memHardLimit">メモリハードリミット</a> | <a href="#procSoftLimit">プロセスソフトリミット</a> | <a href="#procHardLimit">プロセスハードリミット</a></p></section> <section class="toc-row"><header><a href="#wsgiDefaults">Python WSGI Default Settings</a></header><p> <a href="#wsgiBin">WSGI Path</a> | <a href="#appserverEnv">Run-Time Mode</a> | <a href="#maxConns">最大接続数</a> | <a href="#env">環境</a> | <a href="#initTimeout">初期要求タイムアウト(秒)</a> | <a href="#retryTimeout">リトライタイムアウト(秒)</a> | <a href="#pcKeepAliveTimeout">キープアライブタイムアウト(秒)</a> | <a href="#respBuffer">応答バッファリング</a> | <a href="#extMaxIdleTime">最大アイドル時間</a> | <a href="#backlog">バックログ</a> | <a href="#runOnStartUp">起動時に実行</a> | <a href="#extAppPriority">優先度</a> | <a href="#memSoftLimit">メモリソフトリミット(バイト)</a> | <a href="#memHardLimit">メモリハードリミット</a> | <a href="#procSoftLimit">プロセスソフトリミット</a> | <a href="#procHardLimit">プロセスハードリミット</a></p></section> <section class="toc-row"><header><a href="#nodeDefaults">Node.js App Default Settings</a></header><p> <a href="#nodeBin">Node Path</a> | <a href="#appserverEnv">Run-Time Mode</a> | <a href="#maxConns">最大接続数</a> | <a href="#env">環境</a> | <a href="#initTimeout">初期要求タイムアウト(秒)</a> | <a href="#retryTimeout">リトライタイムアウト(秒)</a> | <a href="#pcKeepAliveTimeout">キープアライブタイムアウト(秒)</a> | <a href="#respBuffer">応答バッファリング</a> | <a href="#extMaxIdleTime">最大アイドル時間</a> | <a href="#backlog">バックログ</a> | <a href="#runOnStartUp">起動時に実行</a> | <a href="#extAppPriority">優先度</a> | <a href="#memSoftLimit">メモリソフトリミット(バイト)</a> | <a href="#memHardLimit">メモリハードリミット</a> | <a href="#procSoftLimit">プロセスソフトリミット</a> | <a href="#procHardLimit">プロセスハードリミット</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="railsDefaults"><h3>Rack/Rails Default Settings<span class="ls-permlink"><a href="#railsDefaults"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Default configurations for Rack/Rails applications. These settings can be overriden at the context level.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="rubyBin"><h3>Rubyパス<span class="ls-permlink"><a href="#rubyBin"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Ruby実行可能ファイルへの指定されたパス。 Rubyがどこにインストールされているかによって、/usr/bin/ruby又は/usr/local/bin/rubyになります。</p> <h4>構文</h4><p>絶対パス。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="appserverEnv"><h3>Run-Time Mode<span class="ls-permlink"><a href="#appserverEnv"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Specifies which mode the application will be running as: "Development", "Production", or "Staging". The default is "Production".</p> <h4>構文</h4><p>ドロップダウンリストから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxConns"><h3>最大接続数<span class="ls-permlink"><a href="#maxConns"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>サーバーと外部アプリケーションの間で確立できる同時接続の最大数を指定します。 この設定は、外部アプリケーションによって同時に処理できる要求の数を制御しますが、実際の制限は外部アプリケーション自体によっても異なります。 この値を高く設定すると、外部アプリケーションの速度が不十分であるか、多数の同時要求に対応できない場合に役立ちません。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p>[パフォーマンス]高い値を設定しても、高いパフォーマンスに直接変換されるわけではありません。 制限を外部アプリケーションに負荷をかけない値に設定すると、最高のパフォーマンス/スループットが得られます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="env"><h3>環境<span class="ls-permlink"><a href="#env"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>外部アプリケーション用の追加の環境変数を指定します。</p> <h4>構文</h4><p>Key=value. 複数の変数は "ENTER"で区切ることができます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="initTimeout"><h3>初期要求タイムアウト(秒)<span class="ls-permlink"><a href="#initTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>サーバーが、新しいアプリケーションが新しい確立された接続を介して最初の要求に応答するのを待つ最長時間を秒単位で指定します。 サーバーがこのタイムアウト制限内に外部アプリケーションからデータを受信しない場合、この接続は不良とマークされます。 これにより、外部アプリケーションとの通信の問題をできるだけ迅速に特定することができます。 処理に時間がかかるリクエストがある場合は、この制限を増やして503のエラー・メッセージを避けてください。</p> <h4>構文</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="retryTimeout"><h3>リトライタイムアウト(秒)<span class="ls-permlink"><a href="#retryTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>以前の通信に問題があった外部アプリケーションを再試行する前に、サーバーが待機する時間を指定します。</p> <h4>構文</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="pcKeepAliveTimeout"><h3>キープアライブタイムアウト(秒)<span class="ls-permlink"><a href="#pcKeepAliveTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>アイドル状態の永続的な接続を開いたままにする最大時間を指定します。 "-1"に設定すると、接続はタイムアウトしません。 0以上に設定すると、この時間が経過した後に接続が閉じられます。</p> <h4>構文</h4><p>int</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="respBuffer"><h3>応答バッファリング<span class="ls-permlink"><a href="#respBuffer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>外部から受信した応答をバッファリングするかどうかを指定します。 アプリケーション。 "nph-" (Non-Parsed-Header)スクリプトが検出された場合、完全なHTTPヘッダーを持つ応答ではバッファリングがオフになります。</p> <h4>構文</h4><p>ドロップダウンリストから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extMaxIdleTime"><h3>最大アイドル時間<span class="ls-permlink"><a href="#extMaxIdleTime"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>サーバーが外部アプリケーションを停止するまでの最大アイドル時間を指定します。 "-1"に設定すると、外部アプリケーションはサーバーによって停止されません。 デフォルト値は "-1"です。 この機能により、アイドル状態のアプリケーションが使用するリソースを解放することができます。 最大限のセキュリティを確保するために、setuidモードで動作する多くのアプリケーションを定義する必要がある場合には、マスホスティング環境で特に便利です。</p> <h4>構文</h4><p>ラジオボックスから選択</p> <h4>ヒント</h4><p>[パフォーマンス]この機能は、大規模なホスティング環境で特に便利です。 あるバーチャルホストが所有するファイルが別のバーチャルホストの外部アプリケーションスクリプトによってアクセスされないようにするため、大量ホスティングではSetUIDモードで同時に多くの異なるアプリケーションを実行する必要があります。 これらの外部アプリケーションが不必要にアイドリングしないように、この最大アイドル時間を低く設定します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="backlog"><h3>バックログ<span class="ls-permlink"><a href="#backlog"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>リスニングソケットのバックログを指定します。 <span class="tagl"><a href="#autoStart">自動スタート</a></span>が有効な場合は必須です。</p> <h4>構文</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="runOnStartUp"><h3>起動時に実行<span class="ls-permlink"><a href="#runOnStartUp"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>サーバーの起動時に外部アプリケーションを起動するかどうかを指定します。 自身の子プロセスを管理できる外部アプリケーション、および<span class="tagl"><a href="#instances">インスタンス</a></span>の値が "1"に設定されている場合にのみ適用されます。 有効にすると、実行時ではなくサーバーの起動時に外部プロセスが作成されます。</p> <h4>構文</h4><p>ラジオボックスから選択</p> <h4>ヒント</h4><p>[パフォーマンス] Railsアプリケーションのように、設定された外部プロセスに重大な起動オーバーヘッドがある場合、このオプションを有効にして最初のページ応答時間を短縮する必要があります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAppPriority"><h3>優先度<span class="ls-permlink"><a href="#extAppPriority"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>外部アプリケーション・プロセスの優先度を指定します。 値の範囲は<span class="val">−20</span>〜<span class="val">20</span>です。 数字が小さいほど優先度が高くなります。 外部アプリケーションプロセスは、Webサーバーよりも高い優先度を持つことはできません。 この優先度がサーバーの数値より低い数値に設定されている場合は、サーバーの優先度がこの値に使用されます。</p> <h4>構文</h4><p>整数</p> <h4>参照</h4><p class="ls-text-small">Server <span class="tagl"><a href="ServGeneral_Help.html#serverPriority">プライオリティ</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="memSoftLimit"><h3>メモリソフトリミット(バイト)<span class="ls-permlink"><a href="#memSoftLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>外部アプリケーション・プロセスまたはサーバーによって開始された外部アプリケーションのメモリー消費制限をバイト単位で指定します。<br/><br/> この制限の主な目的は、ソフトウェアのバグや意図的な攻撃のために過度のメモリ使用を防止し、通常の使用に制限を設けないことです。 十分なヘッドスペースを確保してください。そうしないと、アプリケーションが失敗し、503エラーが返される可能性があります。 サーバーレベルまたは個々の外部アプリケーションレベルで設定できます。 サーバーレベルの制限は、個々のアプリケーションレベルで設定されていない場合に使用されます。<br/><br/> オペレーティングシステムのデフォルト設定は、値が両方のレベルにないか、<span class="val">0</span>に設定されている場合に使用されます。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p>[注意]この制限を過度に調整しないでください。 アプリケーションでより多くのメモリが必要な場合は、503のエラーが発生する可能性があります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="memHardLimit"><h3>メモリハードリミット<span class="ls-permlink"><a href="#memHardLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>ソフトリミットをユーザープロセス内のハードリミットまで上げることができることを除けば、<span class="tagl"><a href="#memSoftLimit">メモリソフトリミット(バイト)</a></span>と同じくらい同じです。 ハード・リミットは、サーバー・レベルまたは個々の外部アプリケーション・レベルで設定できます。 サーバーレベルの制限は、個々のアプリケーションレベルで設定されていない場合に使用されます。 <br/><br/> 値が両方のレベルにないか、<span class="val">0</span>に設定されている場合、オペレーティングシステムのデフォルトが使用されます。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p><span title="Attention" class="ls-icon-attention"></span> Do not over adjust this limit. This may result in 503 errors if your application need more memory.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="procSoftLimit"><h3>プロセスソフトリミット<span class="ls-permlink"><a href="#procSoftLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>ユーザーに代わって作成できるプロセスの総数を制限します。 既存のすべてのプロセスは、開始される新しいプロセスだけでなく、この限度に対してカウントされます。 制限は、サーバーレベルまたは個々の外部アプリケーションレベルで設定できます。<br/> サーバーレベルの制限は、個々のアプリケーションレベルで設定されていない場合に使用されます。 この値が0または両方のレベルにない場合、オペレーティングシステムのデフォルト設定が使用されます。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> PHPスクリプトはプロセスをフォークするために呼び出すことができます。 この制限の主な目的は、フォーク爆弾や他のプロセスを作成するPHPプロセスによって引き起こされる他の攻撃を防ぐための最終防衛線です。<br/> この設定を低すぎると、機能が著しく損なわれる可能性があります。 この設定は特定のレベル以下では無視されます。<br/> suEXECデーモンモードを使用する場合、親プロセスが制限されないように、実際のプロセス制限はこの設定よりも高くなります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="procHardLimit"><h3>プロセスハードリミット<span class="ls-permlink"><a href="#procHardLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>ソフトリミットをユーザープロセス内のハードリミットまで上げることができることを除けば、<span class="tagl"><a href="#procSoftLimit">プロセスソフトリミット</a></span>とほとんど同じです。 ハードリミットは、サーバー・レベルまたは個々の外部アプリケーションレベルで設定できます。 サーバーレベルの制限は、個々のアプリケーションレベルで設定されていない場合に使用されます。 オペレーティングシステムのデフォルト値は、値が両方のレベルにないか、<span class="val">0</span>に設定されている場合に使用されます。</p> <h4>構文</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="wsgiDefaults"><h3>Python WSGI Default Settings<span class="ls-permlink"><a href="#wsgiDefaults"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Default configurations for Python WSGI applications. These settings can be overriden at the context level.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="wsgiBin"><h3>WSGI Path<span class="ls-permlink"><a href="#wsgiBin"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Path to LiteSpeed Python Web Server Gateway Interface executable (lswsgi).<br/><br/> This executable is created by compiling Python with LiteSpeed's WSGI LSAPI module.</p> <h4>構文</h4><p>絶対パス</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="nodeDefaults"><h3>Node.js App Default Settings<span class="ls-permlink"><a href="#nodeDefaults"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Default configurations for Node.js applications. These settings can be overriden at the context level.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="nodeBin"><h3>Node Path<span class="ls-permlink"><a href="#nodeBin"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Path to Node.js executable.</p> <h4>構文</h4><p>絶対パス</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> �����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������ja-JP/VHGeneral_Help.html���������������������������������������������������������������������������0000644�����������������00000123430�15027525531�0011126 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Open LiteSpeed Web Serverユーザーズマニュアル - バーチャルホストの一般</title> <meta name="description" content="Open LiteSpeed Web Serverユーザーズマニュアル - バーチャルホストの一般." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="../img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h3 class="ls-text-thin">OpenLiteSpeed Web Server <a href="index.html"> ユーザーズマニュアル</a></h3> <h5 class="ls-text-muted">Version 1.8 — Rev. 0</h5> <hr/> <div> <ul> <li><a href="license.html">ライセンス</a></li> <li><a href="intro.html">はじめに</a></li> <li><a href="install.html">インストール</a></li> <li> <a href="admin.html">管理</a> <ul class="level2"> <li><a href="ServerStat_Help.html">サービスマネージャ</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">セキュリティ</a></li> <li><a href="config.html">設定</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">サーバー全般</a></li> <li><a href="ServLog_Help.html">サーバーログ</a></li> <li><a href="ServTuning_Help.html">サーバーのチューニング</a></li> <li><a href="ServSecurity_Help.html">サーバーのセキュリティ</a></li> <li><a href="ExtApp_Help.html">外部アプリ</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGIアプリ</a></li> <li><a href="External_FCGI_Auth.html">Fast CGIオーソライザー</a></li> <li><a href="External_LSAPI.html">LSAPIアプリ</a></li> <li><a href="External_Servlet.html">サーブレットエンジン</a></li> <li><a href="External_WS.html">Webサーバー</a></li> <li><a href="External_PL.html">パイプロガー</a></li> <li><a href="External_LB.html">ロードバランサ</a></li> </ul> <li><a href="ScriptHandler_Help.html">スクリプトハンドラ</a></li> <li><a href="Rails_Help.html">Rack/Railsの設定</a></li> <li><a href="Module_Help.html">モジュール設定</a></li> <li><a href="Listeners_General_Help.html">リスナー全般</a></li> <li><a href="Listeners_SSL_Help.html">リスナーのSSL</a></li> <li><a href="Templates_Help.html">テンプレート</a></li> <li><a href="VirtualHosts_Help.html">バーチャルホストの基本</a></li> <li><span class="current"><a href="VHGeneral_Help.html">バーチャルホスト全般</a></span></li> <li><a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a></li> <li><a href="VHSSL_Help.html">バーチャルホストのSSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">コンテキスト</a></li> <ul class="level3"> <li><a href="Static_Context.html">静的コンテテキスト</a></li> <li><a href="Java_Web_App_Context.html">Java Webアプリのコンテキスト</a></li> <li><a href="Servlet_Context.html">サーブレットコンテキスト</a></li> <li><a href="FCGI_Context.html">Fast CGIコンテキスト</a></li> <li><a href="LSAPI_Context.html">LSAPIコンテキスト</a></li> <li><a href="Proxy_Context.html">プロキシコンテキスト</a></li> <li><a href="CGI_Context.html">CGIコンテキスト</a></li> <li><a href="LB_Context.html">ロードバランサコンテキスト</a></li> <li><a href="Redirect_Context.html">コンテキストのリダイレクト</a></li> <li><a href="Rails_Context.html">Rack/Railsのコンテキスト</a></li> <li><a href="Module_Context.html">モジュールハンドラのコンテキスト</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socketプロキシ</a></li> </ul> </li> <li><a href="webconsole.html">Webコンソール</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">管理コンソール全般</a></li> <li><a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a></li> <li><a href="AdminListeners_General_Help.html">管理リスナー全般</a></li> <li><a href="AdminListeners_SSL_Help.html">管理リスナーのSSL</a></li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="VirtualHosts_Help.html">バーチャルホストの基本</a></div><div class="center"><a href="config.html">設定</a></div><div class="next"><a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a> »</div></div> <h1>バーチャルホストの一般</h1><h2 id="top">目次</h2><section class="toc"><section class="toc-row"><header>一般</header><p> <a href="#docRoot">ドキュメントルート</a> | <a href="#vhadminEmails">管理者用電子メール</a> | <a href="#vhEnableGzip">GZIPを有効にする</a> | <a href="#vhEnableBr">Enable Brotli Compression</a> | <a href="#enableIpGeo">IPジオロケーションを有効にする</a> | <a href="#cgroups">cgroups</a></p></section> <section class="toc-row"><header>バーチャルホストログ</header><p> <a href="#logUseServer">サーバーのログを使用する</a> | <a href="#vhlog_fileName">File Name</a> | <a href="#vhlog_logLevel">ログレベル</a> | <a href="#log_rollingSize">ローテーションサイズ(バイト)</a> | <a href="#log_keepDays">Keep Days</a> | <a href="#log_compressArchive">アーカイブを圧縮する</a></p></section> <section class="toc-row"><header>アクセスログ</header><p> <a href="#aclogUseServer">ログ制御</a> | <a href="#vhaccessLog_fileName">ファイル名</a> | <a href="#accessLog_pipedLogger">パイプロガー</a> | <a href="#accessLog_logFormat">Log Format</a> | <a href="#accessLog_logHeader">ログヘッダー</a> | <a href="#log_rollingSize">ローテーションサイズ(バイト)</a> | <a href="#log_keepDays">Keep Days</a> | <a href="#log_compressArchive">アーカイブを圧縮する</a> | <a href="#accessLog_bytesLog">バイトログ</a></p></section> <section class="toc-row"><header>インデックスファイル</header><p> <a href="#indexUseServer">サーバーインデックスファイルを使用する</a> | <a href="#indexFiles">インデックスファイル</a> | <a href="#autoIndex">自動インデックス</a> | <a href="#autoIndexURI">自動インデックス URI</a></p></section> <section class="toc-row"><header><a href="#errPage">カスタマイズされたエラーページ</a></header><p> <a href="#errCode">エラーコード</a> | <a href="#errURL">URL</a></p></section> <section class="toc-row"><header>期限切れの設定</header><p> <a href="#enableExpires">有効期限を有効にする</a> | <a href="#expiresDefault">デフォルトの期限</a> | <a href="#expiresByType">タイプ別の期限</a></p></section> <section class="toc-row"><header><a href="#fileUpload">ファイルアップロード</a></header><p> <a href="#uploadTmpDir">一時ファイルパス</a> | <a href="#uploadTmpFilePermission">一時ファイルのアクセス許可</a> | <a href="#uploadPassByPath">ファイルパスによるアップロードデータの転送</a></p></section> <section class="toc-row"><header>スクリプトハンドラの定義</header><p> <a href="#suffix">サフィックス</a> | <a href="#shType">ハンドラタイプ</a> | <a href="#shHandlerName">ハンドラ名</a></p></section> <section class="toc-row"><header>期限切れの設定</header><p> <a href="#enableExpires">有効期限を有効にする</a> | <a href="#expiresDefault">デフォルトの期限</a> | <a href="#expiresByType">タイプ別の期限</a></p></section> <section class="toc-row"><header>php.ini Override</header><p> <a href="#phpIniOverride">php.ini Override</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="docRoot"><h3>ドキュメントルート<span class="ls-permlink"><a href="#docRoot"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このバーチャルホストのドキュメントルートを指定します。 <span class="val">$VH_ROOT/html</span>をお勧めします。 このディレクトリは、コンテキストでは$DOC_ROOTと呼ばれます。</p> <h4>構文</h4><p>絶対パスか$SERVER_ROOTからの相対パス又は$VH_ROOTからの相対パス。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vhadminEmails"><h3>管理者用電子メール<span class="ls-permlink"><a href="#vhadminEmails"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このバーチャルホストの管理者の電子メールアドレスを指定します。</p> <h4>構文</h4><p>電子メールアドレスのカンマ区切りリスト</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vhEnableGzip"><h3>GZIPを有効にする<span class="ls-permlink"><a href="#vhEnableGzip"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このバーチャルホストに対してGZIP圧縮を有効にするかどうかを指定します。 この設定は、サーバーレベルでGZIP圧縮が有効になっている場合にのみ有効です。 圧縮設定はサーバーレベルで設定されます(チューニング> GZIP)。</p> <h4>構文</h4><p>ラジオボックスから選択</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="ServTuning_Help.html#enableGzipCompress">圧縮を有効にする</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vhEnableBr"><h3>Enable Brotli Compression<span class="ls-permlink"><a href="#vhEnableBr"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Specifies whether to enable Brotli compression for this virtual host. This setting is only effective when <span class="tagl"><a href="#brStaticCompressLevel">Brotli Compression Level (Static File)</a></span> is set to a non-zero value at the server level.</p> <h4>構文</h4><p>ラジオボックスから選択</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="ServTuning_Help.html#brStaticCompressLevel">Brotli Compression Level (Static File)</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableIpGeo"><h3>IPジオロケーションを有効にする<span class="ls-permlink"><a href="#enableIpGeo"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p> IPジオロケーション検索を有効/無効にするかどうかを指定します。 サーバ、バーチャルホスト、コンテキストレベルで設定できます。 値 「未設定」を使用すると、IPジオロケーションはデフォルトで無効になります。</p> <h4>構文</h4><p>ラジオボックスから選択</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="ServGeneral_Help.html#useIpInProxyHeader">ヘッダーにクライアントIPを使用する</a></span>, <span class="tagl"><a href="ServGeneral_Help.html#geoipDBFile">DBファイルのパス</a></span>,</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="cgroups"><h3>cgroups<span class="ls-permlink"><a href="#cgroups"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>A Linux kernel feature that limits, accounts for, and isolates the resource usage (CPU, memory, disk I/O, network, etc.) of a collection of processes. You must be running cgroups v2 which is determined by the existence of the file <span class="val">/sys/fs/cgroup/cgroup.controllers</span>.<br/><br/> Setting this to <span class="val">Disabled</span> at the Server level will disable this setting server-wide. In all other cases, the Server level setting can be overridden at the Virtual Host level.<br/><br/> Default values:<br/> <b>Server level:</b> Off<br/> <b>VH level:</b> Inherit Server level setting</p> <h4>構文</h4><p>ドロップダウンリストから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="logUseServer"><h3>サーバーのログを使用する<span class="ls-permlink"><a href="#logUseServer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>独自のログファイルを作成するのではなく、このバーチャルホストからのログメッセージをサーバーログファイルに入れるかどうかを指定します。</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vhlog_fileName"><h3>File Name<span class="ls-permlink"><a href="#vhlog_fileName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>ログファイルのパスを指定します。</p> <h4>構文</h4><p>ファイル名への絶対パス又は$SERVER_ROOT、$VH_ROOTからの相対パス。</p> <h4>ヒント</h4><p>[パフォーマンス]ログファイルを別のディスクに配置します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vhlog_logLevel"><h3>ログレベル<span class="ls-permlink"><a href="#vhlog_logLevel"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>ロギングのレベルを指定します。 使用可能なレベルは、<span class="val">ERROR</span>、<span class="val">WARNING</span>、<span class="val">NOTICE</span>、<span class="val">INFO</span>、<span class="val">DEBUG</span>です。 現在の設定以上のレベルのメッセージのみが記録されます。 <span class="val">DEBUG</span>に設定する場合は、サーバログレベルを<span class="val">DEBUG</span>に設定する必要があります。 デバッグのレベルは、<span class="tagl"><a href="ServGeneral_Help.html#log_debugLevel">デバッグレベル</a></span>によってサーバーレベルでのみ制御されます。</p> <h4>構文</h4><p>選択</p> <h4>ヒント</h4><p>[パフォーマンス] <span class="tagl"><a href="ServGeneral_Help.html#log_debugLevel">デバッグレベル</a></span>が<span class="val">NONE</span>以外のレベルに設定されていない限り、<span class="val">DEBUG</span>ログレベルはパフォーマンスに影響を及ぼさず、推奨されます。</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="ServGeneral_Help.html#log_debugLevel">デバッグレベル</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="log_rollingSize"><h3>ローテーションサイズ(バイト)<span class="ls-permlink"><a href="#log_rollingSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>現在のログファイルをロールオーバーする必要があるとき、つまりログローテーションを指定します。 ファイルサイズがロールオーバー制限を超えると、アクティブなログファイルは同じディレクトリにlog_name.mm_dd_yyyy(.sequence)という名前に変更され、新しいアクティブなログファイルが作成されます。 回転ログファイルが実際に作成されると、そのサイズはこのサイズ制限より少し大きくなることがあります。 ログのローテーションを無効にするには、<span class="val"> 0 </span>に設定します。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> キロ、メガ、ギガバイトの数字に「K」、「M」、「G」を追加します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="log_keepDays"><h3>Keep Days<span class="ls-permlink"><a href="#log_keepDays"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Specifies how many days the access log file will be kept on disk. Only rotated log files older than the specified number of days will be deleted. The current log file will not be touched regardless how many days worth of data it contains. If you do not want to auto-delete stale and very old log files, set this to <span class="val">0</span>.</p> <h4>構文</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="log_compressArchive"><h3>アーカイブを圧縮する<span class="ls-permlink"><a href="#log_compressArchive"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>ディスク領域を節約するためにローテーションしたログファイルを圧縮するかどうかを指定します。</p> <h4>構文</h4><p>ラジオボックスから選択</p> <h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> ログファイルは圧縮率が高く、古いログのディスク使用量を減らすために推奨されます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="aclogUseServer"><h3>ログ制御<span class="ls-permlink"><a href="#aclogUseServer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>アクセスログを書き込むべき場所。 3つのオプションがあります: <ol> <li>サーバのアクセスログに書き込む</li> <li>このバーチャルホストのアクセスログを作成する</li> <li>アクセスログを無効にする</li> </ol></p> <h4>構文</h4><p>選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vhaccessLog_fileName"><h3>ファイル名<span class="ls-permlink"><a href="#vhaccessLog_fileName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>アクセスログファイル名。</p> <h4>構文</h4><p>ファイル名への絶対パス又は$SERVER_ROOT、$VH_ROOTからの相対パス。</p> <h4>ヒント</h4><p>[パフォーマンス]アクセスログファイルを別のディスクに配置します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessLog_pipedLogger"><h3>パイプロガー<span class="ls-permlink"><a href="#accessLog_pipedLogger"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>LiteSpeedがSTDINストリーム上のパイプを通じて送信するアクセスログデータを受け取る外部アプリケーションを指定します(ファイルハンドルは0)。 このフィールドが指定されると、アクセスログはロガーアプリケーションにのみ送信され、前のエントリで指定されたアクセスログファイルには送信されません。<br/><br/> ロガーアプリケーションは、最初に<span class="tagP"><a href="#ExtApp_Help">外部アプリケーション</a></span>セクションで定義する必要があります。 サーバー・レベルのアクセス・ロギングは、サーバー・レベルで定義された外部ロガー・アプリケーションのみを使用できます。 バーチャルホストレベルのアクセスロギングでは、バーチャルホストレベルで定義されたロガーアプリケーションのみを使用できます。<br/><br/> ロガープロセスは、他の外部(CGI/FastCGI/LSAPI)プロセスと同じ方法で生成されます。 つまり、バーチャルホストの<span class="tagl"><a href="VirtualHosts_Help.html#setUidMode">外部アプリ Set UID モード</a></span>設定で指定されたユーザーIDとして実行され、特権ユーザーのために実行されることはありません。. <br/><br/> LiteSpeed Webサーバーは、複数のロガーアプリケーションのインスタンスが設定されている場合、複数のロガーアプリケーション間で簡単なロードバランシングを実行します。 LiteSpeedサーバーは、常にロガーアプリケーションの数を可能な限り低く抑えようとします。 1つのロガーアプリケーションがアクセスログエントリを時間内に処理できない場合にのみ、サーバーはロガーアプリケーションの別のインスタンスを生成しようとします。 <br/><br/> ロガーがクラッシュした場合、Webサーバーは別のインスタンスを開始しますが、ストリームバッファーのログデータは失われます。 外部ロガーがログ・ストリームの速度と量に追いつけない場合、ログ・データを失う可能性があります。</p> <h4>構文</h4><p>選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessLog_logFormat"><h3>Log Format<span class="ls-permlink"><a href="#accessLog_logFormat"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p> アクセスログのログ形式を指定します。 ログフォーマットが設定されると、<span class="tagl"><a href="#accessLog_logHeader">ログヘッダー</a></span>の設定より優先されます。</p> <h4>構文</h4><p>文字列。ログフォーマットの構文はApache 2.0のカスタムと互換性があります <a href="http://httpd.apache.org/docs/current/mod/mod_log_config.html#formats" target="_blank" rel="noopener noreferrer">log format</a>。</p> <h4>例</h4><div class="ls-example"><br> <b>共通ログフォーマット(CLF)</b><br/> "%h %l %u %t \"%r\" %>s %b"<br/><br/> <b>バーチャルホストによる共通ログフォーマット</b><br/> "%v %h %l %u %t \"%r\" %>s %b"<br/><br/> <b>NCSA拡張/結合ログフォーマット</b><br/> "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-agent}i\" <br/><br/> <b>FoobarのログCookie値</b><br/> "%{Foobar}C"</div><h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#accessLog_logHeader">ログヘッダー</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessLog_logHeader"><h3>ログヘッダー<span class="ls-permlink"><a href="#accessLog_logHeader"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p><span class="val">Referer</span>、<span class="val">UserAgent</span>、<span class="val">Host</span>のいずれかをHTTPリクエストヘッダとして記録するかどうかを指定します。</p> <h4>構文</h4><p>チェックボックス</p> <h4>ヒント</h4><p>[パフォーマンス]これらのヘッダーがアクセスログに必要ない場合は、これをオフにします。</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#accessLog_logFormat">Log Format</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessLog_bytesLog"><h3>バイトログ<span class="ls-permlink"><a href="#accessLog_bytesLog"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>帯域幅バイトのログファイルへのパスを指定します。 指定すると、cPanel互換の帯域幅ログが作成されます。 これにより、要求と応答本体の両方を含む要求に対して転送された合計バイトが記録されます。</p> <h4>構文</h4><p>ファイル名への絶対パス又は$SERVER_ROOTからの相対パス</p> <h4>ヒント</h4><p>[パフォーマンス]ログファイルを別のディスクに配置します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="indexUseServer"><h3>サーバーインデックスファイルを使用する<span class="ls-permlink"><a href="#indexUseServer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>サーバーのインデックスファイル設定を使用するかどうかを指定します。 <span class="val">はい</span>に設定すると、サーバーの設定だけが使用されます。 <span class="val">いいえ</span>に設定すると、サーバーの設定は使用されません。 <span class="val">追加</span>に設定すると、このバーチャルホストのインデックスファイルリストに追加のインデックスファイルを追加できます。 このバーチャルホストのインデックスファイルを無効にする場合は、値を<span class="val">いいえ</span>に設定して、インデックスファイルのフィールドを空のままにします。</p> <h4>構文</h4><p>選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="indexFiles"><h3>インデックスファイル<span class="ls-permlink"><a href="#indexFiles"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>URLがディレクトリにマップされたときに順番に検索されるインデックスファイルの名前を指定します。 サーバー、バーチャルホスト、コンテキストレベルでカスタマイズできます。</p> <h4>構文</h4><p>インデックスファイル名のカンマ区切りリスト。</p> <h4>ヒント</h4><p>[パフォーマンス]必要なインデックスファイルのみを設定します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="autoIndex"><h3>自動インデックス<span class="ls-permlink"><a href="#autoIndex"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p><span class="tagl"><a href="#indexFiles">インデックスファイル</a></span>にリストされている索引ファイルがディレクトリで使用できないときに、その場でディレクトリー索引を生成するかどうかを指定します。 このオプションは、バーチャルホストおよびコンテキストレベルでカスタマイズ可能で、明示的に上書きされるまでディレクトリツリーに沿って継承されます。 生成された索引ページをカスタマイズできます。 オンラインウィキHow-tosを確認してください。</p> <h4>構文</h4><p>ラジオボックスから選択</p> <h4>ヒント</h4><p>[セキュリティ]可能であれば、自動インデックスをオフにして、機密データを漏らさないようにすることをお勧めします。</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#indexFiles">インデックスファイル</a></span>, <span class="tagl"><a href="#autoIndexURI">自動インデックス URI</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="autoIndexURI"><h3>自動インデックス URI<span class="ls-permlink"><a href="#autoIndexURI"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p><span class="tagl"><a href="#indexFiles">インデックスファイル</a></span>にリストされているインデックスファイルがディレクトリで使用できない場合に、インデックスページを生成するために使用されるURIを指定します。 LiteSpeed Webサーバーは外部スクリプトを使用してインデックスページを生成し、最大限のカスタマイズの柔軟性を提供します。 デフォルトスクリプトは、Apacheと同じ外観のインデックスページを生成します。 生成されたインデックスページをカスタマイズするには、オンラインウィキHow-tosを読んでください。 索引付けされるディレクトリーは、環境変数 "LS_AI_PATH"を介してスクリプトに渡されます。</p> <h4>構文</h4><p>URI</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#indexFiles">インデックスファイル</a></span>, <span class="tagl"><a href="#autoIndex">自動インデックス</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="errPage"><h3>カスタマイズされたエラーページ<span class="ls-permlink"><a href="#errPage"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>サーバーが要求を処理する際に問題が発生すると、サーバーはエラーコードとhtmlページをエラーメッセージとしてWebクライアントに返します。 エラーコードはHTTPプロトコルで定義されています(RFC 2616参照)。 LiteSpeed Webサーバーには、エラーコードごとにデフォルトのエラーページが組み込まれていますが、各エラーコードに対してカスタマイズされたページを設定することもできます。 これらのエラーページは、各バーチャルホストごとに一意になるようにさらにカスタマイズすることができます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="errCode"><h3>エラーコード<span class="ls-permlink"><a href="#errCode"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>SエラーページのHTTPステータスコードを指定します。 選択したHTTPステータスコードだけがこのカスタマイズされたエラーページを持ちます。</p> <h4>構文</h4><p>選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="errURL"><h3>URL<span class="ls-permlink"><a href="#errURL"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>カスタマイズされたエラーページのURLを指定します。 サーバーは、対応するHTTPステータスコードが返されたときに、このURLにリクエストを転送します。 このURLが存在しないリソースを参照する場合は、組み込みのエラーページが使用されます。 URLは、静的ファイル、動的に生成されたページ、または別のWebサイトのページ(「http(s)://」で始まるURL文字列)にすることができます。 別のWebサイトのページを参照する場合、クライアントは元のステータスコードの代わりにリダイレクトステータスコードを受け取ります。</p> <h4>構文</h4><p>URL</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableExpires"><h3>有効期限を有効にする<span class="ls-permlink"><a href="#enableExpires"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>静的ファイルのExpiresヘッダーを生成するかどうかを指定します。 有効にすると、<span class="tagl"><a href="#expiresDefault">デフォルトの期限</a></span>と<span class="tagl"><a href="#expiresByType">タイプ別の期限</a></span>に基づいてExpiresヘッダーが生成されます。<br/><br/> これは、サーバー、バーチャルホスト、コンテキストレベルで設定できます。 下位レベルの設定は上位レベルの設定を上書きします。 コンテキスト設定はバーチャルホストの設定を上書きし、バーチャルホストの設定はサーバーの設定を上書きします。</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expiresDefault"><h3>デフォルトの期限<span class="ls-permlink"><a href="#expiresDefault"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Expiresヘッダー生成のデフォルト設定を指定します。 この設定は、<span class="tagl"><a href="#enableExpires">有効期限を有効にする</a></span>が "はい"に設定されているときに有効になります。 <span class="tagl"><a href="#expiresByType">タイプ別の期限</a></span>で上書きできます。 すべてのページのExpiresヘッダーが生成されるため、必要がない限り、このデフォルトをサーバーまたはバーチャルホストレベルで設定しないでください。 ほとんどの場合、これは頻繁に変更されない特定のディレクトリのコンテキストレベルで設定する必要があります。 デフォルト設定がない場合、<span class="tagl"><a href="#expiresByType">タイプ別の期限</a></span>で指定されていないタイプに対してExpiresヘッダーは生成されません。</p> <h4>構文</h4><p>A|M秒<br/> このファイルは、基本時間(A | M)に指定された秒を加えた後に期限切れになります。 ベース時刻 "A"はクライアントのアクセス時間に値を設定し、 "M"はファイルの最終変更時刻を設定します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expiresByType"><h3>タイプ別の期限<span class="ls-permlink"><a href="#expiresByType"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>各MIMEタイプのExpiresヘッダー設定を指定します。</p> <h4>構文</h4><p>"MIME-type=A|Mseconds"のカンマで区切られたリスト。 このファイルは、基本時間(A|M)に指定された秒を加えた後に期限切れになります。<br/><br/> ベース時刻 "A"はクライアントのアクセス時間に値を設定し、 "M"はファイルの最終変更時刻を設定します。 MIMEタイプはimage/*のようなワイルドカード "*"を受け入れます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="fileUpload"><h3>ファイルアップロード<span class="ls-permlink"><a href="#fileUpload"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Request Body Parserを使用してファイルをアップロードしてサーバーのローカルディレクトリにファイルを解析し、第三者のモジュールによる悪意のある行為を簡単にスキャンできるようにする、追加のセキュリティ機能を提供します。 Request Body Parserは、<span class="tagl"><a href="#uploadPassByPath">ファイルパスによるアップロードデータの転送</a></span>が有効になっているか、モジュールがLSI_HKPT_HTTP_BEGINレベルでLSIAPIのset_parse_req_bodyを呼び出すときに使用されます。 ソースパッケージで提供されるAPIの例</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#HTTP_BEGIN">フック::HTTP_BEGIN プライオリティ</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="uploadTmpDir"><h3>一時ファイルパス<span class="ls-permlink"><a href="#uploadTmpDir"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>要求本体パーサーが動作している間に、サーバーにアップロードされるファイルが格納される一時ディレクトリ。 デフォルト値は<span class="val">/tmp/lshttpd/</span>です。</p> <h4>構文</h4><p>$SERVER_ROOT(ServerおよびVHostレベルの場合)または$VH_ROOT(VHostレベルの場合)で始まる絶対パスまたはパス。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="uploadTmpFilePermission"><h3>一時ファイルのアクセス許可<span class="ls-permlink"><a href="#uploadTmpFilePermission"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>一時ディレクトリに格納されているファイルに使用されるファイルのアクセス権を決定します。 サーバーレベルの設定はグローバルで、VHostレベルでオーバーライドできます。</p> <h4>構文</h4><p>3桁の8進数。 デフォルト値は666です。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="uploadPassByPath"><h3>ファイルパスによるアップロードデータの転送<span class="ls-permlink"><a href="#uploadPassByPath"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>ファイルデータをパスでアップロードするかどうかを指定します。 有効にすると、アップロード時にファイル自体ではなく、バックエンドハンドラにファイルパスと他の情報が送信されます。 これにより、CPUリソースとファイル転送時間が節約されますが、実装するためにバックエンドに若干の更新が必要です。 無効にすると、ファイルの内容はバックエンドハンドラに転送され、要求本文は引き続きファイルに解析されます。</p> <h4>構文</h4><p>ラジオボックスから選択</p> <h4>ヒント</h4><p>[パフォーマンス]下位互換性が問題にならないようにするには、これを有効にしてファイルのアップロード処理を高速化します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="suffix"><h3>サフィックス<span class="ls-permlink"><a href="#suffix"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このスクリプトハンドラによって処理されるスクリプトファイルのサフィックスを指定します。 接尾辞は一意である必要があります。</p> <h4>構文</h4><p>カンマ区切りリストでピリオド"."は禁止されています。</p> <h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> サーバーは、リスト内の最初の接尾辞に特殊なMIMEタイプ( "application / x-httpd- [suffix]")を自動的に追加します。 たとえば、接尾辞 "php53"にMIMEタイプ "application / x-httpd-php53"が追加されます。 接尾辞は<span class="tagl"><a href="#mime">MIME設定</a></span>設定で最初に設定する必要があります。<br/> このフィールドではサフィックスを列挙していますが、スクリプトハンドラは接尾辞ではなくMIMEタイプを使用して、処理するスクリプトを決定します。<br/> [パフォーマンスとセキュリティ]本当に必要なサフィックスのみを指定してください。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="shType"><h3>ハンドラタイプ<span class="ls-permlink"><a href="#shType"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>これらのスクリプトファイルを処理する外部アプリケーションのタイプを指定します。 使用可能なタイプは以下のとおりです:<span class="val">CGI</span>、<span class="val">FastCGI</span>、<span class="val">Webサーバー</span>、<span class="val">LSAPI app</span>、<span class="val">ロードバランサ</span> 又は<span class="val">サーブレットエンジン</span>。 FastCGI、Webサーバー、およびServlet Engineの場合は、<span class="tagl"><a href="#shHandlerName">ハンドラ名</a></span>を指定する必要があります。 これは、<span class="tagP"><a href="#ExtApp_Help">外部アプリケーション</a></span>セクションで事前定義されている外部アプリケーション名です。</p> <h4>構文</h4><p>ドロップダウンリストから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="shHandlerName"><h3>ハンドラ名<span class="ls-permlink"><a href="#shHandlerName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>ハンドラタイプがFastCGI、Web Server、LSAPI、Load Balancer、またはServlet Engineの場合にスクリプトファイルを処理する外部アプリケーションの名前を指定します。</p> <h4>構文</h4><p>ドロップダウンリストから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="phpIniOverride"><h3>php.ini Override<span class="ls-permlink"><a href="#phpIniOverride"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Used to overwrite php.ini settings in the current context (Virtual Host level or Context level).<br/><br/> Supported directives are:<br/> php_value<br/> php_flag<br/> php_admin_value<br/> php_admin_flag<br/><br/> All other lines/directives will be ignored.</p> <h4>構文</h4><p>Override syntax is similar to Apache, a newline separated list of directives and their values with each directive being prepended by php_value, php_flag, php_admin_value, or php_admin_flag appropriately.</p> <h4>例</h4><div class="ls-example">php_value include_path ".:/usr/local/lib/php"<br/> php_admin_flag engine on<br/> php_admin_value open_basedir "/home"</div></article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������ja-JP/External_LSAPI.html���������������������������������������������������������������������������0000644�����������������00000066406�15027525531�0011066 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Open LiteSpeed Web Serverユーザーズマニュアル - LiteSpeed SAPI アプリ</title> <meta name="description" content="Open LiteSpeed Web Serverユーザーズマニュアル - LiteSpeed SAPI アプリ." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="../img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h3 class="ls-text-thin">OpenLiteSpeed Web Server <a href="index.html"> ユーザーズマニュアル</a></h3> <h5 class="ls-text-muted">Version 1.8 — Rev. 0</h5> <hr/> <div> <ul> <li><a href="license.html">ライセンス</a></li> <li><a href="intro.html">はじめに</a></li> <li><a href="install.html">インストール</a></li> <li> <a href="admin.html">管理</a> <ul class="level2"> <li><a href="ServerStat_Help.html">サービスマネージャ</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">セキュリティ</a></li> <li><a href="config.html">設定</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">サーバー全般</a></li> <li><a href="ServLog_Help.html">サーバーログ</a></li> <li><a href="ServTuning_Help.html">サーバーのチューニング</a></li> <li><a href="ServSecurity_Help.html">サーバーのセキュリティ</a></li> <li><a href="ExtApp_Help.html">外部アプリ</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGIアプリ</a></li> <li><a href="External_FCGI_Auth.html">Fast CGIオーソライザー</a></li> <li><span class="current"><a href="External_LSAPI.html">LSAPIアプリ</a></span></li> <li><a href="External_Servlet.html">サーブレットエンジン</a></li> <li><a href="External_WS.html">Webサーバー</a></li> <li><a href="External_PL.html">パイプロガー</a></li> <li><a href="External_LB.html">ロードバランサ</a></li> </ul> <li><a href="ScriptHandler_Help.html">スクリプトハンドラ</a></li> <li><a href="Rails_Help.html">Rack/Railsの設定</a></li> <li><a href="Module_Help.html">モジュール設定</a></li> <li><a href="Listeners_General_Help.html">リスナー全般</a></li> <li><a href="Listeners_SSL_Help.html">リスナーのSSL</a></li> <li><a href="Templates_Help.html">テンプレート</a></li> <li><a href="VirtualHosts_Help.html">バーチャルホストの基本</a></li> <li><a href="VHGeneral_Help.html">バーチャルホスト全般</a></li> <li><a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a></li> <li><a href="VHSSL_Help.html">バーチャルホストのSSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">コンテキスト</a></li> <ul class="level3"> <li><a href="Static_Context.html">静的コンテテキスト</a></li> <li><a href="Java_Web_App_Context.html">Java Webアプリのコンテキスト</a></li> <li><a href="Servlet_Context.html">サーブレットコンテキスト</a></li> <li><a href="FCGI_Context.html">Fast CGIコンテキスト</a></li> <li><a href="LSAPI_Context.html">LSAPIコンテキスト</a></li> <li><a href="Proxy_Context.html">プロキシコンテキスト</a></li> <li><a href="CGI_Context.html">CGIコンテキスト</a></li> <li><a href="LB_Context.html">ロードバランサコンテキスト</a></li> <li><a href="Redirect_Context.html">コンテキストのリダイレクト</a></li> <li><a href="Rails_Context.html">Rack/Railsのコンテキスト</a></li> <li><a href="Module_Context.html">モジュールハンドラのコンテキスト</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socketプロキシ</a></li> </ul> </li> <li><a href="webconsole.html">Webコンソール</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">管理コンソール全般</a></li> <li><a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a></li> <li><a href="AdminListeners_General_Help.html">管理リスナー全般</a></li> <li><a href="AdminListeners_SSL_Help.html">管理リスナーのSSL</a></li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="External_FCGI_Auth.html">Fast CGI 認証</a></div><div class="center"><a href="ExtApp_Help.html">外部アプリケーション</a></div><div class="next"><a href="External_Servlet.html">サーブレットエンジン</a> »</div></div> <h1>LiteSpeed SAPI アプリ</h1><h2 id="top">目次</h2><section class="toc"><section class="toc-row"><header>LiteSpeed SAPI</header><p> <a href="#extAppName">名前</a> | <a href="#extAppAddress">アドレス</a> | <a href="#maxConns">最大接続数</a> | <a href="#env">環境</a> | <a href="#initTimeout">初期要求タイムアウト(秒)</a> | <a href="#retryTimeout">リトライタイムアウト(秒)</a> | <a href="#persistConn">永続的な接続</a> | <a href="#pcKeepAliveTimeout">キープアライブタイムアウト(秒)</a> | <a href="#respBuffer">応答バッファリング</a> | <a href="#autoStart">自動スタート</a> | <a href="#extAppPath">コマンド</a> | <a href="#backlog">バックログ</a> | <a href="#instances">インスタンス</a> | <a href="#extUser">suEXECユーザー</a> | <a href="#extGroup">suEXECグループ</a> | <a href="#extUmask">umask</a> | <a href="#runOnStartUp">起動時に実行</a> | <a href="#extMaxIdleTime">最大アイドル時間</a> | <a href="#extAppPriority">優先度</a> | <a href="#memSoftLimit">メモリソフトリミット(バイト)</a> | <a href="#memHardLimit">メモリハードリミット</a> | <a href="#procSoftLimit">プロセスソフトリミット</a> | <a href="#procHardLimit">プロセスハードリミット</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="extAppName"><h3>名前<span class="ls-permlink"><a href="#extAppName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>この外部アプリケーションの一意の名前。 設定の他の部分でこの名前を使用するときは、この名前で参照します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAppAddress"><h3>アドレス<span class="ls-permlink"><a href="#extAppAddress"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>外部アプリケーションによって使用される一意のソケットアドレス。 IPv4/IPv6ソケットとUnixドメインソケット(UDS)がサポートされています。 IPv4/IPv6ソケットは、ネットワークを介した通信に使用できます。 UDSは、外部アプリケーションがサーバーと同じマシンにある場合にのみ使用できます。</p> <h4>構文</h4><p>IPv4またはIPV6アドレス:ポートまたはUDS://パス</p> <h4>例</h4><div class="ls-example">127.0.0.1:5434<br/> UDS://tmp/lshttpd/php.sock.</div><h4>ヒント</h4><p>[セキュリティ]外部アプリケーションが同じマシン上で実行される場合は、UDSが優先されます。 IPv4|IPV6ソケットを使用する必要がある場合は、IPアドレスを<span class="val">localhost</span>または<span class="val">127.0.0.1</span>に設定して、外部アプリケーションに他のマシンからアクセスできないようにします。<br/> [パフォーマンス] Unixドメインソケットは、通常、IPv4ソケットよりも高いパフォーマンスを提供します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxConns"><h3>最大接続数<span class="ls-permlink"><a href="#maxConns"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>サーバーと外部アプリケーションの間で確立できる同時接続の最大数を指定します。 この設定は、外部アプリケーションによって同時に処理できる要求の数を制御しますが、実際の制限は外部アプリケーション自体によっても異なります。 この値を高く設定すると、外部アプリケーションの速度が不十分であるか、多数の同時要求に対応できない場合に役立ちません。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p>[パフォーマンス]高い値を設定しても、高いパフォーマンスに直接変換されるわけではありません。 制限を外部アプリケーションに負荷をかけない値に設定すると、最高のパフォーマンス/スループットが得られます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="env"><h3>環境<span class="ls-permlink"><a href="#env"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>外部アプリケーション用の追加の環境変数を指定します。</p> <h4>構文</h4><p>Key=value. 複数の変数は "ENTER"で区切ることができます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="initTimeout"><h3>初期要求タイムアウト(秒)<span class="ls-permlink"><a href="#initTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>サーバーが、新しいアプリケーションが新しい確立された接続を介して最初の要求に応答するのを待つ最長時間を秒単位で指定します。 サーバーがこのタイムアウト制限内に外部アプリケーションからデータを受信しない場合、この接続は不良とマークされます。 これにより、外部アプリケーションとの通信の問題をできるだけ迅速に特定することができます。 処理に時間がかかるリクエストがある場合は、この制限を増やして503のエラー・メッセージを避けてください。</p> <h4>構文</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="retryTimeout"><h3>リトライタイムアウト(秒)<span class="ls-permlink"><a href="#retryTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>以前の通信に問題があった外部アプリケーションを再試行する前に、サーバーが待機する時間を指定します。</p> <h4>構文</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="persistConn"><h3>永続的な接続<span class="ls-permlink"><a href="#persistConn"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>要求後に接続を開いたままにするかどうかを指定します。 処理されました。 永続的接続はパフォーマンスを向上させる可能性がありますが、一部のFastCGI外部アプリケーションは永続的接続を完全にサポートしません。 デフォルトは "オン"です。</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="pcKeepAliveTimeout"><h3>キープアライブタイムアウト(秒)<span class="ls-permlink"><a href="#pcKeepAliveTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>アイドル状態の永続的な接続を開いたままにする最大時間を指定します。 "-1"に設定すると、接続はタイムアウトしません。 0以上に設定すると、この時間が経過した後に接続が閉じられます。</p> <h4>構文</h4><p>int</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="respBuffer"><h3>応答バッファリング<span class="ls-permlink"><a href="#respBuffer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>外部から受信した応答をバッファリングするかどうかを指定します。 アプリケーション。 "nph-" (Non-Parsed-Header)スクリプトが検出された場合、完全なHTTPヘッダーを持つ応答ではバッファリングがオフになります。</p> <h4>構文</h4><p>ドロップダウンリストから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="autoStart"><h3>自動スタート<span class="ls-permlink"><a href="#autoStart"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Webサーバーでアプリケーションを自動的に開始するかどうかを指定します。 同じマシン上で実行されているFastCGIおよびLSAPIアプリケーションのみを自動的に起動することができます。 <span class="tagl"><a href="#extAppAddress">アドレス</a></span>のIPはローカルIPでなければなりません。 メインサーバプロセスではなくLiteSpeed CGIデーモンを起動すると、システムのオーバーヘッドを軽減できます。</p> <h4>構文</h4><p>ドロップダウンリストから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAppPath"><h3>コマンド<span class="ls-permlink"><a href="#extAppPath"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>外部アプリケーションを実行するためのパラメータを含む完全なコマンドラインを指定します。 <span class="tagl"><a href="#autoStart">自動スタート</a></span>が有効な場合は必須値です。 パラメータにスペースまたはタブ文字が含まれている場合は、パラメータを二重引用符または一重引用符で囲む必要があります。</p> <h4>構文</h4><p>オプションのパラメータを含む実行可能ファイルへのフルパス。</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#autoStart">自動スタート</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="backlog"><h3>バックログ<span class="ls-permlink"><a href="#backlog"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>リスニングソケットのバックログを指定します。 <span class="tagl"><a href="#autoStart">自動スタート</a></span>が有効な場合は必須です。</p> <h4>構文</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="instances"><h3>インスタンス<span class="ls-permlink"><a href="#instances"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>サーバーが作成する外部アプリケーションの最大インスタンスを指定します。 <span class="tagl"><a href="#autoStart">自動スタート</a></span>が有効な場合は必須です。 ほとんどのFastCGI/LSAPIアプリケーションは、プロセスインスタンスごとに1つの要求しか処理できません。これらのタイプのアプリケーションの場合、インスタンスは<span class="tagl"><a href="#maxConns">最大接続数</a></span>の値に一致するように設定する必要があります。 一部のFastCGI / LSAPIアプリケーションでは、複数の子プロセスを生成して複数の要求を同時に処理できます。 これらのタイプのアプリケーションでは、インスタンスを "1"に設定し、環境変数を使用してアプリケーションが生成できる子プロセスの数を制御する必要があります。</p> <h4>構文</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extUser"><h3>suEXECユーザー<span class="ls-permlink"><a href="#extUser"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>外部アプリケーションが実行されるユーザー名を指定します。 設定されていない場合、外部アプリケーションはWebサーバーのユーザーとして実行されます。</p> <h4>構文</h4><p>有効なユーザー名。</p> <h4>参照</h4><p class="ls-text-small">extGroup</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extGroup"><h3>suEXECグループ<span class="ls-permlink"><a href="#extGroup"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>外部アプリケーションが実行されるグループ名を指定します。</p> <h4>構文</h4><p>有効なグループ名。</p> <h4>参照</h4><p class="ls-text-small">extUser</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extUmask"><h3>umask<span class="ls-permlink"><a href="#extUmask"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>この外部アプリケーションのプロセスのデフォルトumaskを設定します。 詳細は、<span class="cmd">man 2 umask</span>を参照してください。 デフォルト値はサーバーレベルの<span class="tagl"><a href="ServSecurity_Help.html#umask">umask</a></span>設定から取得されます。</p> <h4>構文</h4><p>有効範囲[000]〜[777]の値。</p> <h4>参照</h4><p class="ls-text-small">CGI <span class="tagl"><a href="ServSecurity_Help.html#umask">umask</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="runOnStartUp"><h3>起動時に実行<span class="ls-permlink"><a href="#runOnStartUp"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>サーバーの起動時に外部アプリケーションを起動するかどうかを指定します。 自身の子プロセスを管理できる外部アプリケーション、および<span class="tagl"><a href="#instances">インスタンス</a></span>の値が "1"に設定されている場合にのみ適用されます。 有効にすると、実行時ではなくサーバーの起動時に外部プロセスが作成されます。</p> <h4>構文</h4><p>ラジオボックスから選択</p> <h4>ヒント</h4><p>[パフォーマンス] Railsアプリケーションのように、設定された外部プロセスに重大な起動オーバーヘッドがある場合、このオプションを有効にして最初のページ応答時間を短縮する必要があります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extMaxIdleTime"><h3>最大アイドル時間<span class="ls-permlink"><a href="#extMaxIdleTime"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>サーバーが外部アプリケーションを停止するまでの最大アイドル時間を指定します。 "-1"に設定すると、外部アプリケーションはサーバーによって停止されません。 デフォルト値は "-1"です。 この機能により、アイドル状態のアプリケーションが使用するリソースを解放することができます。 最大限のセキュリティを確保するために、setuidモードで動作する多くのアプリケーションを定義する必要がある場合には、マスホスティング環境で特に便利です。</p> <h4>構文</h4><p>ラジオボックスから選択</p> <h4>ヒント</h4><p>[パフォーマンス]この機能は、大規模なホスティング環境で特に便利です。 あるバーチャルホストが所有するファイルが別のバーチャルホストの外部アプリケーションスクリプトによってアクセスされないようにするため、大量ホスティングではSetUIDモードで同時に多くの異なるアプリケーションを実行する必要があります。 これらの外部アプリケーションが不必要にアイドリングしないように、この最大アイドル時間を低く設定します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAppPriority"><h3>優先度<span class="ls-permlink"><a href="#extAppPriority"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>外部アプリケーション・プロセスの優先度を指定します。 値の範囲は<span class="val">−20</span>〜<span class="val">20</span>です。 数字が小さいほど優先度が高くなります。 外部アプリケーションプロセスは、Webサーバーよりも高い優先度を持つことはできません。 この優先度がサーバーの数値より低い数値に設定されている場合は、サーバーの優先度がこの値に使用されます。</p> <h4>構文</h4><p>整数</p> <h4>参照</h4><p class="ls-text-small">Server <span class="tagl"><a href="ServGeneral_Help.html#serverPriority">プライオリティ</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="memSoftLimit"><h3>メモリソフトリミット(バイト)<span class="ls-permlink"><a href="#memSoftLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>外部アプリケーション・プロセスまたはサーバーによって開始された外部アプリケーションのメモリー消費制限をバイト単位で指定します。<br/><br/> この制限の主な目的は、ソフトウェアのバグや意図的な攻撃のために過度のメモリ使用を防止し、通常の使用に制限を設けないことです。 十分なヘッドスペースを確保してください。そうしないと、アプリケーションが失敗し、503エラーが返される可能性があります。 サーバーレベルまたは個々の外部アプリケーションレベルで設定できます。 サーバーレベルの制限は、個々のアプリケーションレベルで設定されていない場合に使用されます。<br/><br/> オペレーティングシステムのデフォルト設定は、値が両方のレベルにないか、<span class="val">0</span>に設定されている場合に使用されます。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p>[注意]この制限を過度に調整しないでください。 アプリケーションでより多くのメモリが必要な場合は、503のエラーが発生する可能性があります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="memHardLimit"><h3>メモリハードリミット<span class="ls-permlink"><a href="#memHardLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>ソフトリミットをユーザープロセス内のハードリミットまで上げることができることを除けば、<span class="tagl"><a href="#memSoftLimit">メモリソフトリミット(バイト)</a></span>と同じくらい同じです。 ハード・リミットは、サーバー・レベルまたは個々の外部アプリケーション・レベルで設定できます。 サーバーレベルの制限は、個々のアプリケーションレベルで設定されていない場合に使用されます。 <br/><br/> 値が両方のレベルにないか、<span class="val">0</span>に設定されている場合、オペレーティングシステムのデフォルトが使用されます。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p><span title="Attention" class="ls-icon-attention"></span> Do not over adjust this limit. This may result in 503 errors if your application need more memory.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="procSoftLimit"><h3>プロセスソフトリミット<span class="ls-permlink"><a href="#procSoftLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>ユーザーに代わって作成できるプロセスの総数を制限します。 既存のすべてのプロセスは、開始される新しいプロセスだけでなく、この限度に対してカウントされます。 制限は、サーバーレベルまたは個々の外部アプリケーションレベルで設定できます。<br/> サーバーレベルの制限は、個々のアプリケーションレベルで設定されていない場合に使用されます。 この値が0または両方のレベルにない場合、オペレーティングシステムのデフォルト設定が使用されます。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> PHPスクリプトはプロセスをフォークするために呼び出すことができます。 この制限の主な目的は、フォーク爆弾や他のプロセスを作成するPHPプロセスによって引き起こされる他の攻撃を防ぐための最終防衛線です。<br/> この設定を低すぎると、機能が著しく損なわれる可能性があります。 この設定は特定のレベル以下では無視されます。<br/> suEXECデーモンモードを使用する場合、親プロセスが制限されないように、実際のプロセス制限はこの設定よりも高くなります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="procHardLimit"><h3>プロセスハードリミット<span class="ls-permlink"><a href="#procHardLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>ソフトリミットをユーザープロセス内のハードリミットまで上げることができることを除けば、<span class="tagl"><a href="#procSoftLimit">プロセスソフトリミット</a></span>とほとんど同じです。 ハードリミットは、サーバー・レベルまたは個々の外部アプリケーションレベルで設定できます。 サーバーレベルの制限は、個々のアプリケーションレベルで設定されていない場合に使用されます。 オペレーティングシステムのデフォルト値は、値が両方のレベルにないか、<span class="val">0</span>に設定されている場合に使用されます。</p> <h4>構文</h4><p>整数</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������ja-JP/LB_Context.html�������������������������������������������������������������������������������0000644�����������������00000043224�15027525531�0010346 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Open LiteSpeed Web Serverユーザーズマニュアル - ロードバランサコンテキスト</title> <meta name="description" content="Open LiteSpeed Web Serverユーザーズマニュアル - ロードバランサコンテキスト." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="../img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h3 class="ls-text-thin">OpenLiteSpeed Web Server <a href="index.html"> ユーザーズマニュアル</a></h3> <h5 class="ls-text-muted">Version 1.8 — Rev. 0</h5> <hr/> <div> <ul> <li><a href="license.html">ライセンス</a></li> <li><a href="intro.html">はじめに</a></li> <li><a href="install.html">インストール</a></li> <li> <a href="admin.html">管理</a> <ul class="level2"> <li><a href="ServerStat_Help.html">サービスマネージャ</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">セキュリティ</a></li> <li><a href="config.html">設定</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">サーバー全般</a></li> <li><a href="ServLog_Help.html">サーバーログ</a></li> <li><a href="ServTuning_Help.html">サーバーのチューニング</a></li> <li><a href="ServSecurity_Help.html">サーバーのセキュリティ</a></li> <li><a href="ExtApp_Help.html">外部アプリ</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGIアプリ</a></li> <li><a href="External_FCGI_Auth.html">Fast CGIオーソライザー</a></li> <li><a href="External_LSAPI.html">LSAPIアプリ</a></li> <li><a href="External_Servlet.html">サーブレットエンジン</a></li> <li><a href="External_WS.html">Webサーバー</a></li> <li><a href="External_PL.html">パイプロガー</a></li> <li><a href="External_LB.html">ロードバランサ</a></li> </ul> <li><a href="ScriptHandler_Help.html">スクリプトハンドラ</a></li> <li><a href="Rails_Help.html">Rack/Railsの設定</a></li> <li><a href="Module_Help.html">モジュール設定</a></li> <li><a href="Listeners_General_Help.html">リスナー全般</a></li> <li><a href="Listeners_SSL_Help.html">リスナーのSSL</a></li> <li><a href="Templates_Help.html">テンプレート</a></li> <li><a href="VirtualHosts_Help.html">バーチャルホストの基本</a></li> <li><a href="VHGeneral_Help.html">バーチャルホスト全般</a></li> <li><a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a></li> <li><a href="VHSSL_Help.html">バーチャルホストのSSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">コンテキスト</a></li> <ul class="level3"> <li><a href="Static_Context.html">静的コンテテキスト</a></li> <li><a href="Java_Web_App_Context.html">Java Webアプリのコンテキスト</a></li> <li><a href="Servlet_Context.html">サーブレットコンテキスト</a></li> <li><a href="FCGI_Context.html">Fast CGIコンテキスト</a></li> <li><a href="LSAPI_Context.html">LSAPIコンテキスト</a></li> <li><a href="Proxy_Context.html">プロキシコンテキスト</a></li> <li><a href="CGI_Context.html">CGIコンテキスト</a></li> <li><span class="current"><a href="LB_Context.html">ロードバランサコンテキスト</a></span></li> <li><a href="Redirect_Context.html">コンテキストのリダイレクト</a></li> <li><a href="Rails_Context.html">Rack/Railsのコンテキスト</a></li> <li><a href="Module_Context.html">モジュールハンドラのコンテキスト</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socketプロキシ</a></li> </ul> </li> <li><a href="webconsole.html">Webコンソール</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">管理コンソール全般</a></li> <li><a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a></li> <li><a href="AdminListeners_General_Help.html">管理リスナー全般</a></li> <li><a href="AdminListeners_SSL_Help.html">管理リスナーのSSL</a></li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="CGI_Context.html">CGIコンテキスト</a></div><div class="center"><a href="Context_Help.html">コンテキスト</a></div><div class="next"><a href="Redirect_Context.html">リダイレクトコンテキスト</a> »</div></div> <h1>ロードバランサコンテキスト</h1><h2 id="top">目次</h2><section class="toc"><section class="toc-row"><header><a href="#lbContext">ロードバランサコンテキスト</a></header><p> <a href="#expuri">URI</a> | <a href="#lbapp">ロードバランサー</a> | <a href="#extraHeaders">Extra Headers</a> | <a href="#realm">レルム</a> | <a href="#authName">認証名</a> | <a href="#required">必要(許可ユーザー/グループ)</a> | <a href="#accessAllowed">アクセス許可</a> | <a href="#accessDenied">アクセス拒否</a> | <a href="#extAuthorizer">承認者</a> | <a href="#addDefaultCharset">デフォルトの文字セットを追加</a> | <a href="#defaultCharsetCustomized">カスタマイズされたデフォルトの文字セット</a> | <a href="#enableIpGeo">IPジオロケーションを有効にする</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="lbContext"><h3>ロードバランサコンテキスト<span class="ls-permlink"><a href="#lbContext"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>他の外部アプリケーションと同様に、ロードバランサワーカーアプリケーションは直接使用できません。 それらは、コンテキストを介してURLにマップされなければなりません。 ロードバランサコンテキストは、ロードバランサワーカーによって負荷分散されるURIを関連付けます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expuri"><h3>URI<span class="ls-permlink"><a href="#expuri"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストのURIを指定します。</p> <h4>構文</h4><p>URIは、プレーンURI( "/"で始まる)またはPerl互換の正規表現URI( "exp:"で始まる)にすることができます。 プレーンURIが "/"で終わる場合、このコンテキストはこのURIの下にすべてのサブURIを含みます。 コンテキストがファイルシステム上のディレクトリにマップされている場合は、末尾に「/」を追加する必要があります。</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#location">ロケーション</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="lbapp"><h3>ロードバランサー<span class="ls-permlink"><a href="#lbapp"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストに関連付けるロードバランサの名前を指定します。 このロードバランサはバーチャルアプリケーションであり、サーバーまたはバーチャルホストレベルの<span class="tagP"><a href="#ExtApp_Help">外部アプリケーション</a></span>セクションで定義する必要があります</p> <h4>構文</h4><p>選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extraHeaders"><h3>Extra Headers<span class="ls-permlink"><a href="#extraHeaders"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>追加される余分な応答ヘッダーを指定します。 1行に1つのヘッダーを追加できます。 親コンテンツから継承したヘッダーを無効にするには、"NONE"を入力します。</p> <h4>構文</h4><p>各行に "[HeaderName]: [HeaderValue]"</p> <h4>例</h4><div class="ls-example">Cache-control: no-cache, no-store <br/> My-header: Custom header value</div><h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> Syntax and usage are similar to <a href="https://httpd.apache.org/docs/2.2/mod/mod_headers.html#header" target="_blank" rel="noopener noreferrer">Apache's mod_headers directives</a> for supported operations.<br/><br/> <span title="Information" class="ls-icon-info"></span> The 'Header' directive is is optional and can be excluded or left in when copying rules from elsewhere without issue.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="realm"><h3>レルム<span class="ls-permlink"><a href="#realm"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストの認可レルムを指定します。 このコンテキストにアクセスするには、有効なユーザー名とパスワードを指定する必要があります。 <span class="tagl"><a href="VHSecurity_Help.html#realms">認可レルム</a></span>は<span class="tagP"><a href="#VHSecurity_Help">バーチャルホストのセキュリティ</a></span>セクションに設定されています。 この設定では、各レルムの<span class="tagl"><a href="VHSecurity_Help.html#realmName">レルム名</a></span>が使用されます。</p> <h4>構文</h4><p>選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="authName"><h3>認証名<span class="ls-permlink"><a href="#authName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>現在のコンテキストの認証レルムの代替名を指定します。 指定しない場合、元のレルム名が使用されます。 認証名は、ブラウザのログインポップアップに表示されます。</p> <h4>構文</h4><p>テキスト</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="required"><h3>必要(許可ユーザー/グループ)<span class="ls-permlink"><a href="#required"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストにアクセスできるユーザー/グループを指定します。 これにより、複数のコンテキストにわたって1つのユーザー/グループデータベース(<span class="tagl"><a href="#realm">レルム</a></span>で指定)を使用できますが、そのデータベースの特定のユーザー/グループのみがこのコンテキストにアクセスできます。</p> <h4>構文</h4><p>構文はApache Requireディレクティブと互換性があります。 例えば: <ul> <li><span class="val">user username [username ...]</span> <br/> リストされたユーザーだけがこのコンテキストにアクセスできます。</li> <li> <span class="val">group groupid [groupid ...]</span><br/> リストされたグループに属するユーザーのみがこのコンテキストにアクセスできます。</li> </ul> この設定を指定しないと、すべての有効なユーザーがこのリソースにアクセスできます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessAllowed"><h3>アクセス許可<span class="ls-permlink"><a href="#accessAllowed"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストでリソースにアクセスできるIPまたはサブネットワークを指定します。 <span class="tagl"><a href="#accessDenied">アクセス拒否</a></span>とサーバー/バーチャルホスト・レベルのアクセス制御とともに、アクセシビリティは、クライアントのIPアドレスが入る最小の範囲によって決まります。</p> <h4>構文</h4><p>IP/サブネットワークのカンマ区切りリスト。</p> <h4>例</h4><div class="ls-example">サブネットワークは以下のように書くことができます <span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span>, 又は <span class="val">192.168.1.*</span>.</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessDenied"><h3>アクセス拒否<span class="ls-permlink"><a href="#accessDenied"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストでリソースにアクセスできないIPまたはサブネットワークを指定します。 <span class="tagl"><a href="#accessAllowed">アクセス許可</a></span>とサーバー/バーチャルホストレベルのアクセス制御とともに、アクセシビリティはクライアントのIPアドレスが入る最小の範囲で決まります。</p> <h4>構文</h4><p>IP/サブネットワークのカンマ区切りリスト。</p> <h4>例</h4><div class="ls-example">サブネットワークは以下のように書くことができます <span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span>, 又は <span class="val">192.168.1.*</span>.</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAuthorizer"><h3>承認者<span class="ls-permlink"><a href="#extAuthorizer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>権限のある/権限のないかの決定を生成するために使用できる外部アプリケーションを指定します。 現在、FastCGI Authorizerのみが使用可能です。 FastCGI Authorizerの役割の詳細については、<a href=" https://fastcgi-archives.github.io/ " target="_blank" rel="noopener noreferrer"> https://fastcgi-archives.github.io/ </a>を参照してください。 。</p> <h4>構文</h4><p>ドロップダウンリストから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="addDefaultCharset"><h3>デフォルトの文字セットを追加<span class="ls-permlink"><a href="#addDefaultCharset"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>コンテンツタイプが "text/html"または "text/plain"のいずれかのパラメータがない場合、文字セットタグを "Content-Type"レスポンスヘッダーに追加するかどうかを指定します。 <span class="val">Off</span>に設定すると、この機能は無効になります。 <span class="val">On</span>に設定すると、<span class="tagl"><a href="#defaultCharsetCustomized">カスタマイズされたデフォルトの文字セット</a></span>で指定された文字セットまたはデフォルトの "iso-8859-1"のいずれかが追加されます。</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="defaultCharsetCustomized"><h3>カスタマイズされたデフォルトの文字セット<span class="ls-permlink"><a href="#defaultCharsetCustomized"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p><span class="tagl"><a href="#addDefaultCharset">デフォルトの文字セットを追加</a></span>が<span class="val">On</span>のときに使用される文字セットを指定します。 これはオプションです。 デフォルト値は<span class="val"> iso-8859-1 </span>です。 <span class="tagl"><a href="#addDefaultCharset">デフォルトの文字セットを追加</a></span>が<span class="val"> Off </span>の場合、このエントリは無効です。</p> <h4>構文</h4><p>文字セットの名前。</p> <h4>例</h4><div class="ls-example">utf-8</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableIpGeo"><h3>IPジオロケーションを有効にする<span class="ls-permlink"><a href="#enableIpGeo"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p> IPジオロケーション検索を有効/無効にするかどうかを指定します。 サーバ、バーチャルホスト、コンテキストレベルで設定できます。 値 「未設定」を使用すると、IPジオロケーションはデフォルトで無効になります。</p> <h4>構文</h4><p>ラジオボックスから選択</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="ServGeneral_Help.html#useIpInProxyHeader">ヘッダーにクライアントIPを使用する</a></span>, <span class="tagl"><a href="ServGeneral_Help.html#geoipDBFile">DBファイルのパス</a></span>,</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������ja-JP/External_PL.html������������������������������������������������������������������������������0000644�����������������00000033766�15027525531�0010534 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Open LiteSpeed Web Serverユーザーズマニュアル - パイプロガー</title> <meta name="description" content="Open LiteSpeed Web Serverユーザーズマニュアル - パイプロガー." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="../img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h3 class="ls-text-thin">OpenLiteSpeed Web Server <a href="index.html"> ユーザーズマニュアル</a></h3> <h5 class="ls-text-muted">Version 1.8 — Rev. 0</h5> <hr/> <div> <ul> <li><a href="license.html">ライセンス</a></li> <li><a href="intro.html">はじめに</a></li> <li><a href="install.html">インストール</a></li> <li> <a href="admin.html">管理</a> <ul class="level2"> <li><a href="ServerStat_Help.html">サービスマネージャ</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">セキュリティ</a></li> <li><a href="config.html">設定</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">サーバー全般</a></li> <li><a href="ServLog_Help.html">サーバーログ</a></li> <li><a href="ServTuning_Help.html">サーバーのチューニング</a></li> <li><a href="ServSecurity_Help.html">サーバーのセキュリティ</a></li> <li><a href="ExtApp_Help.html">外部アプリ</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGIアプリ</a></li> <li><a href="External_FCGI_Auth.html">Fast CGIオーソライザー</a></li> <li><a href="External_LSAPI.html">LSAPIアプリ</a></li> <li><a href="External_Servlet.html">サーブレットエンジン</a></li> <li><a href="External_WS.html">Webサーバー</a></li> <li><span class="current"><a href="External_PL.html">パイプロガー</a></span></li> <li><a href="External_LB.html">ロードバランサ</a></li> </ul> <li><a href="ScriptHandler_Help.html">スクリプトハンドラ</a></li> <li><a href="Rails_Help.html">Rack/Railsの設定</a></li> <li><a href="Module_Help.html">モジュール設定</a></li> <li><a href="Listeners_General_Help.html">リスナー全般</a></li> <li><a href="Listeners_SSL_Help.html">リスナーのSSL</a></li> <li><a href="Templates_Help.html">テンプレート</a></li> <li><a href="VirtualHosts_Help.html">バーチャルホストの基本</a></li> <li><a href="VHGeneral_Help.html">バーチャルホスト全般</a></li> <li><a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a></li> <li><a href="VHSSL_Help.html">バーチャルホストのSSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">コンテキスト</a></li> <ul class="level3"> <li><a href="Static_Context.html">静的コンテテキスト</a></li> <li><a href="Java_Web_App_Context.html">Java Webアプリのコンテキスト</a></li> <li><a href="Servlet_Context.html">サーブレットコンテキスト</a></li> <li><a href="FCGI_Context.html">Fast CGIコンテキスト</a></li> <li><a href="LSAPI_Context.html">LSAPIコンテキスト</a></li> <li><a href="Proxy_Context.html">プロキシコンテキスト</a></li> <li><a href="CGI_Context.html">CGIコンテキスト</a></li> <li><a href="LB_Context.html">ロードバランサコンテキスト</a></li> <li><a href="Redirect_Context.html">コンテキストのリダイレクト</a></li> <li><a href="Rails_Context.html">Rack/Railsのコンテキスト</a></li> <li><a href="Module_Context.html">モジュールハンドラのコンテキスト</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socketプロキシ</a></li> </ul> </li> <li><a href="webconsole.html">Webコンソール</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">管理コンソール全般</a></li> <li><a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a></li> <li><a href="AdminListeners_General_Help.html">管理リスナー全般</a></li> <li><a href="AdminListeners_SSL_Help.html">管理リスナーのSSL</a></li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="External_WS.html">Webサーバ</a></div><div class="center"><a href="ExtApp_Help.html">外部アプリケーション</a></div><div class="next"><a href="External_LB.html">ロードバランサー</a> »</div></div> <h1>パイプロガー</h1><h2 id="top">目次</h2><section class="toc"><section class="toc-row"><header>パイプロガー</header><p> <a href="#extAppName">名前</a> | <a href="#extAppAddress">アドレス</a> | <a href="#maxConns">最大接続数</a> | <a href="#env">環境</a> | <a href="#extAppPath">コマンド</a> | <a href="#instances">インスタンス</a> | <a href="#extUser">suEXECユーザー</a> | <a href="#extGroup">suEXECグループ</a> | <a href="#extUmask">umask</a> | <a href="#extAppPriority">優先度</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="extAppName"><h3>名前<span class="ls-permlink"><a href="#extAppName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>この外部アプリケーションの一意の名前。 設定の他の部分でこの名前を使用するときは、この名前で参照します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAppAddress"><h3>アドレス<span class="ls-permlink"><a href="#extAppAddress"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>外部アプリケーションによって使用される一意のソケットアドレス。 IPv4/IPv6ソケットとUnixドメインソケット(UDS)がサポートされています。 IPv4/IPv6ソケットは、ネットワークを介した通信に使用できます。 UDSは、外部アプリケーションがサーバーと同じマシンにある場合にのみ使用できます。</p> <h4>構文</h4><p>IPv4またはIPV6アドレス:ポートまたはUDS://パス</p> <h4>例</h4><div class="ls-example">127.0.0.1:5434<br/> UDS://tmp/lshttpd/php.sock.</div><h4>ヒント</h4><p>[セキュリティ]外部アプリケーションが同じマシン上で実行される場合は、UDSが優先されます。 IPv4|IPV6ソケットを使用する必要がある場合は、IPアドレスを<span class="val">localhost</span>または<span class="val">127.0.0.1</span>に設定して、外部アプリケーションに他のマシンからアクセスできないようにします。<br/> [パフォーマンス] Unixドメインソケットは、通常、IPv4ソケットよりも高いパフォーマンスを提供します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxConns"><h3>最大接続数<span class="ls-permlink"><a href="#maxConns"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>サーバーと外部アプリケーションの間で確立できる同時接続の最大数を指定します。 この設定は、外部アプリケーションによって同時に処理できる要求の数を制御しますが、実際の制限は外部アプリケーション自体によっても異なります。 この値を高く設定すると、外部アプリケーションの速度が不十分であるか、多数の同時要求に対応できない場合に役立ちません。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p>[パフォーマンス]高い値を設定しても、高いパフォーマンスに直接変換されるわけではありません。 制限を外部アプリケーションに負荷をかけない値に設定すると、最高のパフォーマンス/スループットが得られます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="env"><h3>環境<span class="ls-permlink"><a href="#env"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>外部アプリケーション用の追加の環境変数を指定します。</p> <h4>構文</h4><p>Key=value. 複数の変数は "ENTER"で区切ることができます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAppPath"><h3>コマンド<span class="ls-permlink"><a href="#extAppPath"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>外部アプリケーションを実行するためのパラメータを含む完全なコマンドラインを指定します。 <span class="tagl"><a href="#autoStart">自動スタート</a></span>が有効な場合は必須値です。 パラメータにスペースまたはタブ文字が含まれている場合は、パラメータを二重引用符または一重引用符で囲む必要があります。</p> <h4>構文</h4><p>オプションのパラメータを含む実行可能ファイルへのフルパス。</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#autoStart">自動スタート</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="instances"><h3>インスタンス<span class="ls-permlink"><a href="#instances"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>サーバーが作成する外部アプリケーションの最大インスタンスを指定します。 <span class="tagl"><a href="#autoStart">自動スタート</a></span>が有効な場合は必須です。 ほとんどのFastCGI/LSAPIアプリケーションは、プロセスインスタンスごとに1つの要求しか処理できません。これらのタイプのアプリケーションの場合、インスタンスは<span class="tagl"><a href="#maxConns">最大接続数</a></span>の値に一致するように設定する必要があります。 一部のFastCGI / LSAPIアプリケーションでは、複数の子プロセスを生成して複数の要求を同時に処理できます。 これらのタイプのアプリケーションでは、インスタンスを "1"に設定し、環境変数を使用してアプリケーションが生成できる子プロセスの数を制御する必要があります。</p> <h4>構文</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extUser"><h3>suEXECユーザー<span class="ls-permlink"><a href="#extUser"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>外部アプリケーションが実行されるユーザー名を指定します。 設定されていない場合、外部アプリケーションはWebサーバーのユーザーとして実行されます。</p> <h4>構文</h4><p>有効なユーザー名。</p> <h4>参照</h4><p class="ls-text-small">extGroup</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extGroup"><h3>suEXECグループ<span class="ls-permlink"><a href="#extGroup"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>外部アプリケーションが実行されるグループ名を指定します。</p> <h4>構文</h4><p>有効なグループ名。</p> <h4>参照</h4><p class="ls-text-small">extUser</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extUmask"><h3>umask<span class="ls-permlink"><a href="#extUmask"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>この外部アプリケーションのプロセスのデフォルトumaskを設定します。 詳細は、<span class="cmd">man 2 umask</span>を参照してください。 デフォルト値はサーバーレベルの<span class="tagl"><a href="ServSecurity_Help.html#umask">umask</a></span>設定から取得されます。</p> <h4>構文</h4><p>有効範囲[000]〜[777]の値。</p> <h4>参照</h4><p class="ls-text-small">CGI <span class="tagl"><a href="ServSecurity_Help.html#umask">umask</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAppPriority"><h3>優先度<span class="ls-permlink"><a href="#extAppPriority"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>外部アプリケーション・プロセスの優先度を指定します。 値の範囲は<span class="val">−20</span>〜<span class="val">20</span>です。 数字が小さいほど優先度が高くなります。 外部アプリケーションプロセスは、Webサーバーよりも高い優先度を持つことはできません。 この優先度がサーバーの数値より低い数値に設定されている場合は、サーバーの優先度がこの値に使用されます。</p> <h4>構文</h4><p>整数</p> <h4>参照</h4><p class="ls-text-small">Server <span class="tagl"><a href="ServGeneral_Help.html#serverPriority">プライオリティ</a></span></p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ����������ja-JP/Templates_Help.html���������������������������������������������������������������������������0000644�����������������00000042074�15027525531�0011255 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Open LiteSpeed Web Serverユーザーズマニュアル - バーチャルホストテンプレート</title> <meta name="description" content="Open LiteSpeed Web Serverユーザーズマニュアル - バーチャルホストテンプレート." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="../img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h3 class="ls-text-thin">OpenLiteSpeed Web Server <a href="index.html"> ユーザーズマニュアル</a></h3> <h5 class="ls-text-muted">Version 1.8 — Rev. 0</h5> <hr/> <div> <ul> <li><a href="license.html">ライセンス</a></li> <li><a href="intro.html">はじめに</a></li> <li><a href="install.html">インストール</a></li> <li> <a href="admin.html">管理</a> <ul class="level2"> <li><a href="ServerStat_Help.html">サービスマネージャ</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">セキュリティ</a></li> <li><a href="config.html">設定</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">サーバー全般</a></li> <li><a href="ServLog_Help.html">サーバーログ</a></li> <li><a href="ServTuning_Help.html">サーバーのチューニング</a></li> <li><a href="ServSecurity_Help.html">サーバーのセキュリティ</a></li> <li><a href="ExtApp_Help.html">外部アプリ</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGIアプリ</a></li> <li><a href="External_FCGI_Auth.html">Fast CGIオーソライザー</a></li> <li><a href="External_LSAPI.html">LSAPIアプリ</a></li> <li><a href="External_Servlet.html">サーブレットエンジン</a></li> <li><a href="External_WS.html">Webサーバー</a></li> <li><a href="External_PL.html">パイプロガー</a></li> <li><a href="External_LB.html">ロードバランサ</a></li> </ul> <li><a href="ScriptHandler_Help.html">スクリプトハンドラ</a></li> <li><a href="Rails_Help.html">Rack/Railsの設定</a></li> <li><a href="Module_Help.html">モジュール設定</a></li> <li><a href="Listeners_General_Help.html">リスナー全般</a></li> <li><a href="Listeners_SSL_Help.html">リスナーのSSL</a></li> <li><span class="current"><a href="Templates_Help.html">テンプレート</a></span></li> <li><a href="VirtualHosts_Help.html">バーチャルホストの基本</a></li> <li><a href="VHGeneral_Help.html">バーチャルホスト全般</a></li> <li><a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a></li> <li><a href="VHSSL_Help.html">バーチャルホストのSSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">コンテキスト</a></li> <ul class="level3"> <li><a href="Static_Context.html">静的コンテテキスト</a></li> <li><a href="Java_Web_App_Context.html">Java Webアプリのコンテキスト</a></li> <li><a href="Servlet_Context.html">サーブレットコンテキスト</a></li> <li><a href="FCGI_Context.html">Fast CGIコンテキスト</a></li> <li><a href="LSAPI_Context.html">LSAPIコンテキスト</a></li> <li><a href="Proxy_Context.html">プロキシコンテキスト</a></li> <li><a href="CGI_Context.html">CGIコンテキスト</a></li> <li><a href="LB_Context.html">ロードバランサコンテキスト</a></li> <li><a href="Redirect_Context.html">コンテキストのリダイレクト</a></li> <li><a href="Rails_Context.html">Rack/Railsのコンテキスト</a></li> <li><a href="Module_Context.html">モジュールハンドラのコンテキスト</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socketプロキシ</a></li> </ul> </li> <li><a href="webconsole.html">Webコンソール</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">管理コンソール全般</a></li> <li><a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a></li> <li><a href="AdminListeners_General_Help.html">管理リスナー全般</a></li> <li><a href="AdminListeners_SSL_Help.html">管理リスナーのSSL</a></li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="Listeners_SSL_Help.html">リスナーSSL</a></div><div class="center"><a href="config.html">設定</a></div><div class="next"><a href="VirtualHosts_Help.html">バーチャルホストの基本</a> »</div></div> <h1>バーチャルホストテンプレート</h1><section class="ls-spacer-small-bottom">バーチャルホストテンプレートを使用すると、同様の構成で多くの新しいバーチャルホストを簡単に作成できます。 各テンプレートには、テンプレート構成ファイル、マップされたリスナーのリスト、およびメンバーバーチャルホストのリストが含まれています。 テンプレートベースのバーチャルホストを追加するには、管理者は一意のバーチャルホスト名と修飾ドメイン名を持つメンバーをテンプレートメンバーリストに追加するだけです。 リスナー/バーチャルホストマッピングは、テンプレートのマップされたリスナーリストのすべてのリスナーに対して自動的に追加されます。 後で、特定のバーチャルホストの設定をカスタマイズする必要がある場合、そのメンバーバーチャルホストとスタンドアロンバーチャルホスト設定が自動的に作成されます。 カスタマイズされたバーチャルホストを設定する場合でも、テンプレートはまだ便利な出発点になります。</section> <h2 id="top">目次</h2><section class="toc"><section class="toc-row"><header>テンプレートの場所</header><p> <a href="#templateName">テンプレート名</a> | <a href="#templateFile">テンプレートファイル</a> | <a href="#mappedListeners">マッピングされたリスナー</a></p></section> <section class="toc-row"><header>メンバーバーチャルホスト</header><p> <a href="#templateVHName">バーチャルホスト名</a> | <a href="#templateVHDomain">ドメイン</a> | <a href="#templateVHAliases">エイリアス</a> | <a href="#memberVHRoot">メンバーバーチャルホストルート</a></p></section> <section class="toc-row"><header>テンプレート設定</header><p> <a href="#templateVHRoot">デフォルトのバーチャルホストルート</a> | <a href="#templateVHConfigFile">インスタンス化されたVHost設定ファイル</a> | <a href="#templateVHDocRoot">ドキュメントルート</a> | <a href="#templateFileRef">テンプレートで使用されるファイル名</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="templateName"><h3>テンプレート名<span class="ls-permlink"><a href="#templateName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>テンプレートの一意の名前。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="templateFile"><h3>テンプレートファイル<span class="ls-permlink"><a href="#templateFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このテンプレートの構成ファイルへのパスを指定します。 このファイルは$SERVER_ROOT/conf/templates/の中に ".conf"ファイル名で置く必要があります。 指定したファイルが存在しない場合、テンプレートを保存しようとすると、 "CLICK TO CREATE"というリンクが表示されます。 このリンクは新しい空のテンプレートファイルを生成します。 テンプレートを削除すると、その設定は設定から削除されますが、実際のテンプレート設定ファイルは削除されません。</p> <h4>構文</h4><p>パス</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="mappedListeners"><h3>マッピングされたリスナー<span class="ls-permlink"><a href="#mappedListeners"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このテンプレートがマップするすべてのリスナーの名前を指定します。 このテンプレートのメンバーバーチャルホストのリスナー/バーチャルホストマッピングが、このフィールドで指定されたリスナーに追加されます。 このマッピングは、メンババーチャルホストの個々の設定で設定されたドメイン名とエイリアスに基づいて、リスナをバーチャルホストにマッピングします。</p> <h4>構文</h4><p>カンマ区切りリスト</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="templateVHName"><h3>バーチャルホスト名<span class="ls-permlink"><a href="#templateVHName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このバーチャルホストの一意の名前。 この名前は、すべてのテンプレートメンバーバーチャルホストとスタンドアロンバーチャルホストで一意でなければなりません。 ディレクトリパス設定では、この名前は変数<span class="val">$VH_NAME</span>によって参照できます。<br/><br/> 同じ名前のスタンドアロンバーチャルホストも設定されている場合、メンバーバーチャルホスト設定は無視されます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="templateVHDomain"><h3>ドメイン<span class="ls-permlink"><a href="#templateVHDomain"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このメンバーバーチャルホストのメインドメイン名を指定します。 空白のままにすると、バーチャルホスト名が使用されます。 これは完全修飾ドメイン名である必要がありますが、IPアドレスも使用できます。 ポート80以外のWebサイトには、<span class="val">:<port></span>を追加することをお勧めします。 ドメイン名を含む設定の場合、このドメインは変数<span class="val">$VH_DOMAIN</span>で参照できます。<br/><br/> このドメイン名は、以下の状況で使用されます: <ol> <li>要求を処理する際にホストヘッダー内のホスト名を照合する。</li> <li>FrontPageやAWstatsなどのアドオンのドメイン名設定を入力する。</li> <li>バーチャルホストテンプレートに基づいてリスナーからバーチャルホストへのマッピングを構成する。</li> </ol></p> <h4>構文</h4><p>ドメイン名</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="templateVHAliases"><h3>エイリアス<span class="ls-permlink"><a href="#templateVHAliases"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>バーチャルホストの代替名を指定します。 すべての可能なホスト名とIPアドレスをこのリストに追加する必要があります。 ワイルドカード文字<span class="val">*</span>と<span class="val">?</span>は名前に使用できます。 ポート80にないWebサイトの場合は、<span class="val">:<port> </span>を追加します。<br/><br/> エイリアスは、以下の状況で使用されます: <ol> <li>要求を処理するときにホストヘッダー内のホスト名を照合する。</li> <li>FrontPageやAWstatsなどのアドオンのドメイン名/エイリアス設定を設定する</li> <li>バーチャルホストテンプレートに基づいてリスナーからバーチャルホストへのマッピングを構成する。</li> </ol></p> <h4>構文</h4><p>ドメイン名のカンマ区切りリスト。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="memberVHRoot"><h3>メンバーバーチャルホストルート<span class="ls-permlink"><a href="#memberVHRoot"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このバーチャルホストのルートディレクトリを指定します。 ブランクのままにすると、このテンプレートのデフォルトのバーチャルホストルートが使用されます。<br/><br/> Note: これはドキュメントルートでは<b>ありません</b>。 バーチャルホストに関連するすべてのファイル(バーチャルホスト設定、ログファイル、htmlファイル、CGIスクリプトなど)をこのディレクトリの下に配置することをお勧めします。 バーチャルホストのルートは$VH_ROOTと呼ばれます。</p> <h4>構文</h4><p>パス</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="templateVHRoot"><h3>デフォルトのバーチャルホストルート<span class="ls-permlink"><a href="#templateVHRoot"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このテンプレートを使用して、メンバーバーチャルホストのデフォルトルートディレクトリを指定します。 変数<span class="val">$VH_NAME</span>はパスに指定する必要があります。 これにより、各メンバーテンプレートに名前に基づいて別々のルートディレクトリが自動的に割り当てられます。</p> <h4>構文</h4><p>パス</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="templateVHConfigFile"><h3>インスタンス化されたVHost設定ファイル<span class="ls-permlink"><a href="#templateVHConfigFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>メンバーバーチャルホストをインスタンス化するときに生成される構成ファイルの場所を指定します。 変数<span class="val">$VH_NAME</span>は、各バーチャルホストが独自のファイルを持つように、パスに現れなければなりません。 $SERVER_ROOT/conf/vhosts/にある必要があります。 この設定ファイルは、メンバのバーチャルホストをインスタンス化によってテンプレートから移動した場合にのみ作成されます。</p> <h4>構文</h4><p>$VH_NAME変数と.conf接尾辞付きの文字列</p> <h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> $VH_NAME/ vhconf.confは管理が簡単です。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="templateVHDocRoot"><h3>ドキュメントルート<span class="ls-permlink"><a href="#templateVHDocRoot"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>各メンバーバーチャルホストのドキュメントルートの一意のパスを指定します。 変数<span class="val">$VH_NAME</span>または<span class="val">$VH_ROOT</span>は、各メンババーチャルホストが独自のドキュメントルートを持つように、パスに現れなければなりません。</p> <h4>構文</h4><p>$VH_NAME又は$VH_ROOT変数を含むパス</p> <h4>例</h4><div class="ls-example">$VH_ROOT/public_html/ 又は $SERVER_ROOT/$VH_NAME/public_html.</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="templateFileRef"><h3>テンプレートで使用されるファイル名<span class="ls-permlink"><a href="#templateFileRef"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>メンバーバーチャルホストに使用されるファイルのパスを指定します。 変数<span class="val">$VH_NAME</span>または<span class="val">$VH_ROOT</span>は、各メンババーチャルホストが独自のファイルを持つように、パスに現れなければなりません。</p> <h4>構文</h4><p>文字列</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ��������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������ja-JP/index.html������������������������������������������������������������������������������������0000644�����������������00000013412�15027525531�0007450 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Open LiteSpeed Web Serverユーザーズマニュアル - ホーム</title> <meta name="description" content="Open LiteSpeed Web Serverユーザーズマニュアル - ホーム." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="../img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h3 class="ls-text-thin">OpenLiteSpeed Web Server <span class="current"><a href="index.html"> ユーザーズマニュアル</a></span></h3> <h5 class="ls-text-muted">Version 1.8 — Rev. 0</h5> <hr/> <div> <ul> <li><a href="license.html">ライセンス</a></li> <li><a href="intro.html">はじめに</a></li> <li><a href="install.html">インストール</a></li> <li> <a href="admin.html">管理</a> <ul class="level2"> <li><a href="ServerStat_Help.html">サービスマネージャ</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">セキュリティ</a></li> <li><a href="config.html">設定</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">サーバー全般</a></li> <li><a href="ServLog_Help.html">サーバーログ</a></li> <li><a href="ServTuning_Help.html">サーバーのチューニング</a></li> <li><a href="ServSecurity_Help.html">サーバーのセキュリティ</a></li> <li><a href="ExtApp_Help.html">外部アプリ</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGIアプリ</a></li> <li><a href="External_FCGI_Auth.html">Fast CGIオーソライザー</a></li> <li><a href="External_LSAPI.html">LSAPIアプリ</a></li> <li><a href="External_Servlet.html">サーブレットエンジン</a></li> <li><a href="External_WS.html">Webサーバー</a></li> <li><a href="External_PL.html">パイプロガー</a></li> <li><a href="External_LB.html">ロードバランサ</a></li> </ul> <li><a href="ScriptHandler_Help.html">スクリプトハンドラ</a></li> <li><a href="Rails_Help.html">Rack/Railsの設定</a></li> <li><a href="Module_Help.html">モジュール設定</a></li> <li><a href="Listeners_General_Help.html">リスナー全般</a></li> <li><a href="Listeners_SSL_Help.html">リスナーのSSL</a></li> <li><a href="Templates_Help.html">テンプレート</a></li> <li><a href="VirtualHosts_Help.html">バーチャルホストの基本</a></li> <li><a href="VHGeneral_Help.html">バーチャルホスト全般</a></li> <li><a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a></li> <li><a href="VHSSL_Help.html">バーチャルホストのSSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">コンテキスト</a></li> <ul class="level3"> <li><a href="Static_Context.html">静的コンテテキスト</a></li> <li><a href="Java_Web_App_Context.html">Java Webアプリのコンテキスト</a></li> <li><a href="Servlet_Context.html">サーブレットコンテキスト</a></li> <li><a href="FCGI_Context.html">Fast CGIコンテキスト</a></li> <li><a href="LSAPI_Context.html">LSAPIコンテキスト</a></li> <li><a href="Proxy_Context.html">プロキシコンテキスト</a></li> <li><a href="CGI_Context.html">CGIコンテキスト</a></li> <li><a href="LB_Context.html">ロードバランサコンテキスト</a></li> <li><a href="Redirect_Context.html">コンテキストのリダイレクト</a></li> <li><a href="Rails_Context.html">Rack/Railsのコンテキスト</a></li> <li><a href="Module_Context.html">モジュールハンドラのコンテキスト</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socketプロキシ</a></li> </ul> </li> <li><a href="webconsole.html">Webコンソール</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">管理コンソール全般</a></li> <li><a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a></li> <li><a href="AdminListeners_General_Help.html">管理リスナー全般</a></li> <li><a href="AdminListeners_SSL_Help.html">管理リスナーのSSL</a></li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><section class="ls-index"> <header> <h1>OpenLiteSpeed Web Server 1.8</h1> <h1>ユーザーズマニュアル</h1> <h1>— Rev. 0</h1> </header> <hr /> <header> <h3>目次</h3> </header> <ol> <li><span><a href="license.html">ライセンス</a></span></li> <li><span><a href="intro.html">はじめに</a></span></li> <li><span><a href="install.html">インストール/アンインストール</a></span></li> <li><span><a href="admin.html">管理</a></span></li> <li><span><a href="security.html">セキュリティ</a></span></li> <li><span><a href="config.html">設定</a></span></li> </ol> <p>詳細については、<a href="http://open.litespeedtech.com/mediawiki/">OpenLiteSpeed Wiki</a></p> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������ja-JP/AdminGeneral_Help.html������������������������������������������������������������������������0000644�����������������00000050646�15027525531�0011651 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Open LiteSpeed Web Serverユーザーズマニュアル - 管理コンソールの一般</title> <meta name="description" content="Open LiteSpeed Web Serverユーザーズマニュアル - 管理コンソールの一般." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="../img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h3 class="ls-text-thin">OpenLiteSpeed Web Server <a href="index.html"> ユーザーズマニュアル</a></h3> <h5 class="ls-text-muted">Version 1.8 — Rev. 0</h5> <hr/> <div> <ul> <li><a href="license.html">ライセンス</a></li> <li><a href="intro.html">はじめに</a></li> <li><a href="install.html">インストール</a></li> <li> <a href="admin.html">管理</a> <ul class="level2"> <li><a href="ServerStat_Help.html">サービスマネージャ</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">セキュリティ</a></li> <li><a href="config.html">設定</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">サーバー全般</a></li> <li><a href="ServLog_Help.html">サーバーログ</a></li> <li><a href="ServTuning_Help.html">サーバーのチューニング</a></li> <li><a href="ServSecurity_Help.html">サーバーのセキュリティ</a></li> <li><a href="ExtApp_Help.html">外部アプリ</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGIアプリ</a></li> <li><a href="External_FCGI_Auth.html">Fast CGIオーソライザー</a></li> <li><a href="External_LSAPI.html">LSAPIアプリ</a></li> <li><a href="External_Servlet.html">サーブレットエンジン</a></li> <li><a href="External_WS.html">Webサーバー</a></li> <li><a href="External_PL.html">パイプロガー</a></li> <li><a href="External_LB.html">ロードバランサ</a></li> </ul> <li><a href="ScriptHandler_Help.html">スクリプトハンドラ</a></li> <li><a href="Rails_Help.html">Rack/Railsの設定</a></li> <li><a href="Module_Help.html">モジュール設定</a></li> <li><a href="Listeners_General_Help.html">リスナー全般</a></li> <li><a href="Listeners_SSL_Help.html">リスナーのSSL</a></li> <li><a href="Templates_Help.html">テンプレート</a></li> <li><a href="VirtualHosts_Help.html">バーチャルホストの基本</a></li> <li><a href="VHGeneral_Help.html">バーチャルホスト全般</a></li> <li><a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a></li> <li><a href="VHSSL_Help.html">バーチャルホストのSSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">コンテキスト</a></li> <ul class="level3"> <li><a href="Static_Context.html">静的コンテテキスト</a></li> <li><a href="Java_Web_App_Context.html">Java Webアプリのコンテキスト</a></li> <li><a href="Servlet_Context.html">サーブレットコンテキスト</a></li> <li><a href="FCGI_Context.html">Fast CGIコンテキスト</a></li> <li><a href="LSAPI_Context.html">LSAPIコンテキスト</a></li> <li><a href="Proxy_Context.html">プロキシコンテキスト</a></li> <li><a href="CGI_Context.html">CGIコンテキスト</a></li> <li><a href="LB_Context.html">ロードバランサコンテキスト</a></li> <li><a href="Redirect_Context.html">コンテキストのリダイレクト</a></li> <li><a href="Rails_Context.html">Rack/Railsのコンテキスト</a></li> <li><a href="Module_Context.html">モジュールハンドラのコンテキスト</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socketプロキシ</a></li> </ul> </li> <li><a href="webconsole.html">Webコンソール</a> <ul class="level2"> <li><span class="current"><a href="AdminGeneral_Help.html">管理コンソール全般</a></span></li> <li><a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a></li> <li><a href="AdminListeners_General_Help.html">管理リスナー全般</a></li> <li><a href="AdminListeners_SSL_Help.html">管理リスナーのSSL</a></li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev"> </div><div class="center"><a href="webconsole.html">Webコンソール</a></div><div class="next"><a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a> »</div></div> <h1>管理コンソールの一般</h1><section class="ls-spacer-small-bottom">管理サーバーは、WebAdminコンソール専用の特別なバーチャルホストです。 管理者のマシンからのアクセスのみを許可するか、暗号化されたSSL接続を使用して、管理サーバーを安全に保護することが重要です。</section> <h2 id="top">目次</h2><section class="toc"><section class="toc-row"><header>一般</header><p> <a href="#enableCoreDump">コアダンプを有効にする</a> | <a href="#consoleSessionTimeout">セッションタイムアウト(秒)</a></p></section> <section class="toc-row"><header>バーチャルホストログ</header><p> <a href="#logUseServer">サーバーのログを使用する</a> | <a href="#vhlog_fileName">File Name</a> | <a href="#vhlog_logLevel">ログレベル</a> | <a href="#log_rollingSize">ローテーションサイズ(バイト)</a> | <a href="#log_keepDays">Keep Days</a> | <a href="#log_compressArchive">アーカイブを圧縮する</a></p></section> <section class="toc-row"><header>アクセスログ</header><p> <a href="#aclogUseServer">ログ制御</a> | <a href="#vhaccessLog_fileName">ファイル名</a> | <a href="#accessLog_pipedLogger">パイプロガー</a> | <a href="#accessLog_logFormat">Log Format</a> | <a href="#accessLog_logHeader">ログヘッダー</a> | <a href="#log_rollingSize">ローテーションサイズ(バイト)</a> | <a href="#log_keepDays">Keep Days</a> | <a href="#log_compressArchive">アーカイブを圧縮する</a> | <a href="#accessLog_bytesLog">バイトログ</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="enableCoreDump"><h3>コアダンプを有効にする<span class="ls-permlink"><a href="#enableCoreDump"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>サーバーが「root」ユーザーによって開始されたときにコア・ダンプを使用可能にするかどうかを指定します。 最新のUnixシステムでは、セキュリティ上の理由から、ユーザーIDまたはグループIDを変更するプロセスはコアファイルをダンプできません。 ただし、コアダンプを持つ問題の根本原因を特定する方がはるかに簡単です。 このオプションは、Linuxカーネル2.4以上でのみ動作します。 Solarisユーザーは<span class="cmd"> coreadm </span>コマンドを使用してこの機能を制御する必要があります。</p> <h4>構文</h4><p>ラジオボックスから選択</p> <h4>ヒント</h4><p>[セキュリティ]サーバログファイルに<span class="val">コアファイルが作成されていない</span>と表示されている場合にのみ有効にします。 コアファイルを生成した直後に無効にしてください。 コアダンプが作成されたときにバグレポートを提出してください。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="consoleSessionTimeout"><h3>セッションタイムアウト(秒)<span class="ls-permlink"><a href="#consoleSessionTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>WebAdmin Consoleのセッションタイムアウトの長さをカスタマイズします。 デフォルトは60秒です。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p>[セキュリティ]プロダクション使用に適切な値を設定します。通常は300秒未満です。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="logUseServer"><h3>サーバーのログを使用する<span class="ls-permlink"><a href="#logUseServer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>独自のログファイルを作成するのではなく、このバーチャルホストからのログメッセージをサーバーログファイルに入れるかどうかを指定します。</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vhlog_fileName"><h3>File Name<span class="ls-permlink"><a href="#vhlog_fileName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>ログファイルのパスを指定します。</p> <h4>構文</h4><p>ファイル名への絶対パス又は$SERVER_ROOT、$VH_ROOTからの相対パス。</p> <h4>ヒント</h4><p>[パフォーマンス]ログファイルを別のディスクに配置します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vhlog_logLevel"><h3>ログレベル<span class="ls-permlink"><a href="#vhlog_logLevel"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>ロギングのレベルを指定します。 使用可能なレベルは、<span class="val">ERROR</span>、<span class="val">WARNING</span>、<span class="val">NOTICE</span>、<span class="val">INFO</span>、<span class="val">DEBUG</span>です。 現在の設定以上のレベルのメッセージのみが記録されます。 <span class="val">DEBUG</span>に設定する場合は、サーバログレベルを<span class="val">DEBUG</span>に設定する必要があります。 デバッグのレベルは、<span class="tagl"><a href="ServGeneral_Help.html#log_debugLevel">デバッグレベル</a></span>によってサーバーレベルでのみ制御されます。</p> <h4>構文</h4><p>選択</p> <h4>ヒント</h4><p>[パフォーマンス] <span class="tagl"><a href="ServGeneral_Help.html#log_debugLevel">デバッグレベル</a></span>が<span class="val">NONE</span>以外のレベルに設定されていない限り、<span class="val">DEBUG</span>ログレベルはパフォーマンスに影響を及ぼさず、推奨されます。</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="ServGeneral_Help.html#log_debugLevel">デバッグレベル</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="log_rollingSize"><h3>ローテーションサイズ(バイト)<span class="ls-permlink"><a href="#log_rollingSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>現在のログファイルをロールオーバーする必要があるとき、つまりログローテーションを指定します。 ファイルサイズがロールオーバー制限を超えると、アクティブなログファイルは同じディレクトリにlog_name.mm_dd_yyyy(.sequence)という名前に変更され、新しいアクティブなログファイルが作成されます。 回転ログファイルが実際に作成されると、そのサイズはこのサイズ制限より少し大きくなることがあります。 ログのローテーションを無効にするには、<span class="val"> 0 </span>に設定します。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> キロ、メガ、ギガバイトの数字に「K」、「M」、「G」を追加します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="log_keepDays"><h3>Keep Days<span class="ls-permlink"><a href="#log_keepDays"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Specifies how many days the access log file will be kept on disk. Only rotated log files older than the specified number of days will be deleted. The current log file will not be touched regardless how many days worth of data it contains. If you do not want to auto-delete stale and very old log files, set this to <span class="val">0</span>.</p> <h4>構文</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="log_compressArchive"><h3>アーカイブを圧縮する<span class="ls-permlink"><a href="#log_compressArchive"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>ディスク領域を節約するためにローテーションしたログファイルを圧縮するかどうかを指定します。</p> <h4>構文</h4><p>ラジオボックスから選択</p> <h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> ログファイルは圧縮率が高く、古いログのディスク使用量を減らすために推奨されます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="aclogUseServer"><h3>ログ制御<span class="ls-permlink"><a href="#aclogUseServer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>アクセスログを書き込むべき場所。 3つのオプションがあります: <ol> <li>サーバのアクセスログに書き込む</li> <li>このバーチャルホストのアクセスログを作成する</li> <li>アクセスログを無効にする</li> </ol></p> <h4>構文</h4><p>選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vhaccessLog_fileName"><h3>ファイル名<span class="ls-permlink"><a href="#vhaccessLog_fileName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>アクセスログファイル名。</p> <h4>構文</h4><p>ファイル名への絶対パス又は$SERVER_ROOT、$VH_ROOTからの相対パス。</p> <h4>ヒント</h4><p>[パフォーマンス]アクセスログファイルを別のディスクに配置します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessLog_pipedLogger"><h3>パイプロガー<span class="ls-permlink"><a href="#accessLog_pipedLogger"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>LiteSpeedがSTDINストリーム上のパイプを通じて送信するアクセスログデータを受け取る外部アプリケーションを指定します(ファイルハンドルは0)。 このフィールドが指定されると、アクセスログはロガーアプリケーションにのみ送信され、前のエントリで指定されたアクセスログファイルには送信されません。<br/><br/> ロガーアプリケーションは、最初に<span class="tagP"><a href="#ExtApp_Help">外部アプリケーション</a></span>セクションで定義する必要があります。 サーバー・レベルのアクセス・ロギングは、サーバー・レベルで定義された外部ロガー・アプリケーションのみを使用できます。 バーチャルホストレベルのアクセスロギングでは、バーチャルホストレベルで定義されたロガーアプリケーションのみを使用できます。<br/><br/> ロガープロセスは、他の外部(CGI/FastCGI/LSAPI)プロセスと同じ方法で生成されます。 つまり、バーチャルホストの<span class="tagl"><a href="VirtualHosts_Help.html#setUidMode">外部アプリ Set UID モード</a></span>設定で指定されたユーザーIDとして実行され、特権ユーザーのために実行されることはありません。. <br/><br/> LiteSpeed Webサーバーは、複数のロガーアプリケーションのインスタンスが設定されている場合、複数のロガーアプリケーション間で簡単なロードバランシングを実行します。 LiteSpeedサーバーは、常にロガーアプリケーションの数を可能な限り低く抑えようとします。 1つのロガーアプリケーションがアクセスログエントリを時間内に処理できない場合にのみ、サーバーはロガーアプリケーションの別のインスタンスを生成しようとします。 <br/><br/> ロガーがクラッシュした場合、Webサーバーは別のインスタンスを開始しますが、ストリームバッファーのログデータは失われます。 外部ロガーがログ・ストリームの速度と量に追いつけない場合、ログ・データを失う可能性があります。</p> <h4>構文</h4><p>選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessLog_logFormat"><h3>Log Format<span class="ls-permlink"><a href="#accessLog_logFormat"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p> アクセスログのログ形式を指定します。 ログフォーマットが設定されると、<span class="tagl"><a href="#accessLog_logHeader">ログヘッダー</a></span>の設定より優先されます。</p> <h4>構文</h4><p>文字列。ログフォーマットの構文はApache 2.0のカスタムと互換性があります <a href="http://httpd.apache.org/docs/current/mod/mod_log_config.html#formats" target="_blank" rel="noopener noreferrer">log format</a>。</p> <h4>例</h4><div class="ls-example"><br> <b>共通ログフォーマット(CLF)</b><br/> "%h %l %u %t \"%r\" %>s %b"<br/><br/> <b>バーチャルホストによる共通ログフォーマット</b><br/> "%v %h %l %u %t \"%r\" %>s %b"<br/><br/> <b>NCSA拡張/結合ログフォーマット</b><br/> "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-agent}i\" <br/><br/> <b>FoobarのログCookie値</b><br/> "%{Foobar}C"</div><h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#accessLog_logHeader">ログヘッダー</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessLog_logHeader"><h3>ログヘッダー<span class="ls-permlink"><a href="#accessLog_logHeader"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p><span class="val">Referer</span>、<span class="val">UserAgent</span>、<span class="val">Host</span>のいずれかをHTTPリクエストヘッダとして記録するかどうかを指定します。</p> <h4>構文</h4><p>チェックボックス</p> <h4>ヒント</h4><p>[パフォーマンス]これらのヘッダーがアクセスログに必要ない場合は、これをオフにします。</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#accessLog_logFormat">Log Format</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessLog_bytesLog"><h3>バイトログ<span class="ls-permlink"><a href="#accessLog_bytesLog"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>帯域幅バイトのログファイルへのパスを指定します。 指定すると、cPanel互換の帯域幅ログが作成されます。 これにより、要求と応答本体の両方を含む要求に対して転送された合計バイトが記録されます。</p> <h4>構文</h4><p>ファイル名への絶対パス又は$SERVER_ROOTからの相対パス</p> <h4>ヒント</h4><p>[パフォーマンス]ログファイルを別のディスクに配置します。</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ������������������������������������������������������������������������������������������ja-JP/Context_Help.html�����������������������������������������������������������������������������0000644�����������������00000021302�15027525531�0010732 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Open LiteSpeed Web Serverユーザーズマニュアル - コンテキスト</title> <meta name="description" content="Open LiteSpeed Web Serverユーザーズマニュアル - コンテキスト." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="../img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h3 class="ls-text-thin">OpenLiteSpeed Web Server <a href="index.html"> ユーザーズマニュアル</a></h3> <h5 class="ls-text-muted">Version 1.8 — Rev. 0</h5> <hr/> <div> <ul> <li><a href="license.html">ライセンス</a></li> <li><a href="intro.html">はじめに</a></li> <li><a href="install.html">インストール</a></li> <li> <a href="admin.html">管理</a> <ul class="level2"> <li><a href="ServerStat_Help.html">サービスマネージャ</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">セキュリティ</a></li> <li><a href="config.html">設定</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">サーバー全般</a></li> <li><a href="ServLog_Help.html">サーバーログ</a></li> <li><a href="ServTuning_Help.html">サーバーのチューニング</a></li> <li><a href="ServSecurity_Help.html">サーバーのセキュリティ</a></li> <li><a href="ExtApp_Help.html">外部アプリ</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGIアプリ</a></li> <li><a href="External_FCGI_Auth.html">Fast CGIオーソライザー</a></li> <li><a href="External_LSAPI.html">LSAPIアプリ</a></li> <li><a href="External_Servlet.html">サーブレットエンジン</a></li> <li><a href="External_WS.html">Webサーバー</a></li> <li><a href="External_PL.html">パイプロガー</a></li> <li><a href="External_LB.html">ロードバランサ</a></li> </ul> <li><a href="ScriptHandler_Help.html">スクリプトハンドラ</a></li> <li><a href="Rails_Help.html">Rack/Railsの設定</a></li> <li><a href="Module_Help.html">モジュール設定</a></li> <li><a href="Listeners_General_Help.html">リスナー全般</a></li> <li><a href="Listeners_SSL_Help.html">リスナーのSSL</a></li> <li><a href="Templates_Help.html">テンプレート</a></li> <li><a href="VirtualHosts_Help.html">バーチャルホストの基本</a></li> <li><a href="VHGeneral_Help.html">バーチャルホスト全般</a></li> <li><a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a></li> <li><a href="VHSSL_Help.html">バーチャルホストのSSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><span class="current"><a href="Context_Help.html">コンテキスト</a></span></li> <ul class="level3"> <li><a href="Static_Context.html">静的コンテテキスト</a></li> <li><a href="Java_Web_App_Context.html">Java Webアプリのコンテキスト</a></li> <li><a href="Servlet_Context.html">サーブレットコンテキスト</a></li> <li><a href="FCGI_Context.html">Fast CGIコンテキスト</a></li> <li><a href="LSAPI_Context.html">LSAPIコンテキスト</a></li> <li><a href="Proxy_Context.html">プロキシコンテキスト</a></li> <li><a href="CGI_Context.html">CGIコンテキスト</a></li> <li><a href="LB_Context.html">ロードバランサコンテキスト</a></li> <li><a href="Redirect_Context.html">コンテキストのリダイレクト</a></li> <li><a href="Rails_Context.html">Rack/Railsのコンテキスト</a></li> <li><a href="Module_Context.html">モジュールハンドラのコンテキスト</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socketプロキシ</a></li> </ul> </li> <li><a href="webconsole.html">Webコンソール</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">管理コンソール全般</a></li> <li><a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a></li> <li><a href="AdminListeners_General_Help.html">管理リスナー全般</a></li> <li><a href="AdminListeners_SSL_Help.html">管理リスナーのSSL</a></li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="Rewrite_Help.html">Rewrite</a></div><div class="center"><a href="config.html">設定</a></div><div class="next"><a href="VHWebSocket_Help.html">Webソケットプロキシ</a> »</div></div> <h1>コンテキスト</h1><section class="ls-spacer-small-bottom">LiteSpeed Web Serverの用語では、「コンテキスト」とはバーチャルリソースであり、共通の親URLであり、リソースのグループを識別します。 コンテキストは、Webサイトのディレクトリツリー内の異なるディレクトリと考えることができます。 たとえば、「/」はWebサイトのドキュメントルートにマップされたルートコンテキストです。 "/cgi-bin/"は、このサイトのCGIアプリケーション専用のツリー上の文脈です。 コンテキストは、次の目的でLiteSpeedのWebAdminコンソールで明示的に定義することができます。: <ul> <li>ドキュメントルートの外部にあるファイルシステムにアクセス可能にする。</li> <li>特定のリソースへのアクセスをブロックする。</li> <li>特定のリソースに対してユーザーレベルの認証を設定する。</li> <li>外部アプリケーションのマウントポイントを作成する。</li> <li>要求を別の場所にリダイレクトする。</li> </ul></section> <h2 id="top">目次</h2><section class="toc"><section class="toc-row"><header>コンテキスト属性</header><p> <a href="#ctxType">コンテキストタイプ</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="ctxType"><h3>コンテキストタイプ<span class="ls-permlink"><a href="#ctxType"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p><b>静的</b>コンテキストを使用して、URIをドキュメントルートの外部またはその内部のディレクトリにマップできます。<br> <b>Java Webアプリ</b>コンテキストは、AJPv13コンパイラJavaサーブレットエンジンで定義済みのJavaアプリケーションを自動的にインポートするために使用されます。<br> <b>サーブレット</b>コンテキストは、Webアプリケーションの下にある特定のサーブレットをインポートするために使用されます。<br> <b>Fast CGI</b>コンテキストは、Fast CGIアプリケーションのマウントポイントです。<br> <b>LiteSpeed SAPI</b>コンテキストを使用して、URIをLSAPIアプリケーションに関連付けることができます。<br> <b>プロキシー</b>コンテキストにより、このバーチャルホストは、外部のWebサーバーまたはアプリケーションサーバーへのトランスペアレントリバースプロキシサーバーとして機能します。<br> <b>CGI</b>コンテキストを使用して、ディレクトリにCGIスクリプトのみを指定することができます。<br> <b>ロードバランサー</b>コンテキストを使用して、そのコンテキストに異なるクラスタを割り当てることができます。<br> <b>リダイレクト</b>コンテキストで内部リダイレクトURIまたは外部リダイレクトURIを設定できます。<br> <b>Rack/Rails</b>コンテキストは、特にRack/Railsアプリケーションに使用されます。<br> <b>モジュールハンドラー</b>コンテキストは、ハンドラー型モジュールのマウントポイントです。<br></p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������ja-JP/FCGI_Context.html�����������������������������������������������������������������������������0000644�����������������00000042762�15027525531�0010567 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Open LiteSpeed Web Serverユーザーズマニュアル - Fast CGIコンテキスト</title> <meta name="description" content="Open LiteSpeed Web Serverユーザーズマニュアル - Fast CGIコンテキスト." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="../img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h3 class="ls-text-thin">OpenLiteSpeed Web Server <a href="index.html"> ユーザーズマニュアル</a></h3> <h5 class="ls-text-muted">Version 1.8 — Rev. 0</h5> <hr/> <div> <ul> <li><a href="license.html">ライセンス</a></li> <li><a href="intro.html">はじめに</a></li> <li><a href="install.html">インストール</a></li> <li> <a href="admin.html">管理</a> <ul class="level2"> <li><a href="ServerStat_Help.html">サービスマネージャ</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">セキュリティ</a></li> <li><a href="config.html">設定</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">サーバー全般</a></li> <li><a href="ServLog_Help.html">サーバーログ</a></li> <li><a href="ServTuning_Help.html">サーバーのチューニング</a></li> <li><a href="ServSecurity_Help.html">サーバーのセキュリティ</a></li> <li><a href="ExtApp_Help.html">外部アプリ</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGIアプリ</a></li> <li><a href="External_FCGI_Auth.html">Fast CGIオーソライザー</a></li> <li><a href="External_LSAPI.html">LSAPIアプリ</a></li> <li><a href="External_Servlet.html">サーブレットエンジン</a></li> <li><a href="External_WS.html">Webサーバー</a></li> <li><a href="External_PL.html">パイプロガー</a></li> <li><a href="External_LB.html">ロードバランサ</a></li> </ul> <li><a href="ScriptHandler_Help.html">スクリプトハンドラ</a></li> <li><a href="Rails_Help.html">Rack/Railsの設定</a></li> <li><a href="Module_Help.html">モジュール設定</a></li> <li><a href="Listeners_General_Help.html">リスナー全般</a></li> <li><a href="Listeners_SSL_Help.html">リスナーのSSL</a></li> <li><a href="Templates_Help.html">テンプレート</a></li> <li><a href="VirtualHosts_Help.html">バーチャルホストの基本</a></li> <li><a href="VHGeneral_Help.html">バーチャルホスト全般</a></li> <li><a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a></li> <li><a href="VHSSL_Help.html">バーチャルホストのSSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">コンテキスト</a></li> <ul class="level3"> <li><a href="Static_Context.html">静的コンテテキスト</a></li> <li><a href="Java_Web_App_Context.html">Java Webアプリのコンテキスト</a></li> <li><a href="Servlet_Context.html">サーブレットコンテキスト</a></li> <li><span class="current"><a href="FCGI_Context.html">Fast CGIコンテキスト</a></span></li> <li><a href="LSAPI_Context.html">LSAPIコンテキスト</a></li> <li><a href="Proxy_Context.html">プロキシコンテキスト</a></li> <li><a href="CGI_Context.html">CGIコンテキスト</a></li> <li><a href="LB_Context.html">ロードバランサコンテキスト</a></li> <li><a href="Redirect_Context.html">コンテキストのリダイレクト</a></li> <li><a href="Rails_Context.html">Rack/Railsのコンテキスト</a></li> <li><a href="Module_Context.html">モジュールハンドラのコンテキスト</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socketプロキシ</a></li> </ul> </li> <li><a href="webconsole.html">Webコンソール</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">管理コンソール全般</a></li> <li><a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a></li> <li><a href="AdminListeners_General_Help.html">管理リスナー全般</a></li> <li><a href="AdminListeners_SSL_Help.html">管理リスナーのSSL</a></li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="Servlet_Context.html">サーブレットコンテキスト</a></div><div class="center"><a href="Context_Help.html">コンテキスト</a></div><div class="next"><a href="LSAPI_Context.html">LiteSpeed SAPIコンテキスト</a> »</div></div> <h1>Fast CGIコンテキスト</h1><h2 id="top">目次</h2><section class="toc"><section class="toc-row"><header><a href="#fcgiContext">FastCGIコンテキスト</a></header><p> <a href="#expuri">URI</a> | <a href="#fcgiapp">FastCGI アプリ</a> | <a href="#extraHeaders">Extra Headers</a> | <a href="#realm">レルム</a> | <a href="#authName">認証名</a> | <a href="#required">必要(許可ユーザー/グループ)</a> | <a href="#accessAllowed">アクセス許可</a> | <a href="#accessDenied">アクセス拒否</a> | <a href="#extAuthorizer">承認者</a> | <a href="#addDefaultCharset">デフォルトの文字セットを追加</a> | <a href="#defaultCharsetCustomized">カスタマイズされたデフォルトの文字セット</a> | <a href="#enableIpGeo">IPジオロケーションを有効にする</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="fcgiContext"><h3>FastCGIコンテキスト<span class="ls-permlink"><a href="#fcgiContext"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>FastCGIアプリケーションは直接使用することはできません。 FastCGIアプリケーションは、スクリプトハンドラとして構成するか、FastCGIコンテキストを介してURLにマップする必要があります。 FastCGIコンテキストは、URIをFastCGIアプリケーションに関連付けます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expuri"><h3>URI<span class="ls-permlink"><a href="#expuri"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストのURIを指定します。</p> <h4>構文</h4><p>URIは、プレーンURI( "/"で始まる)またはPerl互換の正規表現URI( "exp:"で始まる)にすることができます。 プレーンURIが "/"で終わる場合、このコンテキストはこのURIの下にすべてのサブURIを含みます。 コンテキストがファイルシステム上のディレクトリにマップされている場合は、末尾に「/」を追加する必要があります。</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#location">ロケーション</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="fcgiapp"><h3>FastCGI アプリ<span class="ls-permlink"><a href="#fcgiapp"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>FastCGIアプリケーションの名前を指定します。 このアプリケーションは、サーバーまたはバーチャルホストレベルの<span class="tagP"><a href="#ExtApp_Help">外部アプリケーション</a></span>セクションで定義する必要があります。</p> <h4>構文</h4><p>選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extraHeaders"><h3>Extra Headers<span class="ls-permlink"><a href="#extraHeaders"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>追加される余分な応答ヘッダーを指定します。 1行に1つのヘッダーを追加できます。 親コンテンツから継承したヘッダーを無効にするには、"NONE"を入力します。</p> <h4>構文</h4><p>各行に "[HeaderName]: [HeaderValue]"</p> <h4>例</h4><div class="ls-example">Cache-control: no-cache, no-store <br/> My-header: Custom header value</div><h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> Syntax and usage are similar to <a href="https://httpd.apache.org/docs/2.2/mod/mod_headers.html#header" target="_blank" rel="noopener noreferrer">Apache's mod_headers directives</a> for supported operations.<br/><br/> <span title="Information" class="ls-icon-info"></span> The 'Header' directive is is optional and can be excluded or left in when copying rules from elsewhere without issue.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="realm"><h3>レルム<span class="ls-permlink"><a href="#realm"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストの認可レルムを指定します。 このコンテキストにアクセスするには、有効なユーザー名とパスワードを指定する必要があります。 <span class="tagl"><a href="VHSecurity_Help.html#realms">認可レルム</a></span>は<span class="tagP"><a href="#VHSecurity_Help">バーチャルホストのセキュリティ</a></span>セクションに設定されています。 この設定では、各レルムの<span class="tagl"><a href="VHSecurity_Help.html#realmName">レルム名</a></span>が使用されます。</p> <h4>構文</h4><p>選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="authName"><h3>認証名<span class="ls-permlink"><a href="#authName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>現在のコンテキストの認証レルムの代替名を指定します。 指定しない場合、元のレルム名が使用されます。 認証名は、ブラウザのログインポップアップに表示されます。</p> <h4>構文</h4><p>テキスト</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="required"><h3>必要(許可ユーザー/グループ)<span class="ls-permlink"><a href="#required"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストにアクセスできるユーザー/グループを指定します。 これにより、複数のコンテキストにわたって1つのユーザー/グループデータベース(<span class="tagl"><a href="#realm">レルム</a></span>で指定)を使用できますが、そのデータベースの特定のユーザー/グループのみがこのコンテキストにアクセスできます。</p> <h4>構文</h4><p>構文はApache Requireディレクティブと互換性があります。 例えば: <ul> <li><span class="val">user username [username ...]</span> <br/> リストされたユーザーだけがこのコンテキストにアクセスできます。</li> <li> <span class="val">group groupid [groupid ...]</span><br/> リストされたグループに属するユーザーのみがこのコンテキストにアクセスできます。</li> </ul> この設定を指定しないと、すべての有効なユーザーがこのリソースにアクセスできます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessAllowed"><h3>アクセス許可<span class="ls-permlink"><a href="#accessAllowed"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストでリソースにアクセスできるIPまたはサブネットワークを指定します。 <span class="tagl"><a href="#accessDenied">アクセス拒否</a></span>とサーバー/バーチャルホスト・レベルのアクセス制御とともに、アクセシビリティは、クライアントのIPアドレスが入る最小の範囲によって決まります。</p> <h4>構文</h4><p>IP/サブネットワークのカンマ区切りリスト。</p> <h4>例</h4><div class="ls-example">サブネットワークは以下のように書くことができます <span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span>, 又は <span class="val">192.168.1.*</span>.</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessDenied"><h3>アクセス拒否<span class="ls-permlink"><a href="#accessDenied"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストでリソースにアクセスできないIPまたはサブネットワークを指定します。 <span class="tagl"><a href="#accessAllowed">アクセス許可</a></span>とサーバー/バーチャルホストレベルのアクセス制御とともに、アクセシビリティはクライアントのIPアドレスが入る最小の範囲で決まります。</p> <h4>構文</h4><p>IP/サブネットワークのカンマ区切りリスト。</p> <h4>例</h4><div class="ls-example">サブネットワークは以下のように書くことができます <span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span>, 又は <span class="val">192.168.1.*</span>.</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAuthorizer"><h3>承認者<span class="ls-permlink"><a href="#extAuthorizer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>権限のある/権限のないかの決定を生成するために使用できる外部アプリケーションを指定します。 現在、FastCGI Authorizerのみが使用可能です。 FastCGI Authorizerの役割の詳細については、<a href=" https://fastcgi-archives.github.io/ " target="_blank" rel="noopener noreferrer"> https://fastcgi-archives.github.io/ </a>を参照してください。 。</p> <h4>構文</h4><p>ドロップダウンリストから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="addDefaultCharset"><h3>デフォルトの文字セットを追加<span class="ls-permlink"><a href="#addDefaultCharset"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>コンテンツタイプが "text/html"または "text/plain"のいずれかのパラメータがない場合、文字セットタグを "Content-Type"レスポンスヘッダーに追加するかどうかを指定します。 <span class="val">Off</span>に設定すると、この機能は無効になります。 <span class="val">On</span>に設定すると、<span class="tagl"><a href="#defaultCharsetCustomized">カスタマイズされたデフォルトの文字セット</a></span>で指定された文字セットまたはデフォルトの "iso-8859-1"のいずれかが追加されます。</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="defaultCharsetCustomized"><h3>カスタマイズされたデフォルトの文字セット<span class="ls-permlink"><a href="#defaultCharsetCustomized"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p><span class="tagl"><a href="#addDefaultCharset">デフォルトの文字セットを追加</a></span>が<span class="val">On</span>のときに使用される文字セットを指定します。 これはオプションです。 デフォルト値は<span class="val"> iso-8859-1 </span>です。 <span class="tagl"><a href="#addDefaultCharset">デフォルトの文字セットを追加</a></span>が<span class="val"> Off </span>の場合、このエントリは無効です。</p> <h4>構文</h4><p>文字セットの名前。</p> <h4>例</h4><div class="ls-example">utf-8</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableIpGeo"><h3>IPジオロケーションを有効にする<span class="ls-permlink"><a href="#enableIpGeo"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p> IPジオロケーション検索を有効/無効にするかどうかを指定します。 サーバ、バーチャルホスト、コンテキストレベルで設定できます。 値 「未設定」を使用すると、IPジオロケーションはデフォルトで無効になります。</p> <h4>構文</h4><p>ラジオボックスから選択</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="ServGeneral_Help.html#useIpInProxyHeader">ヘッダーにクライアントIPを使用する</a></span>, <span class="tagl"><a href="ServGeneral_Help.html#geoipDBFile">DBファイルのパス</a></span>,</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ��������������ja-JP/Java_Web_App_Context.html���������������������������������������������������������������������0000644�����������������00000063154�15027525531�0012333 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Open LiteSpeed Web Serverユーザーズマニュアル - Java Web アプリコンテキスト</title> <meta name="description" content="Open LiteSpeed Web Serverユーザーズマニュアル - Java Web アプリコンテキスト." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="../img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h3 class="ls-text-thin">OpenLiteSpeed Web Server <a href="index.html"> ユーザーズマニュアル</a></h3> <h5 class="ls-text-muted">Version 1.8 — Rev. 0</h5> <hr/> <div> <ul> <li><a href="license.html">ライセンス</a></li> <li><a href="intro.html">はじめに</a></li> <li><a href="install.html">インストール</a></li> <li> <a href="admin.html">管理</a> <ul class="level2"> <li><a href="ServerStat_Help.html">サービスマネージャ</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">セキュリティ</a></li> <li><a href="config.html">設定</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">サーバー全般</a></li> <li><a href="ServLog_Help.html">サーバーログ</a></li> <li><a href="ServTuning_Help.html">サーバーのチューニング</a></li> <li><a href="ServSecurity_Help.html">サーバーのセキュリティ</a></li> <li><a href="ExtApp_Help.html">外部アプリ</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGIアプリ</a></li> <li><a href="External_FCGI_Auth.html">Fast CGIオーソライザー</a></li> <li><a href="External_LSAPI.html">LSAPIアプリ</a></li> <li><a href="External_Servlet.html">サーブレットエンジン</a></li> <li><a href="External_WS.html">Webサーバー</a></li> <li><a href="External_PL.html">パイプロガー</a></li> <li><a href="External_LB.html">ロードバランサ</a></li> </ul> <li><a href="ScriptHandler_Help.html">スクリプトハンドラ</a></li> <li><a href="Rails_Help.html">Rack/Railsの設定</a></li> <li><a href="Module_Help.html">モジュール設定</a></li> <li><a href="Listeners_General_Help.html">リスナー全般</a></li> <li><a href="Listeners_SSL_Help.html">リスナーのSSL</a></li> <li><a href="Templates_Help.html">テンプレート</a></li> <li><a href="VirtualHosts_Help.html">バーチャルホストの基本</a></li> <li><a href="VHGeneral_Help.html">バーチャルホスト全般</a></li> <li><a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a></li> <li><a href="VHSSL_Help.html">バーチャルホストのSSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">コンテキスト</a></li> <ul class="level3"> <li><a href="Static_Context.html">静的コンテテキスト</a></li> <li><span class="current"><a href="Java_Web_App_Context.html">Java Webアプリのコンテキスト</a></span></li> <li><a href="Servlet_Context.html">サーブレットコンテキスト</a></li> <li><a href="FCGI_Context.html">Fast CGIコンテキスト</a></li> <li><a href="LSAPI_Context.html">LSAPIコンテキスト</a></li> <li><a href="Proxy_Context.html">プロキシコンテキスト</a></li> <li><a href="CGI_Context.html">CGIコンテキスト</a></li> <li><a href="LB_Context.html">ロードバランサコンテキスト</a></li> <li><a href="Redirect_Context.html">コンテキストのリダイレクト</a></li> <li><a href="Rails_Context.html">Rack/Railsのコンテキスト</a></li> <li><a href="Module_Context.html">モジュールハンドラのコンテキスト</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socketプロキシ</a></li> </ul> </li> <li><a href="webconsole.html">Webコンソール</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">管理コンソール全般</a></li> <li><a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a></li> <li><a href="AdminListeners_General_Help.html">管理リスナー全般</a></li> <li><a href="AdminListeners_SSL_Help.html">管理リスナーのSSL</a></li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="Static_Context.html">静的コンテキスト</a></div><div class="center"><a href="Context_Help.html">コンテキスト</a></div><div class="next"><a href="Servlet_Context.html">サーブレットコンテキスト</a> »</div></div> <h1>Java Web アプリコンテキスト</h1><h2 id="top">目次</h2><section class="toc"><section class="toc-row"><header><a href="#javaWebAppContext">Java Webアプリコンテキスト</a></header><p> <a href="#uri">URI</a> | <a href="#javaWebApp_location">ロケーション</a> | <a href="#javaServletEngine">サーブレットエンジン</a> | <a href="#enableExpires">有効期限を有効にする</a> | <a href="#expiresDefault">デフォルトの期限</a> | <a href="#expiresByType">タイプ別の期限</a> | <a href="#extraHeaders">Extra Headers</a> | <a href="#autoIndex">自動インデックス</a> | <a href="#indexFiles">インデックスファイル</a> | <a href="#realm">レルム</a> | <a href="#authName">認証名</a> | <a href="#required">必要(許可ユーザー/グループ)</a> | <a href="#accessAllowed">アクセス許可</a> | <a href="#accessDenied">アクセス拒否</a> | <a href="#extAuthorizer">承認者</a> | <a href="#addDefaultCharset">デフォルトの文字セットを追加</a> | <a href="#defaultCharsetCustomized">カスタマイズされたデフォルトの文字セット</a> | <a href="#enableIpGeo">IPジオロケーションを有効にする</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="javaWebAppContext"><h3>Java Webアプリコンテキスト<span class="ls-permlink"><a href="#javaWebAppContext"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Javaアプリケーションを実行している多くの人々は、サーブレットエンジンを使用して静的コンテンツを提供しています。 しかし、サーブレットエンジンは、これらのプロセスではLiteSpeed Web Serverほど効率的ではありません。 全体のパフォーマンスを向上させるために、LiteSpeed Web Serverをゲートウェイサーバーとして構成することができます。ゲートウェイサーバーは静的コンテンツを処理し、動的Javaページ要求をサーブレットエンジンに転送します。 <br/><br/> LiteSpeed Web Serverでは、Javaアプリケーションを実行するために特定のコンテキストを定義する必要があります。 Java Webアプリケーションコンテキストは、Java Webアプリケーションの構成ファイル(WEB-INF/web.xml)に基づいて、必要なすべてのコンテキストを自動的に作成します。 <br/><br/> Java Webアプリケーションコンテキストを設定する際に留意すべき点がいくつかあります:<br/> <ul> <li>Java Webアプリコンテキストを設定する前に、<span class="val">サーブレットエンジン</span>外部アプリケーションを<span class="tagP"><a href="#ExtApp_Help">外部アプリケーション</a></span>に設定する必要があります</li> <li>.jspファイルの<span class="tagP"><a href="#ScriptHandler_Help">スクリプトハンドラ</a></span>も同様に定義する必要があります。</li> <li>Webアプリケーションが.warファイルにパックされている場合は、.warファイルを展開する必要があります。サーバーは圧縮されたアーカイブファイルにアクセスできません。</li><li>同じリソースの場合、LiteSpeed Web Serverを介してアクセスするか、サーブレットエンジンの組み込みHTTPサーバーを介してアクセスするかにかかわらず、同じURLを使用する必要があります。<br> <br> 例えば、<br> Tomcat 4.1は/ opt / tomcatにインストールされます。<br> "examples" Webアプリケーションのファイルは、/opt/tomcat/webapps/examples/にあります。<br> TomcatのビルトインHTTPサーバーを通じて、 "examples" Webアプリケーションは "/ examples / ***"のようなURIでアクセスされます。<br> したがって、対応するJava Webアプリコンテキストを設定する必要があります: <br> URI = <span class="val">/examples/</span>, Location = <span class="val">/opt/tomcat/webapps/examples/</span>.</li> </ul></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="uri"><h3>URI<span class="ls-permlink"><a href="#uri"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストのURIを指定します。 URIは "/"で始まる必要があります。 URIが「/」で終わる場合、このコンテキストはこのURIの下にすべてのサブURIを含みます。</p> <h4>構文</h4><p>URI</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="javaWebApp_location"><h3>ロケーション<span class="ls-permlink"><a href="#javaWebApp_location"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このWebアプリケーションのファイルを含むディレクトリを指定します。 これは "WEB-INF/web.xml"を含むディレクトリです。</p> <h4>構文</h4><p>パス</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="javaServletEngine"><h3>サーブレットエンジン<span class="ls-permlink"><a href="#javaServletEngine"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このWebアプリケーションを提供するサーブレットエンジンの名前を指定します。 サーブレットエンジンは、サーバーまたはバーチャルホストレベルの<span class="tagP"><a href="#ExtApp_Help">外部アプリケーション</a></span>セクションで定義する必要があります。</p> <h4>構文</h4><p>選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableExpires"><h3>有効期限を有効にする<span class="ls-permlink"><a href="#enableExpires"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>静的ファイルのExpiresヘッダーを生成するかどうかを指定します。 有効にすると、<span class="tagl"><a href="#expiresDefault">デフォルトの期限</a></span>と<span class="tagl"><a href="#expiresByType">タイプ別の期限</a></span>に基づいてExpiresヘッダーが生成されます。<br/><br/> これは、サーバー、バーチャルホスト、コンテキストレベルで設定できます。 下位レベルの設定は上位レベルの設定を上書きします。 コンテキスト設定はバーチャルホストの設定を上書きし、バーチャルホストの設定はサーバーの設定を上書きします。</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expiresDefault"><h3>デフォルトの期限<span class="ls-permlink"><a href="#expiresDefault"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Expiresヘッダー生成のデフォルト設定を指定します。 この設定は、<span class="tagl"><a href="#enableExpires">有効期限を有効にする</a></span>が "はい"に設定されているときに有効になります。 <span class="tagl"><a href="#expiresByType">タイプ別の期限</a></span>で上書きできます。 すべてのページのExpiresヘッダーが生成されるため、必要がない限り、このデフォルトをサーバーまたはバーチャルホストレベルで設定しないでください。 ほとんどの場合、これは頻繁に変更されない特定のディレクトリのコンテキストレベルで設定する必要があります。 デフォルト設定がない場合、<span class="tagl"><a href="#expiresByType">タイプ別の期限</a></span>で指定されていないタイプに対してExpiresヘッダーは生成されません。</p> <h4>構文</h4><p>A|M秒<br/> このファイルは、基本時間(A | M)に指定された秒を加えた後に期限切れになります。 ベース時刻 "A"はクライアントのアクセス時間に値を設定し、 "M"はファイルの最終変更時刻を設定します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expiresByType"><h3>タイプ別の期限<span class="ls-permlink"><a href="#expiresByType"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>各MIMEタイプのExpiresヘッダー設定を指定します。</p> <h4>構文</h4><p>"MIME-type=A|Mseconds"のカンマで区切られたリスト。 このファイルは、基本時間(A|M)に指定された秒を加えた後に期限切れになります。<br/><br/> ベース時刻 "A"はクライアントのアクセス時間に値を設定し、 "M"はファイルの最終変更時刻を設定します。 MIMEタイプはimage/*のようなワイルドカード "*"を受け入れます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extraHeaders"><h3>Extra Headers<span class="ls-permlink"><a href="#extraHeaders"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>追加される余分な応答ヘッダーを指定します。 1行に1つのヘッダーを追加できます。 親コンテンツから継承したヘッダーを無効にするには、"NONE"を入力します。</p> <h4>構文</h4><p>各行に "[HeaderName]: [HeaderValue]"</p> <h4>例</h4><div class="ls-example">Cache-control: no-cache, no-store <br/> My-header: Custom header value</div><h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> Syntax and usage are similar to <a href="https://httpd.apache.org/docs/2.2/mod/mod_headers.html#header" target="_blank" rel="noopener noreferrer">Apache's mod_headers directives</a> for supported operations.<br/><br/> <span title="Information" class="ls-icon-info"></span> The 'Header' directive is is optional and can be excluded or left in when copying rules from elsewhere without issue.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="autoIndex"><h3>自動インデックス<span class="ls-permlink"><a href="#autoIndex"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p><span class="tagl"><a href="#indexFiles">インデックスファイル</a></span>にリストされている索引ファイルがディレクトリで使用できないときに、その場でディレクトリー索引を生成するかどうかを指定します。 このオプションは、バーチャルホストおよびコンテキストレベルでカスタマイズ可能で、明示的に上書きされるまでディレクトリツリーに沿って継承されます。 生成された索引ページをカスタマイズできます。 オンラインウィキHow-tosを確認してください。</p> <h4>構文</h4><p>ラジオボックスから選択</p> <h4>ヒント</h4><p>[セキュリティ]可能であれば、自動インデックスをオフにして、機密データを漏らさないようにすることをお勧めします。</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#indexFiles">インデックスファイル</a></span>, <span class="tagl"><a href="#autoIndexURI">自動インデックス URI</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="indexFiles"><h3>インデックスファイル<span class="ls-permlink"><a href="#indexFiles"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>URLがディレクトリにマップされたときに順番に検索されるインデックスファイルの名前を指定します。 サーバー、バーチャルホスト、コンテキストレベルでカスタマイズできます。</p> <h4>構文</h4><p>インデックスファイル名のカンマ区切りリスト。</p> <h4>ヒント</h4><p>[パフォーマンス]必要なインデックスファイルのみを設定します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="realm"><h3>レルム<span class="ls-permlink"><a href="#realm"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストの認可レルムを指定します。 このコンテキストにアクセスするには、有効なユーザー名とパスワードを指定する必要があります。 <span class="tagl"><a href="VHSecurity_Help.html#realms">認可レルム</a></span>は<span class="tagP"><a href="#VHSecurity_Help">バーチャルホストのセキュリティ</a></span>セクションに設定されています。 この設定では、各レルムの<span class="tagl"><a href="VHSecurity_Help.html#realmName">レルム名</a></span>が使用されます。</p> <h4>構文</h4><p>選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="authName"><h3>認証名<span class="ls-permlink"><a href="#authName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>現在のコンテキストの認証レルムの代替名を指定します。 指定しない場合、元のレルム名が使用されます。 認証名は、ブラウザのログインポップアップに表示されます。</p> <h4>構文</h4><p>テキスト</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="required"><h3>必要(許可ユーザー/グループ)<span class="ls-permlink"><a href="#required"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストにアクセスできるユーザー/グループを指定します。 これにより、複数のコンテキストにわたって1つのユーザー/グループデータベース(<span class="tagl"><a href="#realm">レルム</a></span>で指定)を使用できますが、そのデータベースの特定のユーザー/グループのみがこのコンテキストにアクセスできます。</p> <h4>構文</h4><p>構文はApache Requireディレクティブと互換性があります。 例えば: <ul> <li><span class="val">user username [username ...]</span> <br/> リストされたユーザーだけがこのコンテキストにアクセスできます。</li> <li> <span class="val">group groupid [groupid ...]</span><br/> リストされたグループに属するユーザーのみがこのコンテキストにアクセスできます。</li> </ul> この設定を指定しないと、すべての有効なユーザーがこのリソースにアクセスできます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessAllowed"><h3>アクセス許可<span class="ls-permlink"><a href="#accessAllowed"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストでリソースにアクセスできるIPまたはサブネットワークを指定します。 <span class="tagl"><a href="#accessDenied">アクセス拒否</a></span>とサーバー/バーチャルホスト・レベルのアクセス制御とともに、アクセシビリティは、クライアントのIPアドレスが入る最小の範囲によって決まります。</p> <h4>構文</h4><p>IP/サブネットワークのカンマ区切りリスト。</p> <h4>例</h4><div class="ls-example">サブネットワークは以下のように書くことができます <span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span>, 又は <span class="val">192.168.1.*</span>.</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessDenied"><h3>アクセス拒否<span class="ls-permlink"><a href="#accessDenied"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストでリソースにアクセスできないIPまたはサブネットワークを指定します。 <span class="tagl"><a href="#accessAllowed">アクセス許可</a></span>とサーバー/バーチャルホストレベルのアクセス制御とともに、アクセシビリティはクライアントのIPアドレスが入る最小の範囲で決まります。</p> <h4>構文</h4><p>IP/サブネットワークのカンマ区切りリスト。</p> <h4>例</h4><div class="ls-example">サブネットワークは以下のように書くことができます <span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span>, 又は <span class="val">192.168.1.*</span>.</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAuthorizer"><h3>承認者<span class="ls-permlink"><a href="#extAuthorizer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>権限のある/権限のないかの決定を生成するために使用できる外部アプリケーションを指定します。 現在、FastCGI Authorizerのみが使用可能です。 FastCGI Authorizerの役割の詳細については、<a href=" https://fastcgi-archives.github.io/ " target="_blank" rel="noopener noreferrer"> https://fastcgi-archives.github.io/ </a>を参照してください。 。</p> <h4>構文</h4><p>ドロップダウンリストから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="addDefaultCharset"><h3>デフォルトの文字セットを追加<span class="ls-permlink"><a href="#addDefaultCharset"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>コンテンツタイプが "text/html"または "text/plain"のいずれかのパラメータがない場合、文字セットタグを "Content-Type"レスポンスヘッダーに追加するかどうかを指定します。 <span class="val">Off</span>に設定すると、この機能は無効になります。 <span class="val">On</span>に設定すると、<span class="tagl"><a href="#defaultCharsetCustomized">カスタマイズされたデフォルトの文字セット</a></span>で指定された文字セットまたはデフォルトの "iso-8859-1"のいずれかが追加されます。</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="defaultCharsetCustomized"><h3>カスタマイズされたデフォルトの文字セット<span class="ls-permlink"><a href="#defaultCharsetCustomized"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p><span class="tagl"><a href="#addDefaultCharset">デフォルトの文字セットを追加</a></span>が<span class="val">On</span>のときに使用される文字セットを指定します。 これはオプションです。 デフォルト値は<span class="val"> iso-8859-1 </span>です。 <span class="tagl"><a href="#addDefaultCharset">デフォルトの文字セットを追加</a></span>が<span class="val"> Off </span>の場合、このエントリは無効です。</p> <h4>構文</h4><p>文字セットの名前。</p> <h4>例</h4><div class="ls-example">utf-8</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableIpGeo"><h3>IPジオロケーションを有効にする<span class="ls-permlink"><a href="#enableIpGeo"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p> IPジオロケーション検索を有効/無効にするかどうかを指定します。 サーバ、バーチャルホスト、コンテキストレベルで設定できます。 値 「未設定」を使用すると、IPジオロケーションはデフォルトで無効になります。</p> <h4>構文</h4><p>ラジオボックスから選択</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="ServGeneral_Help.html#useIpInProxyHeader">ヘッダーにクライアントIPを使用する</a></span>, <span class="tagl"><a href="ServGeneral_Help.html#geoipDBFile">DBファイルのパス</a></span>,</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ��������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������ja-JP/External_FCGI.html����������������������������������������������������������������������������0000644�����������������00000066254�15027525531�0010727 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Open LiteSpeed Web Serverユーザーズマニュアル - Fast CGI アプリ</title> <meta name="description" content="Open LiteSpeed Web Serverユーザーズマニュアル - Fast CGI アプリ." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="../img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h3 class="ls-text-thin">OpenLiteSpeed Web Server <a href="index.html"> ユーザーズマニュアル</a></h3> <h5 class="ls-text-muted">Version 1.8 — Rev. 0</h5> <hr/> <div> <ul> <li><a href="license.html">ライセンス</a></li> <li><a href="intro.html">はじめに</a></li> <li><a href="install.html">インストール</a></li> <li> <a href="admin.html">管理</a> <ul class="level2"> <li><a href="ServerStat_Help.html">サービスマネージャ</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">セキュリティ</a></li> <li><a href="config.html">設定</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">サーバー全般</a></li> <li><a href="ServLog_Help.html">サーバーログ</a></li> <li><a href="ServTuning_Help.html">サーバーのチューニング</a></li> <li><a href="ServSecurity_Help.html">サーバーのセキュリティ</a></li> <li><a href="ExtApp_Help.html">外部アプリ</a></li> <ul class="level3"> <li><span class="current"><a href="External_FCGI.html">Fast CGIアプリ</a></span></li> <li><a href="External_FCGI_Auth.html">Fast CGIオーソライザー</a></li> <li><a href="External_LSAPI.html">LSAPIアプリ</a></li> <li><a href="External_Servlet.html">サーブレットエンジン</a></li> <li><a href="External_WS.html">Webサーバー</a></li> <li><a href="External_PL.html">パイプロガー</a></li> <li><a href="External_LB.html">ロードバランサ</a></li> </ul> <li><a href="ScriptHandler_Help.html">スクリプトハンドラ</a></li> <li><a href="Rails_Help.html">Rack/Railsの設定</a></li> <li><a href="Module_Help.html">モジュール設定</a></li> <li><a href="Listeners_General_Help.html">リスナー全般</a></li> <li><a href="Listeners_SSL_Help.html">リスナーのSSL</a></li> <li><a href="Templates_Help.html">テンプレート</a></li> <li><a href="VirtualHosts_Help.html">バーチャルホストの基本</a></li> <li><a href="VHGeneral_Help.html">バーチャルホスト全般</a></li> <li><a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a></li> <li><a href="VHSSL_Help.html">バーチャルホストのSSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">コンテキスト</a></li> <ul class="level3"> <li><a href="Static_Context.html">静的コンテテキスト</a></li> <li><a href="Java_Web_App_Context.html">Java Webアプリのコンテキスト</a></li> <li><a href="Servlet_Context.html">サーブレットコンテキスト</a></li> <li><a href="FCGI_Context.html">Fast CGIコンテキスト</a></li> <li><a href="LSAPI_Context.html">LSAPIコンテキスト</a></li> <li><a href="Proxy_Context.html">プロキシコンテキスト</a></li> <li><a href="CGI_Context.html">CGIコンテキスト</a></li> <li><a href="LB_Context.html">ロードバランサコンテキスト</a></li> <li><a href="Redirect_Context.html">コンテキストのリダイレクト</a></li> <li><a href="Rails_Context.html">Rack/Railsのコンテキスト</a></li> <li><a href="Module_Context.html">モジュールハンドラのコンテキスト</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socketプロキシ</a></li> </ul> </li> <li><a href="webconsole.html">Webコンソール</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">管理コンソール全般</a></li> <li><a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a></li> <li><a href="AdminListeners_General_Help.html">管理リスナー全般</a></li> <li><a href="AdminListeners_SSL_Help.html">管理リスナーのSSL</a></li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev"> </div><div class="center"><a href="ExtApp_Help.html">外部アプリケーション</a></div><div class="next"><a href="External_FCGI_Auth.html">Fast CGI 認証</a> »</div></div> <h1>Fast CGI アプリ</h1><h2 id="top">目次</h2><section class="toc"><section class="toc-row"><header>Fast CGI</header><p> <a href="#extAppName">名前</a> | <a href="#extAppAddress">アドレス</a> | <a href="#maxConns">最大接続数</a> | <a href="#env">環境</a> | <a href="#initTimeout">初期要求タイムアウト(秒)</a> | <a href="#retryTimeout">リトライタイムアウト(秒)</a> | <a href="#persistConn">永続的な接続</a> | <a href="#pcKeepAliveTimeout">キープアライブタイムアウト(秒)</a> | <a href="#respBuffer">応答バッファリング</a> | <a href="#autoStart">自動スタート</a> | <a href="#extAppPath">コマンド</a> | <a href="#backlog">バックログ</a> | <a href="#instances">インスタンス</a> | <a href="#extUser">suEXECユーザー</a> | <a href="#extGroup">suEXECグループ</a> | <a href="#extUmask">umask</a> | <a href="#runOnStartUp">起動時に実行</a> | <a href="#extMaxIdleTime">最大アイドル時間</a> | <a href="#extAppPriority">優先度</a> | <a href="#memSoftLimit">メモリソフトリミット(バイト)</a> | <a href="#memHardLimit">メモリハードリミット</a> | <a href="#procSoftLimit">プロセスソフトリミット</a> | <a href="#procHardLimit">プロセスハードリミット</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="extAppName"><h3>名前<span class="ls-permlink"><a href="#extAppName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>この外部アプリケーションの一意の名前。 設定の他の部分でこの名前を使用するときは、この名前で参照します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAppAddress"><h3>アドレス<span class="ls-permlink"><a href="#extAppAddress"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>外部アプリケーションによって使用される一意のソケットアドレス。 IPv4/IPv6ソケットとUnixドメインソケット(UDS)がサポートされています。 IPv4/IPv6ソケットは、ネットワークを介した通信に使用できます。 UDSは、外部アプリケーションがサーバーと同じマシンにある場合にのみ使用できます。</p> <h4>構文</h4><p>IPv4またはIPV6アドレス:ポートまたはUDS://パス</p> <h4>例</h4><div class="ls-example">127.0.0.1:5434<br/> UDS://tmp/lshttpd/php.sock.</div><h4>ヒント</h4><p>[セキュリティ]外部アプリケーションが同じマシン上で実行される場合は、UDSが優先されます。 IPv4|IPV6ソケットを使用する必要がある場合は、IPアドレスを<span class="val">localhost</span>または<span class="val">127.0.0.1</span>に設定して、外部アプリケーションに他のマシンからアクセスできないようにします。<br/> [パフォーマンス] Unixドメインソケットは、通常、IPv4ソケットよりも高いパフォーマンスを提供します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxConns"><h3>最大接続数<span class="ls-permlink"><a href="#maxConns"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>サーバーと外部アプリケーションの間で確立できる同時接続の最大数を指定します。 この設定は、外部アプリケーションによって同時に処理できる要求の数を制御しますが、実際の制限は外部アプリケーション自体によっても異なります。 この値を高く設定すると、外部アプリケーションの速度が不十分であるか、多数の同時要求に対応できない場合に役立ちません。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p>[パフォーマンス]高い値を設定しても、高いパフォーマンスに直接変換されるわけではありません。 制限を外部アプリケーションに負荷をかけない値に設定すると、最高のパフォーマンス/スループットが得られます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="env"><h3>環境<span class="ls-permlink"><a href="#env"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>外部アプリケーション用の追加の環境変数を指定します。</p> <h4>構文</h4><p>Key=value. 複数の変数は "ENTER"で区切ることができます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="initTimeout"><h3>初期要求タイムアウト(秒)<span class="ls-permlink"><a href="#initTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>サーバーが、新しいアプリケーションが新しい確立された接続を介して最初の要求に応答するのを待つ最長時間を秒単位で指定します。 サーバーがこのタイムアウト制限内に外部アプリケーションからデータを受信しない場合、この接続は不良とマークされます。 これにより、外部アプリケーションとの通信の問題をできるだけ迅速に特定することができます。 処理に時間がかかるリクエストがある場合は、この制限を増やして503のエラー・メッセージを避けてください。</p> <h4>構文</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="retryTimeout"><h3>リトライタイムアウト(秒)<span class="ls-permlink"><a href="#retryTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>以前の通信に問題があった外部アプリケーションを再試行する前に、サーバーが待機する時間を指定します。</p> <h4>構文</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="persistConn"><h3>永続的な接続<span class="ls-permlink"><a href="#persistConn"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>要求後に接続を開いたままにするかどうかを指定します。 処理されました。 永続的接続はパフォーマンスを向上させる可能性がありますが、一部のFastCGI外部アプリケーションは永続的接続を完全にサポートしません。 デフォルトは "オン"です。</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="pcKeepAliveTimeout"><h3>キープアライブタイムアウト(秒)<span class="ls-permlink"><a href="#pcKeepAliveTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>アイドル状態の永続的な接続を開いたままにする最大時間を指定します。 "-1"に設定すると、接続はタイムアウトしません。 0以上に設定すると、この時間が経過した後に接続が閉じられます。</p> <h4>構文</h4><p>int</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="respBuffer"><h3>応答バッファリング<span class="ls-permlink"><a href="#respBuffer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>外部から受信した応答をバッファリングするかどうかを指定します。 アプリケーション。 "nph-" (Non-Parsed-Header)スクリプトが検出された場合、完全なHTTPヘッダーを持つ応答ではバッファリングがオフになります。</p> <h4>構文</h4><p>ドロップダウンリストから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="autoStart"><h3>自動スタート<span class="ls-permlink"><a href="#autoStart"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Webサーバーでアプリケーションを自動的に開始するかどうかを指定します。 同じマシン上で実行されているFastCGIおよびLSAPIアプリケーションのみを自動的に起動することができます。 <span class="tagl"><a href="#extAppAddress">アドレス</a></span>のIPはローカルIPでなければなりません。 メインサーバプロセスではなくLiteSpeed CGIデーモンを起動すると、システムのオーバーヘッドを軽減できます。</p> <h4>構文</h4><p>ドロップダウンリストから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAppPath"><h3>コマンド<span class="ls-permlink"><a href="#extAppPath"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>外部アプリケーションを実行するためのパラメータを含む完全なコマンドラインを指定します。 <span class="tagl"><a href="#autoStart">自動スタート</a></span>が有効な場合は必須値です。 パラメータにスペースまたはタブ文字が含まれている場合は、パラメータを二重引用符または一重引用符で囲む必要があります。</p> <h4>構文</h4><p>オプションのパラメータを含む実行可能ファイルへのフルパス。</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#autoStart">自動スタート</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="backlog"><h3>バックログ<span class="ls-permlink"><a href="#backlog"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>リスニングソケットのバックログを指定します。 <span class="tagl"><a href="#autoStart">自動スタート</a></span>が有効な場合は必須です。</p> <h4>構文</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="instances"><h3>インスタンス<span class="ls-permlink"><a href="#instances"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>サーバーが作成する外部アプリケーションの最大インスタンスを指定します。 <span class="tagl"><a href="#autoStart">自動スタート</a></span>が有効な場合は必須です。 ほとんどのFastCGI/LSAPIアプリケーションは、プロセスインスタンスごとに1つの要求しか処理できません。これらのタイプのアプリケーションの場合、インスタンスは<span class="tagl"><a href="#maxConns">最大接続数</a></span>の値に一致するように設定する必要があります。 一部のFastCGI / LSAPIアプリケーションでは、複数の子プロセスを生成して複数の要求を同時に処理できます。 これらのタイプのアプリケーションでは、インスタンスを "1"に設定し、環境変数を使用してアプリケーションが生成できる子プロセスの数を制御する必要があります。</p> <h4>構文</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extUser"><h3>suEXECユーザー<span class="ls-permlink"><a href="#extUser"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>外部アプリケーションが実行されるユーザー名を指定します。 設定されていない場合、外部アプリケーションはWebサーバーのユーザーとして実行されます。</p> <h4>構文</h4><p>有効なユーザー名。</p> <h4>参照</h4><p class="ls-text-small">extGroup</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extGroup"><h3>suEXECグループ<span class="ls-permlink"><a href="#extGroup"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>外部アプリケーションが実行されるグループ名を指定します。</p> <h4>構文</h4><p>有効なグループ名。</p> <h4>参照</h4><p class="ls-text-small">extUser</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extUmask"><h3>umask<span class="ls-permlink"><a href="#extUmask"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>この外部アプリケーションのプロセスのデフォルトumaskを設定します。 詳細は、<span class="cmd">man 2 umask</span>を参照してください。 デフォルト値はサーバーレベルの<span class="tagl"><a href="ServSecurity_Help.html#umask">umask</a></span>設定から取得されます。</p> <h4>構文</h4><p>有効範囲[000]〜[777]の値。</p> <h4>参照</h4><p class="ls-text-small">CGI <span class="tagl"><a href="ServSecurity_Help.html#umask">umask</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="runOnStartUp"><h3>起動時に実行<span class="ls-permlink"><a href="#runOnStartUp"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>サーバーの起動時に外部アプリケーションを起動するかどうかを指定します。 自身の子プロセスを管理できる外部アプリケーション、および<span class="tagl"><a href="#instances">インスタンス</a></span>の値が "1"に設定されている場合にのみ適用されます。 有効にすると、実行時ではなくサーバーの起動時に外部プロセスが作成されます。</p> <h4>構文</h4><p>ラジオボックスから選択</p> <h4>ヒント</h4><p>[パフォーマンス] Railsアプリケーションのように、設定された外部プロセスに重大な起動オーバーヘッドがある場合、このオプションを有効にして最初のページ応答時間を短縮する必要があります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extMaxIdleTime"><h3>最大アイドル時間<span class="ls-permlink"><a href="#extMaxIdleTime"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>サーバーが外部アプリケーションを停止するまでの最大アイドル時間を指定します。 "-1"に設定すると、外部アプリケーションはサーバーによって停止されません。 デフォルト値は "-1"です。 この機能により、アイドル状態のアプリケーションが使用するリソースを解放することができます。 最大限のセキュリティを確保するために、setuidモードで動作する多くのアプリケーションを定義する必要がある場合には、マスホスティング環境で特に便利です。</p> <h4>構文</h4><p>ラジオボックスから選択</p> <h4>ヒント</h4><p>[パフォーマンス]この機能は、大規模なホスティング環境で特に便利です。 あるバーチャルホストが所有するファイルが別のバーチャルホストの外部アプリケーションスクリプトによってアクセスされないようにするため、大量ホスティングではSetUIDモードで同時に多くの異なるアプリケーションを実行する必要があります。 これらの外部アプリケーションが不必要にアイドリングしないように、この最大アイドル時間を低く設定します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAppPriority"><h3>優先度<span class="ls-permlink"><a href="#extAppPriority"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>外部アプリケーション・プロセスの優先度を指定します。 値の範囲は<span class="val">−20</span>〜<span class="val">20</span>です。 数字が小さいほど優先度が高くなります。 外部アプリケーションプロセスは、Webサーバーよりも高い優先度を持つことはできません。 この優先度がサーバーの数値より低い数値に設定されている場合は、サーバーの優先度がこの値に使用されます。</p> <h4>構文</h4><p>整数</p> <h4>参照</h4><p class="ls-text-small">Server <span class="tagl"><a href="ServGeneral_Help.html#serverPriority">プライオリティ</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="memSoftLimit"><h3>メモリソフトリミット(バイト)<span class="ls-permlink"><a href="#memSoftLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>外部アプリケーション・プロセスまたはサーバーによって開始された外部アプリケーションのメモリー消費制限をバイト単位で指定します。<br/><br/> この制限の主な目的は、ソフトウェアのバグや意図的な攻撃のために過度のメモリ使用を防止し、通常の使用に制限を設けないことです。 十分なヘッドスペースを確保してください。そうしないと、アプリケーションが失敗し、503エラーが返される可能性があります。 サーバーレベルまたは個々の外部アプリケーションレベルで設定できます。 サーバーレベルの制限は、個々のアプリケーションレベルで設定されていない場合に使用されます。<br/><br/> オペレーティングシステムのデフォルト設定は、値が両方のレベルにないか、<span class="val">0</span>に設定されている場合に使用されます。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p>[注意]この制限を過度に調整しないでください。 アプリケーションでより多くのメモリが必要な場合は、503のエラーが発生する可能性があります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="memHardLimit"><h3>メモリハードリミット<span class="ls-permlink"><a href="#memHardLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>ソフトリミットをユーザープロセス内のハードリミットまで上げることができることを除けば、<span class="tagl"><a href="#memSoftLimit">メモリソフトリミット(バイト)</a></span>と同じくらい同じです。 ハード・リミットは、サーバー・レベルまたは個々の外部アプリケーション・レベルで設定できます。 サーバーレベルの制限は、個々のアプリケーションレベルで設定されていない場合に使用されます。 <br/><br/> 値が両方のレベルにないか、<span class="val">0</span>に設定されている場合、オペレーティングシステムのデフォルトが使用されます。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p><span title="Attention" class="ls-icon-attention"></span> Do not over adjust this limit. This may result in 503 errors if your application need more memory.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="procSoftLimit"><h3>プロセスソフトリミット<span class="ls-permlink"><a href="#procSoftLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>ユーザーに代わって作成できるプロセスの総数を制限します。 既存のすべてのプロセスは、開始される新しいプロセスだけでなく、この限度に対してカウントされます。 制限は、サーバーレベルまたは個々の外部アプリケーションレベルで設定できます。<br/> サーバーレベルの制限は、個々のアプリケーションレベルで設定されていない場合に使用されます。 この値が0または両方のレベルにない場合、オペレーティングシステムのデフォルト設定が使用されます。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> PHPスクリプトはプロセスをフォークするために呼び出すことができます。 この制限の主な目的は、フォーク爆弾や他のプロセスを作成するPHPプロセスによって引き起こされる他の攻撃を防ぐための最終防衛線です。<br/> この設定を低すぎると、機能が著しく損なわれる可能性があります。 この設定は特定のレベル以下では無視されます。<br/> suEXECデーモンモードを使用する場合、親プロセスが制限されないように、実際のプロセス制限はこの設定よりも高くなります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="procHardLimit"><h3>プロセスハードリミット<span class="ls-permlink"><a href="#procHardLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>ソフトリミットをユーザープロセス内のハードリミットまで上げることができることを除けば、<span class="tagl"><a href="#procSoftLimit">プロセスソフトリミット</a></span>とほとんど同じです。 ハードリミットは、サーバー・レベルまたは個々の外部アプリケーションレベルで設定できます。 サーバーレベルの制限は、個々のアプリケーションレベルで設定されていない場合に使用されます。 オペレーティングシステムのデフォルト値は、値が両方のレベルにないか、<span class="val">0</span>に設定されている場合に使用されます。</p> <h4>構文</h4><p>整数</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������ja-JP/intro.html������������������������������������������������������������������������������������0000644�����������������00000024450�15027525531�0007500 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Open LiteSpeed Web Serverユーザーズマニュアル - 導入</title> <meta name="description" content="Open LiteSpeed Web Serverユーザーズマニュアル - 導入." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="../img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h3 class="ls-text-thin">OpenLiteSpeed Web Server <a href="index.html"> ユーザーズマニュアル</a></h3> <h5 class="ls-text-muted">Version 1.8 — Rev. 0</h5> <hr/> <div> <ul> <li><a href="license.html">ライセンス</a></li> <li><span class="current"><a href="intro.html">はじめに</a></span></li> <li><a href="install.html">インストール</a></li> <li> <a href="admin.html">管理</a> <ul class="level2"> <li><a href="ServerStat_Help.html">サービスマネージャ</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">セキュリティ</a></li> <li><a href="config.html">設定</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">サーバー全般</a></li> <li><a href="ServLog_Help.html">サーバーログ</a></li> <li><a href="ServTuning_Help.html">サーバーのチューニング</a></li> <li><a href="ServSecurity_Help.html">サーバーのセキュリティ</a></li> <li><a href="ExtApp_Help.html">外部アプリ</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGIアプリ</a></li> <li><a href="External_FCGI_Auth.html">Fast CGIオーソライザー</a></li> <li><a href="External_LSAPI.html">LSAPIアプリ</a></li> <li><a href="External_Servlet.html">サーブレットエンジン</a></li> <li><a href="External_WS.html">Webサーバー</a></li> <li><a href="External_PL.html">パイプロガー</a></li> <li><a href="External_LB.html">ロードバランサ</a></li> </ul> <li><a href="ScriptHandler_Help.html">スクリプトハンドラ</a></li> <li><a href="Rails_Help.html">Rack/Railsの設定</a></li> <li><a href="Module_Help.html">モジュール設定</a></li> <li><a href="Listeners_General_Help.html">リスナー全般</a></li> <li><a href="Listeners_SSL_Help.html">リスナーのSSL</a></li> <li><a href="Templates_Help.html">テンプレート</a></li> <li><a href="VirtualHosts_Help.html">バーチャルホストの基本</a></li> <li><a href="VHGeneral_Help.html">バーチャルホスト全般</a></li> <li><a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a></li> <li><a href="VHSSL_Help.html">バーチャルホストのSSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">コンテキスト</a></li> <ul class="level3"> <li><a href="Static_Context.html">静的コンテテキスト</a></li> <li><a href="Java_Web_App_Context.html">Java Webアプリのコンテキスト</a></li> <li><a href="Servlet_Context.html">サーブレットコンテキスト</a></li> <li><a href="FCGI_Context.html">Fast CGIコンテキスト</a></li> <li><a href="LSAPI_Context.html">LSAPIコンテキスト</a></li> <li><a href="Proxy_Context.html">プロキシコンテキスト</a></li> <li><a href="CGI_Context.html">CGIコンテキスト</a></li> <li><a href="LB_Context.html">ロードバランサコンテキスト</a></li> <li><a href="Redirect_Context.html">コンテキストのリダイレクト</a></li> <li><a href="Rails_Context.html">Rack/Railsのコンテキスト</a></li> <li><a href="Module_Context.html">モジュールハンドラのコンテキスト</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socketプロキシ</a></li> </ul> </li> <li><a href="webconsole.html">Webコンソール</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">管理コンソール全般</a></li> <li><a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a></li> <li><a href="AdminListeners_General_Help.html">管理リスナー全般</a></li> <li><a href="AdminListeners_SSL_Help.html">管理リスナーのSSL</a></li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="license.html">ライセンス</a></div><div class="center"><a href="index.html">ホーム</a></div><div class="next"><a href="install.html">インストール</a> »</div></div> <h1>はじめに</h1> <h3>概要</h3> <p>LiteSpeed Web Serverは、高性能で安全で使いやすいWebサーバーです。 小さなメモリフットプリントで何千もの同時接続を処理できます。 そのセキュリティ機能により、さまざまな攻撃に対する脆弱性が大幅に軽減されます。 </p> <h3>基本機能</h3> <ul> <li><p><strong>HTTP/1.1</strong></p> <ul> <li>チャンク転送コード</li> <li>基本認証(パスワードファイルとLDAPバックエンド)</li> <li>エンティティタグ</li> <li>単一および複数の範囲要請</li> <li>静的/動的レスポンス圧縮(gzip)</li> <li>Apache互換のURL書き換え</li> <li>IPv6のサポート</li> <li>Apache mod_geoipと互換性のある地域ターゲティングのサポート</li> </ul> </li> <li><p><strong>動的コンテンツ生成</strong></p> <p>LiteSpeed Web Serverは、以下の動的コンテンツ生成メソッドをサポートしています:</p> <ul> <li>suEXECを使用したCGI/1.1 </li> <li>suEXECによる高速CGI </li> <li>LiteSpeedによるsuEXECを使用したPHP PHP SAPI(同等の機能を持つmod_phpを備えたPHPのトップクラスのパフォーマンス)</li> <li>JSP /サーブレット(AJP v1.3互換のバックエンドサーブレットエンジンとのインタフェース)</li> <li>プロキシ(HTTPプロトコルをサポートする任意のWebサーバー/アプリケーションサーバーとのインターフェイス)</li> <li>Ruby LSAPIモジュールによるsuEXECによるRuby on Rails(クラス最高のパフォーマンス、容易な配備、動的なスポーンをサポート)</li> </ul> </li> <li><p><strong>バーチャルホスティング</strong></p> <ul> <li>IPベースおよび名前ベースのバーチャルホスティングをサポート</li> <li>バーチャルホストテンプレートにより、バーチャルホスティングの簡単な設定</li> </ul> </li> </ul> <h3>セキュリティ</h3> <p>LiteSpeed Web Serverには、次のセキュリティ機能があります:</p> <ul> <li><strong>SSL</strong> <p>SSSLv3 / TLSv1をサポートします。 <i>この製品は、OpenSSL Toolkit(http://www.openssl.org/)を使用するため、OpenSSL Projectによって開発されたソフトウェアが含まれています。</i></p></li> <li><strong>IPレベルのスロットリング</strong> <p>1つのIPアドレスに対するネットワーク帯域幅と要求レートは、接続数に関係なく制限されます。 </p></li> <li><strong>包括的な接続アカウンティング</strong> <p>単一のIPアドレスから許可される同時接続の包括的な制御。</p></li> <li><strong>アクセス制御</strong> <p>アクセス制御ルールは、サーバー、バーチャルホスト、及びディレクトリ毎の(コンテキスト)レベルで設定できます。</p> </li> <li><strong>外部アプリケーションシールド</strong> <p>LiteSpeed Web Serverは、CGI、Fast CGIおよびサーブレットエンジンがWebクライアントと直接通信するのを防ぎ、最大の信頼性とパフォーマンスを保証します。 </p></li> <li><strong>CGIリソース消費制限</strong> <p>LiteSpeed Web Serverは、CGIアプリケーションが消費するシステムリソースを制限することにより、不正なCGIスクリプトによるサーバーのオーバーロードを防ぎます。</p></li> <li><strong>DoS攻撃防止</strong> <p>LiteSpeed Web Serverは、IPレベルのスロットル、接続アカウンティングなどの機能により、HTTPサービス拒否攻撃(DoS)や分散型サービス拒否攻撃(DDoS)に優れたパフォーマンスと拡張性を備えています。</p></li> </ul> <h3>信頼性</h3> <p>LiteSpeed Web Serverは即座にクラッシュから復旧します。 LiteSpeed Web Serverは完全にユーザー空間で動作します。 したがって、サーバーは、オペレーティングシステムの信頼性に影響を与えることなく、異なるバージョン間で簡単に切り替えることができます。 </p> <p>CGI、Fast CGI、Servletエンジンはスタンドアロンプロセスで動作しますが、Webサーバーの信頼性はサードパーティ製ソフトウェアの品質には影響されません。</p> <h3>使いやすい</h3> <ul> <li>実行ファイルを自分でビルドする必要はありません。</li> <li>簡単にインストールできます。</li> <li>WebAdminインターフェイスで簡単に制御および設定できます。</li> <li>PHPアクセラレータとPHPアクセラレータを自動的に設定します。</li> <li>サーバーを再起動せずにほとんどの変更を適用します。</li> </ul> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������ja-JP/VHSSL_Help.html�������������������������������������������������������������������������������0000644�����������������00000064065�15027525531�0010222 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Open LiteSpeed Web Serverユーザーズマニュアル - Virtual Host SSL</title> <meta name="description" content="Open LiteSpeed Web Serverユーザーズマニュアル - Virtual Host SSL." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="../img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h3 class="ls-text-thin">OpenLiteSpeed Web Server <a href="index.html"> ユーザーズマニュアル</a></h3> <h5 class="ls-text-muted">Version 1.8 — Rev. 0</h5> <hr/> <div> <ul> <li><a href="license.html">ライセンス</a></li> <li><a href="intro.html">はじめに</a></li> <li><a href="install.html">インストール</a></li> <li> <a href="admin.html">管理</a> <ul class="level2"> <li><a href="ServerStat_Help.html">サービスマネージャ</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">セキュリティ</a></li> <li><a href="config.html">設定</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">サーバー全般</a></li> <li><a href="ServLog_Help.html">サーバーログ</a></li> <li><a href="ServTuning_Help.html">サーバーのチューニング</a></li> <li><a href="ServSecurity_Help.html">サーバーのセキュリティ</a></li> <li><a href="ExtApp_Help.html">外部アプリ</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGIアプリ</a></li> <li><a href="External_FCGI_Auth.html">Fast CGIオーソライザー</a></li> <li><a href="External_LSAPI.html">LSAPIアプリ</a></li> <li><a href="External_Servlet.html">サーブレットエンジン</a></li> <li><a href="External_WS.html">Webサーバー</a></li> <li><a href="External_PL.html">パイプロガー</a></li> <li><a href="External_LB.html">ロードバランサ</a></li> </ul> <li><a href="ScriptHandler_Help.html">スクリプトハンドラ</a></li> <li><a href="Rails_Help.html">Rack/Railsの設定</a></li> <li><a href="Module_Help.html">モジュール設定</a></li> <li><a href="Listeners_General_Help.html">リスナー全般</a></li> <li><a href="Listeners_SSL_Help.html">リスナーのSSL</a></li> <li><a href="Templates_Help.html">テンプレート</a></li> <li><a href="VirtualHosts_Help.html">バーチャルホストの基本</a></li> <li><a href="VHGeneral_Help.html">バーチャルホスト全般</a></li> <li><a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a></li> <li><span class="current"><a href="VHSSL_Help.html">バーチャルホストのSSL</a></span></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">コンテキスト</a></li> <ul class="level3"> <li><a href="Static_Context.html">静的コンテテキスト</a></li> <li><a href="Java_Web_App_Context.html">Java Webアプリのコンテキスト</a></li> <li><a href="Servlet_Context.html">サーブレットコンテキスト</a></li> <li><a href="FCGI_Context.html">Fast CGIコンテキスト</a></li> <li><a href="LSAPI_Context.html">LSAPIコンテキスト</a></li> <li><a href="Proxy_Context.html">プロキシコンテキスト</a></li> <li><a href="CGI_Context.html">CGIコンテキスト</a></li> <li><a href="LB_Context.html">ロードバランサコンテキスト</a></li> <li><a href="Redirect_Context.html">コンテキストのリダイレクト</a></li> <li><a href="Rails_Context.html">Rack/Railsのコンテキスト</a></li> <li><a href="Module_Context.html">モジュールハンドラのコンテキスト</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socketプロキシ</a></li> </ul> </li> <li><a href="webconsole.html">Webコンソール</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">管理コンソール全般</a></li> <li><a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a></li> <li><a href="AdminListeners_General_Help.html">管理リスナー全般</a></li> <li><a href="AdminListeners_SSL_Help.html">管理リスナーのSSL</a></li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a></div><div class="center"><a href="config.html">設定</a></div><div class="next"><a href="Rewrite_Help.html">Rewrite</a> »</div></div> <h1>Virtual Host SSL</h1><h2 id="top">目次</h2><section class="toc"><section class="toc-row"><header><a href="#sslCert">SSL秘密鍵と証明書</a></header><p> <a href="#keyFile">秘密鍵ファイル</a> | <a href="#certFile">証明書ファイル</a> | <a href="#certChain">チェーン証明書</a> | <a href="#CACertPath">CA証明書パス</a> | <a href="#CACertFile">CA証明書ファイル</a></p></section> <section class="toc-row"><header><a href="#sslProtocolSetting">SSLプロトコル</a></header><p> <a href="#ciphers">暗号</a> | <a href="#enableECDHE">ECDH鍵交換を有効にする</a> | <a href="#enableDHE">DHキー交換を有効にする</a> | <a href="#DHParam">DHパラメータ</a></p></section> <section class="toc-row"><header>Security & Features</header><p> <a href="#renegProtection">SSL再交渉保護</a> | <a href="#sslSessionCache">セッションキャッシュを有効にする</a> | <a href="#sslSessionTickets">セッションチケットを有効にする</a> | <a href="#enableSpdy">SPDY/HTTP2を有効にする</a> | <a href="#vhEnableQuic">Enable HTTP3/QUIC</a></p></section> <section class="toc-row"><header><a href="#sslOCSP">OCSPステープリング</a></header><p> <a href="#enableStapling">OCSPステープルを有効にする</a> | <a href="#ocspRespMaxAge">OCSPの応答最大年齢(秒)</a> | <a href="#ocspResponder">OCSPレスポンダ</a> | <a href="#ocspCACerts">OCSP CA証明書</a></p></section> <section class="toc-row"><header>クライアントの検証</header><p> <a href="#clientVerify">クライアントの検証</a> | <a href="#verifyDepth">検証の深さ</a> | <a href="#crlPath">クライアントの失効パス</a> | <a href="#crlFile">クライアント失効ファイル</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="sslCert"><h3>SSL秘密鍵と証明書<span class="ls-permlink"><a href="#sslCert"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>すべてのSSLリスナーには、ペアのSSL秘密鍵とSSL証明書が必要です。 複数のSSLリスナーは、同じ鍵と証明書を共有できます。<br/> OpenSSLなどのSSLソフトウェアパッケージを使用して、SSL秘密鍵を自分で生成することができます。 SSL証明書は、VeriSignやThawteのような認可された証明書の発行者から購入することもできます。 自分で証明書に署名することもできます。 自己署名証明書はWebブラウザから信頼されないため、重要なデータを含む公開Webサイトでは使用しないでください。 ただし、自己署名証明書は内部使用に十分適しており、 例えば LiteSpeed WebサーバーのWebAdminコンソールへのトラフィックを暗号化します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="keyFile"><h3>秘密鍵ファイル<span class="ls-permlink"><a href="#keyFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>SSL秘密鍵ファイルのファイル名。キーファイルは暗号化しないでください。</p> <h4>構文</h4><p>ファイル名への絶対パス又は$SERVER_ROOTからの相対パス</p> <h4>ヒント</h4><p>[セキュリティ]秘密鍵ファイルは、サーバーが実行されるユーザーへの読み取り専用アクセスを可能にするセキュリティ保護されたディレクトリに配置する必要があります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="certFile"><h3>証明書ファイル<span class="ls-permlink"><a href="#certFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>SSL証明書ファイルのファイル名。</p> <h4>構文</h4><p>ファイル名への絶対パス又は$SERVER_ROOTからの相対パス</p> <h4>ヒント</h4><p>[セキュリティ]証明書ファイルは、サーバーが実行されるユーザーへの読み取り専用アクセスを可能にする安全なディレクトリに配置する必要があります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="certChain"><h3>チェーン証明書<span class="ls-permlink"><a href="#certChain"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>証明書がチェーン証明書であるかどうかを指定します。 チェーン証明を格納するファイルは、PEM形式でなければならず、証明書は最下位レベル(実際のクライアントまたはサーバー証明書)から最上位(ルート)CAまでの連鎖の順序でなければなりません。</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="CACertPath"><h3>CA証明書パス<span class="ls-permlink"><a href="#CACertPath"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>証明機関(CA)の証明書が保存されるディレクトリを指定します。 これらの証明書は、クライアント証明書の認証およびサーバー証明書チェーンの構築に使用されます。サーバー証明書チェーンは、サーバー証明書に加えてブラウザーにも送信されます。</p> <h4>構文</h4><p>path</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="CACertFile"><h3>CA証明書ファイル<span class="ls-permlink"><a href="#CACertFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>チェーン証明書の証明機関(CA)のすべての証明書を含むファイルを指定します。 このファイルは、PEMでエンコードされた証明書ファイルを単に優先順に連結したものです。 これは、「CA証明書パス」の代替として、またはこれに加えて使用することができる。 これらの証明書は、クライアント証明書の認証およびサーバー証明書チェーンの構築に使用されます。サーバー証明書チェーンは、サーバー証明書に加えてブラウザーにも送信されます。</p> <h4>構文</h4><p>ファイル名への絶対パス又は$SERVER_ROOTからの相対パス</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslProtocolSetting"><h3>SSLプロトコル<span class="ls-permlink"><a href="#sslProtocolSetting"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>リスナーが受け入れたSSLプロトコルをカスタマイズします。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="ciphers"><h3>暗号<span class="ls-permlink"><a href="#ciphers"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>SSLハンドシェイクのネゴシエーション時に使用する暗号スイートを指定します。 LSWSは、SSL v3.0、TLS v1.0、およびTLS v1.2で実装された暗号スイートをサポートしています。</p> <h4>構文</h4><p>コロンで区切られた暗号仕様の文字列。</p> <h4>例</h4><div class="ls-example">ECDHE-RSA-AES128-SHA256:RC4:HIGH:!MD5:!aNULL:!EDH</div><h4>ヒント</h4><p>[セキュリティ] SSL暗号のベストプラクティスに従ったデフォルトの暗号を使用する場合は、このフィールドを空白のままにすることをお勧めします。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableECDHE"><h3>ECDH鍵交換を有効にする<span class="ls-permlink"><a href="#enableECDHE"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>さらにSSL暗号化のために楕円曲線 Diffie-Hellman鍵交換を使用できます。</p> <h4>構文</h4><p>ラジオボックスから選択</p> <h4>ヒント</h4><p>[セキュリティ] ECDH鍵交換は、RSA鍵だけを使用するより安全です。 ECDHとDHキーの交換は同等に安全です。<br/><br/> [パフォーマンス] ECDH鍵交換を有効にするとCPU負荷が増加し、RSA鍵だけを使用する場合よりも遅くなります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableDHE"><h3>DHキー交換を有効にする<span class="ls-permlink"><a href="#enableDHE"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>さらにSSL暗号化のためにDiffie-Hellman鍵交換を使用できます。</p> <h4>構文</h4><p>ラジオボックスから選択</p> <h4>ヒント</h4><p>[セキュリティ] DHキーの交換は、RSAキーを使用するよりも安全です。 ECDHとDHキーの交換は同等に安全です。<br/><br/> [パフォーマンス] DHキー交換を有効にするとCPU負荷が増加し、ECDHキー交換とRSAよりも遅くなります。 ECDH鍵交換が利用可能である場合に優先される。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="DHParam"><h3>DHパラメータ<span class="ls-permlink"><a href="#DHParam"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>DHキー交換に必要なDiffie-Hellmanパラメータファイルの場所を指定します。</p> <h4>構文</h4><p>ファイル名への絶対パス又は$SERVER_ROOTからの相対パス</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="renegProtection"><h3>SSL再交渉保護<span class="ls-permlink"><a href="#renegProtection"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>SSL再交渉保護を有効にするかどうかを指定します。 SSLハンドシェイクベースの攻撃に対して防御します。 デフォルト値は "Yes"です。</p> <h4>構文</h4><p>ラジオボックスから選択</p> <h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> This setting can be enabled at the listener and virtual host levels.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslSessionCache"><h3>セッションキャッシュを有効にする<span class="ls-permlink"><a href="#sslSessionCache"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>セッションIDキャッシングを有効にします。 「未設定」の場合、デフォルトは「いいえ」です。 (Opensslデフォルト)</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslSessionTickets"><h3>セッションチケットを有効にする<span class="ls-permlink"><a href="#sslSessionTickets"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>セッションチケットを有効にします。 「未設定」の場合、サーバーはopenSSLのデフォルトチケットを使用します。</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableSpdy"><h3>SPDY/HTTP2を有効にする<span class="ls-permlink"><a href="#enableSpdy"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>HTTP/2とSPDYは、ページロード時間を短縮する目的で、HTTPネットワークプロトコルの新バージョンです。 より多くの情報は<a href=" http://en.wikipedia.org/wiki/HTTP/2 " target="_blank" rel="noopener noreferrer"> http://en.wikipedia.org/wiki/HTTP/2 </a>で見つけることができます。</p> <h4>構文</h4><p>有効にするプロトコルを確認します。 すべてのボックスをチェックしないと、SPDYとHTTP/2のサポート(デフォルト)が有効になります。 SPDYとHTTP/2を無効にする場合は、「なし」のみをチェックし、その他のチェックボックスはすべてオフにします。</p> <h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> This setting can be set at the listener and virtual host levels.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vhEnableQuic"><h3>Enable HTTP3/QUIC<span class="ls-permlink"><a href="#vhEnableQuic"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Enables the HTTP3/QUIC network protocol for this virtual host. For this setting to take effect, both <span class="tagl"><a href="ServTuning_Help.html#quicEnable">Enable HTTP3/QUIC</a></span> and <span class="tagl"><a href="Listeners_SSL_Help.html#allowQuic">Open HTTP3/QUIC (UDP) port</a></span> must also be set to <span class="val">Yes</span> at the server and listener levels respectively. Default value is <span class="val">Yes</span>.</p> <h4>構文</h4><p>ラジオボックスから選択</p> <h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> When this setting is set to <span class="val">No</span>, the HTTP3/QUIC advertisement will no longer be sent. If a browser still contains cached HTTP3/QUIC information and HTTP3/QUIC is still enabled at the server and listener levels, an HTTP3/QUIC connection will continue to be used until this information is no longer cached or an HTTP3/QUIC protocol error is encountered.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="sslOCSP"><h3>OCSPステープリング<span class="ls-permlink"><a href="#sslOCSP"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>オンライン証明書ステータスプロトコル(OCSP)は、デジタル証明書が有効かどうかを確認するより効率的な方法です。 OCSP応答者である他のサーバーと通信して、証明書失効リスト(CRL)をチェックする代わりに証明書が有効であることを確認します。<br/> OCSPステープリングは、このプロトコルのさらなる改良であり、証明書が要求されるたびにではなく、定期的な間隔でサーバーがOCSPレスポンダを確認できるようにします。 詳細については、<a href=" http://en.wikipedia.org/wiki/OCSP_Stapling " target="_blank" rel="noopener noreferrer"> OCSP Wikipedia </a>のページをご覧ください。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableStapling"><h3>OCSPステープルを有効にする<span class="ls-permlink"><a href="#enableStapling"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>OCSPステープルを有効にするかどうかを決定します。これは、公開鍵証明書を検証するより効率的な方法です。</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="ocspRespMaxAge"><h3>OCSPの応答最大年齢(秒)<span class="ls-permlink"><a href="#ocspRespMaxAge"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このオプションは、OCSP応答の許容可能な最大経過時間を設定します。 OCSP応答がこの最大年齢より古い場合、サーバーはOCSP応答者に新しい応答を要求します。 デフォルト値は<span class="val">86400</span>です。 この値を<span class="val">-1</span>に設定すると、最大年齢を無効にすることができます。</p> <h4>構文</h4><p>秒数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="ocspResponder"><h3>OCSPレスポンダ<span class="ls-permlink"><a href="#ocspResponder"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>使用するOCSPレスポンダのURLを指定します。 設定されていない場合、サーバーは認証局の発行者証明書に記載されているOCSPレスポンダに接続を試みます。 一部の発行者証明書には、OCSPレスポンダURLが指定されていない場合があります。</p> <h4>構文</h4><p><span class="val">http://</span>で始まるURL</p> <h4>例</h4><div class="ls-example"><span class="val">http://rapidssl-ocsp.geotrust.com </span></div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="ocspCACerts"><h3>OCSP CA証明書<span class="ls-permlink"><a href="#ocspCACerts"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>OCSP認証局(CA)証明書が格納されるファイルの場所を指定します。 これらの証明書は、OCSPレスポンダからのレスポンスを確認するために使用されます(また、そのレスポンスが偽装されていないか、または妥協されていないことを確認してください)。 このファイルには、証明書チェーン全体が含まれている必要があります。 このファイルにルート証明書が含まれていない場合、LSWSはファイルに追加することなくシステムディレクトリのルート証明書を見つけることができますが、この検証に失敗した場合はルート証明書をこのファイルに追加してください。<br/><br/> この設定はオプションです。 この設定が設定されていない場合、サーバーは自動的に<span class="tagl"><a href="#CACertFile">CA証明書ファイル</a></span>をチェックします。</p> <h4>構文</h4><p>ファイル名への絶対パス又は$SERVER_ROOTからの相対パス</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="clientVerify"><h3>クライアントの検証<span class="ls-permlink"><a href="#clientVerify"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>クライアント証明書認証のタイプを指定します。 使用できるタイプは次のとおりです: <ul> <li><b>None:</b> クライアント証明書は必要ありません。</li> <li><b>Optional:</b> クライアント証明書はオプションです。</li> <li><b>Require:</b> クライアントには有効な証明書が必要です。</li> <li><b>Optional_no_ca:</b> オプションと同じです。</li> </ul> デフォルトは "None"です。</p> <h4>構文</h4><p>ドロップダウンリストから選択</p> <h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> "None"または "Require"をお勧めします。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="verifyDepth"><h3>検証の深さ<span class="ls-permlink"><a href="#verifyDepth"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>クライアントに有効な証明書がないと判断する前に、証明書の検証の深さを指定します。 デフォルトは "1"です。</p> <h4>構文</h4><p>ドロップダウンリストから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="crlPath"><h3>クライアントの失効パス<span class="ls-permlink"><a href="#crlPath"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>取り消されたクライアント証明書のPEMエンコードされたCA CRLファイルを含むディレクトリを指定します。 このディレクトリのファイルはPEMでエンコードする必要があります。 これらのファイルは、ハッシュファイル名、hash-value.rNによってアクセスされます。 ハッシュファイル名の作成については、openSSLまたはApache mod_sslのドキュメントを参照してください。</p> <h4>構文</h4><p>パス</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="crlFile"><h3>クライアント失効ファイル<span class="ls-permlink"><a href="#crlFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>取り消されたクライアント証明書を列挙するPEMエンコードCA CRLファイルを含むファイルを指定します。 これは、代わりに、または<span class="tagl"><a href="#crlPath">クライアントの失効パス</a></span>に加えて使用することができます。</p> <h4>構文</h4><p>ファイル名への絶対パス又は$SERVER_ROOTからの相対パス</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ���������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������ja-JP/admin.html������������������������������������������������������������������������������������0000644�����������������00000020542�15027525531�0007433 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Open LiteSpeed Web Serverユーザーズマニュアル - 管理</title> <meta name="description" content="Open LiteSpeed Web Serverユーザーズマニュアル - 管理." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="../img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h3 class="ls-text-thin">OpenLiteSpeed Web Server <a href="index.html"> ユーザーズマニュアル</a></h3> <h5 class="ls-text-muted">Version 1.8 — Rev. 0</h5> <hr/> <div> <ul> <li><a href="license.html">ライセンス</a></li> <li><a href="intro.html">はじめに</a></li> <li><a href="install.html">インストール</a></li> <li> <span class="current"><a href="admin.html">管理</a></span> <ul class="level2"> <li><a href="ServerStat_Help.html">サービスマネージャ</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">セキュリティ</a></li> <li><a href="config.html">設定</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">サーバー全般</a></li> <li><a href="ServLog_Help.html">サーバーログ</a></li> <li><a href="ServTuning_Help.html">サーバーのチューニング</a></li> <li><a href="ServSecurity_Help.html">サーバーのセキュリティ</a></li> <li><a href="ExtApp_Help.html">外部アプリ</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGIアプリ</a></li> <li><a href="External_FCGI_Auth.html">Fast CGIオーソライザー</a></li> <li><a href="External_LSAPI.html">LSAPIアプリ</a></li> <li><a href="External_Servlet.html">サーブレットエンジン</a></li> <li><a href="External_WS.html">Webサーバー</a></li> <li><a href="External_PL.html">パイプロガー</a></li> <li><a href="External_LB.html">ロードバランサ</a></li> </ul> <li><a href="ScriptHandler_Help.html">スクリプトハンドラ</a></li> <li><a href="Rails_Help.html">Rack/Railsの設定</a></li> <li><a href="Module_Help.html">モジュール設定</a></li> <li><a href="Listeners_General_Help.html">リスナー全般</a></li> <li><a href="Listeners_SSL_Help.html">リスナーのSSL</a></li> <li><a href="Templates_Help.html">テンプレート</a></li> <li><a href="VirtualHosts_Help.html">バーチャルホストの基本</a></li> <li><a href="VHGeneral_Help.html">バーチャルホスト全般</a></li> <li><a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a></li> <li><a href="VHSSL_Help.html">バーチャルホストのSSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">コンテキスト</a></li> <ul class="level3"> <li><a href="Static_Context.html">静的コンテテキスト</a></li> <li><a href="Java_Web_App_Context.html">Java Webアプリのコンテキスト</a></li> <li><a href="Servlet_Context.html">サーブレットコンテキスト</a></li> <li><a href="FCGI_Context.html">Fast CGIコンテキスト</a></li> <li><a href="LSAPI_Context.html">LSAPIコンテキスト</a></li> <li><a href="Proxy_Context.html">プロキシコンテキスト</a></li> <li><a href="CGI_Context.html">CGIコンテキスト</a></li> <li><a href="LB_Context.html">ロードバランサコンテキスト</a></li> <li><a href="Redirect_Context.html">コンテキストのリダイレクト</a></li> <li><a href="Rails_Context.html">Rack/Railsのコンテキスト</a></li> <li><a href="Module_Context.html">モジュールハンドラのコンテキスト</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socketプロキシ</a></li> </ul> </li> <li><a href="webconsole.html">Webコンソール</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">管理コンソール全般</a></li> <li><a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a></li> <li><a href="AdminListeners_General_Help.html">管理リスナー全般</a></li> <li><a href="AdminListeners_SSL_Help.html">管理リスナーのSSL</a></li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="install.html">インストール</a></div><div class="center"><a href="index.html">ホーム</a></div><div class="next"><a href="security.html">セキュリティ</a> »</div></div> <h1>管理</h1> <p>LiteSpeed Webサーバーは、WebAdminコンソール、コマンドライン、シグナル送信の3つの方法で制御できます。</p> <ol> <li><h3>WebAdminコンソールから:</h3> <p>WebAdminコンソールは、すべてのLiteSpeed Web Server設定を制御および設定するための集中管理パネルです。</p> <p>WebAdminコンソールにログオンします(デフォルトではhttp:// [サイトのアドレス]:7080 /)。 「Service Manager」を選択します。 サーバーの再起動、サーバー構成のリロード、ログ表示、リアルタイム監視、バーチャルホストのリロード、バーチャルホストの有効化/無効化などの一般的なタスクを実行するためのリンク付きのコントロールパネルがあります。</p> <p><strong>WebAdminコンソールからLiteSpeed Web Serverを制御する方法の詳細 - <a href="ServerStat_Help.html">サービスマネージャ</a></strong></p> <p>WebAdminインターフェイスのログイン名とパスワードを変更するには、シェルから次のコマンドを実行します:<br> <span class="cmd">[your install dir]/admin/misc/admpass.sh</span> </p> </li> <li><h3>コマンドラインインターフェイスを使用して:</h3> <p>Webサーバが/usr/local/lswsに設置されていると仮定して。</p> <p>/usr/local/lsws/bin/ディレクトリにある<span class="tag">lswsctrl</span> 制御スクリプトを使用します。</p> <p>Webサーバーを起動するには:<br> <span class="cmd">/usr/local/lsws/bin/lswsctrl start</span> </p> <p>Webサーバーを停止するには:<br> <span class="cmd">/usr/local/lsws/bin/lswsctrl stop</span> </p> <p>Webサーバーを再起動するには:<br> <span class="cmd">/usr/local/lsws/bin/lswsctrl restart</span> </p> <p>設定をリロードするには:<br> <span class="cmd">/usr/local/lsws/bin/lswsctrl reload</span> </p> </li> li><h3>シグナルを送信することによって:</h3> <p>サーバプロセスにシグナルを送信することによって、サーバプロセスを停止し、コンフィギュレーションをリロードすることができます。</p> <p>まず、PIDファイルから、または 'ps'コマンドを実行して、サーバーのプロセスIDを知る必要があります。</p> <p>PIDファイルを読み込むには:<br> <span class="cmd">cat /tmp/lshttpd/lshttpd.pid</span></p> <p>'ps'コマンドを実行することにより:<br> FreeBSD: <span class="cmd">ps -x | grep lshttpd</span><br> Others: <span class="cmd">ps -ef | grep lshttpd</span><br> <br> 複数のプロセスがリストされている場合は、PPIDが1のプロセスを使用します。 </p> <p>Webサーバーを停止するには: <span class="cmd">kill XXXX</span> (XXXXはPID)<br> サーバーが停止しなかった場合は: <span class="cmd">kill -9 XXXX</span> </p> <p>設定をリロードするには: <span class="cmd">kill -HUP XXXX</span> </p> </ol> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ��������������������������������������������������������������������������������������������������������������������������������������������������������������ja-JP/ServSecurity_Help.html������������������������������������������������������������������������0000644�����������������00000171270�15027525531�0011767 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Open LiteSpeed Web Serverユーザーズマニュアル - サーバーのセキュリティ</title> <meta name="description" content="Open LiteSpeed Web Serverユーザーズマニュアル - サーバーのセキュリティ." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="../img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h3 class="ls-text-thin">OpenLiteSpeed Web Server <a href="index.html"> ユーザーズマニュアル</a></h3> <h5 class="ls-text-muted">Version 1.8 — Rev. 0</h5> <hr/> <div> <ul> <li><a href="license.html">ライセンス</a></li> <li><a href="intro.html">はじめに</a></li> <li><a href="install.html">インストール</a></li> <li> <a href="admin.html">管理</a> <ul class="level2"> <li><a href="ServerStat_Help.html">サービスマネージャ</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">セキュリティ</a></li> <li><a href="config.html">設定</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">サーバー全般</a></li> <li><a href="ServLog_Help.html">サーバーログ</a></li> <li><a href="ServTuning_Help.html">サーバーのチューニング</a></li> <li><span class="current"><a href="ServSecurity_Help.html">サーバーのセキュリティ</a></span></li> <li><a href="ExtApp_Help.html">外部アプリ</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGIアプリ</a></li> <li><a href="External_FCGI_Auth.html">Fast CGIオーソライザー</a></li> <li><a href="External_LSAPI.html">LSAPIアプリ</a></li> <li><a href="External_Servlet.html">サーブレットエンジン</a></li> <li><a href="External_WS.html">Webサーバー</a></li> <li><a href="External_PL.html">パイプロガー</a></li> <li><a href="External_LB.html">ロードバランサ</a></li> </ul> <li><a href="ScriptHandler_Help.html">スクリプトハンドラ</a></li> <li><a href="Rails_Help.html">Rack/Railsの設定</a></li> <li><a href="Module_Help.html">モジュール設定</a></li> <li><a href="Listeners_General_Help.html">リスナー全般</a></li> <li><a href="Listeners_SSL_Help.html">リスナーのSSL</a></li> <li><a href="Templates_Help.html">テンプレート</a></li> <li><a href="VirtualHosts_Help.html">バーチャルホストの基本</a></li> <li><a href="VHGeneral_Help.html">バーチャルホスト全般</a></li> <li><a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a></li> <li><a href="VHSSL_Help.html">バーチャルホストのSSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">コンテキスト</a></li> <ul class="level3"> <li><a href="Static_Context.html">静的コンテテキスト</a></li> <li><a href="Java_Web_App_Context.html">Java Webアプリのコンテキスト</a></li> <li><a href="Servlet_Context.html">サーブレットコンテキスト</a></li> <li><a href="FCGI_Context.html">Fast CGIコンテキスト</a></li> <li><a href="LSAPI_Context.html">LSAPIコンテキスト</a></li> <li><a href="Proxy_Context.html">プロキシコンテキスト</a></li> <li><a href="CGI_Context.html">CGIコンテキスト</a></li> <li><a href="LB_Context.html">ロードバランサコンテキスト</a></li> <li><a href="Redirect_Context.html">コンテキストのリダイレクト</a></li> <li><a href="Rails_Context.html">Rack/Railsのコンテキスト</a></li> <li><a href="Module_Context.html">モジュールハンドラのコンテキスト</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socketプロキシ</a></li> </ul> </li> <li><a href="webconsole.html">Webコンソール</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">管理コンソール全般</a></li> <li><a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a></li> <li><a href="AdminListeners_General_Help.html">管理リスナー全般</a></li> <li><a href="AdminListeners_SSL_Help.html">管理リスナーのSSL</a></li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="ServTuning_Help.html">サーバーのチューニング</a></div><div class="center"><a href="config.html">設定</a></div><div class="next"><a href="ExtApp_Help.html">外部アプリケーション</a> »</div></div> <h1>サーバーのセキュリティ</h1><h2 id="top">目次</h2><section class="toc"><section class="toc-row"><header>ファイルアクセス</header><p> <a href="#followSymbolLink">シンボリックリンクに従う</a> | <a href="#checkSymbolLink">シンボリックリンクを確認する</a> | <a href="#forceStrictOwnership">厳格な所有権チェックを強制する</a> | <a href="#requiredPermissionMask">必要な許可マスク</a> | <a href="#restrictedPermissionMask">制限付き許可マスク</a> | <a href="#restrictedScriptPermissionMask">スクリプトのアクセス許可マスクの制限</a> | <a href="#restrictedDirPermissionMask">スクリプトディレクトリのアクセス許可マスクの制限</a></p></section> <section class="toc-row"><header><a href="#perClientConnLimit">クライアント単位のスロットル</a></header><p> <a href="#staticReqPerSec">静的リクエスト/秒</a> | <a href="#dynReqPerSec">動的リクエスト/秒</a> | <a href="#outBandwidth">送信帯域幅(バイト/秒)</a> | <a href="#inBandwidth">受信帯域幅(バイト/秒)</a> | <a href="#softLimit">接続ソフトリミット</a> | <a href="#hardLimit">接続ハードリミット</a> | <a href="#blockBadReq">不良リクエストをブロックする</a> | <a href="#gracePeriod">猶予期間(秒)</a> | <a href="#banPeriod">禁止期間(秒)</a></p></section> <section class="toc-row"><header><a href="#cgiResource">CGI設定</a></header><p> <a href="#cgidSock">CGIデーモンソケット</a> | <a href="#maxCGIInstances">最大CGIインスタンス</a> | <a href="#minUID">最小UID</a> | <a href="#minGID">最小GID</a> | <a href="#forceGID">強制GID</a> | <a href="#umask">umask</a> | <a href="#CGIPriority">CGI プライオリティ</a> | <a href="#CPUSoftLimit">CPUソフトリミット(秒)</a> | <a href="#CPUHardLimit">CPUハードリミット</a> | <a href="#memSoftLimit">メモリソフトリミット(バイト)</a> | <a href="#memHardLimit">メモリハードリミット</a> | <a href="#procSoftLimit">プロセスソフトリミット</a> | <a href="#procHardLimit">プロセスハードリミット</a> | <a href="#cgroups">cgroups</a></p></section> <section class="toc-row"><header><a href="#lsrecaptcha">reCAPTCHA Protection</a></header><p> <a href="#enableRecaptcha">Enable reCAPTCHA</a> | <a href="#recaptchaSiteKey">Site Key</a> | <a href="#recaptchaSecretKey">Secret Key</a> | <a href="#recaptchaType">reCAPTCHA Type</a> | <a href="#recaptchaMaxTries">Max Tries</a> | <a href="#recaptchaAllowedRobotHits">Allowed Robot Hits</a> | <a href="#recaptchaBotWhiteList">Bot White List</a> | <a href="#recaptchaRegConnLimit">Connection Limit</a> | <a href="#recaptchaSslConnLimit">SSL Connection Limit</a></p></section> <section class="toc-row"><header>Containers</header><p> <a href="#bubbleWrap">Bubblewrap Container</a> | <a href="#bubbleWrapCmd">Bubblewrap Command</a> | <a href="#namespace">Namespace Container</a> | <a href="#namespaceConf">Namespace Template File</a></p></section> <section class="toc-row"><header>アクセスが拒否されたディレクトリ</header><p> <a href="#accessDenyDir">アクセスが拒否されたディレクトリ</a></p></section> <section class="toc-row"><header><a href="#accessControl">アクセス制御</a></header><p> <a href="#accessControl_allow">許可リスト</a> | <a href="#accessControl_deny">拒否リスト</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="followSymbolLink"><h3>シンボリックリンクに従う<span class="ls-permlink"><a href="#followSymbolLink"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>静的ファイルを提供する際のシンボリックリンクのサーバーレベルのデフォルト設定を指定します。 <br/><br/> 選択肢は<span class="val">はい</span>、<span class="val">オーナーと一致する場合</span> <span class="val">いいえ</span>です。 <br/><br/> <span class="val">はい</span>は、シンボリックリンクに常に従うようにサーバーを設定します。 <span class="val">所有者の一致がの場合</span>は、リンクの所有者とターゲットの所有者が同じ場合にのみシンボリックリンクに従うようにサーバーを設定します。 <span class="val">いいえ</span>は、サーバーがシンボリックリンクを決して辿らないことを意味します。 この設定はバーチャルホスト設定で上書きできますが、.htaccessファイルで上書きすることはできません。</p> <h4>構文</h4><p>ドロップダウンリストから選択</p> <h4>ヒント</h4><p>[パフォーマンスとセキュリティ]最高のセキュリティを実現するには、<span class="val">いいえ</span>または<span class="val">{Owner}が一致する場合</span>を選択します。 最高のパフォーマンスを得るには、<span class="val">はい</span>を選択します。</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#checkSymbolLink">シンボリックリンクを確認する</a></span>.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="checkSymbolLink"><h3>シンボリックリンクを確認する<span class="ls-permlink"><a href="#checkSymbolLink"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p><span class="tagl"><a href="#followSymbolLink">シンボリックリンクに従う</a></span>がオンになっているときに、<span class="tagl"><a href="#accessDenyDir">アクセスが拒否されたディレクトリ</a></span>に対するシンボリックリンクをチェックするかどうかを指定します。 有効にすると、URLで参照されるリソースのカノニカル実パスが、設定可能なアクセス拒否ディレクトリと照合されます。 アクセスが拒否されたディレクトリ内にある場合、アクセスは拒否されます。</p> <h4>構文</h4><p>ラジオボックスから選択</p> <h4>ヒント</h4><p>[パフォーマンス & セキュリティ]最高のセキュリティを実現するには、このオプションを有効にします。 最高のパフォーマンスを得るには、無効にしてください。</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#followSymbolLink">シンボリックリンクに従う</a></span>, <span class="tagl"><a href="#accessDenyDir">アクセスが拒否されたディレクトリ</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="forceStrictOwnership"><h3>厳格な所有権チェックを強制する<span class="ls-permlink"><a href="#forceStrictOwnership"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>厳密なファイル所有権チェックを実施するかどうかを指定します。 有効になっている場合、Webサーバーは、提供されるファイルの所有者がバーチャルホストの所有者と同じかどうかをチェックします。 異なる場合は、403アクセス拒否エラーが返されます。 これはデフォルトではオフになっています。</p> <h4>構文</h4><p>ラジオボックスから選択</p> <h4>ヒント</h4><p>[セキュリティ]共有ホスティングの場合、このチェックを有効にしてセキュリティを強化します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="requiredPermissionMask"><h3>必要な許可マスク<span class="ls-permlink"><a href="#requiredPermissionMask"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>サーバーが提供する静的ファイルに必要なアクセス許可マスクを指定します。 たとえば、全員が読み取り可能なファイルのみを処理できる場合は、値を<span class="val">0004</span>に設定します。 すべての値について<span class="cmd">man 2 stat</span>を参照してください</p> <h4>構文</h4><p>8進数</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#restrictedPermissionMask">制限付き許可マスク</a></span>.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="restrictedPermissionMask"><h3>制限付き許可マスク<span class="ls-permlink"><a href="#restrictedPermissionMask"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>サーバーが提供しない静的ファイルに対する制限付きのアクセス許可マスクを指定します。 たとえば、実行可能ファイルの配信を禁止するには、マスクを<span class="val">0111</span>に設定します。<br/><br/> すべての値について<span class="cmd">man 2 stat</span>を参照してください。</p> <h4>構文</h4><p>8進数</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#requiredPermissionMask">必要な許可マスク</a></span>.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="restrictedScriptPermissionMask"><h3>スクリプトのアクセス許可マスクの制限<span class="ls-permlink"><a href="#restrictedScriptPermissionMask"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>サーバーが提供しないスクリプトファイルに対する制限付きアクセス許可マスクを指定します。 たとえば、グループおよびワールド書き込み可能なPHPスクリプトの配信を禁止するには、マスクを<span class="val">022</span>に設定します。 デフォルト値は<span class="val">000</span>です。<br/><br/> すべての値について<span class="cmd">man 2 stat</span>を参照してください。</p> <h4>構文</h4><p>8進数</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#restrictedDirPermissionMask">スクリプトディレクトリのアクセス許可マスクの制限</a></span>.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="restrictedDirPermissionMask"><h3>スクリプトディレクトリのアクセス許可マスクの制限<span class="ls-permlink"><a href="#restrictedDirPermissionMask"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Sサーバーが提供しないスクリプトファイルの親ディレクトリの制限付きアクセス許可マスクを指定します。 たとえば、グループおよびワールド書き込み可能なディレクトリでPHPスクリプトを処理することを禁止するには、マスクを<span class="val">022</span>に設定します。 デフォルト値は<span class="val">000</span>です。 このオプションを使用して、アップロードされたファイルのディレクトリ下でスクリプトを提供しないようにすることができます。<br/><br/> すべての値について<span class="cmd">man 2 stat</span>を参照してください。</p> <h4>構文</h4><p>8進数</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#restrictedScriptPermissionMask">スクリプトのアクセス許可マスクの制限</a></span>.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="perClientConnLimit"><h3>クライアント単位のスロットル<span class="ls-permlink"><a href="#perClientConnLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>これらは、クライアントIPに基づいた接続制御設定です。 これらの設定は、DoS(サービス拒否)攻撃とDDoS(分散サービス拒否)攻撃を緩和するのに役立ちます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="staticReqPerSec"><h3>静的リクエスト/秒<span class="ls-permlink"><a href="#staticReqPerSec"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>確立された接続の数に関係なく、1秒間に処理できる単一のIPアドレスからの静的コンテンツへの要求の最大数を指定します。<br/><br/> この制限に達すると、将来のすべての要求は次の秒までタールピットされます。 動的に生成されるコンテンツのリクエスト制限は、この制限とは関係ありません。 クライアントごとの要求制限は、サーバーまたはバーチャルホストレベルで設定できます。 バーチャルホストレベルの設定は、サーバーレベルの設定よりも優先されます。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p>[セキュリティ]信頼できるIPまたはサブネットワークは影響を受けません。</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#dynReqPerSec">動的リクエスト/秒</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="dynReqPerSec"><h3>動的リクエスト/秒<span class="ls-permlink"><a href="#dynReqPerSec"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>確立された接続の数に関係なく、1秒ごとに処理できる単一のIPアドレスからの動的に生成されるコンテンツへの要求の最大数を指定します。 この制限に達すると、今後のすべての動的コンテンツへのリクエストは、次の秒までタールピットされます。 <br/><br/> 静的コンテンツの要求制限は、この制限とは関係ありません。 このクライアントごとの要求制限は、サーバーまたはバーチャルホストレベルで設定できます。 バーチャルホストレベルの設定は、サーバーレベルの設定よりも優先されます。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p>[セキュリティ]この制限によって、信頼できるIPまたはサブネットワークは制限されません。</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#staticReqPerSec">静的リクエスト/秒</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="outBandwidth"><h3>送信帯域幅(バイト/秒)<span class="ls-permlink"><a href="#outBandwidth"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>確立された接続の数に関係なく、単一のIPアドレスへの最大の送信スループット。 実際の帯域幅は効率上の理由からこの設定よりわずかに高くなることがあります。 帯域幅は4KB単位で割り当てられます。 スロットルを無効にするには、<span class="val">0</span>に設定します。 クライアント単位の帯域幅制限(バイト/秒)は、バーチャルホストレベルの設定がサーバーレベルの設定を上回るサーバーまたはバーチャルホストレベルで設定できます。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p>[パフォーマンス]パフォーマンスを向上させるため、帯域幅を8KB単位で設定します。.<br/><br/> [セキュリティ]信頼できるIPまたはサブネットワークは影響を受けません。</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#inBandwidth">受信帯域幅(バイト/秒)</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="inBandwidth"><h3>受信帯域幅(バイト/秒)<span class="ls-permlink"><a href="#inBandwidth"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>確立された接続の数に関係なく、単一のIPアドレスからの最大許容着信スループット。 実際の帯域幅は効率上の理由からこの設定よりわずかに高くなることがあります。 帯域幅は1KB単位で割り当てられます。 スロットルを無効にするには、<span class="val">0</span>に設定します。 クライアント単位の帯域幅制限(バイト/秒)は、バーチャルホストレベルの設定がサーバーレベルの設定を上回るサーバーまたはバーチャルホストレベルで設定できます。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p>[セキュリティ]信頼できるIPまたはサブネットワークは影響を受けません。</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#outBandwidth">送信帯域幅(バイト/秒)</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="softLimit"><h3>接続ソフトリミット<span class="ls-permlink"><a href="#softLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>1つのIPから許可される同時接続のソフト制限を指定します。 このソフトリミットは、<span class="tagl"><a href="#gracePeriod">猶予期間(秒)</a></span>の間に<span class="tagl"><a href="#hardLimit">接続ハードリミット</a></span>以下になると一時的に超過することができますが、接続の数が限界よりも少なくなるまで、キープアライブ接続はできるだけ早く閉じられます。 <span class="tagl"><a href="#gracePeriod">猶予期間(秒)</a></span>の後に接続数がまだ制限を超えている場合、そのIPは<span class="tagl"><a href="#banPeriod">禁止期間(秒)</a></span>でブロックされます。<br/><br/> 例えば、ページに多数の小さなグラフが含まれている場合、ブラウザは、特にHTTP/1.0クライアントの場合、同時に多くの接続を設定しようとする可能性があります。 これらの接続を短期間で許可する必要があります。<br/><br/> HTTP/1.1クライアントは、複数の接続を設定してダウンロード速度を上げることができ、SSLにはSSL以外の接続とは別の接続が必要です。 通常のサービスに悪影響を及ぼさないように、制限値が適切に設定されていることを確認してください。 推奨される制限は、<span class="val">5</span>〜<span class="val">10</span>です。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p>[セキュリティ]数字が小さいほど、より明確なクライアントに対応できます。<br/> [セキュリティ]信頼できるIPまたはサブネットワークは影響を受けません。<br/> [パフォーマンス]多数の同時クライアントマシンでベンチマークテストを実行する場合は、高い値に設定します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="hardLimit"><h3>接続ハードリミット<span class="ls-permlink"><a href="#hardLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>単一のIPアドレスから同時に許可される接続の最大数を指定します。 この制限は常に強制され、クライアントはこの制限を超えることはできません。 HTTP/1.0クライアントは通常、埋め込みコンテンツを同時にダウンロードするのに必要な数の接続を設定しようとします。 この制限は、HTTP/1.0クライアントが引き続きサイトにアクセスできるように十分に高く設定する必要があります。 <span class="tagl"><a href="#softLimit">接続ソフトリミット</a></span>を使用して、目的の接続制限を設定します。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p>[セキュリティ]数字が小さいほど、より明確なクライアントに対応できます。<br/> [セキュリティ]信頼できるIPまたはサブネットワークは影響を受けません。<br/> [パフォーマンス]多数の同時クライアントマシンでベンチマークテストを実行する場合は、高い値に設定します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="blockBadReq"><h3>不良リクエストをブロックする<span class="ls-permlink"><a href="#blockBadReq"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p><span class="tagl"><a href="#banPeriod">禁止期間(秒)</a></span>に不正な形式のHTTP要求を送信し続けるIPをブロックします。 デフォルトは<span class="val">はい</span>です。 これは、ジャンク要求を繰り返し送信するボットネット攻撃をブロックするのに役立ちます。</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="gracePeriod"><h3>猶予期間(秒)<span class="ls-permlink"><a href="#gracePeriod"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>1つのIPから確立された接続の数が<span class="tagl"><a href="#softLimit">接続ソフトリミット</a></span>を超えた後に新しい接続が受け入れられる期間を指定します。 この期間内に、総接続数が<span class="tagl"><a href="#hardLimit">接続ハードリミット</a></span>未満の場合は、新しい接続が受け入れられます。 この期間が経過した後、まだ接続数が<span class="tagl"><a href="#softLimit">接続ソフトリミット</a></span>よりも高い場合、問題のIPは<span class="tagl"><a href="#banPeriod">禁止期間(秒)</a></span>でブロックされます。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p>[パフォーマンス & セキュリティ]ダウンロードに十分な大きさに設定してください。 完全なページですが、故意の攻撃を防ぐのに十分な低さです。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="banPeriod"><h3>禁止期間(秒)<span class="ls-permlink"><a href="#banPeriod"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p><span class="tagl"><a href="#gracePeriod">猶予期間(秒)</a></span>経過後、接続数がまだ<span class="tagl"><a href="#softLimit">接続ソフトリミット</a></span>以上の場合、新しい接続がIPから拒否される期間を指定します。 IPが繰り返し禁止されている場合は、禁止期間を延長して虐待のペナルティを強化することをお勧めします。</p> <h4>構文</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="cgiResource"><h3>CGI設定<span class="ls-permlink"><a href="#cgiResource"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>次の設定は、CGIプロセスを制御します。 これらのアプリケーションに対して制限が明示的に設定されていない場合は、メモリおよびプロセスの制限も他の外部アプリケーションのデフォルトとして機能します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="cgidSock"><h3>CGIデーモンソケット<span class="ls-permlink"><a href="#cgidSock"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>CGIデーモンとの通信に使用される一意のソケットアドレス。 LiteSpeedサーバーは、スタンドアロンのCGIデーモンを使用して、最高のパフォーマンスとセキュリティを実現するCGIスクリプトを生成します。 デフォルトソケットは<span class="val">uds://$SERVER_ROOT/admin/lscgid/.cgid.sock</span> "です。 別の場所に配置する必要がある場合は、ここにUnixドメインソケットを指定します。</p> <h4>構文</h4><p>UDS://path</p> <h4>例</h4><div class="ls-example">UDS://tmp/lshttpd/cgid.sock</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxCGIInstances"><h3>最大CGIインスタンス<span class="ls-permlink"><a href="#maxCGIInstances"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>サーバーが開始できる同時CGIプロセスの最大数を指定します。 CGIスクリプトに対する各要求に対して、サーバーはスタンドアロンCGIプロセスを開始する必要があります。 Unixシステムでは、並行プロセスの数が制限されています。 過度の並行処理は、システム全体のパフォーマンスを低下させ、DoS攻撃を実行する1つの方法です。 LiteSpeedサーバーはCGIスクリプトへの要求をパイプライン処理し、同時のCGIプロセスを制限して最適なパフォーマンスと信頼性を確保します。 上限は<span class="val">2000</span>です。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p>[セキュリティ & パフォーマンス]上限が高いと必ずしもパフォーマンスが向上するとは限りません。 ほとんどの場合、下限値を指定するとパフォーマンスとセキュリティが向上します。 上限は、CGI処理中にI / O待ち時間が過大になる場合にのみ役立ちます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="minUID"><h3>最小UID<span class="ls-permlink"><a href="#minUID"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>外部アプリケーションの最小ユーザーIDを指定します。 ここで指定した値よりも小さいユーザーIDを持つ外部スクリプトの実行は拒否されます。 LiteSpeed Webサーバーが「root」ユーザーによって起動された場合、Apacheなどの「suEXEC」モードで外部アプリケーションを実行できます(Webサーバー以外のユーザー/グループIDに変更する)。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p>[セキュリティ]すべてのシステム/特権ユーザーを除外するのに十分な高さに設定します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="minGID"><h3>最小GID<span class="ls-permlink"><a href="#minGID"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>外部アプリケーションの最小グループIDを指定します。 ここで指定した値よりも小さいグループIDを持つ外部の実行は拒否されます。 LiteSpeed Webサーバーが "root"ユーザーによって起動された場合、Apacheで見つかった "suEXEC"モードで外部アプリケーションを実行できます(Webサーバー以外のユーザー/グループIDに変更する)。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p>[セキュリティ]システムユーザーが使用するすべてのグループを除外するのに十分な高さに設定します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="forceGID"><h3>強制GID<span class="ls-permlink"><a href="#forceGID"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>suEXECモードで起動したすべての外部アプリケーションに使用するグループIDを指定します。 ゼロ以外の値に設定すると、すべてのsuEXEC外部アプリケーション(CGI/FastCGI/LSAPI)がこのグループIDを使用します。 これにより、外部アプリケーションが他のユーザーが所有するファイルにアクセスするのを防ぐことができます。<br/><br/> たとえば、共有ホスティング環境では、LiteSpeedはユーザー "www-data"として実行され、グループ "www-data"として実行されます。 各docrootは、 "www-data"のグループと許可モード0750を持つユーザーアカウントによって所有されています。 強制GIDが "nogroup"(または 'www-data'以外のグループ)に設定されている場合、すべてのsuEXEC外部アプリケーションは特定のユーザーとして実行されますが、グループ "nogroup"に実行されます。 これらの外部アプリケーション・プロセスは(ユーザーIDのために)特定のユーザーが所有するファイルには引き続きアクセスできますが、他のユーザーのファイルにアクセスするためのグループ権限は持っていません。 一方、サーバは、(グループIDのために)どんなユーザのdocrootディレクトリ下でもファイルを提供することができます。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p>[セキュリティ]システムユーザーが使用するすべてのグループを除外するのに十分な高さに設定します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="umask"><h3>umask<span class="ls-permlink"><a href="#umask"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>CGIプロセスのデフォルトのumaskを設定します。 詳細は、<span class="cmd">man 2 umask</span>を参照してください。 これは、外部アプリケーション<span class="tagl"><a href="ExtApp_Help.html#extUmask">umask</a></span>のデフォルト値としても機能します。</p> <h4>構文</h4><p>有効範囲値[000]〜[777]。</p> <h4>参照</h4><p class="ls-text-small">ExtApp <span class="tagl"><a href="ExtApp_Help.html#extUmask">umask</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="CGIPriority"><h3>CGI プライオリティ<span class="ls-permlink"><a href="#CGIPriority"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>外部アプリケーションプロセスの優先度を指定します。 値の範囲は-20〜20です。数値が小さいほど優先度が高くなります。<br/><br/> CGIプロセスは、Webサーバーよりも高い優先度を持つことはできません。この優先度がサーバーの数値より低い数値に設定されている場合は、サーバーの優先度がこの値に使用されます。</p> <h4>構文</h4><p>int</p> <h4>参照</h4><p class="ls-text-small">Server <span class="tagl"><a href="ServGeneral_Help.html#serverPriority">プライオリティ</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="CPUSoftLimit"><h3>CPUソフトリミット(秒)<span class="ls-permlink"><a href="#CPUSoftLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>CGIプロセスのCPU消費制限時間を秒単位で指定します。 プロセスがソフトリミットに達すると、シグナルによって通知されます。 値が存在しない場合、または<span class="val">0</span>に設定されている場合は、オペレーティングシステムのデフォルト設定が使用されます。.</p> <h4>構文</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="CPUHardLimit"><h3>CPUハードリミット<span class="ls-permlink"><a href="#CPUHardLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>CGIプロセスの最大CPU使用時間制限を秒単位で指定します。プロセスがCPU時間を消費してハードリミットに達すると、プロセスは強制終了されます。 値が存在しないか、<span class="val">0</span>に設定されている場合は、オペレーティングシステムのデフォルト設定が使用されます。</p> <h4>構文</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="memSoftLimit"><h3>メモリソフトリミット(バイト)<span class="ls-permlink"><a href="#memSoftLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>外部アプリケーション・プロセスまたはサーバーによって開始された外部アプリケーションのメモリー消費制限をバイト単位で指定します。<br/><br/> この制限の主な目的は、ソフトウェアのバグや意図的な攻撃のために過度のメモリ使用を防止し、通常の使用に制限を設けないことです。 十分なヘッドスペースを確保してください。そうしないと、アプリケーションが失敗し、503エラーが返される可能性があります。 サーバーレベルまたは個々の外部アプリケーションレベルで設定できます。 サーバーレベルの制限は、個々のアプリケーションレベルで設定されていない場合に使用されます。<br/><br/> オペレーティングシステムのデフォルト設定は、値が両方のレベルにないか、<span class="val">0</span>に設定されている場合に使用されます。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p>[注意]この制限を過度に調整しないでください。 アプリケーションでより多くのメモリが必要な場合は、503のエラーが発生する可能性があります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="memHardLimit"><h3>メモリハードリミット<span class="ls-permlink"><a href="#memHardLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>ソフトリミットをユーザープロセス内のハードリミットまで上げることができることを除けば、<span class="tagl"><a href="#memSoftLimit">メモリソフトリミット(バイト)</a></span>と同じくらい同じです。 ハード・リミットは、サーバー・レベルまたは個々の外部アプリケーション・レベルで設定できます。 サーバーレベルの制限は、個々のアプリケーションレベルで設定されていない場合に使用されます。 <br/><br/> 値が両方のレベルにないか、<span class="val">0</span>に設定されている場合、オペレーティングシステムのデフォルトが使用されます。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p><span title="Attention" class="ls-icon-attention"></span> Do not over adjust this limit. This may result in 503 errors if your application need more memory.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="procSoftLimit"><h3>プロセスソフトリミット<span class="ls-permlink"><a href="#procSoftLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>ユーザーに代わって作成できるプロセスの総数を制限します。 既存のすべてのプロセスは、開始される新しいプロセスだけでなく、この限度に対してカウントされます。 制限は、サーバーレベルまたは個々の外部アプリケーションレベルで設定できます。<br/> サーバーレベルの制限は、個々のアプリケーションレベルで設定されていない場合に使用されます。 この値が0または両方のレベルにない場合、オペレーティングシステムのデフォルト設定が使用されます。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> PHPスクリプトはプロセスをフォークするために呼び出すことができます。 この制限の主な目的は、フォーク爆弾や他のプロセスを作成するPHPプロセスによって引き起こされる他の攻撃を防ぐための最終防衛線です。<br/> この設定を低すぎると、機能が著しく損なわれる可能性があります。 この設定は特定のレベル以下では無視されます。<br/> suEXECデーモンモードを使用する場合、親プロセスが制限されないように、実際のプロセス制限はこの設定よりも高くなります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="procHardLimit"><h3>プロセスハードリミット<span class="ls-permlink"><a href="#procHardLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>ソフトリミットをユーザープロセス内のハードリミットまで上げることができることを除けば、<span class="tagl"><a href="#procSoftLimit">プロセスソフトリミット</a></span>とほとんど同じです。 ハードリミットは、サーバー・レベルまたは個々の外部アプリケーションレベルで設定できます。 サーバーレベルの制限は、個々のアプリケーションレベルで設定されていない場合に使用されます。 オペレーティングシステムのデフォルト値は、値が両方のレベルにないか、<span class="val">0</span>に設定されている場合に使用されます。</p> <h4>構文</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="cgroups"><h3>cgroups<span class="ls-permlink"><a href="#cgroups"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>A Linux kernel feature that limits, accounts for, and isolates the resource usage (CPU, memory, disk I/O, network, etc.) of a collection of processes. You must be running cgroups v2 which is determined by the existence of the file <span class="val">/sys/fs/cgroup/cgroup.controllers</span>.<br/><br/> Setting this to <span class="val">Disabled</span> at the Server level will disable this setting server-wide. In all other cases, the Server level setting can be overridden at the Virtual Host level.<br/><br/> Default values:<br/> <b>Server level:</b> Off<br/> <b>VH level:</b> Inherit Server level setting</p> <h4>構文</h4><p>ドロップダウンリストから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="lsrecaptcha"><h3>reCAPTCHA Protection<span class="ls-permlink"><a href="#lsrecaptcha"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>reCAPTCHA Protection is a service provided as a way to mitigate heavy server load. reCAPTCHA Protection will activate after one of the below situations is hit. Once active, all requests by NON TRUSTED(as configured) clients will be redirected to a reCAPTCHA validation page. After validation, the client will be redirected to their desired page.<br/><br/> The following situations will activate reCAPTCHA Protection:<br/> 1. The server or vhost concurrent requests count passes the configured connection limit.<br/> 2. Anti-DDoS is enabled and a client is hitting a url in a suspicious manner. The client will redirect to reCAPTCHA first instead of getting denied when triggered.<br/> 3. A new rewrite rule environment is provided to activate reCAPTCHA via RewriteRules. 'verifycaptcha' can be set to redirect clients to reCAPTCHA. A special value ': deny' can be set to deny the client if it failed too many times. For example, [E=verifycaptcha] will always redirect to reCAPTCHA until verified. [E=verifycaptcha: deny] will redirect to reCAPTCHA until Max Tries is hit, after which the client will be denied.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableRecaptcha"><h3>Enable reCAPTCHA<span class="ls-permlink"><a href="#enableRecaptcha"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Enable the reCAPTCHA Protection feature at the current level. This setting must be set to <span class="val">Yes</span> at the Server level before the reCAPTCHA Protection feature can be used.<br/><br/> Default values:<br/> <b>Server-level:</b> <span class="val">Yes</span><br/> <b>VH-Level:</b> Inherit Server level setting</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="recaptchaSiteKey"><h3>Site Key<span class="ls-permlink"><a href="#recaptchaSiteKey"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>The site key is the public key provided by Google via its reCAPTCHA service. A default Site Key will be used if not set.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="recaptchaSecretKey"><h3>Secret Key<span class="ls-permlink"><a href="#recaptchaSecretKey"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>The secret key is the private key provided by Google via its reCAPTCHA service. A default Secret Key will be used if not set.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="recaptchaType"><h3>reCAPTCHA Type<span class="ls-permlink"><a href="#recaptchaType"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Specify the reCAPTCHA type to use with the key pairs.<br/> If a key pair has not been provided and this setting is set to <span class="val">Not Set</span>, a default key pair of type <span class="val">Invisible</span> will be used.<br/><br/> <span class="val">Checkbox</span> will display a checkbox reCAPTCHA for the visitor to validate.<br/><br/> <span class="val">Invisible</span> will attempt to validate the reCAPTCHA automatically and if successful, will redirect to the desired page.<br/><br/> <span class="val">hCaptcha</span> can be used to support reCAPTCHA provider <a href="https://www.hcaptcha.com" target="_blank" rel="noopener noreferrer">hCaptcha</a>.<br/><br/> Default value is <span class="val">Invisible</span>.</p> <h4>構文</h4><p>ドロップダウンリストから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="recaptchaMaxTries"><h3>Max Tries<span class="ls-permlink"><a href="#recaptchaMaxTries"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Max Tries specifies the maximum number of reCAPTCHA attempts permitted before denying the visitor.<br/><br/> Default value is <span class="val">3</span>.</p> <h4>構文</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="recaptchaAllowedRobotHits"><h3>Allowed Robot Hits<span class="ls-permlink"><a href="#recaptchaAllowedRobotHits"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Number of hits per 10 seconds to allow ‘good bots’ to pass. Bots will still be throttled when the server is under load.<br/><br/> Default value is <span class="val">3</span>.</p> <h4>構文</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="recaptchaBotWhiteList"><h3>Bot White List<span class="ls-permlink"><a href="#recaptchaBotWhiteList"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>List of custom user agents to allow access. Will be subject to the ‘good bots’ limitations, including allowedRobotHits.</p> <h4>構文</h4><p>List of user agents, one per line. Regex is supported.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="recaptchaRegConnLimit"><h3>Connection Limit<span class="ls-permlink"><a href="#recaptchaRegConnLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>The number of concurrent connections (SSL & non-SSL) needed to activate reCAPTCHA. reCAPTCHA will be used until concurrent connections drop below this number.<br/><br/> Default value is <span class="val">15000</span>.</p> <h4>構文</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="recaptchaSslConnLimit"><h3>SSL Connection Limit<span class="ls-permlink"><a href="#recaptchaSslConnLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>The number of concurrent SSL connections needed to activate reCAPTCHA. reCAPTCHA will be used until concurrent connections drop below this number.<br/><br/> Default value is <span class="val">10000</span>.</p> <h4>構文</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="bubbleWrap"><h3>Bubblewrap Container<span class="ls-permlink"><a href="#bubbleWrap"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Set to <span class="val">Enabled</span> if you wish to start CGI processes (including PHP programs) in a bubblewrap sandbox. See <a href=" https://wiki.archlinux.org/title/Bubblewrap " target="_blank" rel="noopener noreferrer"> https://wiki.archlinux.org/title/Bubblewrap </a> for details on using bubblewrap. Bubblewrap must be installed on your system prior to using this setting.<br/><br/> This setting cannot be turned on at the Virtual Host level if set to "Disabled" at the Server level.<br/><br/> Default values:<br/> <b>Server level:</b> Disabled<br/> <b>VH level:</b> Inherit Server level setting</p> <h4>構文</h4><p>ドロップダウンリストから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="bubbleWrapCmd"><h3>Bubblewrap Command<span class="ls-permlink"><a href="#bubbleWrapCmd"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>The full bubblewrap use command, including the bubblewrap program itself. More on configuring this command can be found here: <a href=" https://openlitespeed.org/kb/bubblewrap-in-openlitespeed/ " target="_blank" rel="noopener noreferrer"> https://openlitespeed.org/kb/bubblewrap-in-openlitespeed/ </a>. If not specified, the default command listed below will be used.<br/><br/> Default value: <span class="cmd">/bin/bwrap --ro-bind /usr /usr --ro-bind /lib /lib --ro-bind-try /lib64 /lib64 --ro-bind /bin /bin --ro-bind /sbin /sbin --dir /var --dir /tmp --proc /proc --symlink ../tmp var/tmp --dev /dev --ro-bind-try /etc/localtime /etc/localtime --ro-bind-try /etc/ld.so.cache /etc/ld.so.cache --ro-bind-try /etc/resolv.conf /etc/resolv.conf --ro-bind-try /etc/ssl /etc/ssl --ro-bind-try /etc/pki /etc/pki --ro-bind-try /etc/man_db.conf /etc/man_db.conf --ro-bind-try /home/$USER /home/$USER --bind-try /var/lib/mysql/mysql.sock /var/lib/mysql/mysql.sock --bind-try /home/mysql/mysql.sock /home/mysql/mysql.sock --bind-try /tmp/mysql.sock /tmp/mysql.sock --unshare-all --share-net --die-with-parent --dir /run/user/$UID ‘$PASSWD 65534’ ‘$GROUP 65534’</span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="namespace"><h3>Namespace Container<span class="ls-permlink"><a href="#namespace"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Set to <span class="val">Enabled</span> if you wish to start CGI processes (including PHP programs) in a namespace container sandbox. Only used when <span class="tagl"><a href="ServSecurity_Help.html#bubbleWrap">Bubblewrap Container</a></span> is set to <span class="val">Disabled</span>.<br/><br/> When not <span class="val">Disabled</span> at the Server level, this settings value can be overridden at the Virtual Host level.<br/><br/> Default values:<br/> <b>Server level:</b> <span class="val">Disabled</span><br/> <b>Virtual Host Level:</b> Inherit Server level setting</p> <h4>構文</h4><p>ドロップダウンリストから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="namespaceConf"><h3>Namespace Template File<span class="ls-permlink"><a href="#namespaceConf"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Path to an existing configuration file containing a list of directories to be mounted along with the methods used to mount them. When <span class="tagl"><a href="ServSecurity_Help.html#namespace">Namespace Container</a></span> is set to <span class="val">Enabled</span> and this value is not set, the following secure default configuration settings will be used:<br/><br/> <span class="val"> $HOMEDIR/.lsns/tmp /tmp,tmp<br/> /usr,ro-bind<br/> /lib,ro-bind<br/> /lib64,ro-bind-try<br/> /bin,ro-bind<br/> /sbin,ro-bind<br/> /var,dir<br/> /var/www,ro-bind-try<br/> /proc,proc<br/> ../tmp var/tmp,symlink<br/> /dev,dev<br/> /etc/localtime,ro-bind-try<br/> /etc/ld.so.cache,ro-bind-try<br/> /etc/resolv.conf,ro-bind-try<br/> /etc/ssl,ro-bind-try<br/> /etc/pki,ro-bind-try<br/> /etc/man_db.conf,ro-bind-try<br/> /usr/local/bin/msmtp /etc/alternatives/mta,ro-bind-try<br/> /usr/local/bin/msmtp /usr/sbin/exim,ro-bind-try<br/> $HOMEDIR,bind-try<br/> /var/lib/mysql/mysql.sock,bind-try<br/> /home/mysql/mysql.sock,bind-try<br/> /tmp/mysql.sock,bind-try<br/> /run/mysqld/mysqld.sock,bind-try<br/> /var/run/mysqld.sock,bind-try<br/> /run/user/$UID,bind-try<br/> $PASSWD<br/> $GROUP<br/> /etc/exim.jail/$USER.conf $HOMEDIR/.msmtprc,copy-try<br/> /etc/php.ini,ro-bind-try<br/> /etc/php-fpm.conf,ro-bind-try<br/> /etc/php-fpm.d,ro-bind-try<br/> /var/run,ro-bind-try<br/> /var/lib,ro-bind-try<br/> /etc/imunify360/user_config/,ro-bind-try<br/> /etc/sysconfig/imunify360,ro-bind-try<br/> /opt/plesk/php,ro-bind-try<br/> /opt/alt,bind-try<br/> /opt/cpanel,bind-try<br/> /opt/psa,bind-try<br/> /var/lib/php/sessions,bind-try </span></p> <h4>構文</h4><p>絶対パス又は$SERVER_ROOTからの相対パス。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessDenyDir"><h3>アクセスが拒否されたディレクトリ<span class="ls-permlink"><a href="#accessDenyDir"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>アクセスをブロックするディレクトリを指定します。 重要なデータを含むディレクトリをこのリストに追加して、誤って機密ファイルをクライアントに公開しないようにします。 すべてのサブディレクトリを含めるためにパスに「*」を追加します。 <span class="tagl"><a href="#followSymbolLink">シンボリックリンクに従う</a></span>と<span class="tagl"><a href="#checkSymbolLink">シンボリックリンクを確認する</a></span>の両方を有効にすると、拒否されたディレクトリに対してシンボリックリンクがチェックされます。</p> <h4>構文</h4><p>ディレクトリのカンマ区切りリスト</p> <h4>ヒント</h4><p>[セキュリティ]重要な点:この設定では、これらのディレクトリから静的ファイルを提供することができません。 これは、PHP/Ruby/CGIなどの外部スクリプトによるエクスポージャーを防ぐものではありません。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessControl"><h3>アクセス制御<span class="ls-permlink"><a href="#accessControl"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>どのサブネットワークおよび/またはIPアドレスがサーバーにアクセスできるかを指定します。 サーバレベルでは、この設定はすべてのバーチャルホストに影響します。 バーチャルホストレベルで各バーチャルホストに固有のアクセス制御を設定することもできます。 バーチャルホストレベルの設定はサーバーレベルの設定を上書きしません。 <br/><br/> ブロック/ IPの許可は、許可リストと拒否リストの組み合わせによって決まります。 特定のIPまたはサブネットワークのみをブロックする場合は、<span class="tagl"><a href="#accessControl_allow">許可リスト</a></span>に<span class="val">*</span>または<span class="val">ALL</span>を入れ、ブロックされたIPまたはサブネットワークを<span class="tagl"><a href="#accessControl_deny">拒否リスト</a></span>。<br/> 特定のIPまたはサブネットワークのみを許可する場合は、<span class="tagl"><a href="#accessControl_deny">拒否リスト</a></span>に<span class="val">*</span>または<span class="val">ALL</span>を入れ、許可されたIPまたはサブネットワークを<span class="tagl"><a href="#accessControl_allow">許可リスト</a></span>。<br/> IPに適合する最小スコープの設定は、アクセスを決定するために使用されます。<br/><br/> <b>サーバーレベル:</b>信頼できるIPまたはサブネットワークは、<span class="tagl"><a href="#accessControl_allow">許可リスト</a></span>に、末尾の "T"を追加することで指定する必要があります。 信頼できるIPまたはサブネットワークは、接続/スロットリング制限の影響を受けません。 信頼できるIP/サブネットワークは、サーバーレベルのアクセス制御でのみ設定できます。</p> <h4>ヒント</h4><p>[セキュリティ]すべてのバーチャルホストに適用される一般的な制限については、サーバーレベルでこれを使用してください。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessControl_allow"><h3>許可リスト<span class="ls-permlink"><a href="#accessControl_allow"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>許可されるIPまたはサブネットワークのリストを指定します。 <span class="val">*</span>または<span class="val">ALL</span>が受け入れられます。</p> <h4>構文</h4><p>IPアドレスまたはサブネットワークのカンマ区切りリスト。 末尾の「T」は、<span class="val">192.168.1.*T</span>などの信頼できるIPまたはサブネットワークを示すために使用できます。</p> <h4>例</h4><div class="ls-example"><b>Sub-networks:</b> 192.168.1.0/255.255.255.0, 192.168.1.0/24, 192.168.1, or 192.168.1.*<br/> <b>IPv6 addresses:</b> ::1 or [::1] <br/> <b>IPv6 subnets:</b> 3ffe:302:11:2:20f:1fff:fe29:717c/64 or [3ffe:302:11:2:20f:1fff:fe29:717c]/64</div><h4>ヒント</h4><p>[セキュリティ]サーバーレベルのアクセス制御で設定された信頼されたIPまたはサブネットワークは、接続/スロットリングの制限から除外されます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessControl_deny"><h3>拒否リスト<span class="ls-permlink"><a href="#accessControl_deny"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>許可されていないIPまたはサブネットワークのリストを指定します。</p> <h4>構文</h4><p>IPアドレスまたはサブネットワークのカンマ区切りリスト。 <span class="val">*</span>または<span class="val">ALL</span>が受け入れられます。</p> <h4>例</h4><div class="ls-example"><b>Sub-networks:</b> 192.168.1.0/255.255.255.0, 192.168.1.0/24, 192.168.1, or 192.168.1.*<br/> <b>IPv6 addresses:</b> ::1 or [::1] <br/> <b>IPv6 subnets:</b> 3ffe:302:11:2:20f:1fff:fe29:717c/64 or [3ffe:302:11:2:20f:1fff:fe29:717c]/64</div></article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������ja-JP/Proxy_Context.html����������������������������������������������������������������������������0000644�����������������00000043336�15027525531�0011176 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Open LiteSpeed Web Serverユーザーズマニュアル - プロキシコンテキスト</title> <meta name="description" content="Open LiteSpeed Web Serverユーザーズマニュアル - プロキシコンテキスト." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="../img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h3 class="ls-text-thin">OpenLiteSpeed Web Server <a href="index.html"> ユーザーズマニュアル</a></h3> <h5 class="ls-text-muted">Version 1.8 — Rev. 0</h5> <hr/> <div> <ul> <li><a href="license.html">ライセンス</a></li> <li><a href="intro.html">はじめに</a></li> <li><a href="install.html">インストール</a></li> <li> <a href="admin.html">管理</a> <ul class="level2"> <li><a href="ServerStat_Help.html">サービスマネージャ</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">セキュリティ</a></li> <li><a href="config.html">設定</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">サーバー全般</a></li> <li><a href="ServLog_Help.html">サーバーログ</a></li> <li><a href="ServTuning_Help.html">サーバーのチューニング</a></li> <li><a href="ServSecurity_Help.html">サーバーのセキュリティ</a></li> <li><a href="ExtApp_Help.html">外部アプリ</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGIアプリ</a></li> <li><a href="External_FCGI_Auth.html">Fast CGIオーソライザー</a></li> <li><a href="External_LSAPI.html">LSAPIアプリ</a></li> <li><a href="External_Servlet.html">サーブレットエンジン</a></li> <li><a href="External_WS.html">Webサーバー</a></li> <li><a href="External_PL.html">パイプロガー</a></li> <li><a href="External_LB.html">ロードバランサ</a></li> </ul> <li><a href="ScriptHandler_Help.html">スクリプトハンドラ</a></li> <li><a href="Rails_Help.html">Rack/Railsの設定</a></li> <li><a href="Module_Help.html">モジュール設定</a></li> <li><a href="Listeners_General_Help.html">リスナー全般</a></li> <li><a href="Listeners_SSL_Help.html">リスナーのSSL</a></li> <li><a href="Templates_Help.html">テンプレート</a></li> <li><a href="VirtualHosts_Help.html">バーチャルホストの基本</a></li> <li><a href="VHGeneral_Help.html">バーチャルホスト全般</a></li> <li><a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a></li> <li><a href="VHSSL_Help.html">バーチャルホストのSSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">コンテキスト</a></li> <ul class="level3"> <li><a href="Static_Context.html">静的コンテテキスト</a></li> <li><a href="Java_Web_App_Context.html">Java Webアプリのコンテキスト</a></li> <li><a href="Servlet_Context.html">サーブレットコンテキスト</a></li> <li><a href="FCGI_Context.html">Fast CGIコンテキスト</a></li> <li><a href="LSAPI_Context.html">LSAPIコンテキスト</a></li> <li><span class="current"><a href="Proxy_Context.html">プロキシコンテキスト</a></span></li> <li><a href="CGI_Context.html">CGIコンテキスト</a></li> <li><a href="LB_Context.html">ロードバランサコンテキスト</a></li> <li><a href="Redirect_Context.html">コンテキストのリダイレクト</a></li> <li><a href="Rails_Context.html">Rack/Railsのコンテキスト</a></li> <li><a href="Module_Context.html">モジュールハンドラのコンテキスト</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socketプロキシ</a></li> </ul> </li> <li><a href="webconsole.html">Webコンソール</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">管理コンソール全般</a></li> <li><a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a></li> <li><a href="AdminListeners_General_Help.html">管理リスナー全般</a></li> <li><a href="AdminListeners_SSL_Help.html">管理リスナーのSSL</a></li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="LSAPI_Context.html">LiteSpeed SAPIコンテキスト</a></div><div class="center"><a href="Context_Help.html">コンテキスト</a></div><div class="next"><a href="CGI_Context.html">CGIコンテキスト</a> »</div></div> <h1>プロキシコンテキスト</h1><h2 id="top">目次</h2><section class="toc"><section class="toc-row"><header><a href="#proxyContext">プロキシコンテキスト</a></header><p> <a href="#expuri">URI</a> | <a href="#proxyWebServer">Webサーバー</a> | <a href="#extraHeaders">Extra Headers</a> | <a href="#realm">レルム</a> | <a href="#authName">認証名</a> | <a href="#required">必要(許可ユーザー/グループ)</a> | <a href="#accessAllowed">アクセス許可</a> | <a href="#accessDenied">アクセス拒否</a> | <a href="#extAuthorizer">承認者</a> | <a href="#addDefaultCharset">デフォルトの文字セットを追加</a> | <a href="#defaultCharsetCustomized">カスタマイズされたデフォルトの文字セット</a> | <a href="#enableIpGeo">IPジオロケーションを有効にする</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="proxyContext"><h3>プロキシコンテキスト<span class="ls-permlink"><a href="#proxyContext"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>プロキシコンテキストは、このバーチャルホストを透過的なリバースプロキシサーバとして有効にします。 このプロキシサーバーは、HTTPプロトコルをサポートするWebサーバーまたはアプリケーションサーバーの前で実行できます。 このバーチャルホストがプロキシする外部Webサーバーは、プロキシコンテキストを設定する前に<span class="tagP"><a href="#ExtApp_Help">外部アプリケーション</a></span>で定義されている必要があります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expuri"><h3>URI<span class="ls-permlink"><a href="#expuri"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストのURIを指定します。</p> <h4>構文</h4><p>URIは、プレーンURI( "/"で始まる)またはPerl互換の正規表現URI( "exp:"で始まる)にすることができます。 プレーンURIが "/"で終わる場合、このコンテキストはこのURIの下にすべてのサブURIを含みます。 コンテキストがファイルシステム上のディレクトリにマップされている場合は、末尾に「/」を追加する必要があります。</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#location">ロケーション</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="proxyWebServer"><h3>Webサーバー<span class="ls-permlink"><a href="#proxyWebServer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>外部Webサーバーの名前を指定します。 この外部Webサーバーは、サーバーまたはバーチャルホストレベルの<span class="tagP"><a href="#ExtApp_Help">外部アプリケーション</a></span>セクションで定義する必要があります。</p> <h4>構文</h4><p>選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extraHeaders"><h3>Extra Headers<span class="ls-permlink"><a href="#extraHeaders"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>追加される余分な応答ヘッダーを指定します。 1行に1つのヘッダーを追加できます。 親コンテンツから継承したヘッダーを無効にするには、"NONE"を入力します。</p> <h4>構文</h4><p>各行に "[HeaderName]: [HeaderValue]"</p> <h4>例</h4><div class="ls-example">Cache-control: no-cache, no-store <br/> My-header: Custom header value</div><h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> Syntax and usage are similar to <a href="https://httpd.apache.org/docs/2.2/mod/mod_headers.html#header" target="_blank" rel="noopener noreferrer">Apache's mod_headers directives</a> for supported operations.<br/><br/> <span title="Information" class="ls-icon-info"></span> The 'Header' directive is is optional and can be excluded or left in when copying rules from elsewhere without issue.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="realm"><h3>レルム<span class="ls-permlink"><a href="#realm"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストの認可レルムを指定します。 このコンテキストにアクセスするには、有効なユーザー名とパスワードを指定する必要があります。 <span class="tagl"><a href="VHSecurity_Help.html#realms">認可レルム</a></span>は<span class="tagP"><a href="#VHSecurity_Help">バーチャルホストのセキュリティ</a></span>セクションに設定されています。 この設定では、各レルムの<span class="tagl"><a href="VHSecurity_Help.html#realmName">レルム名</a></span>が使用されます。</p> <h4>構文</h4><p>選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="authName"><h3>認証名<span class="ls-permlink"><a href="#authName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>現在のコンテキストの認証レルムの代替名を指定します。 指定しない場合、元のレルム名が使用されます。 認証名は、ブラウザのログインポップアップに表示されます。</p> <h4>構文</h4><p>テキスト</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="required"><h3>必要(許可ユーザー/グループ)<span class="ls-permlink"><a href="#required"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストにアクセスできるユーザー/グループを指定します。 これにより、複数のコンテキストにわたって1つのユーザー/グループデータベース(<span class="tagl"><a href="#realm">レルム</a></span>で指定)を使用できますが、そのデータベースの特定のユーザー/グループのみがこのコンテキストにアクセスできます。</p> <h4>構文</h4><p>構文はApache Requireディレクティブと互換性があります。 例えば: <ul> <li><span class="val">user username [username ...]</span> <br/> リストされたユーザーだけがこのコンテキストにアクセスできます。</li> <li> <span class="val">group groupid [groupid ...]</span><br/> リストされたグループに属するユーザーのみがこのコンテキストにアクセスできます。</li> </ul> この設定を指定しないと、すべての有効なユーザーがこのリソースにアクセスできます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessAllowed"><h3>アクセス許可<span class="ls-permlink"><a href="#accessAllowed"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストでリソースにアクセスできるIPまたはサブネットワークを指定します。 <span class="tagl"><a href="#accessDenied">アクセス拒否</a></span>とサーバー/バーチャルホスト・レベルのアクセス制御とともに、アクセシビリティは、クライアントのIPアドレスが入る最小の範囲によって決まります。</p> <h4>構文</h4><p>IP/サブネットワークのカンマ区切りリスト。</p> <h4>例</h4><div class="ls-example">サブネットワークは以下のように書くことができます <span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span>, 又は <span class="val">192.168.1.*</span>.</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessDenied"><h3>アクセス拒否<span class="ls-permlink"><a href="#accessDenied"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストでリソースにアクセスできないIPまたはサブネットワークを指定します。 <span class="tagl"><a href="#accessAllowed">アクセス許可</a></span>とサーバー/バーチャルホストレベルのアクセス制御とともに、アクセシビリティはクライアントのIPアドレスが入る最小の範囲で決まります。</p> <h4>構文</h4><p>IP/サブネットワークのカンマ区切りリスト。</p> <h4>例</h4><div class="ls-example">サブネットワークは以下のように書くことができます <span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span>, 又は <span class="val">192.168.1.*</span>.</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAuthorizer"><h3>承認者<span class="ls-permlink"><a href="#extAuthorizer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>権限のある/権限のないかの決定を生成するために使用できる外部アプリケーションを指定します。 現在、FastCGI Authorizerのみが使用可能です。 FastCGI Authorizerの役割の詳細については、<a href=" https://fastcgi-archives.github.io/ " target="_blank" rel="noopener noreferrer"> https://fastcgi-archives.github.io/ </a>を参照してください。 。</p> <h4>構文</h4><p>ドロップダウンリストから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="addDefaultCharset"><h3>デフォルトの文字セットを追加<span class="ls-permlink"><a href="#addDefaultCharset"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>コンテンツタイプが "text/html"または "text/plain"のいずれかのパラメータがない場合、文字セットタグを "Content-Type"レスポンスヘッダーに追加するかどうかを指定します。 <span class="val">Off</span>に設定すると、この機能は無効になります。 <span class="val">On</span>に設定すると、<span class="tagl"><a href="#defaultCharsetCustomized">カスタマイズされたデフォルトの文字セット</a></span>で指定された文字セットまたはデフォルトの "iso-8859-1"のいずれかが追加されます。</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="defaultCharsetCustomized"><h3>カスタマイズされたデフォルトの文字セット<span class="ls-permlink"><a href="#defaultCharsetCustomized"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p><span class="tagl"><a href="#addDefaultCharset">デフォルトの文字セットを追加</a></span>が<span class="val">On</span>のときに使用される文字セットを指定します。 これはオプションです。 デフォルト値は<span class="val"> iso-8859-1 </span>です。 <span class="tagl"><a href="#addDefaultCharset">デフォルトの文字セットを追加</a></span>が<span class="val"> Off </span>の場合、このエントリは無効です。</p> <h4>構文</h4><p>文字セットの名前。</p> <h4>例</h4><div class="ls-example">utf-8</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableIpGeo"><h3>IPジオロケーションを有効にする<span class="ls-permlink"><a href="#enableIpGeo"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p> IPジオロケーション検索を有効/無効にするかどうかを指定します。 サーバ、バーチャルホスト、コンテキストレベルで設定できます。 値 「未設定」を使用すると、IPジオロケーションはデフォルトで無効になります。</p> <h4>構文</h4><p>ラジオボックスから選択</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="ServGeneral_Help.html#useIpInProxyHeader">ヘッダーにクライアントIPを使用する</a></span>, <span class="tagl"><a href="ServGeneral_Help.html#geoipDBFile">DBファイルのパス</a></span>,</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ��������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������ja-JP/security.html���������������������������������������������������������������������������������0000644�����������������00000026070�15027525531�0010214 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Open LiteSpeed Web Serverユーザーズマニュアル - セキュリティ</title> <meta name="description" content="Open LiteSpeed Web Serverユーザーズマニュアル - セキュリティ." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="../img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h3 class="ls-text-thin">OpenLiteSpeed Web Server <a href="index.html"> ユーザーズマニュアル</a></h3> <h5 class="ls-text-muted">Version 1.8 — Rev. 0</h5> <hr/> <div> <ul> <li><a href="license.html">ライセンス</a></li> <li><a href="intro.html">はじめに</a></li> <li><a href="install.html">インストール</a></li> <li> <a href="admin.html">管理</a> <ul class="level2"> <li><a href="ServerStat_Help.html">サービスマネージャ</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><span class="current"><a href="security.html">セキュリティ</a></span></li> <li><a href="config.html">設定</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">サーバー全般</a></li> <li><a href="ServLog_Help.html">サーバーログ</a></li> <li><a href="ServTuning_Help.html">サーバーのチューニング</a></li> <li><a href="ServSecurity_Help.html">サーバーのセキュリティ</a></li> <li><a href="ExtApp_Help.html">外部アプリ</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGIアプリ</a></li> <li><a href="External_FCGI_Auth.html">Fast CGIオーソライザー</a></li> <li><a href="External_LSAPI.html">LSAPIアプリ</a></li> <li><a href="External_Servlet.html">サーブレットエンジン</a></li> <li><a href="External_WS.html">Webサーバー</a></li> <li><a href="External_PL.html">パイプロガー</a></li> <li><a href="External_LB.html">ロードバランサ</a></li> </ul> <li><a href="ScriptHandler_Help.html">スクリプトハンドラ</a></li> <li><a href="Rails_Help.html">Rack/Railsの設定</a></li> <li><a href="Module_Help.html">モジュール設定</a></li> <li><a href="Listeners_General_Help.html">リスナー全般</a></li> <li><a href="Listeners_SSL_Help.html">リスナーのSSL</a></li> <li><a href="Templates_Help.html">テンプレート</a></li> <li><a href="VirtualHosts_Help.html">バーチャルホストの基本</a></li> <li><a href="VHGeneral_Help.html">バーチャルホスト全般</a></li> <li><a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a></li> <li><a href="VHSSL_Help.html">バーチャルホストのSSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">コンテキスト</a></li> <ul class="level3"> <li><a href="Static_Context.html">静的コンテテキスト</a></li> <li><a href="Java_Web_App_Context.html">Java Webアプリのコンテキスト</a></li> <li><a href="Servlet_Context.html">サーブレットコンテキスト</a></li> <li><a href="FCGI_Context.html">Fast CGIコンテキスト</a></li> <li><a href="LSAPI_Context.html">LSAPIコンテキスト</a></li> <li><a href="Proxy_Context.html">プロキシコンテキスト</a></li> <li><a href="CGI_Context.html">CGIコンテキスト</a></li> <li><a href="LB_Context.html">ロードバランサコンテキスト</a></li> <li><a href="Redirect_Context.html">コンテキストのリダイレクト</a></li> <li><a href="Rails_Context.html">Rack/Railsのコンテキスト</a></li> <li><a href="Module_Context.html">モジュールハンドラのコンテキスト</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socketプロキシ</a></li> </ul> </li> <li><a href="webconsole.html">Webコンソール</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">管理コンソール全般</a></li> <li><a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a></li> <li><a href="AdminListeners_General_Help.html">管理リスナー全般</a></li> <li><a href="AdminListeners_SSL_Help.html">管理リスナーのSSL</a></li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="admin.html">管理</a></div><div class="center"><a href="index.html">ホーム</a></div><div class="next"><a href="config.html">設定</a> »</div></div> <h1>セキュリティ</h1> <p>LiteSpeed Web Serverは、セキュリティを最優先事項として設計されています。 LSWSはSSLをサポートし、サーバおよびバーチャルホストレベルでのアクセス制御、コンテキスト固有の領域保護を備えています。 これらの標準機能に加えて、LSWSには次の特別なセキュリティ機能もあります: </p> <ol> <li><h3>接続レベルの制限:</h3> <ul> <li>IPレベルのスロットリングにより、接続数に関係なく、単一のIPアドレスとの間でネットワーク帯域幅が制限されます。</li> <li> IPレベルの接続アカウンティングは、単一のIPアドレスからの同時接続数を制限します。 WebAdminコンソールで、接続のソフト制限、接続ハード制限、猶予期間、および禁止期間設定を使用してこれを制御できます。 </li> </ul> </li> <li><h3>リクエストのチェック:</h3> <p> すべてのHTTPリクエストは、LiteSpeed Web Serverによって検証されます。"/" デコードされたURLでは許可されないため、隠しファイルや親ディレクトリへのアクセスが拒否されます。</p> <p>要求サイズは、LiteSpeed Web Serverの最大要求URL長、最大要求ヘッダー長、および最大要求本体長設定によって制限されます。</p> </li> <li><h3>静的ファイルのチェック:</h3> <p>LiteSpeed Web Serverは、次の条件を満たす場合にのみ静的ファイルを提供します:</p> <ul> <li>このファイルは誰でも読むことができます。</li> <li>ファイルが実行可能ではありません。</li> <li>ファイルがアクセス拒否ディレクトリリストにありません。</li> <li>シンボリックリンクが許可されていない場合、ファイルにシンボリックリンクは含まれません。 </li> <li>デフォルトでは、LiteSpeed Web Serverはファイルをリスト表示してディレクトリのインデックスを作成しません。明示的に有効にする必要があります。</li> </ul> </li> <li><h3>外部アプリケーションファイアウォール:</h3> <p>LiteSpeed Web Serverは、動的コンテンツを処理/生成するために要求を外部アプリケーションに転送します。 これらのアプリケーションは、多くのシステムリソースを使用できます。 たとえば、スワップスペースを使用する必要がある場合など、システムリソース消費量が一定のポイントに達すると、システム全体のパフォーマンスが著しく低下します。 DoS攻撃を実行する1つの方法は、煩雑な外部アプリケーションへの同時リクエストをWebサーバーに氾濫させることです。</p> <p>LiteSpeed Web Serverは、要求をパイプライン処理し、外部アプリケーションの同時使用レベルを制御して、システムリソースの過消費を防ぎます。 LSWSは要求をキャッシュし、完了した要求のみを外部アプリケーションに転送します。 つまり、サーバーがリクエストを受信している間に、外部アプリケーションが待機することはありません。 LSWSはまた、外部アプリケーションの応答をキャッシュして、応答が完了するとすぐに外部アプリケーションを解放し、クライアントが完全な応答を受け取るのを待つ必要がないようにします。 このようにして、サーバーはより少ない外部アプリケーション・インスタンスを使用してより多くの同時要求を処理し、より高いパフォーマンスとスケーラビリティーを達成することができます。 LiteSpeed Web Serverは、独自のバーチャルメモリを使用して要求と応答の本体をキャッシュし、パフォーマンスを犠牲にせずにシステムメモリの使用を最小限に抑えます。 </p></li> <li><h3>CGIリソースの消費制限:</h3> <p>LiteSpeed Web Serverは、CGIアプリケーションで使用できるシステムリソースの量を制限します。 CGIスクリプトへのリクエストごとに、Webサーバーはそれを処理するためにスタンドアロンCGIプロセスを開始する必要があります。 Unixシステムでは、並行プロセスの数が制限されています。 CGIリソースの消費制限により、Webサーバーが起動できる同時CGIインスタンスの最大数を構成できます。 過度の並行プロセスは、システム全体のパフォーマンスを低下させます。 (CGIプロセスはDoS攻撃の一般的な武器です。) CGIアプリケーションによって生成されるプロセスの数を制御するために、ユーザーごとにシステムプロセスの制限を指定することができます。 各プロセスは、CPUとメモリの制限によってさらに制限されます。</p> </li> <li><h3>suEXECによる強化されたCGI/FastCGIセキュリティ</h3> <p>CGIまたはFast CGIスクリプトのセキュリティリスクを軽減するため、LiteSpeed Web ServerはCGIスクリプトが "suEXEC"モードで実行することでアクセスできるシステムリソースを制限できます。 "suEXEC"は、WebサーバーのユーザーIDとは異なるユーザーIDを持つCGIまたはFast CGIスクリプトを開始します。 これにより、あるユーザーのCGIスクリプトが他のユーザーのファイルにアクセスするのを防ぐことで、共有ホスティング環境のセキュリティが大幅に向上します。</p> </li> </ol> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������ja-JP/config.html�����������������������������������������������������������������������������������0000644�����������������00000030252�15027525531�0007607 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Open LiteSpeed Web Serverユーザーズマニュアル - 設定</title> <meta name="description" content="Open LiteSpeed Web Serverユーザーズマニュアル - 設定." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="../img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h3 class="ls-text-thin">OpenLiteSpeed Web Server <a href="index.html"> ユーザーズマニュアル</a></h3> <h5 class="ls-text-muted">Version 1.8 — Rev. 0</h5> <hr/> <div> <ul> <li><a href="license.html">ライセンス</a></li> <li><a href="intro.html">はじめに</a></li> <li><a href="install.html">インストール</a></li> <li> <a href="admin.html">管理</a> <ul class="level2"> <li><a href="ServerStat_Help.html">サービスマネージャ</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">セキュリティ</a></li> <li><span class="current"><a href="config.html">設定</a></span> <ul class="level2"> <li><a href="ServGeneral_Help.html">サーバー全般</a></li> <li><a href="ServLog_Help.html">サーバーログ</a></li> <li><a href="ServTuning_Help.html">サーバーのチューニング</a></li> <li><a href="ServSecurity_Help.html">サーバーのセキュリティ</a></li> <li><a href="ExtApp_Help.html">外部アプリ</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGIアプリ</a></li> <li><a href="External_FCGI_Auth.html">Fast CGIオーソライザー</a></li> <li><a href="External_LSAPI.html">LSAPIアプリ</a></li> <li><a href="External_Servlet.html">サーブレットエンジン</a></li> <li><a href="External_WS.html">Webサーバー</a></li> <li><a href="External_PL.html">パイプロガー</a></li> <li><a href="External_LB.html">ロードバランサ</a></li> </ul> <li><a href="ScriptHandler_Help.html">スクリプトハンドラ</a></li> <li><a href="Rails_Help.html">Rack/Railsの設定</a></li> <li><a href="Module_Help.html">モジュール設定</a></li> <li><a href="Listeners_General_Help.html">リスナー全般</a></li> <li><a href="Listeners_SSL_Help.html">リスナーのSSL</a></li> <li><a href="Templates_Help.html">テンプレート</a></li> <li><a href="VirtualHosts_Help.html">バーチャルホストの基本</a></li> <li><a href="VHGeneral_Help.html">バーチャルホスト全般</a></li> <li><a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a></li> <li><a href="VHSSL_Help.html">バーチャルホストのSSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">コンテキスト</a></li> <ul class="level3"> <li><a href="Static_Context.html">静的コンテテキスト</a></li> <li><a href="Java_Web_App_Context.html">Java Webアプリのコンテキスト</a></li> <li><a href="Servlet_Context.html">サーブレットコンテキスト</a></li> <li><a href="FCGI_Context.html">Fast CGIコンテキスト</a></li> <li><a href="LSAPI_Context.html">LSAPIコンテキスト</a></li> <li><a href="Proxy_Context.html">プロキシコンテキスト</a></li> <li><a href="CGI_Context.html">CGIコンテキスト</a></li> <li><a href="LB_Context.html">ロードバランサコンテキスト</a></li> <li><a href="Redirect_Context.html">コンテキストのリダイレクト</a></li> <li><a href="Rails_Context.html">Rack/Railsのコンテキスト</a></li> <li><a href="Module_Context.html">モジュールハンドラのコンテキスト</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socketプロキシ</a></li> </ul> </li> <li><a href="webconsole.html">Webコンソール</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">管理コンソール全般</a></li> <li><a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a></li> <li><a href="AdminListeners_General_Help.html">管理リスナー全般</a></li> <li><a href="AdminListeners_SSL_Help.html">管理リスナーのSSL</a></li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="security.html">セキュリティ</a></div><div class="center"><a href="index.html">ホーム</a></div><div class="next"><a href="webconsole.html">Webコンソール</a> »</div></div> <h1>設定</h1> <section> <a name="con"></a><h3><b>コンセプト</b></h3> <p>ここでは、設定の詳細に入る前に知っておくべき基本的な概念をいくつか紹介します。</p> <a name="vh"></a><h3>バーチャルホスト</h3> <p>LiteSpeed Webサーバーは、1つのサーバーインスタンスで複数のWebサイト(バーチャルホスト)をホストできます。</p> <p>従来、バーチャルホストは、IPベースのバーチャルホストと名前ベースのバーチャルホストの2種類に分類されていました。 IPベースのバーチャルホストは、独自の一意のIPアドレスを持つWebサイトです。 名前ベースのバーチャルホストは、ドメイン名で区別されるWebサイトであるため、他のサイトとIPアドレスを共有することができます。 LiteSpeed Web Serverでは、これらの2つのカテゴリが明確に区別されていません。 IPベースのバーチャルホストは、特殊な名前ベースのバーチャルホストと見なされます。 どちらも簡単に構成することも、一緒に混合することもできます。</p> <p>他のWebサーバーと異なり、LiteSpeed Web Serverには既定のWebサイトはありません。 1つのWebサイトだけがホストされていても、すべてのWebサイトはバーチャルホストとして構成されます。</p> <a name="l"></a><h3>リスナー</h3> <p>LiteSpeed Web Serverでは、リスナは特定のIPアドレスとTCPポートをリッスンするサーバーソケットです。 Webサーバーを建物と見なした場合、リスナーはドア(それぞれが独自のIPアドレスとポートを持つ)です。 クライアント(ブラウザ)は、リクエストを送信するためにドア(リスナー)を通過する必要があります。</p> <p>各リスナーに対して、IPアドレスとポート番号を指定する必要があります。 IPアドレスは任意の有効なローカルIPアドレスにすることができます。また、そのマシン上で使用可能なすべてのIPアドレスを参照するワイルドカードIP(*)を設定することもできます。 ポートは0〜65535の整数です。 HTTPのデフォルトのポートは80で、HTTPSの場合は443です。 UNIXマシンでは他のポートも使用できますが、スーパーユーザーのrootのみが1024未満のポートを使用する権限を持っています。</p> <p>IPとポートの組み合わせごとに1つのリスナーのみが許可されます。 したがって、リスナーがワイルドカードIPアドレスを持つ1つのポートに設定されている場合、特定のIPを指定しても、別のリスナーを同じポートに設定することはできません。 たとえば、Webサーバマシンに複数のIPアドレスがあり、すべてのIPアドレスに対してポート8080でHTTPトラフィックを許可する必要がある場合は、次の2つの方法で設定できます。 ワイルドカードIP(*)とポート8080を使用して1つのリスナーを設定するか、各IPに1つのリスナーを複数設定し、すべてをポート8080でリッスンします。 これらの2つの方法を1つのポートで混在させることはできません。/p> <p>LiteSpeed Web Serverには、プレーンとセキュア(SSL)の2種類のリスナーがあります。 各セキュアリスナーには、ペアのSSL秘密鍵とSSL証明書が必要です。 秘密鍵は、OpenSSLのようなSSLツールキットで生成することができます。 SSL証明書は、自己署名することも、VeriSignやThawteなどのSSL証明書発行者から取得することもできます。 複数のリスナー間で同じ秘密鍵と証明書のペアを共有できます。</p> <a name="map"></a><h3>リスナーからバーチャルホストへのマッピング</h3> <p>LiteSpeedリスナーからバーチャル・ホスト・マッピングへの柔軟性により、次のことが可能になります:</p> <ul> <li>1つのリスナーを1つのバーチャルホストにマッピングします。</li> <li>1つのリスナを異なるドメイン名の異なるバーチャルホストにマッピングします。</li> <li>複数のリスナーを同じバーチャルホストにマップします。</li> <li>ドメイン名に応じて、複数のバーチャルホストに複数のリスナーをマップします。</li> </ul> <p>リスナーからバーチャルホストへのマッピングでは、すべてのリスナーには、特定のバーチャルホスト(値)のドメイン名(キー)を指定するキーと値のペアを持つバーチャルホストルックアップテーブルがあります。</p> <p>ブラウザがWebサーバーからWebページを取得しようとすると、まずDNSルックアップを使用して、そのドメイン名に関連付けられたIPアドレスが検索されます。 次に、特定のIPとポート上のWebサーバーとのTCP接続を確立する要求を送信します。 そのIPとポートにリスナーが割り当てられている場合は、接続が確立されます。 ブラウザはHTTPリクエストを送信します.HTTPリクエストには、アクセスされているWebサイトのドメイン名がヘッダーに含まれています。 Webサーバーは、リクエスト内のドメイン名について、そのリスナーに関連付けられているルックアップテーブルをチェックします。 一致するものが見つかると、要求はバーチャルホストにルーティングされて処理されます。</p> <p>特定のリスナーを介してバーチャルホストにアクセスできるようにするには、次の点を確認する必要があります:</p> <ol> <li> DNSは、Webサイトのドメイン名をそのリスナーが使用するIPにマップするように正しく設定されています。 DNSの設定方法はこのドキュメントの範囲を超えています。</li> <li>リスナのルックアップテーブルには、そのドメイン名のバーチャルホストへのマッピングが存在します。</li> </ol> <p>ワイルドカードドメイン名「*」を持つ1つのリスナーに対してキャッチオールバーチャルホストを指定できます。 サーバーが一致するバーチャルホストを見つけることができない場合、要求はキャッチオールバーチャルホストにルーティングされます。 そのようなキャッチオールバーチャルホストが設定されていない場合、Webサーバはエラーコード404を返します。</p> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������ja-JP/External_WS.html������������������������������������������������������������������������������0000644�����������������00000027062�15027525531�0010542 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Open LiteSpeed Web Serverユーザーズマニュアル - Webサーバ</title> <meta name="description" content="Open LiteSpeed Web Serverユーザーズマニュアル - Webサーバ." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="../img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h3 class="ls-text-thin">OpenLiteSpeed Web Server <a href="index.html"> ユーザーズマニュアル</a></h3> <h5 class="ls-text-muted">Version 1.8 — Rev. 0</h5> <hr/> <div> <ul> <li><a href="license.html">ライセンス</a></li> <li><a href="intro.html">はじめに</a></li> <li><a href="install.html">インストール</a></li> <li> <a href="admin.html">管理</a> <ul class="level2"> <li><a href="ServerStat_Help.html">サービスマネージャ</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">セキュリティ</a></li> <li><a href="config.html">設定</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">サーバー全般</a></li> <li><a href="ServLog_Help.html">サーバーログ</a></li> <li><a href="ServTuning_Help.html">サーバーのチューニング</a></li> <li><a href="ServSecurity_Help.html">サーバーのセキュリティ</a></li> <li><a href="ExtApp_Help.html">外部アプリ</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGIアプリ</a></li> <li><a href="External_FCGI_Auth.html">Fast CGIオーソライザー</a></li> <li><a href="External_LSAPI.html">LSAPIアプリ</a></li> <li><a href="External_Servlet.html">サーブレットエンジン</a></li> <li><span class="current"><a href="External_WS.html">Webサーバー</a></span></li> <li><a href="External_PL.html">パイプロガー</a></li> <li><a href="External_LB.html">ロードバランサ</a></li> </ul> <li><a href="ScriptHandler_Help.html">スクリプトハンドラ</a></li> <li><a href="Rails_Help.html">Rack/Railsの設定</a></li> <li><a href="Module_Help.html">モジュール設定</a></li> <li><a href="Listeners_General_Help.html">リスナー全般</a></li> <li><a href="Listeners_SSL_Help.html">リスナーのSSL</a></li> <li><a href="Templates_Help.html">テンプレート</a></li> <li><a href="VirtualHosts_Help.html">バーチャルホストの基本</a></li> <li><a href="VHGeneral_Help.html">バーチャルホスト全般</a></li> <li><a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a></li> <li><a href="VHSSL_Help.html">バーチャルホストのSSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">コンテキスト</a></li> <ul class="level3"> <li><a href="Static_Context.html">静的コンテテキスト</a></li> <li><a href="Java_Web_App_Context.html">Java Webアプリのコンテキスト</a></li> <li><a href="Servlet_Context.html">サーブレットコンテキスト</a></li> <li><a href="FCGI_Context.html">Fast CGIコンテキスト</a></li> <li><a href="LSAPI_Context.html">LSAPIコンテキスト</a></li> <li><a href="Proxy_Context.html">プロキシコンテキスト</a></li> <li><a href="CGI_Context.html">CGIコンテキスト</a></li> <li><a href="LB_Context.html">ロードバランサコンテキスト</a></li> <li><a href="Redirect_Context.html">コンテキストのリダイレクト</a></li> <li><a href="Rails_Context.html">Rack/Railsのコンテキスト</a></li> <li><a href="Module_Context.html">モジュールハンドラのコンテキスト</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socketプロキシ</a></li> </ul> </li> <li><a href="webconsole.html">Webコンソール</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">管理コンソール全般</a></li> <li><a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a></li> <li><a href="AdminListeners_General_Help.html">管理リスナー全般</a></li> <li><a href="AdminListeners_SSL_Help.html">管理リスナーのSSL</a></li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="External_Servlet.html">サーブレットエンジン</a></div><div class="center"><a href="ExtApp_Help.html">外部アプリケーション</a></div><div class="next"><a href="External_PL.html">パイプロガー</a> »</div></div> <h1>Webサーバ</h1><h2 id="top">目次</h2><section class="toc"><section class="toc-row"><header>Webサーバー</header><p> <a href="#extAppName">名前</a> | <a href="#expWSAddress">アドレス</a> | <a href="#maxConns">最大接続数</a> | <a href="#pcKeepAliveTimeout">キープアライブタイムアウト(秒)</a> | <a href="#env">環境</a> | <a href="#initTimeout">初期要求タイムアウト(秒)</a> | <a href="#retryTimeout">リトライタイムアウト(秒)</a> | <a href="#respBuffer">応答バッファリング</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="extAppName"><h3>名前<span class="ls-permlink"><a href="#extAppName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>この外部アプリケーションの一意の名前。 設定の他の部分でこの名前を使用するときは、この名前で参照します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expWSAddress"><h3>アドレス<span class="ls-permlink"><a href="#expWSAddress"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>外部Webサーバーによって使用されるHTTPまたはHTTPSアドレス。</p> <h4>構文</h4><p>IPv4またはIPV6アドレス(:ポート)。 外部Webサーバーがhttpsを使用する場合は、先頭に「https://」を追加します。 外部Webサーバーが標準ポート80または443を使用する場合、ポートはオプションです。</p> <h4>例</h4><div class="ls-example">192.168.0.10 <br/> 127.0.0.1:5434<br/> https://10.0.8.9<br/> https://127.0.0.1:5438</div><h4>ヒント</h4><p>[セキュリティ]同じマシン上で実行されている別のWebサーバーにプロキシする場合は、IPアドレスを<span class="val">localhost</span>または<span class="val">127.0.0.1</span>に設定します。 外部アプリケーションは他のマシンからはアクセスできません。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxConns"><h3>最大接続数<span class="ls-permlink"><a href="#maxConns"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>サーバーと外部アプリケーションの間で確立できる同時接続の最大数を指定します。 この設定は、外部アプリケーションによって同時に処理できる要求の数を制御しますが、実際の制限は外部アプリケーション自体によっても異なります。 この値を高く設定すると、外部アプリケーションの速度が不十分であるか、多数の同時要求に対応できない場合に役立ちません。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p>[パフォーマンス]高い値を設定しても、高いパフォーマンスに直接変換されるわけではありません。 制限を外部アプリケーションに負荷をかけない値に設定すると、最高のパフォーマンス/スループットが得られます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="pcKeepAliveTimeout"><h3>キープアライブタイムアウト(秒)<span class="ls-permlink"><a href="#pcKeepAliveTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>アイドル状態の永続的な接続を開いたままにする最大時間を指定します。 "-1"に設定すると、接続はタイムアウトしません。 0以上に設定すると、この時間が経過した後に接続が閉じられます。</p> <h4>構文</h4><p>int</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="env"><h3>環境<span class="ls-permlink"><a href="#env"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>外部アプリケーション用の追加の環境変数を指定します。</p> <h4>構文</h4><p>Key=value. 複数の変数は "ENTER"で区切ることができます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="initTimeout"><h3>初期要求タイムアウト(秒)<span class="ls-permlink"><a href="#initTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>サーバーが、新しいアプリケーションが新しい確立された接続を介して最初の要求に応答するのを待つ最長時間を秒単位で指定します。 サーバーがこのタイムアウト制限内に外部アプリケーションからデータを受信しない場合、この接続は不良とマークされます。 これにより、外部アプリケーションとの通信の問題をできるだけ迅速に特定することができます。 処理に時間がかかるリクエストがある場合は、この制限を増やして503のエラー・メッセージを避けてください。</p> <h4>構文</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="retryTimeout"><h3>リトライタイムアウト(秒)<span class="ls-permlink"><a href="#retryTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>以前の通信に問題があった外部アプリケーションを再試行する前に、サーバーが待機する時間を指定します。</p> <h4>構文</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="respBuffer"><h3>応答バッファリング<span class="ls-permlink"><a href="#respBuffer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>外部から受信した応答をバッファリングするかどうかを指定します。 アプリケーション。 "nph-" (Non-Parsed-Header)スクリプトが検出された場合、完全なHTTPヘッダーを持つ応答ではバッファリングがオフになります。</p> <h4>構文</h4><p>ドロップダウンリストから選択</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������ja-JP/Redirect_Context.html�������������������������������������������������������������������������0000644�����������������00000040160�15027525531�0011606 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Open LiteSpeed Web Serverユーザーズマニュアル - リダイレクトコンテキスト</title> <meta name="description" content="Open LiteSpeed Web Serverユーザーズマニュアル - リダイレクトコンテキスト." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="../img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h3 class="ls-text-thin">OpenLiteSpeed Web Server <a href="index.html"> ユーザーズマニュアル</a></h3> <h5 class="ls-text-muted">Version 1.8 — Rev. 0</h5> <hr/> <div> <ul> <li><a href="license.html">ライセンス</a></li> <li><a href="intro.html">はじめに</a></li> <li><a href="install.html">インストール</a></li> <li> <a href="admin.html">管理</a> <ul class="level2"> <li><a href="ServerStat_Help.html">サービスマネージャ</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">セキュリティ</a></li> <li><a href="config.html">設定</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">サーバー全般</a></li> <li><a href="ServLog_Help.html">サーバーログ</a></li> <li><a href="ServTuning_Help.html">サーバーのチューニング</a></li> <li><a href="ServSecurity_Help.html">サーバーのセキュリティ</a></li> <li><a href="ExtApp_Help.html">外部アプリ</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGIアプリ</a></li> <li><a href="External_FCGI_Auth.html">Fast CGIオーソライザー</a></li> <li><a href="External_LSAPI.html">LSAPIアプリ</a></li> <li><a href="External_Servlet.html">サーブレットエンジン</a></li> <li><a href="External_WS.html">Webサーバー</a></li> <li><a href="External_PL.html">パイプロガー</a></li> <li><a href="External_LB.html">ロードバランサ</a></li> </ul> <li><a href="ScriptHandler_Help.html">スクリプトハンドラ</a></li> <li><a href="Rails_Help.html">Rack/Railsの設定</a></li> <li><a href="Module_Help.html">モジュール設定</a></li> <li><a href="Listeners_General_Help.html">リスナー全般</a></li> <li><a href="Listeners_SSL_Help.html">リスナーのSSL</a></li> <li><a href="Templates_Help.html">テンプレート</a></li> <li><a href="VirtualHosts_Help.html">バーチャルホストの基本</a></li> <li><a href="VHGeneral_Help.html">バーチャルホスト全般</a></li> <li><a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a></li> <li><a href="VHSSL_Help.html">バーチャルホストのSSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">コンテキスト</a></li> <ul class="level3"> <li><a href="Static_Context.html">静的コンテテキスト</a></li> <li><a href="Java_Web_App_Context.html">Java Webアプリのコンテキスト</a></li> <li><a href="Servlet_Context.html">サーブレットコンテキスト</a></li> <li><a href="FCGI_Context.html">Fast CGIコンテキスト</a></li> <li><a href="LSAPI_Context.html">LSAPIコンテキスト</a></li> <li><a href="Proxy_Context.html">プロキシコンテキスト</a></li> <li><a href="CGI_Context.html">CGIコンテキスト</a></li> <li><a href="LB_Context.html">ロードバランサコンテキスト</a></li> <li><span class="current"><a href="Redirect_Context.html">コンテキストのリダイレクト</a></span></li> <li><a href="Rails_Context.html">Rack/Railsのコンテキスト</a></li> <li><a href="Module_Context.html">モジュールハンドラのコンテキスト</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socketプロキシ</a></li> </ul> </li> <li><a href="webconsole.html">Webコンソール</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">管理コンソール全般</a></li> <li><a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a></li> <li><a href="AdminListeners_General_Help.html">管理リスナー全般</a></li> <li><a href="AdminListeners_SSL_Help.html">管理リスナーのSSL</a></li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="LB_Context.html">ロードバランサコンテキスト</a></div><div class="center"><a href="Context_Help.html">コンテキスト</a></div><div class="next"><a href="App_Server_Context.html">App Server Context</a> »</div></div> <h1>リダイレクトコンテキスト</h1><h2 id="top">目次</h2><section class="toc"><section class="toc-row"><header><a href="#redirectContext">リダイレクトコンテキスト</a></header><p> <a href="#expuri">URI</a> | <a href="#externalredirect">外部リダイレクト</a> | <a href="#statuscode">ステータスコード</a> | <a href="#destinationuri">宛先URI</a> | <a href="#extraHeaders">Extra Headers</a> | <a href="#realm">レルム</a> | <a href="#authName">認証名</a> | <a href="#required">必要(許可ユーザー/グループ)</a> | <a href="#accessAllowed">アクセス許可</a> | <a href="#accessDenied">アクセス拒否</a> | <a href="#extAuthorizer">承認者</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="redirectContext"><h3>リダイレクトコンテキスト<span class="ls-permlink"><a href="#redirectContext"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>リダイレクトコンテキストは、1つのURIまたはURIのグループを別の場所に転送するために使用できます。 宛先URIは、同じWebサイト(内部リダイレクト)または別のWebサイトを指す絶対URI(外部リダイレクト)のいずれかにすることができます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expuri"><h3>URI<span class="ls-permlink"><a href="#expuri"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストのURIを指定します。</p> <h4>構文</h4><p>URIは、プレーンURI( "/"で始まる)またはPerl互換の正規表現URI( "exp:"で始まる)にすることができます。 プレーンURIが "/"で終わる場合、このコンテキストはこのURIの下にすべてのサブURIを含みます。 コンテキストがファイルシステム上のディレクトリにマップされている場合は、末尾に「/」を追加する必要があります。</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#location">ロケーション</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="externalredirect"><h3>外部リダイレクト<span class="ls-permlink"><a href="#externalredirect"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このリダイレクトが外部かどうかを指定します。 外部リダイレクトの場合は、<span class="tagl"><a href="#statuscode">ステータスコード</a></span>を指定し、<span class="tagl"><a href="#destinationuri">宛先URI</a></span>は "/"または "http(s)://"で開始できます。 内部リダイレクトの場合、<span class="tagl"><a href="#destinationuri">宛先URI</a></span>は "/"で始まらなければなりません。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="statuscode"><h3>ステータスコード<span class="ls-permlink"><a href="#statuscode"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>外部リダイレクトの応答ステータスコードを指定します。 ステータスコードが300〜399の場合、<span class="tagl"><a href="#destinationuri">宛先URI</a></span>を指定できます。</p> <h4>構文</h4><p>選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="destinationuri"><h3>宛先URI<span class="ls-permlink"><a href="#destinationuri"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>リダイレクトのターゲットの場所を指定します。 このリダイレクトされたURIが別のリダイレクトコンテキストのURIにマップされると、リダイレクトされます。</p> <h4>構文</h4><p>このURIは、"/"で始まる同じWebサイトの相対URIでもか、"http(s)://"で始まる別のWebサイトを指す絶対URIでもかまいません。 <span class="tagl"><a href="#expuri">URI</a></span>に正規表現が含まれている場合、宛先は$1や$2などの一致した変数を参照できます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extraHeaders"><h3>Extra Headers<span class="ls-permlink"><a href="#extraHeaders"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>追加される余分な応答ヘッダーを指定します。 1行に1つのヘッダーを追加できます。 親コンテンツから継承したヘッダーを無効にするには、"NONE"を入力します。</p> <h4>構文</h4><p>各行に "[HeaderName]: [HeaderValue]"</p> <h4>例</h4><div class="ls-example">Cache-control: no-cache, no-store <br/> My-header: Custom header value</div><h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> Syntax and usage are similar to <a href="https://httpd.apache.org/docs/2.2/mod/mod_headers.html#header" target="_blank" rel="noopener noreferrer">Apache's mod_headers directives</a> for supported operations.<br/><br/> <span title="Information" class="ls-icon-info"></span> The 'Header' directive is is optional and can be excluded or left in when copying rules from elsewhere without issue.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="realm"><h3>レルム<span class="ls-permlink"><a href="#realm"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストの認可レルムを指定します。 このコンテキストにアクセスするには、有効なユーザー名とパスワードを指定する必要があります。 <span class="tagl"><a href="VHSecurity_Help.html#realms">認可レルム</a></span>は<span class="tagP"><a href="#VHSecurity_Help">バーチャルホストのセキュリティ</a></span>セクションに設定されています。 この設定では、各レルムの<span class="tagl"><a href="VHSecurity_Help.html#realmName">レルム名</a></span>が使用されます。</p> <h4>構文</h4><p>選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="authName"><h3>認証名<span class="ls-permlink"><a href="#authName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>現在のコンテキストの認証レルムの代替名を指定します。 指定しない場合、元のレルム名が使用されます。 認証名は、ブラウザのログインポップアップに表示されます。</p> <h4>構文</h4><p>テキスト</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="required"><h3>必要(許可ユーザー/グループ)<span class="ls-permlink"><a href="#required"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストにアクセスできるユーザー/グループを指定します。 これにより、複数のコンテキストにわたって1つのユーザー/グループデータベース(<span class="tagl"><a href="#realm">レルム</a></span>で指定)を使用できますが、そのデータベースの特定のユーザー/グループのみがこのコンテキストにアクセスできます。</p> <h4>構文</h4><p>構文はApache Requireディレクティブと互換性があります。 例えば: <ul> <li><span class="val">user username [username ...]</span> <br/> リストされたユーザーだけがこのコンテキストにアクセスできます。</li> <li> <span class="val">group groupid [groupid ...]</span><br/> リストされたグループに属するユーザーのみがこのコンテキストにアクセスできます。</li> </ul> この設定を指定しないと、すべての有効なユーザーがこのリソースにアクセスできます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessAllowed"><h3>アクセス許可<span class="ls-permlink"><a href="#accessAllowed"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストでリソースにアクセスできるIPまたはサブネットワークを指定します。 <span class="tagl"><a href="#accessDenied">アクセス拒否</a></span>とサーバー/バーチャルホスト・レベルのアクセス制御とともに、アクセシビリティは、クライアントのIPアドレスが入る最小の範囲によって決まります。</p> <h4>構文</h4><p>IP/サブネットワークのカンマ区切りリスト。</p> <h4>例</h4><div class="ls-example">サブネットワークは以下のように書くことができます <span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span>, 又は <span class="val">192.168.1.*</span>.</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessDenied"><h3>アクセス拒否<span class="ls-permlink"><a href="#accessDenied"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストでリソースにアクセスできないIPまたはサブネットワークを指定します。 <span class="tagl"><a href="#accessAllowed">アクセス許可</a></span>とサーバー/バーチャルホストレベルのアクセス制御とともに、アクセシビリティはクライアントのIPアドレスが入る最小の範囲で決まります。</p> <h4>構文</h4><p>IP/サブネットワークのカンマ区切りリスト。</p> <h4>例</h4><div class="ls-example">サブネットワークは以下のように書くことができます <span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span>, 又は <span class="val">192.168.1.*</span>.</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAuthorizer"><h3>承認者<span class="ls-permlink"><a href="#extAuthorizer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>権限のある/権限のないかの決定を生成するために使用できる外部アプリケーションを指定します。 現在、FastCGI Authorizerのみが使用可能です。 FastCGI Authorizerの役割の詳細については、<a href=" https://fastcgi-archives.github.io/ " target="_blank" rel="noopener noreferrer"> https://fastcgi-archives.github.io/ </a>を参照してください。 。</p> <h4>構文</h4><p>ドロップダウンリストから選択</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������ja-JP/AdminListeners_General_Help.html��������������������������������������������������������������0000644�����������������00000021236�15027525531�0013672 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Open LiteSpeed Web Serverユーザーズマニュアル - リスナー管理者全般</title> <meta name="description" content="Open LiteSpeed Web Serverユーザーズマニュアル - リスナー管理者全般." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="../img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h3 class="ls-text-thin">OpenLiteSpeed Web Server <a href="index.html"> ユーザーズマニュアル</a></h3> <h5 class="ls-text-muted">Version 1.8 — Rev. 0</h5> <hr/> <div> <ul> <li><a href="license.html">ライセンス</a></li> <li><a href="intro.html">はじめに</a></li> <li><a href="install.html">インストール</a></li> <li> <a href="admin.html">管理</a> <ul class="level2"> <li><a href="ServerStat_Help.html">サービスマネージャ</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">セキュリティ</a></li> <li><a href="config.html">設定</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">サーバー全般</a></li> <li><a href="ServLog_Help.html">サーバーログ</a></li> <li><a href="ServTuning_Help.html">サーバーのチューニング</a></li> <li><a href="ServSecurity_Help.html">サーバーのセキュリティ</a></li> <li><a href="ExtApp_Help.html">外部アプリ</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGIアプリ</a></li> <li><a href="External_FCGI_Auth.html">Fast CGIオーソライザー</a></li> <li><a href="External_LSAPI.html">LSAPIアプリ</a></li> <li><a href="External_Servlet.html">サーブレットエンジン</a></li> <li><a href="External_WS.html">Webサーバー</a></li> <li><a href="External_PL.html">パイプロガー</a></li> <li><a href="External_LB.html">ロードバランサ</a></li> </ul> <li><a href="ScriptHandler_Help.html">スクリプトハンドラ</a></li> <li><a href="Rails_Help.html">Rack/Railsの設定</a></li> <li><a href="Module_Help.html">モジュール設定</a></li> <li><a href="Listeners_General_Help.html">リスナー全般</a></li> <li><a href="Listeners_SSL_Help.html">リスナーのSSL</a></li> <li><a href="Templates_Help.html">テンプレート</a></li> <li><a href="VirtualHosts_Help.html">バーチャルホストの基本</a></li> <li><a href="VHGeneral_Help.html">バーチャルホスト全般</a></li> <li><a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a></li> <li><a href="VHSSL_Help.html">バーチャルホストのSSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">コンテキスト</a></li> <ul class="level3"> <li><a href="Static_Context.html">静的コンテテキスト</a></li> <li><a href="Java_Web_App_Context.html">Java Webアプリのコンテキスト</a></li> <li><a href="Servlet_Context.html">サーブレットコンテキスト</a></li> <li><a href="FCGI_Context.html">Fast CGIコンテキスト</a></li> <li><a href="LSAPI_Context.html">LSAPIコンテキスト</a></li> <li><a href="Proxy_Context.html">プロキシコンテキスト</a></li> <li><a href="CGI_Context.html">CGIコンテキスト</a></li> <li><a href="LB_Context.html">ロードバランサコンテキスト</a></li> <li><a href="Redirect_Context.html">コンテキストのリダイレクト</a></li> <li><a href="Rails_Context.html">Rack/Railsのコンテキスト</a></li> <li><a href="Module_Context.html">モジュールハンドラのコンテキスト</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socketプロキシ</a></li> </ul> </li> <li><a href="webconsole.html">Webコンソール</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">管理コンソール全般</a></li> <li><a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a></li> <li><span class="current"><a href="AdminListeners_General_Help.html">管理リスナー全般</a></span></li> <li><a href="AdminListeners_SSL_Help.html">管理リスナーのSSL</a></li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a></div><div class="center"><a href="webconsole.html">Webコンソール</a></div><div class="next"><a href="AdminListeners_SSL_Help.html">リスナー管理者SSL</a> »</div></div> <h1>リスナー管理者全般</h1><section class="ls-spacer-small-bottom">リスナー管理は管理サーバー専用です。 管理サーバーには、セキュア(SSL)リスナーを推奨します。</section> <h2 id="top">目次</h2><section class="toc"><section class="toc-row"><header>一般</header><p> <a href="#listenerName">リスナー名</a> | <a href="#listenerIP">IPアドレス</a> | <a href="#listenerPort">ポート</a> | <a href="#listenerSecure">セキュア</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="listenerName"><h3>リスナー名<span class="ls-permlink"><a href="#listenerName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このリスナーの一意の名前。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="listenerIP"><h3>IPアドレス<span class="ls-permlink"><a href="#listenerIP"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このリスナーのIPを指定します。 使用可能なすべてのIPアドレスがリストされます。 IPv6アドレスは "[]"で囲まれています。 すべてのIPv4 IPアドレスをリッスンするには、<span class="val">ANY</span>を選択します。 すべてのIPv4とIPv6のIPアドレスをリッスンするには、<span class="val">[ANY]</span>を選択します。 IPv4とIPv6の両方のクライアントにサービスを提供するには、プレーンなIPv4アドレスの代わりに、IPv4でマップされたIPv6アドレスを使用する必要があります。 IPv4でマップされたIPv6アドレスは[:: FFFF:x.x.x.x]と書かれています。</p> <h4>構文</h4><p>ドロップダウンリストから選択</p> <h4>ヒント</h4><p>[セキュリティ]お使いのマシンに異なるサブネットワーク上に複数のIPがある場合、特定のIPを選択して、対応するサブネットワークからのトラフィックのみを許可することができます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="listenerPort"><h3>ポート<span class="ls-permlink"><a href="#listenerPort"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>リスナーのTCPポートを指定します。 スーパーユーザー("root")のみが<span class="val">1024</span>より小さいポートを使用できます。 ポート<span class="val">80</span>はデフォルトのHTTPポートです。 ポート<span class="val">443</span>はデフォルトのHTTPSポートです。</p> <h4>構文</h4><p>65535までの整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="listenerSecure"><h3>セキュア<span class="ls-permlink"><a href="#listenerSecure"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Sこれがセキュア(SSL)リスナーかどうかを指定します。 セキュアリスナーの場合は、追加のSSL設定を適切に設定する必要があります。</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������ja-JP/External_Servlet.html�������������������������������������������������������������������������0000644�����������������00000027637�15027525531�0011645 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Open LiteSpeed Web Serverユーザーズマニュアル - サーブレットエンジン</title> <meta name="description" content="Open LiteSpeed Web Serverユーザーズマニュアル - サーブレットエンジン." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="../img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h3 class="ls-text-thin">OpenLiteSpeed Web Server <a href="index.html"> ユーザーズマニュアル</a></h3> <h5 class="ls-text-muted">Version 1.8 — Rev. 0</h5> <hr/> <div> <ul> <li><a href="license.html">ライセンス</a></li> <li><a href="intro.html">はじめに</a></li> <li><a href="install.html">インストール</a></li> <li> <a href="admin.html">管理</a> <ul class="level2"> <li><a href="ServerStat_Help.html">サービスマネージャ</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">セキュリティ</a></li> <li><a href="config.html">設定</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">サーバー全般</a></li> <li><a href="ServLog_Help.html">サーバーログ</a></li> <li><a href="ServTuning_Help.html">サーバーのチューニング</a></li> <li><a href="ServSecurity_Help.html">サーバーのセキュリティ</a></li> <li><a href="ExtApp_Help.html">外部アプリ</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGIアプリ</a></li> <li><a href="External_FCGI_Auth.html">Fast CGIオーソライザー</a></li> <li><a href="External_LSAPI.html">LSAPIアプリ</a></li> <li><span class="current"><a href="External_Servlet.html">サーブレットエンジン</a></span></li> <li><a href="External_WS.html">Webサーバー</a></li> <li><a href="External_PL.html">パイプロガー</a></li> <li><a href="External_LB.html">ロードバランサ</a></li> </ul> <li><a href="ScriptHandler_Help.html">スクリプトハンドラ</a></li> <li><a href="Rails_Help.html">Rack/Railsの設定</a></li> <li><a href="Module_Help.html">モジュール設定</a></li> <li><a href="Listeners_General_Help.html">リスナー全般</a></li> <li><a href="Listeners_SSL_Help.html">リスナーのSSL</a></li> <li><a href="Templates_Help.html">テンプレート</a></li> <li><a href="VirtualHosts_Help.html">バーチャルホストの基本</a></li> <li><a href="VHGeneral_Help.html">バーチャルホスト全般</a></li> <li><a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a></li> <li><a href="VHSSL_Help.html">バーチャルホストのSSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">コンテキスト</a></li> <ul class="level3"> <li><a href="Static_Context.html">静的コンテテキスト</a></li> <li><a href="Java_Web_App_Context.html">Java Webアプリのコンテキスト</a></li> <li><a href="Servlet_Context.html">サーブレットコンテキスト</a></li> <li><a href="FCGI_Context.html">Fast CGIコンテキスト</a></li> <li><a href="LSAPI_Context.html">LSAPIコンテキスト</a></li> <li><a href="Proxy_Context.html">プロキシコンテキスト</a></li> <li><a href="CGI_Context.html">CGIコンテキスト</a></li> <li><a href="LB_Context.html">ロードバランサコンテキスト</a></li> <li><a href="Redirect_Context.html">コンテキストのリダイレクト</a></li> <li><a href="Rails_Context.html">Rack/Railsのコンテキスト</a></li> <li><a href="Module_Context.html">モジュールハンドラのコンテキスト</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socketプロキシ</a></li> </ul> </li> <li><a href="webconsole.html">Webコンソール</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">管理コンソール全般</a></li> <li><a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a></li> <li><a href="AdminListeners_General_Help.html">管理リスナー全般</a></li> <li><a href="AdminListeners_SSL_Help.html">管理リスナーのSSL</a></li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="External_LSAPI.html">LiteSpeed SAPI アプリ</a></div><div class="center"><a href="ExtApp_Help.html">外部アプリケーション</a></div><div class="next"><a href="External_WS.html">Webサーバ</a> »</div></div> <h1>サーブレットエンジン</h1><h2 id="top">目次</h2><section class="toc"><section class="toc-row"><header>サーブレットエンジン</header><p> <a href="#extAppName">名前</a> | <a href="#extAppAddress">アドレス</a> | <a href="#maxConns">最大接続数</a> | <a href="#pcKeepAliveTimeout">キープアライブタイムアウト(秒)</a> | <a href="#env">環境</a> | <a href="#initTimeout">初期要求タイムアウト(秒)</a> | <a href="#retryTimeout">リトライタイムアウト(秒)</a> | <a href="#respBuffer">応答バッファリング</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="extAppName"><h3>名前<span class="ls-permlink"><a href="#extAppName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>この外部アプリケーションの一意の名前。 設定の他の部分でこの名前を使用するときは、この名前で参照します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAppAddress"><h3>アドレス<span class="ls-permlink"><a href="#extAppAddress"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>外部アプリケーションによって使用される一意のソケットアドレス。 IPv4/IPv6ソケットとUnixドメインソケット(UDS)がサポートされています。 IPv4/IPv6ソケットは、ネットワークを介した通信に使用できます。 UDSは、外部アプリケーションがサーバーと同じマシンにある場合にのみ使用できます。</p> <h4>構文</h4><p>IPv4またはIPV6アドレス:ポートまたはUDS://パス</p> <h4>例</h4><div class="ls-example">127.0.0.1:5434<br/> UDS://tmp/lshttpd/php.sock.</div><h4>ヒント</h4><p>[セキュリティ]外部アプリケーションが同じマシン上で実行される場合は、UDSが優先されます。 IPv4|IPV6ソケットを使用する必要がある場合は、IPアドレスを<span class="val">localhost</span>または<span class="val">127.0.0.1</span>に設定して、外部アプリケーションに他のマシンからアクセスできないようにします。<br/> [パフォーマンス] Unixドメインソケットは、通常、IPv4ソケットよりも高いパフォーマンスを提供します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxConns"><h3>最大接続数<span class="ls-permlink"><a href="#maxConns"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>サーバーと外部アプリケーションの間で確立できる同時接続の最大数を指定します。 この設定は、外部アプリケーションによって同時に処理できる要求の数を制御しますが、実際の制限は外部アプリケーション自体によっても異なります。 この値を高く設定すると、外部アプリケーションの速度が不十分であるか、多数の同時要求に対応できない場合に役立ちません。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p>[パフォーマンス]高い値を設定しても、高いパフォーマンスに直接変換されるわけではありません。 制限を外部アプリケーションに負荷をかけない値に設定すると、最高のパフォーマンス/スループットが得られます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="pcKeepAliveTimeout"><h3>キープアライブタイムアウト(秒)<span class="ls-permlink"><a href="#pcKeepAliveTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>アイドル状態の永続的な接続を開いたままにする最大時間を指定します。 "-1"に設定すると、接続はタイムアウトしません。 0以上に設定すると、この時間が経過した後に接続が閉じられます。</p> <h4>構文</h4><p>int</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="env"><h3>環境<span class="ls-permlink"><a href="#env"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>外部アプリケーション用の追加の環境変数を指定します。</p> <h4>構文</h4><p>Key=value. 複数の変数は "ENTER"で区切ることができます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="initTimeout"><h3>初期要求タイムアウト(秒)<span class="ls-permlink"><a href="#initTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>サーバーが、新しいアプリケーションが新しい確立された接続を介して最初の要求に応答するのを待つ最長時間を秒単位で指定します。 サーバーがこのタイムアウト制限内に外部アプリケーションからデータを受信しない場合、この接続は不良とマークされます。 これにより、外部アプリケーションとの通信の問題をできるだけ迅速に特定することができます。 処理に時間がかかるリクエストがある場合は、この制限を増やして503のエラー・メッセージを避けてください。</p> <h4>構文</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="retryTimeout"><h3>リトライタイムアウト(秒)<span class="ls-permlink"><a href="#retryTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>以前の通信に問題があった外部アプリケーションを再試行する前に、サーバーが待機する時間を指定します。</p> <h4>構文</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="respBuffer"><h3>応答バッファリング<span class="ls-permlink"><a href="#respBuffer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>外部から受信した応答をバッファリングするかどうかを指定します。 アプリケーション。 "nph-" (Non-Parsed-Header)スクリプトが検出された場合、完全なHTTPヘッダーを持つ応答ではバッファリングがオフになります。</p> <h4>構文</h4><p>ドロップダウンリストから選択</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> �������������������������������������������������������������������������������������������������ja-JP/ServLog_Help.html�����������������������������������������������������������������������������0000644�����������������00000047033�15027525531�0010700 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Open LiteSpeed Web Serverユーザーズマニュアル - サーバーログ</title> <meta name="description" content="Open LiteSpeed Web Serverユーザーズマニュアル - サーバーログ." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="../img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h3 class="ls-text-thin">OpenLiteSpeed Web Server <a href="index.html"> ユーザーズマニュアル</a></h3> <h5 class="ls-text-muted">Version 1.8 — Rev. 0</h5> <hr/> <div> <ul> <li><a href="license.html">ライセンス</a></li> <li><a href="intro.html">はじめに</a></li> <li><a href="install.html">インストール</a></li> <li> <a href="admin.html">管理</a> <ul class="level2"> <li><a href="ServerStat_Help.html">サービスマネージャ</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">セキュリティ</a></li> <li><a href="config.html">設定</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">サーバー全般</a></li> <li><span class="current"><a href="ServLog_Help.html">サーバーログ</a></span></li> <li><a href="ServTuning_Help.html">サーバーのチューニング</a></li> <li><a href="ServSecurity_Help.html">サーバーのセキュリティ</a></li> <li><a href="ExtApp_Help.html">外部アプリ</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGIアプリ</a></li> <li><a href="External_FCGI_Auth.html">Fast CGIオーソライザー</a></li> <li><a href="External_LSAPI.html">LSAPIアプリ</a></li> <li><a href="External_Servlet.html">サーブレットエンジン</a></li> <li><a href="External_WS.html">Webサーバー</a></li> <li><a href="External_PL.html">パイプロガー</a></li> <li><a href="External_LB.html">ロードバランサ</a></li> </ul> <li><a href="ScriptHandler_Help.html">スクリプトハンドラ</a></li> <li><a href="Rails_Help.html">Rack/Railsの設定</a></li> <li><a href="Module_Help.html">モジュール設定</a></li> <li><a href="Listeners_General_Help.html">リスナー全般</a></li> <li><a href="Listeners_SSL_Help.html">リスナーのSSL</a></li> <li><a href="Templates_Help.html">テンプレート</a></li> <li><a href="VirtualHosts_Help.html">バーチャルホストの基本</a></li> <li><a href="VHGeneral_Help.html">バーチャルホスト全般</a></li> <li><a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a></li> <li><a href="VHSSL_Help.html">バーチャルホストのSSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">コンテキスト</a></li> <ul class="level3"> <li><a href="Static_Context.html">静的コンテテキスト</a></li> <li><a href="Java_Web_App_Context.html">Java Webアプリのコンテキスト</a></li> <li><a href="Servlet_Context.html">サーブレットコンテキスト</a></li> <li><a href="FCGI_Context.html">Fast CGIコンテキスト</a></li> <li><a href="LSAPI_Context.html">LSAPIコンテキスト</a></li> <li><a href="Proxy_Context.html">プロキシコンテキスト</a></li> <li><a href="CGI_Context.html">CGIコンテキスト</a></li> <li><a href="LB_Context.html">ロードバランサコンテキスト</a></li> <li><a href="Redirect_Context.html">コンテキストのリダイレクト</a></li> <li><a href="Rails_Context.html">Rack/Railsのコンテキスト</a></li> <li><a href="Module_Context.html">モジュールハンドラのコンテキスト</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socketプロキシ</a></li> </ul> </li> <li><a href="webconsole.html">Webコンソール</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">管理コンソール全般</a></li> <li><a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a></li> <li><a href="AdminListeners_General_Help.html">管理リスナー全般</a></li> <li><a href="AdminListeners_SSL_Help.html">管理リスナーのSSL</a></li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="ServGeneral_Help.html">サーバー全般</a></div><div class="center"><a href="config.html">設定</a></div><div class="next"><a href="ServTuning_Help.html">サーバーのチューニング</a> »</div></div> <h1>サーバーログ</h1><h2 id="top">目次</h2><section class="toc"><section class="toc-row"><header>サーバーログ</header><p> <a href="#log_fileName">ファイル名</a> | <a href="#log_logLevel">ログレベル</a> | <a href="#log_debugLevel">デバッグレベル</a> | <a href="#log_rollingSize">ローテーションサイズ(バイト)</a> | <a href="#log_keepDays">Keep Days</a> | <a href="#log_compressArchive">アーカイブを圧縮する</a> | <a href="#log_enableStderrLog">stderrログを有効にする</a></p></section> <section class="toc-row"><header>アクセスログ</header><p> <a href="#accessLog_fileName">ファイル名</a> | <a href="#accessLog_pipedLogger">パイプロガー</a> | <a href="#accessLog_logFormat">Log Format</a> | <a href="#accessLog_logHeader">ログヘッダー</a> | <a href="#log_rollingSize">ローテーションサイズ(バイト)</a> | <a href="#log_keepDays">Keep Days</a> | <a href="#log_compressArchive">アーカイブを圧縮する</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="log_fileName"><h3>ファイル名<span class="ls-permlink"><a href="#log_fileName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>ログファイルのパスを指定します。</p> <h4>構文</h4><p>ファイル名への絶対パス又は$SERVER_ROOTからの相対パス</p> <h4>ヒント</h4><p>[パフォーマンス]ログファイルを別のディスクに配置します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="log_logLevel"><h3>ログレベル<span class="ls-permlink"><a href="#log_logLevel"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>ログファイルに含めるログのレベルを指定します。 使用可能なレベルは、<span class="val">エラー</span>、<span class="val">警告</span>、<span class="val">通知</span>、<span class="val">情報</span>および<span class="val"> DEBUG </span>です。 現在の設定以上のレベルのメッセージのみが記録されます。</p> <h4>構文</h4><p>選択</p> <h4>ヒント</h4><p>[パフォーマンス] <span class="tagl"><a href="#log_debugLevel">デバッグレベル</a></span>が<span class="val"> NONE </span>以外のレベルに設定されていない限り、<span class="val"> DEBUG </span>ログレベルを使用してもパフォーマンスに影響はありません。 ログレベルを<span class="val"> DEBUG </span>に設定し、デバッグレベルを<span class="val"> NONE </span>に設定することをお勧めします。 これらの設定は、ハードディスクにデバッグログを書き込まないことを意味しますが、<span class="tagl"><a href="ServerStat_Help.html#toggleDebugLog">デバッグログを切り替える</a></span>アクションを使用してデバッグ出力を制御することができます。 これにより、デバッグログのオン/オフを切り替えることができ、多忙な運用サーバーのデバッグに役立ちます。</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#log_debugLevel">デバッグレベル</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="log_debugLevel"><h3>デバッグレベル<span class="ls-permlink"><a href="#log_debugLevel"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>デバッグログのレベルを指定します。 この機能を使用するには、<span class="tagl"><a href="#log_logLevel">ログレベル</a></span>を<span class="val"> DEBUG </span>に設定する必要があります。 <span class="tagl"><a href="#log_logLevel">ログレベル</a></span>が<span class="val"> DEBUG </span>に設定されていても、「デバッグレベル」が<span class="val"> NONE </span>に設定されていると、デバッグロギングは無効になります。 <span class="tagl"><a href="ServerStat_Help.html#toggleDebugLog">デバッグログを切り替える</a></span>は、再起動せずにライブサーバー上のデバッグレベルを制御するために使用できます。.</p> <h4>構文</h4><p>選択</p> <h4>ヒント</h4><p>[パフォーマンス]重要! 詳細なデバッグログが必要ない場合は、常にこれを<span class="val"> NONE </span>に設定してください。 アクティブデバッグロギングは、サービスのパフォーマンスを著しく低下させ、非常に短時間でディスクスペースを飽和させる可能性があります。 デバッグログには、各要求と応答の詳細情報が含まれています。<br/> ログレベルを<span class="val"> DEBUG </span>に設定し、デバッグレベルを<span class="val"> NONE </span>に設定することをお勧めします。 これらの設定は、ハードディスクにデバッグログを書き込まないことを意味しますが、<span class="tagl"><a href="ServerStat_Help.html#toggleDebugLog">デバッグログを切り替える</a></span>アクションを使用してデバッグ出力を制御することができます。 これにより、デバッグログのオン/オフを切り替えることができ、多忙な運用サーバーのデバッグに役立ちます。</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#log_logLevel">ログレベル</a></span>, <span class="tagl"><a href="ServerStat_Help.html#toggleDebugLog">デバッグログを切り替える</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="log_rollingSize"><h3>ローテーションサイズ(バイト)<span class="ls-permlink"><a href="#log_rollingSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>現在のログファイルをロールオーバーする必要があるとき、つまりログローテーションを指定します。 ファイルサイズがロールオーバー制限を超えると、アクティブなログファイルは同じディレクトリにlog_name.mm_dd_yyyy(.sequence)という名前に変更され、新しいアクティブなログファイルが作成されます。 回転ログファイルが実際に作成されると、そのサイズはこのサイズ制限より少し大きくなることがあります。 ログのローテーションを無効にするには、<span class="val"> 0 </span>に設定します。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> キロ、メガ、ギガバイトの数字に「K」、「M」、「G」を追加します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="log_keepDays"><h3>Keep Days<span class="ls-permlink"><a href="#log_keepDays"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Specifies how many days the access log file will be kept on disk. Only rotated log files older than the specified number of days will be deleted. The current log file will not be touched regardless how many days worth of data it contains. If you do not want to auto-delete stale and very old log files, set this to <span class="val">0</span>.</p> <h4>構文</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="log_compressArchive"><h3>アーカイブを圧縮する<span class="ls-permlink"><a href="#log_compressArchive"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>ディスク領域を節約するためにローテーションしたログファイルを圧縮するかどうかを指定します。</p> <h4>構文</h4><p>ラジオボックスから選択</p> <h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> ログファイルは圧縮率が高く、古いログのディスク使用量を減らすために推奨されます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="log_enableStderrLog"><h3>stderrログを有効にする<span class="ls-permlink"><a href="#log_enableStderrLog"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>サーバーが開始したプロセスからstderr出力を受け取ったときにログに書き込むかどうかを指定します。 有効にすると、stderrメッセージは固定名 "stderr.log"を持つサーバーログと同じディレクトリに記録されます。 無効にすると、すべてのstderr出力は破棄されます。</p> <h4>構文</h4><p>ラジオボックスから選択</p> <h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> 設定された外部アプリケーション(PHP、Ruby、Java、Python、Perl)をデバッグする必要がある場合にオンにします。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessLog_fileName"><h3>ファイル名<span class="ls-permlink"><a href="#accessLog_fileName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>アクセスログファイル名。</p> <h4>構文</h4><p>ファイル名への絶対パス又は$SERVER_ROOTからの相対パス</p> <h4>ヒント</h4><p>[パフォーマンス]アクセスログファイルを別のディスクに入れます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessLog_pipedLogger"><h3>パイプロガー<span class="ls-permlink"><a href="#accessLog_pipedLogger"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>LiteSpeedがSTDINストリーム上のパイプを通じて送信するアクセスログデータを受け取る外部アプリケーションを指定します(ファイルハンドルは0)。 このフィールドが指定されると、アクセスログはロガーアプリケーションにのみ送信され、前のエントリで指定されたアクセスログファイルには送信されません。<br/><br/> ロガーアプリケーションは、最初に<span class="tagP"><a href="#ExtApp_Help">外部アプリケーション</a></span>セクションで定義する必要があります。 サーバー・レベルのアクセス・ロギングは、サーバー・レベルで定義された外部ロガー・アプリケーションのみを使用できます。 バーチャルホストレベルのアクセスロギングでは、バーチャルホストレベルで定義されたロガーアプリケーションのみを使用できます。<br/><br/> ロガープロセスは、他の外部(CGI/FastCGI/LSAPI)プロセスと同じ方法で生成されます。 つまり、バーチャルホストの<span class="tagl"><a href="VirtualHosts_Help.html#setUidMode">外部アプリ Set UID モード</a></span>設定で指定されたユーザーIDとして実行され、特権ユーザーのために実行されることはありません。. <br/><br/> LiteSpeed Webサーバーは、複数のロガーアプリケーションのインスタンスが設定されている場合、複数のロガーアプリケーション間で簡単なロードバランシングを実行します。 LiteSpeedサーバーは、常にロガーアプリケーションの数を可能な限り低く抑えようとします。 1つのロガーアプリケーションがアクセスログエントリを時間内に処理できない場合にのみ、サーバーはロガーアプリケーションの別のインスタンスを生成しようとします。 <br/><br/> ロガーがクラッシュした場合、Webサーバーは別のインスタンスを開始しますが、ストリームバッファーのログデータは失われます。 外部ロガーがログ・ストリームの速度と量に追いつけない場合、ログ・データを失う可能性があります。</p> <h4>構文</h4><p>選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessLog_logFormat"><h3>Log Format<span class="ls-permlink"><a href="#accessLog_logFormat"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p> アクセスログのログ形式を指定します。 ログフォーマットが設定されると、<span class="tagl"><a href="#accessLog_logHeader">ログヘッダー</a></span>の設定より優先されます。</p> <h4>構文</h4><p>文字列。ログフォーマットの構文はApache 2.0のカスタムと互換性があります <a href="http://httpd.apache.org/docs/current/mod/mod_log_config.html#formats" target="_blank" rel="noopener noreferrer">log format</a>。</p> <h4>例</h4><div class="ls-example"><br> <b>共通ログフォーマット(CLF)</b><br/> "%h %l %u %t \"%r\" %>s %b"<br/><br/> <b>バーチャルホストによる共通ログフォーマット</b><br/> "%v %h %l %u %t \"%r\" %>s %b"<br/><br/> <b>NCSA拡張/結合ログフォーマット</b><br/> "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-agent}i\" <br/><br/> <b>FoobarのログCookie値</b><br/> "%{Foobar}C"</div><h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#accessLog_logHeader">ログヘッダー</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessLog_logHeader"><h3>ログヘッダー<span class="ls-permlink"><a href="#accessLog_logHeader"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p><span class="val">Referer</span>、<span class="val">UserAgent</span>、<span class="val">Host</span>のいずれかをHTTPリクエストヘッダとして記録するかどうかを指定します。</p> <h4>構文</h4><p>チェックボックス</p> <h4>ヒント</h4><p>[パフォーマンス]これらのヘッダーがアクセスログに必要ない場合は、これをオフにします。</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#accessLog_logFormat">Log Format</a></span></p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> �����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������ja-JP/CompilePHP_Help.html��������������������������������������������������������������������������0000644�����������������00000022524�15027525531�0011255 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Open LiteSpeed Web Serverユーザーズマニュアル - PHPのコンパイル</title> <meta name="description" content="Open LiteSpeed Web Serverユーザーズマニュアル - PHPのコンパイル." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="../img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h3 class="ls-text-thin">OpenLiteSpeed Web Server <a href="index.html"> ユーザーズマニュアル</a></h3> <h5 class="ls-text-muted">Version 1.8 — Rev. 0</h5> <hr/> <div> <ul> <li><a href="license.html">ライセンス</a></li> <li><a href="intro.html">はじめに</a></li> <li><a href="install.html">インストール</a></li> <li> <a href="admin.html">管理</a> <ul class="level2"> <li><a href="ServerStat_Help.html">サービスマネージャ</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">セキュリティ</a></li> <li><a href="config.html">設定</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">サーバー全般</a></li> <li><a href="ServLog_Help.html">サーバーログ</a></li> <li><a href="ServTuning_Help.html">サーバーのチューニング</a></li> <li><a href="ServSecurity_Help.html">サーバーのセキュリティ</a></li> <li><a href="ExtApp_Help.html">外部アプリ</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGIアプリ</a></li> <li><a href="External_FCGI_Auth.html">Fast CGIオーソライザー</a></li> <li><a href="External_LSAPI.html">LSAPIアプリ</a></li> <li><a href="External_Servlet.html">サーブレットエンジン</a></li> <li><a href="External_WS.html">Webサーバー</a></li> <li><a href="External_PL.html">パイプロガー</a></li> <li><a href="External_LB.html">ロードバランサ</a></li> </ul> <li><a href="ScriptHandler_Help.html">スクリプトハンドラ</a></li> <li><a href="Rails_Help.html">Rack/Railsの設定</a></li> <li><a href="Module_Help.html">モジュール設定</a></li> <li><a href="Listeners_General_Help.html">リスナー全般</a></li> <li><a href="Listeners_SSL_Help.html">リスナーのSSL</a></li> <li><a href="Templates_Help.html">テンプレート</a></li> <li><a href="VirtualHosts_Help.html">バーチャルホストの基本</a></li> <li><a href="VHGeneral_Help.html">バーチャルホスト全般</a></li> <li><a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a></li> <li><a href="VHSSL_Help.html">バーチャルホストのSSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">コンテキスト</a></li> <ul class="level3"> <li><a href="Static_Context.html">静的コンテテキスト</a></li> <li><a href="Java_Web_App_Context.html">Java Webアプリのコンテキスト</a></li> <li><a href="Servlet_Context.html">サーブレットコンテキスト</a></li> <li><a href="FCGI_Context.html">Fast CGIコンテキスト</a></li> <li><a href="LSAPI_Context.html">LSAPIコンテキスト</a></li> <li><a href="Proxy_Context.html">プロキシコンテキスト</a></li> <li><a href="CGI_Context.html">CGIコンテキスト</a></li> <li><a href="LB_Context.html">ロードバランサコンテキスト</a></li> <li><a href="Redirect_Context.html">コンテキストのリダイレクト</a></li> <li><a href="Rails_Context.html">Rack/Railsのコンテキスト</a></li> <li><a href="Module_Context.html">モジュールハンドラのコンテキスト</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socketプロキシ</a></li> </ul> </li> <li><a href="webconsole.html">Webコンソール</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">管理コンソール全般</a></li> <li><a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a></li> <li><a href="AdminListeners_General_Help.html">管理リスナー全般</a></li> <li><a href="AdminListeners_SSL_Help.html">管理リスナーのSSL</a></li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="webconsole.html">Webコンソール</a></div><div class="center"><a href="index.html">ホーム</a></div><div class="next"> </div></div> <h1>PHPのコンパイル</h1><h2 id="top">目次</h2><section class="toc"><section class="toc-row"><header>PHPのコンパイル</header><p> <a href="#extrapathenv">特別なPATH環境変数</a> | <a href="#installpathprefix">インストールパスのプレフィックス</a> | <a href="#compilerflags">コンパイラフラグ</a> | <a href="#configureparams">パラメータの設定</a> | <a href="#addonmodules">アドオンモジュール</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="extrapathenv"><h3>特別なPATH環境変数<span class="ls-permlink"><a href="#extrapathenv"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>ビルドスクリプトの現在のPATH環境変数に追加される追加のPATH値。</p> <h4>構文</h4><p>":"で区切られたパス値</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="installpathprefix"><h3>インストールパスのプレフィックス<span class="ls-permlink"><a href="#installpathprefix"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>"--prefix"設定オプションの値を設定します。 デフォルトのインストール場所はLiteSpeed Web Serverのインストールディレクトリの下にあります。</p> <h4>構文</h4><p>パス</p> <h4>例</h4><div class="ls-example">/usr/local/lsws/lsphp5</div><h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> LiteSpeed Web Serverは、複数のPHPバージョンを同時に使用できます。 複数のバージョンをインストールする場合は、異なるプレフィックスを付ける必要があります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="compilerflags"><h3>コンパイラフラグ<span class="ls-permlink"><a href="#compilerflags"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>最適化されたコンパイラオプションのような追加のコンパイラフラグを追加します。</p> <h4>構文</h4><p>サポートされているフラグは、CFLAGS、CXXFLAGS、CPPFLAGS、LDFLAGSです。 スペースを使用して、異なるフラグを区切ります。 フラグ値には一重引用符(二重引用符ではない)を使用します。</p> <h4>例</h4><div class="ls-example">CFLAGS='-O3 -msse2 -msse3 -msse4.1 -msse4.2 -msse4 -mavx'</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="configureparams"><h3>パラメータの設定<span class="ls-permlink"><a href="#configureparams"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>PHPビルド用のパラメータを設定します。 Apache固有のパラメータと " - prefix"の値は自動的に削除され、次のステップをクリックすると "--with-litespeed"が自動的に追加されます。 (前のフィールドにプレフィックスを設定することができます)このようにして、既存の動作中のPHPビルドのphpinfo()出力からconfigureパラメータをコピーして貼り付けることができます。</p> <h4>構文</h4><p>スペース区切りの一連のオプション(二重引用符を使用する場合と使用しない場合)</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="addonmodules"><h3>アドオンモジュール<span class="ls-permlink"><a href="#addonmodules"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>使用するアドオンモジュールを選択します。 ここに記載されていないバージョンを使用する場合は、手動でソースコードを更新することができます。 (PHPビルドのこのステップでは、ソースコードの場所がプロンプトに表示されます)。</p> <h4>構文</h4><p>チェックボックスから選択</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ����������������������������������������������������������������������������������������������������������������������������������������������������������������������������ja-JP/ScriptHandler_Help.html�����������������������������������������������������������������������0000644�����������������00000024051�15027525531�0012054 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Open LiteSpeed Web Serverユーザーズマニュアル - スクリプトハンドラ</title> <meta name="description" content="Open LiteSpeed Web Serverユーザーズマニュアル - スクリプトハンドラ." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="../img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h3 class="ls-text-thin">OpenLiteSpeed Web Server <a href="index.html"> ユーザーズマニュアル</a></h3> <h5 class="ls-text-muted">Version 1.8 — Rev. 0</h5> <hr/> <div> <ul> <li><a href="license.html">ライセンス</a></li> <li><a href="intro.html">はじめに</a></li> <li><a href="install.html">インストール</a></li> <li> <a href="admin.html">管理</a> <ul class="level2"> <li><a href="ServerStat_Help.html">サービスマネージャ</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">セキュリティ</a></li> <li><a href="config.html">設定</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">サーバー全般</a></li> <li><a href="ServLog_Help.html">サーバーログ</a></li> <li><a href="ServTuning_Help.html">サーバーのチューニング</a></li> <li><a href="ServSecurity_Help.html">サーバーのセキュリティ</a></li> <li><a href="ExtApp_Help.html">外部アプリ</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGIアプリ</a></li> <li><a href="External_FCGI_Auth.html">Fast CGIオーソライザー</a></li> <li><a href="External_LSAPI.html">LSAPIアプリ</a></li> <li><a href="External_Servlet.html">サーブレットエンジン</a></li> <li><a href="External_WS.html">Webサーバー</a></li> <li><a href="External_PL.html">パイプロガー</a></li> <li><a href="External_LB.html">ロードバランサ</a></li> </ul> <li><span class="current"><a href="ScriptHandler_Help.html">スクリプトハンドラ</a></span></li> <li><a href="Rails_Help.html">Rack/Railsの設定</a></li> <li><a href="Module_Help.html">モジュール設定</a></li> <li><a href="Listeners_General_Help.html">リスナー全般</a></li> <li><a href="Listeners_SSL_Help.html">リスナーのSSL</a></li> <li><a href="Templates_Help.html">テンプレート</a></li> <li><a href="VirtualHosts_Help.html">バーチャルホストの基本</a></li> <li><a href="VHGeneral_Help.html">バーチャルホスト全般</a></li> <li><a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a></li> <li><a href="VHSSL_Help.html">バーチャルホストのSSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">コンテキスト</a></li> <ul class="level3"> <li><a href="Static_Context.html">静的コンテテキスト</a></li> <li><a href="Java_Web_App_Context.html">Java Webアプリのコンテキスト</a></li> <li><a href="Servlet_Context.html">サーブレットコンテキスト</a></li> <li><a href="FCGI_Context.html">Fast CGIコンテキスト</a></li> <li><a href="LSAPI_Context.html">LSAPIコンテキスト</a></li> <li><a href="Proxy_Context.html">プロキシコンテキスト</a></li> <li><a href="CGI_Context.html">CGIコンテキスト</a></li> <li><a href="LB_Context.html">ロードバランサコンテキスト</a></li> <li><a href="Redirect_Context.html">コンテキストのリダイレクト</a></li> <li><a href="Rails_Context.html">Rack/Railsのコンテキスト</a></li> <li><a href="Module_Context.html">モジュールハンドラのコンテキスト</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socketプロキシ</a></li> </ul> </li> <li><a href="webconsole.html">Webコンソール</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">管理コンソール全般</a></li> <li><a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a></li> <li><a href="AdminListeners_General_Help.html">管理リスナー全般</a></li> <li><a href="AdminListeners_SSL_Help.html">管理リスナーのSSL</a></li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="ExtApp_Help.html">外部アプリケーション</a></div><div class="center"><a href="config.html">設定</a></div><div class="next"><a href="App_Server_Help.html">App Server Settings</a> »</div></div> <h1>スクリプトハンドラ</h1><section class="ls-spacer-small-bottom">LiteSpeed Web Serverは、Perl、PHP、Ruby、Python、Javaなどのすべてのスクリプト言語をサポートしています。 これらの異なる言語で書かれたスクリプトは、適切な外部アプリケーションに持ち込まれて処理されなければなりません。 LiteSpeed Web Serverはスクリプトハンドラを使用して、スクリプトを実行する外部アプリケーションを決定します。 これらのスクリプトハンドラは、ファイルサフィックスを使用してファイルを外部アプリケーションにマッピングします。 (実際には、MIMEタイプを決定するためにサフィックスが使用され、MIMEタイプが外部アプリケーションにマッピングされます。) 外部アプリケーションは、スクリプトハンドラで使用するために選択する前に、{PAGE=ExtApp_Help}タブで設定する必要があります。 スクリプトハンドラは、サーバまたはバーチャルホストレベルで設定できます。 サーバレベルのスクリプトハンドラは、バーチャルホストレベルで上書きされない限り、すべてのバーチャルホストに適用されます。 バーチャルホストレベルのスクリプトハンドラは、そのバーチャルホスト内でのみ適用されます。</section> <h2 id="top">目次</h2><section class="toc"><section class="toc-row"><header>スクリプトハンドラの定義</header><p> <a href="#suffix">サフィックス</a> | <a href="#shType">ハンドラタイプ</a> | <a href="#shHandlerName">ハンドラ名</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="suffix"><h3>サフィックス<span class="ls-permlink"><a href="#suffix"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このスクリプトハンドラによって処理されるスクリプトファイルのサフィックスを指定します。 接尾辞は一意である必要があります。</p> <h4>構文</h4><p>カンマ区切りリストでピリオド"."は禁止されています。</p> <h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> サーバーは、リスト内の最初の接尾辞に特殊なMIMEタイプ( "application / x-httpd- [suffix]")を自動的に追加します。 たとえば、接尾辞 "php53"にMIMEタイプ "application / x-httpd-php53"が追加されます。 接尾辞は<span class="tagl"><a href="#mime">MIME設定</a></span>設定で最初に設定する必要があります。<br/> このフィールドではサフィックスを列挙していますが、スクリプトハンドラは接尾辞ではなくMIMEタイプを使用して、処理するスクリプトを決定します。<br/> [パフォーマンスとセキュリティ]本当に必要なサフィックスのみを指定してください。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="shType"><h3>ハンドラタイプ<span class="ls-permlink"><a href="#shType"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>これらのスクリプトファイルを処理する外部アプリケーションのタイプを指定します。 使用可能なタイプは以下のとおりです:<span class="val">CGI</span>、<span class="val">FastCGI</span>、<span class="val">Webサーバー</span>、<span class="val">LSAPI app</span>、<span class="val">ロードバランサ</span> 又は<span class="val">サーブレットエンジン</span>。 FastCGI、Webサーバー、およびServlet Engineの場合は、<span class="tagl"><a href="#shHandlerName">ハンドラ名</a></span>を指定する必要があります。 これは、<span class="tagP"><a href="#ExtApp_Help">外部アプリケーション</a></span>セクションで事前定義されている外部アプリケーション名です。</p> <h4>構文</h4><p>ドロップダウンリストから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="shHandlerName"><h3>ハンドラ名<span class="ls-permlink"><a href="#shHandlerName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>ハンドラタイプがFastCGI、Web Server、LSAPI、Load Balancer、またはServlet Engineの場合にスクリプトファイルを処理する外部アプリケーションの名前を指定します。</p> <h4>構文</h4><p>ドロップダウンリストから選択</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ���������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������ja-JP/install.html����������������������������������������������������������������������������������0000644�����������������00000034744�15027525531�0010022 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Open LiteSpeed Web Serverユーザーズマニュアル - インストール</title> <meta name="description" content="Open LiteSpeed Web Serverユーザーズマニュアル - インストール." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="../img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h3 class="ls-text-thin">OpenLiteSpeed Web Server <a href="index.html"> ユーザーズマニュアル</a></h3> <h5 class="ls-text-muted">Version 1.8 — Rev. 0</h5> <hr/> <div> <ul> <li><a href="license.html">ライセンス</a></li> <li><a href="intro.html">はじめに</a></li> <li><span class="current"><a href="install.html">インストール</a></span></li> <li> <a href="admin.html">管理</a> <ul class="level2"> <li><a href="ServerStat_Help.html">サービスマネージャ</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">セキュリティ</a></li> <li><a href="config.html">設定</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">サーバー全般</a></li> <li><a href="ServLog_Help.html">サーバーログ</a></li> <li><a href="ServTuning_Help.html">サーバーのチューニング</a></li> <li><a href="ServSecurity_Help.html">サーバーのセキュリティ</a></li> <li><a href="ExtApp_Help.html">外部アプリ</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGIアプリ</a></li> <li><a href="External_FCGI_Auth.html">Fast CGIオーソライザー</a></li> <li><a href="External_LSAPI.html">LSAPIアプリ</a></li> <li><a href="External_Servlet.html">サーブレットエンジン</a></li> <li><a href="External_WS.html">Webサーバー</a></li> <li><a href="External_PL.html">パイプロガー</a></li> <li><a href="External_LB.html">ロードバランサ</a></li> </ul> <li><a href="ScriptHandler_Help.html">スクリプトハンドラ</a></li> <li><a href="Rails_Help.html">Rack/Railsの設定</a></li> <li><a href="Module_Help.html">モジュール設定</a></li> <li><a href="Listeners_General_Help.html">リスナー全般</a></li> <li><a href="Listeners_SSL_Help.html">リスナーのSSL</a></li> <li><a href="Templates_Help.html">テンプレート</a></li> <li><a href="VirtualHosts_Help.html">バーチャルホストの基本</a></li> <li><a href="VHGeneral_Help.html">バーチャルホスト全般</a></li> <li><a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a></li> <li><a href="VHSSL_Help.html">バーチャルホストのSSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">コンテキスト</a></li> <ul class="level3"> <li><a href="Static_Context.html">静的コンテテキスト</a></li> <li><a href="Java_Web_App_Context.html">Java Webアプリのコンテキスト</a></li> <li><a href="Servlet_Context.html">サーブレットコンテキスト</a></li> <li><a href="FCGI_Context.html">Fast CGIコンテキスト</a></li> <li><a href="LSAPI_Context.html">LSAPIコンテキスト</a></li> <li><a href="Proxy_Context.html">プロキシコンテキスト</a></li> <li><a href="CGI_Context.html">CGIコンテキスト</a></li> <li><a href="LB_Context.html">ロードバランサコンテキスト</a></li> <li><a href="Redirect_Context.html">コンテキストのリダイレクト</a></li> <li><a href="Rails_Context.html">Rack/Railsのコンテキスト</a></li> <li><a href="Module_Context.html">モジュールハンドラのコンテキスト</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socketプロキシ</a></li> </ul> </li> <li><a href="webconsole.html">Webコンソール</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">管理コンソール全般</a></li> <li><a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a></li> <li><a href="AdminListeners_General_Help.html">管理リスナー全般</a></li> <li><a href="AdminListeners_SSL_Help.html">管理リスナーのSSL</a></li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="intro.html">導入</a></div><div class="center"><a href="index.html">ホーム</a></div><div class="next"><a href="admin.html">管理</a> »</div></div> <h1>インストール/アンインストール</h1> <h3>最小システム要件</h3> <ul><li><strong>オペレーティングシステム:</strong> <ul><li>Linux(i386): カーネル 2.4以上, glibc-2.2以上</li> <li>CentOS: 5以上</li> <li>Ubuntu: 8.04以上</li> <li>Debian: 4以上</li> <li>FreeBSD(i386): 4.5以上</li> <li>MacOSX: 10.3以上</li> </ul></li> <li><strong>CPU:</strong> <ul><li>Intel: 80486以上</li> <li>PowerPC: PowerPC G4</li> </ul> </li> <li><strong>メモリ:</strong> 32MB以上</li> <li><strong>ディスク:</strong> <ul><li>インストール: 200MB</li><li>ランタイム:300MB以上、スワップスペースは使用方法によって異なります。</li></ul></li> </ul> <h3>インストール</h3> <p>インストールはコマンドライン端末で行う必要があります。 テストの目的で、LiteSpeed Webサーバーは特権のないユーザーによってホームディレクトリにインストールできます。 プロダクション用には、システムディレクトリにインストールする必要があります。</p> <p>Mac OS Xでは、ルートユーザーはデフォルトで無効になっています。 アップルのWebサイトで詳述されている一連の操作を使用して有効にすることができます。 sudoコマンドを使用して、rootユーザーを有効にせずにLSWSをシステムディレクトリにインストールすることもできますが、システムフォルダはrootユーザーだけが操作できます。 つまり、コマンドライン端末からLSWSを制御したいとき(LSWSを起動または停止したいときなど)には、sudoコマンドを使用する必要があります。</p> <h4>インストール手順:</h4> <ol> <li><p>便利な場所にパッケージをダウンロードして解凍します:</p> <p class="cmd">wget http://open.litespeedtech.com/packages/openlitespeed.1.0.tgz; tar zxf openlitespeed.1.0.tgz</p> </li> <li><p>インストールディレクトリに移動し、パッケージをrootユーザとしてコンパイルしてインストールします(実稼働環境用):</p> <p class="cmd">cd openlitespeed <br>./configure<br>make && make install</p> <p><strong>ノート:</strong> OpenLiteSpeedをコンパイルしてインストールする前に、PCRE、Expat、OpenSSL、GeoIP、zlibの次のパッケージをインストールする必要があります。</p> <ul><li><strong>CentOS 5. *および6. *</strong> <p class="cmd">wget http://dl.fedoraproject.org/pub/epel/5/i386/epel-release-5-4.noarch.rpm; rpm -Uvh epel-release-5-4.noarch.rpm (CentOS 5.* のみ) </p> <p class="cmd">wget http://dl.fedoraproject.org/pub/epel/6/i386/epel-release-6-8.noarch.rpm; rpm -Uvh epel-release-6-8.noarch.rpm (CentOS 6.* のみ) </p> <p class="cmd">yum install gcc gcc-c++ make glibc</p> <p class="cmd">yum install pcre-devel expat-devel openssl-devel geoip-devel zlib-devel</p></li> <li><strong>Ubuntu/Debian</strong> <p class="cmd">apt-get install build-essential</p> <p class="cmd">apt-get install libpcre3-dev libexpat1-dev libssl-dev libgeoip-dev zlib1g-dev</p></li> <li><strong>FreeBSD</strong> <p class="cmd">pkg_addまたはportsを使用してください。 portsを使用した例をいくつか示します。<br/><br/>cd /usr/ports/devel/pcre; make install clean; rehash;<br> cd /usr/ports/net/GeoIP; make install clean; rehash;<br> cd /usr/ports/textproc/expat2; make install clean; rehash;<br> cd /usr/ports/security/openssl; make install clean; rehash;</p></li> <li><strong>Mac OS X</strong> <p>Install Xcode from https://developer.apple.com/xcode/</p> <p>Install MacPorts from http://www.macports.org/install.php#pkg</p> <p class="cmd">sudo port install pcre expat openssl libgeoip zlib</p> <p><strong>ノート: </strong>OS Xユーザーがconfigureコマンドを実行するとき、PCREパッケージがMacPorts経由で追加されている場合、PCREパッケージを探す場所を指定するパラメータを追加する必要があります。 これは、MacPortsが非標準の場所(/opt/local/)にインストールするためです。 例えば:</p> <p class="cmd">./configure --with-pcre=/opt/local</p></li> </ul> </li> <li>デフォルトでは、インストーラはサンプルサイトをポート8088にインストールし、WebAdminコンソール(LiteSpeed GUI)をポート7080に設定します。 (ユーザー:admin、パスワード:123456、管理者メール:root@localhost) </li> </ol> <h3>スタートする</h3> <ol> <li><p>サーバープロセスの制御の詳細については、「管理者ガイド」を参照してください。</p> <p>サーバーを起動するには、単に [your_install_dir]/bin/lswsctrl start を実行してください。(それを止めるには、 [your_install_dir]/bin/lswsctrl stop。)</p> </li> <li><p>サンプルサイトがサーバー上で実行されている必要があります。</p> <p>サイトにアクセスするには、ブラウザでhttp://[アドレス]:8088/にアクセスし、[アドレス]はWebサーバーマシンのIPアドレスまたはドメイン名を指定します。 サーバーが使用しているマシン上にある場合は、「localhost」を使用します。 "8088"がデフォルトのポートです。 インストール中にLiteSpeedの別のポートを選択した場合は、指定したポートを使用してください。</p> <p>他のテストページにリンクされているおめでとうページは、上記のアドレスを指し示すとブラウザに読み込まれます。 そうでない場合は、WebAdminインターフェイスをテストしてみてください。</p> </li> <li><p>WebAdminコンソールのデフォルトポートは7080です。</p> <p>http:// [アドレス]:7080 /をブラウザに入力し、WebAdminインターフェイスに移動します。 (インストール中にWebAdminのポートを変更した場合は、代わりにそのポートを使用してください)。</p> <p>[アドレス]にサーバーが稼動しているマシンを現在使用している場合は、「localhost」を使用することができます。</p> <p>WebAdminのウェルカムページが読み込まれます。 [ログオン]リンクをクリックし、インストール時に指定した管理者のユーザー名とパスワードを使用してログオンします。</p> <p>設定に関する詳細については、設定ガイドを参照するか、各ページの上部にある[ヘルプ]リンクをクリックしてください。</p> </li> <li><p>サーバーがファイアウォールを使用している場合は、localhostが信頼できるものであることを確認してください。</p> <p>たとえば、IPTablesを持つLinuxには、LOからのALLOW INPUTルールを含める必要があります。</p> </li> <li><p>WebサイトとWebAdminインターフェイスにアクセスできない場合は、エラーログ [your_install_dir]/logs/error.logを参照してください。</p> <p>TCPポートが他のサーバーアプリケーションと競合する場合は、Webサーバーを使用可能なポートで再インストールする必要があります。 次のコマンドを使用して、使用可能なポートを見つけることができます: <span class="cmd">netstat -an | grep XXXX </span> XXXXはポート番号です。 ポートが使用可能な場合、コマンドは出力を生成しません。</p> <p>スワッピングディレクトリが書き込み可能でない場合は、スワッピングディレクトリの書き込み権限をWebサーバーが実行されているユーザーに許可するか、スワップディレクトリの設定を手動で変更します。 スワップディレクトリは、サーバーのXML構成ファイルで構成されます。 [your_install_dir]/conf/httpd_config.xmlに移動します。 swappingDirのXMLファイルを検索します。 スワップディレクトリのデフォルトの場所は/tmp/lshttpd/swapです。</p> <p>まだインストールに問題がある場合は、私たちのwikiをチェックするか、サポートフォーラムで問題を投稿してください。</p> </li> </ol> <h3>ノート</h3> <ul> <li>OpenLiteSpeedは、ネイティブのLiteSpeed XML設定ファイルとプレーンテキスト設定ファイル(Apacheのhttpd.confの編集に使用されるもの)の両方をサポートします。 [your_install_dir]/conf/switch_config.shを実行して、これらの形式を切り替えます。</li> <li>FreeBSD、Mac OS X、Ubuntu、Debianでは、出荷されたPHP(CentOS用)は動作しません。 OpenLiteSpeedでPHPアプリケーションを実行するには、OpenLiteSpeed用の新しいPHPをビルドする必要があります。</li> </ul> <h1>アンインストール手順</h1> <ol> <li>実行中のOpenLiteSpeedを停止する: [your_install_dir]/bin/lswsctrl stop</li> <li>インストールディレクトリを削除します: rm -rf [your_install_dir]</li> </ol> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ����������������������������ja-JP/App_Server_Context.html�����������������������������������������������������������������������0000644�����������������00000077033�15027525531�0012124 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Open LiteSpeed Web Serverユーザーズマニュアル - App Server Context</title> <meta name="description" content="Open LiteSpeed Web Serverユーザーズマニュアル - App Server Context." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="../img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h3 class="ls-text-thin">OpenLiteSpeed Web Server <a href="index.html"> ユーザーズマニュアル</a></h3> <h5 class="ls-text-muted">Version 1.8 — Rev. 0</h5> <hr/> <div> <ul> <li><a href="license.html">ライセンス</a></li> <li><a href="intro.html">はじめに</a></li> <li><a href="install.html">インストール</a></li> <li> <a href="admin.html">管理</a> <ul class="level2"> <li><a href="ServerStat_Help.html">サービスマネージャ</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">セキュリティ</a></li> <li><a href="config.html">設定</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">サーバー全般</a></li> <li><a href="ServLog_Help.html">サーバーログ</a></li> <li><a href="ServTuning_Help.html">サーバーのチューニング</a></li> <li><a href="ServSecurity_Help.html">サーバーのセキュリティ</a></li> <li><a href="ExtApp_Help.html">外部アプリ</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGIアプリ</a></li> <li><a href="External_FCGI_Auth.html">Fast CGIオーソライザー</a></li> <li><a href="External_LSAPI.html">LSAPIアプリ</a></li> <li><a href="External_Servlet.html">サーブレットエンジン</a></li> <li><a href="External_WS.html">Webサーバー</a></li> <li><a href="External_PL.html">パイプロガー</a></li> <li><a href="External_LB.html">ロードバランサ</a></li> </ul> <li><a href="ScriptHandler_Help.html">スクリプトハンドラ</a></li> <li><a href="Rails_Help.html">Rack/Railsの設定</a></li> <li><a href="Module_Help.html">モジュール設定</a></li> <li><a href="Listeners_General_Help.html">リスナー全般</a></li> <li><a href="Listeners_SSL_Help.html">リスナーのSSL</a></li> <li><a href="Templates_Help.html">テンプレート</a></li> <li><a href="VirtualHosts_Help.html">バーチャルホストの基本</a></li> <li><a href="VHGeneral_Help.html">バーチャルホスト全般</a></li> <li><a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a></li> <li><a href="VHSSL_Help.html">バーチャルホストのSSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">コンテキスト</a></li> <ul class="level3"> <li><a href="Static_Context.html">静的コンテテキスト</a></li> <li><a href="Java_Web_App_Context.html">Java Webアプリのコンテキスト</a></li> <li><a href="Servlet_Context.html">サーブレットコンテキスト</a></li> <li><a href="FCGI_Context.html">Fast CGIコンテキスト</a></li> <li><a href="LSAPI_Context.html">LSAPIコンテキスト</a></li> <li><a href="Proxy_Context.html">プロキシコンテキスト</a></li> <li><a href="CGI_Context.html">CGIコンテキスト</a></li> <li><a href="LB_Context.html">ロードバランサコンテキスト</a></li> <li><a href="Redirect_Context.html">コンテキストのリダイレクト</a></li> <li><a href="Rails_Context.html">Rack/Railsのコンテキスト</a></li> <li><a href="Module_Context.html">モジュールハンドラのコンテキスト</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socketプロキシ</a></li> </ul> </li> <li><a href="webconsole.html">Webコンソール</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">管理コンソール全般</a></li> <li><a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a></li> <li><a href="AdminListeners_General_Help.html">管理リスナー全般</a></li> <li><a href="AdminListeners_SSL_Help.html">管理リスナーのSSL</a></li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="Redirect_Context.html">リダイレクトコンテキスト</a></div><div class="center"><a href="Context_Help.html">コンテキスト</a></div><div class="next"><a href="Module_Context.html">モジュールハンドラコンテキスト</a> »</div></div> <h1>App Server Context</h1><h2 id="top">目次</h2><section class="toc"><section class="toc-row"><header><a href="#appServerContext">App Server Context</a></header><p> <a href="#expuri">URI</a> | <a href="#as_location">Location</a> | <a href="#binPath">Binary Path</a> | <a href="#appType">Application Type</a> | <a href="#as_startupfile">Startup File</a> | <a href="#appserverEnv">Run-Time Mode</a> | <a href="#maxConns">最大接続数</a> | <a href="#env">環境</a> | <a href="#enableExpires">有効期限を有効にする</a> | <a href="#expiresDefault">デフォルトの期限</a> | <a href="#expiresByType">タイプ別の期限</a> | <a href="#extraHeaders">Extra Headers</a> | <a href="#indexFiles">インデックスファイル</a> | <a href="#autoIndex">自動インデックス</a> | <a href="#realm">レルム</a> | <a href="#authName">認証名</a> | <a href="#required">必要(許可ユーザー/グループ)</a> | <a href="#accessAllowed">アクセス許可</a> | <a href="#accessDenied">アクセス拒否</a> | <a href="#extAuthorizer">承認者</a> | <a href="#enableRewrite">Rewriteを有効にする</a> | <a href="#rewriteInherit">継承を書き直す</a> | <a href="#rewriteBase">書き換えベース</a> | <a href="#rewriteRules">Rewriteルール</a> | <a href="#addDefaultCharset">デフォルトの文字セットを追加</a> | <a href="#defaultCharsetCustomized">カスタマイズされたデフォルトの文字セット</a> | <a href="#enableIpGeo">IPジオロケーションを有効にする</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="appServerContext"><h3>App Server Context<span class="ls-permlink"><a href="#appServerContext"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>An App Server Context provides an easy way to configure a Ruby Rack/Rails, WSGI, or Node.js application. To add a an application through an App Server Context, only mounting the URL and the application's root directory is required. There is no need to go through all the trouble to define an external application, add a 404 handler, and rewrite rules, etc.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expuri"><h3>URI<span class="ls-permlink"><a href="#expuri"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストのURIを指定します。</p> <h4>構文</h4><p>URIは、プレーンURI( "/"で始まる)またはPerl互換の正規表現URI( "exp:"で始まる)にすることができます。 プレーンURIが "/"で終わる場合、このコンテキストはこのURIの下にすべてのサブURIを含みます。 コンテキストがファイルシステム上のディレクトリにマップされている場合は、末尾に「/」を追加する必要があります。</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#location">ロケーション</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="as_location"><h3>Location<span class="ls-permlink"><a href="#as_location"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Specifies the corresponding location of this context in the file system.<br/><br/> Default value: $DOC_ROOT + <span class="tagl"><a href="#expuri">URI</a></span></p> <h4>構文</h4><p>It can be an absolute path or path relative to $SERVER_ROOT, $VH_ROOT, or $DOC_ROOT. $DOC_ROOT is the default relative path, and can be omitted.<br/><br/> If the <span class="tagl"><a href="#expuri">URI</a></span> is a regular expression, then the matched sub-string can be used to form the "Root" string. The matched sub-string can be referenced with the values "$1" - "$9". "$0" and "&" can be used to reference the whole matched string. Additionally, a query string can be set by appending a "?" followed by the query string. Be careful. "&" should be escaped as "\&" in the query string.</p> <h4>例</h4><div class="ls-example">A plain URI like <span class="val">/examples/</span> with <span class="tagl"><a href="#location">ロケーション</a></span> set to <span class="val">/home/john/web_examples</span> will map the request "/examples/foo/bar.html" to file "/home/john/web_examples/foo/bar.html".<br/> To simulate Apache's mod_userdir, set URI to <span class="val">exp: ^/~([A-Za-z0-9]+)(.*)</span>, set <span class="tagl"><a href="#location">ロケーション</a></span> to <span class="val">/home/$1/public_html$2</span>. With these settings, a request of URI /~john/foo/bar.html will map to file /home/john/public_html/foo/bar.html.</div><h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#expuri">URI</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="binPath"><h3>Binary Path<span class="ls-permlink"><a href="#binPath"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>The location of the App Server application binary.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="appType"><h3>Application Type<span class="ls-permlink"><a href="#appType"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>The type of application used for this context. Rack/Rails, WSGI, or Node.js are supported.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="as_startupfile"><h3>Startup File<span class="ls-permlink"><a href="#as_startupfile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>The location of file used to start the application, relative to the application root directory.<br/><br/> Default startup file names include 'config.ru' for Rack/Rails, 'wsgi.py' and 'passenger_wsgi.py' for WSGI, and 'app.js' for NodeJS.</p> <h4>構文</h4><p>Path relative to application root directory</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="appserverEnv"><h3>Run-Time Mode<span class="ls-permlink"><a href="#appserverEnv"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Specifies which mode the application will be running as: "Development", "Production", or "Staging". The default is "Production".</p> <h4>構文</h4><p>ドロップダウンリストから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxConns"><h3>最大接続数<span class="ls-permlink"><a href="#maxConns"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>サーバーと外部アプリケーションの間で確立できる同時接続の最大数を指定します。 この設定は、外部アプリケーションによって同時に処理できる要求の数を制御しますが、実際の制限は外部アプリケーション自体によっても異なります。 この値を高く設定すると、外部アプリケーションの速度が不十分であるか、多数の同時要求に対応できない場合に役立ちません。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p>[パフォーマンス]高い値を設定しても、高いパフォーマンスに直接変換されるわけではありません。 制限を外部アプリケーションに負荷をかけない値に設定すると、最高のパフォーマンス/スループットが得られます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="env"><h3>環境<span class="ls-permlink"><a href="#env"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>外部アプリケーション用の追加の環境変数を指定します。</p> <h4>構文</h4><p>Key=value. 複数の変数は "ENTER"で区切ることができます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableExpires"><h3>有効期限を有効にする<span class="ls-permlink"><a href="#enableExpires"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>静的ファイルのExpiresヘッダーを生成するかどうかを指定します。 有効にすると、<span class="tagl"><a href="#expiresDefault">デフォルトの期限</a></span>と<span class="tagl"><a href="#expiresByType">タイプ別の期限</a></span>に基づいてExpiresヘッダーが生成されます。<br/><br/> これは、サーバー、バーチャルホスト、コンテキストレベルで設定できます。 下位レベルの設定は上位レベルの設定を上書きします。 コンテキスト設定はバーチャルホストの設定を上書きし、バーチャルホストの設定はサーバーの設定を上書きします。</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expiresDefault"><h3>デフォルトの期限<span class="ls-permlink"><a href="#expiresDefault"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Expiresヘッダー生成のデフォルト設定を指定します。 この設定は、<span class="tagl"><a href="#enableExpires">有効期限を有効にする</a></span>が "はい"に設定されているときに有効になります。 <span class="tagl"><a href="#expiresByType">タイプ別の期限</a></span>で上書きできます。 すべてのページのExpiresヘッダーが生成されるため、必要がない限り、このデフォルトをサーバーまたはバーチャルホストレベルで設定しないでください。 ほとんどの場合、これは頻繁に変更されない特定のディレクトリのコンテキストレベルで設定する必要があります。 デフォルト設定がない場合、<span class="tagl"><a href="#expiresByType">タイプ別の期限</a></span>で指定されていないタイプに対してExpiresヘッダーは生成されません。</p> <h4>構文</h4><p>A|M秒<br/> このファイルは、基本時間(A | M)に指定された秒を加えた後に期限切れになります。 ベース時刻 "A"はクライアントのアクセス時間に値を設定し、 "M"はファイルの最終変更時刻を設定します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expiresByType"><h3>タイプ別の期限<span class="ls-permlink"><a href="#expiresByType"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>各MIMEタイプのExpiresヘッダー設定を指定します。</p> <h4>構文</h4><p>"MIME-type=A|Mseconds"のカンマで区切られたリスト。 このファイルは、基本時間(A|M)に指定された秒を加えた後に期限切れになります。<br/><br/> ベース時刻 "A"はクライアントのアクセス時間に値を設定し、 "M"はファイルの最終変更時刻を設定します。 MIMEタイプはimage/*のようなワイルドカード "*"を受け入れます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extraHeaders"><h3>Extra Headers<span class="ls-permlink"><a href="#extraHeaders"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>追加される余分な応答ヘッダーを指定します。 1行に1つのヘッダーを追加できます。 親コンテンツから継承したヘッダーを無効にするには、"NONE"を入力します。</p> <h4>構文</h4><p>各行に "[HeaderName]: [HeaderValue]"</p> <h4>例</h4><div class="ls-example">Cache-control: no-cache, no-store <br/> My-header: Custom header value</div><h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> Syntax and usage are similar to <a href="https://httpd.apache.org/docs/2.2/mod/mod_headers.html#header" target="_blank" rel="noopener noreferrer">Apache's mod_headers directives</a> for supported operations.<br/><br/> <span title="Information" class="ls-icon-info"></span> The 'Header' directive is is optional and can be excluded or left in when copying rules from elsewhere without issue.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="indexFiles"><h3>インデックスファイル<span class="ls-permlink"><a href="#indexFiles"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>URLがディレクトリにマップされたときに順番に検索されるインデックスファイルの名前を指定します。 サーバー、バーチャルホスト、コンテキストレベルでカスタマイズできます。</p> <h4>構文</h4><p>インデックスファイル名のカンマ区切りリスト。</p> <h4>ヒント</h4><p>[パフォーマンス]必要なインデックスファイルのみを設定します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="autoIndex"><h3>自動インデックス<span class="ls-permlink"><a href="#autoIndex"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p><span class="tagl"><a href="#indexFiles">インデックスファイル</a></span>にリストされている索引ファイルがディレクトリで使用できないときに、その場でディレクトリー索引を生成するかどうかを指定します。 このオプションは、バーチャルホストおよびコンテキストレベルでカスタマイズ可能で、明示的に上書きされるまでディレクトリツリーに沿って継承されます。 生成された索引ページをカスタマイズできます。 オンラインウィキHow-tosを確認してください。</p> <h4>構文</h4><p>ラジオボックスから選択</p> <h4>ヒント</h4><p>[セキュリティ]可能であれば、自動インデックスをオフにして、機密データを漏らさないようにすることをお勧めします。</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#indexFiles">インデックスファイル</a></span>, <span class="tagl"><a href="#autoIndexURI">自動インデックス URI</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="realm"><h3>レルム<span class="ls-permlink"><a href="#realm"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストの認可レルムを指定します。 このコンテキストにアクセスするには、有効なユーザー名とパスワードを指定する必要があります。 <span class="tagl"><a href="VHSecurity_Help.html#realms">認可レルム</a></span>は<span class="tagP"><a href="#VHSecurity_Help">バーチャルホストのセキュリティ</a></span>セクションに設定されています。 この設定では、各レルムの<span class="tagl"><a href="VHSecurity_Help.html#realmName">レルム名</a></span>が使用されます。</p> <h4>構文</h4><p>選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="authName"><h3>認証名<span class="ls-permlink"><a href="#authName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>現在のコンテキストの認証レルムの代替名を指定します。 指定しない場合、元のレルム名が使用されます。 認証名は、ブラウザのログインポップアップに表示されます。</p> <h4>構文</h4><p>テキスト</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="required"><h3>必要(許可ユーザー/グループ)<span class="ls-permlink"><a href="#required"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストにアクセスできるユーザー/グループを指定します。 これにより、複数のコンテキストにわたって1つのユーザー/グループデータベース(<span class="tagl"><a href="#realm">レルム</a></span>で指定)を使用できますが、そのデータベースの特定のユーザー/グループのみがこのコンテキストにアクセスできます。</p> <h4>構文</h4><p>構文はApache Requireディレクティブと互換性があります。 例えば: <ul> <li><span class="val">user username [username ...]</span> <br/> リストされたユーザーだけがこのコンテキストにアクセスできます。</li> <li> <span class="val">group groupid [groupid ...]</span><br/> リストされたグループに属するユーザーのみがこのコンテキストにアクセスできます。</li> </ul> この設定を指定しないと、すべての有効なユーザーがこのリソースにアクセスできます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessAllowed"><h3>アクセス許可<span class="ls-permlink"><a href="#accessAllowed"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストでリソースにアクセスできるIPまたはサブネットワークを指定します。 <span class="tagl"><a href="#accessDenied">アクセス拒否</a></span>とサーバー/バーチャルホスト・レベルのアクセス制御とともに、アクセシビリティは、クライアントのIPアドレスが入る最小の範囲によって決まります。</p> <h4>構文</h4><p>IP/サブネットワークのカンマ区切りリスト。</p> <h4>例</h4><div class="ls-example">サブネットワークは以下のように書くことができます <span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span>, 又は <span class="val">192.168.1.*</span>.</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessDenied"><h3>アクセス拒否<span class="ls-permlink"><a href="#accessDenied"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストでリソースにアクセスできないIPまたはサブネットワークを指定します。 <span class="tagl"><a href="#accessAllowed">アクセス許可</a></span>とサーバー/バーチャルホストレベルのアクセス制御とともに、アクセシビリティはクライアントのIPアドレスが入る最小の範囲で決まります。</p> <h4>構文</h4><p>IP/サブネットワークのカンマ区切りリスト。</p> <h4>例</h4><div class="ls-example">サブネットワークは以下のように書くことができます <span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span>, 又は <span class="val">192.168.1.*</span>.</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAuthorizer"><h3>承認者<span class="ls-permlink"><a href="#extAuthorizer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>権限のある/権限のないかの決定を生成するために使用できる外部アプリケーションを指定します。 現在、FastCGI Authorizerのみが使用可能です。 FastCGI Authorizerの役割の詳細については、<a href=" https://fastcgi-archives.github.io/ " target="_blank" rel="noopener noreferrer"> https://fastcgi-archives.github.io/ </a>を参照してください。 。</p> <h4>構文</h4><p>ドロップダウンリストから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableRewrite"><h3>Rewriteを有効にする<span class="ls-permlink"><a href="#enableRewrite"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>LiteSpeedのURL書き換えエンジンを有効にするかどうかを指定します。 このオプションは、バーチャルホストまたはコンテキストレベルでカスタマイズでき、明示的に上書きされるまでディレクトリツリーに沿って継承されます。</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="rewriteInherit"><h3>継承を書き直す<span class="ls-permlink"><a href="#rewriteInherit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>親コンテキストから書き換えルールを継承するかどうかを指定します。 書き換えが有効で継承されていない場合は、このコンテキストで定義されている書き換えのベースルールと書き換えルールが使用されます。</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="rewriteBase"><h3>書き換えベース<span class="ls-permlink"><a href="#rewriteBase"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>書き換えルールのベースURLを指定します。</p> <h4>構文</h4><p>URL</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="rewriteRules"><h3>Rewriteルール<span class="ls-permlink"><a href="#rewriteRules"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>バーチャルホストまたはコンテキスト・レベルでの書き換えルールのリストを指定します。 書き換えルールは、<span class="val">RewriteRule</span>ディレクティブから構成され、オプションとして複数の<span class="val">RewriteCond</span>ディレクティブが前に付いています。 <ul> <li>各ディレクティブは1行だけを取る必要があります。</li> <li><span class="val">RewriteCond</span>と<span class="val">RewriteRule</span>は、Apacheのリライト命令構文に従います。 あなたのApache設定ファイルから書き換え命令文をコピー&ペーストするだけです。</li> <li>LiteSpeedとApache mod_rewriteには小さな違いがあります 実装: <ul> <li>LiteSpeed書き換えエンジンでは、<span class="val">%\ {LA-U:変数\} </span>と<span class="val">%\ {LA-F:変数\} </span>は無視されます</li> <li>LiteSpeed書き換えエンジンに2つの新しいサーバー変数が追加されました。: LiteSpeed書き換えエンジンに2つの新しいサーバー変数が追加されました。 <span class="val">%\{CURRENT_URI\}</span>は、書き換えエンジンによって処理されている現在のURIを表し、<span class="val">%\{SCRIPT_NAME\}</span>は対応するCGI環境変数と同じ意味を持ちます。</li> </ul></li> </ul> LiteSpeedのリライトエンジンの実装は、Apacheのリライトエンジンの仕様に従います。 書き換えルールの詳細については、<a href="http://httpd.apache.org/docs/current/mod/mod_rewrite.html" target="_blank" rel="noopener noreferrer">Apacheのmod_rewriteドキュメント</a>と<a href="http://httpd.apache.org/docs/current/rewrite/" target="_blank" rel="noopener noreferrer">ApacheのURL書き換えガイド</a>を参照してください。</p> <h4>構文</h4><p>文字列</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="addDefaultCharset"><h3>デフォルトの文字セットを追加<span class="ls-permlink"><a href="#addDefaultCharset"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>コンテンツタイプが "text/html"または "text/plain"のいずれかのパラメータがない場合、文字セットタグを "Content-Type"レスポンスヘッダーに追加するかどうかを指定します。 <span class="val">Off</span>に設定すると、この機能は無効になります。 <span class="val">On</span>に設定すると、<span class="tagl"><a href="#defaultCharsetCustomized">カスタマイズされたデフォルトの文字セット</a></span>で指定された文字セットまたはデフォルトの "iso-8859-1"のいずれかが追加されます。</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="defaultCharsetCustomized"><h3>カスタマイズされたデフォルトの文字セット<span class="ls-permlink"><a href="#defaultCharsetCustomized"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p><span class="tagl"><a href="#addDefaultCharset">デフォルトの文字セットを追加</a></span>が<span class="val">On</span>のときに使用される文字セットを指定します。 これはオプションです。 デフォルト値は<span class="val"> iso-8859-1 </span>です。 <span class="tagl"><a href="#addDefaultCharset">デフォルトの文字セットを追加</a></span>が<span class="val"> Off </span>の場合、このエントリは無効です。</p> <h4>構文</h4><p>文字セットの名前。</p> <h4>例</h4><div class="ls-example">utf-8</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableIpGeo"><h3>IPジオロケーションを有効にする<span class="ls-permlink"><a href="#enableIpGeo"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p> IPジオロケーション検索を有効/無効にするかどうかを指定します。 サーバ、バーチャルホスト、コンテキストレベルで設定できます。 値 「未設定」を使用すると、IPジオロケーションはデフォルトで無効になります。</p> <h4>構文</h4><p>ラジオボックスから選択</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="ServGeneral_Help.html#useIpInProxyHeader">ヘッダーにクライアントIPを使用する</a></span>, <span class="tagl"><a href="ServGeneral_Help.html#geoipDBFile">DBファイルのパス</a></span>,</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> �����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������ja-JP/Static_Context.html���������������������������������������������������������������������������0000644�����������������00000101314�15027525531�0011273 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Open LiteSpeed Web Serverユーザーズマニュアル - 静的コンテキスト</title> <meta name="description" content="Open LiteSpeed Web Serverユーザーズマニュアル - 静的コンテキスト." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="../img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h3 class="ls-text-thin">OpenLiteSpeed Web Server <a href="index.html"> ユーザーズマニュアル</a></h3> <h5 class="ls-text-muted">Version 1.8 — Rev. 0</h5> <hr/> <div> <ul> <li><a href="license.html">ライセンス</a></li> <li><a href="intro.html">はじめに</a></li> <li><a href="install.html">インストール</a></li> <li> <a href="admin.html">管理</a> <ul class="level2"> <li><a href="ServerStat_Help.html">サービスマネージャ</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">セキュリティ</a></li> <li><a href="config.html">設定</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">サーバー全般</a></li> <li><a href="ServLog_Help.html">サーバーログ</a></li> <li><a href="ServTuning_Help.html">サーバーのチューニング</a></li> <li><a href="ServSecurity_Help.html">サーバーのセキュリティ</a></li> <li><a href="ExtApp_Help.html">外部アプリ</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGIアプリ</a></li> <li><a href="External_FCGI_Auth.html">Fast CGIオーソライザー</a></li> <li><a href="External_LSAPI.html">LSAPIアプリ</a></li> <li><a href="External_Servlet.html">サーブレットエンジン</a></li> <li><a href="External_WS.html">Webサーバー</a></li> <li><a href="External_PL.html">パイプロガー</a></li> <li><a href="External_LB.html">ロードバランサ</a></li> </ul> <li><a href="ScriptHandler_Help.html">スクリプトハンドラ</a></li> <li><a href="Rails_Help.html">Rack/Railsの設定</a></li> <li><a href="Module_Help.html">モジュール設定</a></li> <li><a href="Listeners_General_Help.html">リスナー全般</a></li> <li><a href="Listeners_SSL_Help.html">リスナーのSSL</a></li> <li><a href="Templates_Help.html">テンプレート</a></li> <li><a href="VirtualHosts_Help.html">バーチャルホストの基本</a></li> <li><a href="VHGeneral_Help.html">バーチャルホスト全般</a></li> <li><a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a></li> <li><a href="VHSSL_Help.html">バーチャルホストのSSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">コンテキスト</a></li> <ul class="level3"> <li><span class="current"><a href="Static_Context.html">静的コンテテキスト</a></span></li> <li><a href="Java_Web_App_Context.html">Java Webアプリのコンテキスト</a></li> <li><a href="Servlet_Context.html">サーブレットコンテキスト</a></li> <li><a href="FCGI_Context.html">Fast CGIコンテキスト</a></li> <li><a href="LSAPI_Context.html">LSAPIコンテキスト</a></li> <li><a href="Proxy_Context.html">プロキシコンテキスト</a></li> <li><a href="CGI_Context.html">CGIコンテキスト</a></li> <li><a href="LB_Context.html">ロードバランサコンテキスト</a></li> <li><a href="Redirect_Context.html">コンテキストのリダイレクト</a></li> <li><a href="Rails_Context.html">Rack/Railsのコンテキスト</a></li> <li><a href="Module_Context.html">モジュールハンドラのコンテキスト</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socketプロキシ</a></li> </ul> </li> <li><a href="webconsole.html">Webコンソール</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">管理コンソール全般</a></li> <li><a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a></li> <li><a href="AdminListeners_General_Help.html">管理リスナー全般</a></li> <li><a href="AdminListeners_SSL_Help.html">管理リスナーのSSL</a></li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev"> </div><div class="center"><a href="Context_Help.html">コンテキスト</a></div><div class="next"><a href="Java_Web_App_Context.html">Java Web アプリコンテキスト</a> »</div></div> <h1>静的コンテキスト</h1><h2 id="top">目次</h2><section class="toc"><section class="toc-row"><header><a href="#generalContext">静的コンテキスト</a></header><p> <a href="#expuri">URI</a> | <a href="#location">ロケーション</a> | <a href="#allowBrowse">アクセス可能</a> | <a href="#enableExpires">有効期限を有効にする</a> | <a href="#expiresDefault">デフォルトの期限</a> | <a href="#expiresByType">タイプ別の期限</a> | <a href="#extraHeaders">Extra Headers</a> | <a href="#addMIMEType">MIMEタイプ</a> | <a href="#forceType">強制MIMEタイプ</a> | <a href="#defaultType">デフォルトのMIMEタイプ</a> | <a href="#indexFiles">インデックスファイル</a> | <a href="#autoIndex">自動インデックス</a> | <a href="#realm">レルム</a> | <a href="#authName">認証名</a> | <a href="#required">必要(許可ユーザー/グループ)</a> | <a href="#accessAllowed">アクセス許可</a> | <a href="#accessDenied">アクセス拒否</a> | <a href="#extAuthorizer">承認者</a> | <a href="#addDefaultCharset">デフォルトの文字セットを追加</a> | <a href="#defaultCharsetCustomized">カスタマイズされたデフォルトの文字セット</a> | <a href="#enableRewrite">Rewriteを有効にする</a> | <a href="#rewriteInherit">継承を書き直す</a> | <a href="#rewriteBase">書き換えベース</a> | <a href="#rewriteRules">Rewriteルール</a> | <a href="#enableIpGeo">IPジオロケーションを有効にする</a> | <a href="#phpIniOverride">php.ini Override</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="generalContext"><h3>静的コンテキスト<span class="ls-permlink"><a href="#generalContext"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>コンテキスト設定は、特定の場所にあるファイルの特別な設定を指定するために使用されます。 これらの設定は、ApacheのAliasやAliasMatchディレクティブのようなドキュメントルートの外部にファイルを持ち込み、認可領域を使用して特定のディレクトリを保護したり、ドキュメントルート内の特定のディレクトリへのアクセスをブロックまたは制限するために使用できます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expuri"><h3>URI<span class="ls-permlink"><a href="#expuri"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストのURIを指定します。</p> <h4>構文</h4><p>URIは、プレーンURI( "/"で始まる)またはPerl互換の正規表現URI( "exp:"で始まる)にすることができます。 プレーンURIが "/"で終わる場合、このコンテキストはこのURIの下にすべてのサブURIを含みます。 コンテキストがファイルシステム上のディレクトリにマップされている場合は、末尾に「/」を追加する必要があります。</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#location">ロケーション</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="location"><h3>ロケーション<span class="ls-permlink"><a href="#location"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>ファイルシステム内のこのコンテキストの対応する場所を指定します。</p> <h4>構文</h4><p>$SERVER_ROOT、$VH_ROOT、または$DOC_ROOTに関連する絶対パスまたは絶対パスにすることができます。 $DOC_ROOTはデフォルトの相対パスであり省略することができます。<br/><br/> <span class="tagl"><a href="#expuri">URI</a></span>が正規表現であれば、一致した部分文字列を使用して "Root"文字列を形成することができます。 一致した部分文字列は、値 "$1" - "$9"で参照できます。 一致した文字列全体を参照するには、 "$0"と "&"を使用できます。 さらに、クエリ文字列は、 "?" その後にクエリ文字列が続きます。 注意してください。 "&"はクエリ文字列で "\&"としてエスケープする必要があります。</p> <h4>例</h4><div class="ls-example"><span class="tagl"><a href="#location">ロケーション</a></span>を<span class="val">/home/john/web_examples</span>に設定した<span class="val">/examples/</span>のような単純なURIは、リクエスト "/examples/foo/bar.html"をファイル "/home/john/web_examples/foo/bar.html"をマップします。<br/> Apacheのmod_userdirをシミュレートするには、URIを<span class="val">exp:^ /〜([A-Za-z0-9] +)(。*)</span>に設定し、<span class="tagl"><a href="#location">ロケーション</a></span>を<span class="val">/home/$1/public_html$2</span>に設定します。 これらの設定で、URI /~john/foo/bar.html のリクエストが/home/john/public_html/foo/bar.htmlにマップします。</div><h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#expuri">URI</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="allowBrowse"><h3>アクセス可能<span class="ls-permlink"><a href="#allowBrowse"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストにアクセスできるかどうかを指定します。 アクセスを拒否するには<span class="val">いいえ</span>に設定してください。 この機能を使用して、指定したディレクトリが訪問されないように保護できます。 このコンテキストのコンテンツを更新している場合、またはこのディレクトリに特別なデータがある場合に使用することができます。</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableExpires"><h3>有効期限を有効にする<span class="ls-permlink"><a href="#enableExpires"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>静的ファイルのExpiresヘッダーを生成するかどうかを指定します。 有効にすると、<span class="tagl"><a href="#expiresDefault">デフォルトの期限</a></span>と<span class="tagl"><a href="#expiresByType">タイプ別の期限</a></span>に基づいてExpiresヘッダーが生成されます。<br/><br/> これは、サーバー、バーチャルホスト、コンテキストレベルで設定できます。 下位レベルの設定は上位レベルの設定を上書きします。 コンテキスト設定はバーチャルホストの設定を上書きし、バーチャルホストの設定はサーバーの設定を上書きします。</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expiresDefault"><h3>デフォルトの期限<span class="ls-permlink"><a href="#expiresDefault"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Expiresヘッダー生成のデフォルト設定を指定します。 この設定は、<span class="tagl"><a href="#enableExpires">有効期限を有効にする</a></span>が "はい"に設定されているときに有効になります。 <span class="tagl"><a href="#expiresByType">タイプ別の期限</a></span>で上書きできます。 すべてのページのExpiresヘッダーが生成されるため、必要がない限り、このデフォルトをサーバーまたはバーチャルホストレベルで設定しないでください。 ほとんどの場合、これは頻繁に変更されない特定のディレクトリのコンテキストレベルで設定する必要があります。 デフォルト設定がない場合、<span class="tagl"><a href="#expiresByType">タイプ別の期限</a></span>で指定されていないタイプに対してExpiresヘッダーは生成されません。</p> <h4>構文</h4><p>A|M秒<br/> このファイルは、基本時間(A | M)に指定された秒を加えた後に期限切れになります。 ベース時刻 "A"はクライアントのアクセス時間に値を設定し、 "M"はファイルの最終変更時刻を設定します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expiresByType"><h3>タイプ別の期限<span class="ls-permlink"><a href="#expiresByType"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>各MIMEタイプのExpiresヘッダー設定を指定します。</p> <h4>構文</h4><p>"MIME-type=A|Mseconds"のカンマで区切られたリスト。 このファイルは、基本時間(A|M)に指定された秒を加えた後に期限切れになります。<br/><br/> ベース時刻 "A"はクライアントのアクセス時間に値を設定し、 "M"はファイルの最終変更時刻を設定します。 MIMEタイプはimage/*のようなワイルドカード "*"を受け入れます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extraHeaders"><h3>Extra Headers<span class="ls-permlink"><a href="#extraHeaders"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>追加される余分な応答ヘッダーを指定します。 1行に1つのヘッダーを追加できます。 親コンテンツから継承したヘッダーを無効にするには、"NONE"を入力します。</p> <h4>構文</h4><p>各行に "[HeaderName]: [HeaderValue]"</p> <h4>例</h4><div class="ls-example">Cache-control: no-cache, no-store <br/> My-header: Custom header value</div><h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> Syntax and usage are similar to <a href="https://httpd.apache.org/docs/2.2/mod/mod_headers.html#header" target="_blank" rel="noopener noreferrer">Apache's mod_headers directives</a> for supported operations.<br/><br/> <span title="Information" class="ls-icon-info"></span> The 'Header' directive is is optional and can be excluded or left in when copying rules from elsewhere without issue.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="addMIMEType"><h3>MIMEタイプ<span class="ls-permlink"><a href="#addMIMEType"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストに追加のMIMEタイプとマッピングを指定します。 新しいマッピングは、このコンテキストとその子コンテキストのもとで既存のマッピングを上書きします。<br/> スクリプトとして実行するのではなく、PHPスクリプトをテキストファイルとして表示するには、MIMEタイプ "text/plain"への.phpマッピングをオーバーライドするだけです。</p> <h4>構文</h4><p>MIME-type1 extension extension ..., MIME-type2 extension ... カンマを使用してMIMEタイプを区切り、スペースを使用して複数の拡張子を区切ります。</p> <h4>例</h4><div class="ls-example"><span class="val">image/jpg jpeg jpg, image/gif gif</span></div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="forceType"><h3>強制MIMEタイプ<span class="ls-permlink"><a href="#forceType"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストの下にあるすべてのファイルは、指定すると、ファイルの接尾辞に関係なくMIMEタイプが指定された静的ファイルとして提供されます。 <span class="val"> NONE </span>に設定すると、継承された強制タイプの設定は無効になります。</p> <h4>構文</h4><p>MIMEタイプまたはNONE。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="defaultType"><h3>デフォルトのMIMEタイプ<span class="ls-permlink"><a href="#defaultType"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>この型を指定すると、ドキュメントの接尾辞でMIMEタイプのマッピングを判別できない場合、または接尾辞がない場合にこの型が使用されます。 指定しない場合、デフォルト値<span class="val">application/octet-stream</span>が使用されます。</p> <h4>構文</h4><p>MIMEタイプ</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="indexFiles"><h3>インデックスファイル<span class="ls-permlink"><a href="#indexFiles"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>URLがディレクトリにマップされたときに順番に検索されるインデックスファイルの名前を指定します。 サーバー、バーチャルホスト、コンテキストレベルでカスタマイズできます。</p> <h4>構文</h4><p>インデックスファイル名のカンマ区切りリスト。</p> <h4>ヒント</h4><p>[パフォーマンス]必要なインデックスファイルのみを設定します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="autoIndex"><h3>自動インデックス<span class="ls-permlink"><a href="#autoIndex"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p><span class="tagl"><a href="#indexFiles">インデックスファイル</a></span>にリストされている索引ファイルがディレクトリで使用できないときに、その場でディレクトリー索引を生成するかどうかを指定します。 このオプションは、バーチャルホストおよびコンテキストレベルでカスタマイズ可能で、明示的に上書きされるまでディレクトリツリーに沿って継承されます。 生成された索引ページをカスタマイズできます。 オンラインウィキHow-tosを確認してください。</p> <h4>構文</h4><p>ラジオボックスから選択</p> <h4>ヒント</h4><p>[セキュリティ]可能であれば、自動インデックスをオフにして、機密データを漏らさないようにすることをお勧めします。</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#indexFiles">インデックスファイル</a></span>, <span class="tagl"><a href="#autoIndexURI">自動インデックス URI</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="realm"><h3>レルム<span class="ls-permlink"><a href="#realm"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストの認可レルムを指定します。 このコンテキストにアクセスするには、有効なユーザー名とパスワードを指定する必要があります。 <span class="tagl"><a href="VHSecurity_Help.html#realms">認可レルム</a></span>は<span class="tagP"><a href="#VHSecurity_Help">バーチャルホストのセキュリティ</a></span>セクションに設定されています。 この設定では、各レルムの<span class="tagl"><a href="VHSecurity_Help.html#realmName">レルム名</a></span>が使用されます。</p> <h4>構文</h4><p>選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="authName"><h3>認証名<span class="ls-permlink"><a href="#authName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>現在のコンテキストの認証レルムの代替名を指定します。 指定しない場合、元のレルム名が使用されます。 認証名は、ブラウザのログインポップアップに表示されます。</p> <h4>構文</h4><p>テキスト</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="required"><h3>必要(許可ユーザー/グループ)<span class="ls-permlink"><a href="#required"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストにアクセスできるユーザー/グループを指定します。 これにより、複数のコンテキストにわたって1つのユーザー/グループデータベース(<span class="tagl"><a href="#realm">レルム</a></span>で指定)を使用できますが、そのデータベースの特定のユーザー/グループのみがこのコンテキストにアクセスできます。</p> <h4>構文</h4><p>構文はApache Requireディレクティブと互換性があります。 例えば: <ul> <li><span class="val">user username [username ...]</span> <br/> リストされたユーザーだけがこのコンテキストにアクセスできます。</li> <li> <span class="val">group groupid [groupid ...]</span><br/> リストされたグループに属するユーザーのみがこのコンテキストにアクセスできます。</li> </ul> この設定を指定しないと、すべての有効なユーザーがこのリソースにアクセスできます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessAllowed"><h3>アクセス許可<span class="ls-permlink"><a href="#accessAllowed"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストでリソースにアクセスできるIPまたはサブネットワークを指定します。 <span class="tagl"><a href="#accessDenied">アクセス拒否</a></span>とサーバー/バーチャルホスト・レベルのアクセス制御とともに、アクセシビリティは、クライアントのIPアドレスが入る最小の範囲によって決まります。</p> <h4>構文</h4><p>IP/サブネットワークのカンマ区切りリスト。</p> <h4>例</h4><div class="ls-example">サブネットワークは以下のように書くことができます <span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span>, 又は <span class="val">192.168.1.*</span>.</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessDenied"><h3>アクセス拒否<span class="ls-permlink"><a href="#accessDenied"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このコンテキストでリソースにアクセスできないIPまたはサブネットワークを指定します。 <span class="tagl"><a href="#accessAllowed">アクセス許可</a></span>とサーバー/バーチャルホストレベルのアクセス制御とともに、アクセシビリティはクライアントのIPアドレスが入る最小の範囲で決まります。</p> <h4>構文</h4><p>IP/サブネットワークのカンマ区切りリスト。</p> <h4>例</h4><div class="ls-example">サブネットワークは以下のように書くことができます <span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span>, 又は <span class="val">192.168.1.*</span>.</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAuthorizer"><h3>承認者<span class="ls-permlink"><a href="#extAuthorizer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>権限のある/権限のないかの決定を生成するために使用できる外部アプリケーションを指定します。 現在、FastCGI Authorizerのみが使用可能です。 FastCGI Authorizerの役割の詳細については、<a href=" https://fastcgi-archives.github.io/ " target="_blank" rel="noopener noreferrer"> https://fastcgi-archives.github.io/ </a>を参照してください。 。</p> <h4>構文</h4><p>ドロップダウンリストから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="addDefaultCharset"><h3>デフォルトの文字セットを追加<span class="ls-permlink"><a href="#addDefaultCharset"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>コンテンツタイプが "text/html"または "text/plain"のいずれかのパラメータがない場合、文字セットタグを "Content-Type"レスポンスヘッダーに追加するかどうかを指定します。 <span class="val">Off</span>に設定すると、この機能は無効になります。 <span class="val">On</span>に設定すると、<span class="tagl"><a href="#defaultCharsetCustomized">カスタマイズされたデフォルトの文字セット</a></span>で指定された文字セットまたはデフォルトの "iso-8859-1"のいずれかが追加されます。</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="defaultCharsetCustomized"><h3>カスタマイズされたデフォルトの文字セット<span class="ls-permlink"><a href="#defaultCharsetCustomized"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p><span class="tagl"><a href="#addDefaultCharset">デフォルトの文字セットを追加</a></span>が<span class="val">On</span>のときに使用される文字セットを指定します。 これはオプションです。 デフォルト値は<span class="val"> iso-8859-1 </span>です。 <span class="tagl"><a href="#addDefaultCharset">デフォルトの文字セットを追加</a></span>が<span class="val"> Off </span>の場合、このエントリは無効です。</p> <h4>構文</h4><p>文字セットの名前。</p> <h4>例</h4><div class="ls-example">utf-8</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableRewrite"><h3>Rewriteを有効にする<span class="ls-permlink"><a href="#enableRewrite"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>LiteSpeedのURL書き換えエンジンを有効にするかどうかを指定します。 このオプションは、バーチャルホストまたはコンテキストレベルでカスタマイズでき、明示的に上書きされるまでディレクトリツリーに沿って継承されます。</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="rewriteInherit"><h3>継承を書き直す<span class="ls-permlink"><a href="#rewriteInherit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>親コンテキストから書き換えルールを継承するかどうかを指定します。 書き換えが有効で継承されていない場合は、このコンテキストで定義されている書き換えのベースルールと書き換えルールが使用されます。</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="rewriteBase"><h3>書き換えベース<span class="ls-permlink"><a href="#rewriteBase"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>書き換えルールのベースURLを指定します。</p> <h4>構文</h4><p>URL</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="rewriteRules"><h3>Rewriteルール<span class="ls-permlink"><a href="#rewriteRules"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>バーチャルホストまたはコンテキスト・レベルでの書き換えルールのリストを指定します。 書き換えルールは、<span class="val">RewriteRule</span>ディレクティブから構成され、オプションとして複数の<span class="val">RewriteCond</span>ディレクティブが前に付いています。 <ul> <li>各ディレクティブは1行だけを取る必要があります。</li> <li><span class="val">RewriteCond</span>と<span class="val">RewriteRule</span>は、Apacheのリライト命令構文に従います。 あなたのApache設定ファイルから書き換え命令文をコピー&ペーストするだけです。</li> <li>LiteSpeedとApache mod_rewriteには小さな違いがあります 実装: <ul> <li>LiteSpeed書き換えエンジンでは、<span class="val">%\ {LA-U:変数\} </span>と<span class="val">%\ {LA-F:変数\} </span>は無視されます</li> <li>LiteSpeed書き換えエンジンに2つの新しいサーバー変数が追加されました。: LiteSpeed書き換えエンジンに2つの新しいサーバー変数が追加されました。 <span class="val">%\{CURRENT_URI\}</span>は、書き換えエンジンによって処理されている現在のURIを表し、<span class="val">%\{SCRIPT_NAME\}</span>は対応するCGI環境変数と同じ意味を持ちます。</li> </ul></li> </ul> LiteSpeedのリライトエンジンの実装は、Apacheのリライトエンジンの仕様に従います。 書き換えルールの詳細については、<a href="http://httpd.apache.org/docs/current/mod/mod_rewrite.html" target="_blank" rel="noopener noreferrer">Apacheのmod_rewriteドキュメント</a>と<a href="http://httpd.apache.org/docs/current/rewrite/" target="_blank" rel="noopener noreferrer">ApacheのURL書き換えガイド</a>を参照してください。</p> <h4>構文</h4><p>文字列</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableIpGeo"><h3>IPジオロケーションを有効にする<span class="ls-permlink"><a href="#enableIpGeo"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p> IPジオロケーション検索を有効/無効にするかどうかを指定します。 サーバ、バーチャルホスト、コンテキストレベルで設定できます。 値 「未設定」を使用すると、IPジオロケーションはデフォルトで無効になります。</p> <h4>構文</h4><p>ラジオボックスから選択</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="ServGeneral_Help.html#useIpInProxyHeader">ヘッダーにクライアントIPを使用する</a></span>, <span class="tagl"><a href="ServGeneral_Help.html#geoipDBFile">DBファイルのパス</a></span>,</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="phpIniOverride"><h3>php.ini Override<span class="ls-permlink"><a href="#phpIniOverride"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Used to overwrite php.ini settings in the current context (Virtual Host level or Context level).<br/><br/> Supported directives are:<br/> php_value<br/> php_flag<br/> php_admin_value<br/> php_admin_flag<br/><br/> All other lines/directives will be ignored.</p> <h4>構文</h4><p>Override syntax is similar to Apache, a newline separated list of directives and their values with each directive being prepended by php_value, php_flag, php_admin_value, or php_admin_flag appropriately.</p> <h4>例</h4><div class="ls-example">php_value include_path ".:/usr/local/lib/php"<br/> php_admin_flag engine on<br/> php_admin_value open_basedir "/home"</div></article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ��������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������ja-JP/ServGeneral_Help.html�������������������������������������������������������������������������0000644�����������������00000120741�15027525531�0011532 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Open LiteSpeed Web Serverユーザーズマニュアル - サーバー全般</title> <meta name="description" content="Open LiteSpeed Web Serverユーザーズマニュアル - サーバー全般." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="../img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h3 class="ls-text-thin">OpenLiteSpeed Web Server <a href="index.html"> ユーザーズマニュアル</a></h3> <h5 class="ls-text-muted">Version 1.8 — Rev. 0</h5> <hr/> <div> <ul> <li><a href="license.html">ライセンス</a></li> <li><a href="intro.html">はじめに</a></li> <li><a href="install.html">インストール</a></li> <li> <a href="admin.html">管理</a> <ul class="level2"> <li><a href="ServerStat_Help.html">サービスマネージャ</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">セキュリティ</a></li> <li><a href="config.html">設定</a> <ul class="level2"> <li><span class="current"><a href="ServGeneral_Help.html">サーバー全般</a></span></li> <li><a href="ServLog_Help.html">サーバーログ</a></li> <li><a href="ServTuning_Help.html">サーバーのチューニング</a></li> <li><a href="ServSecurity_Help.html">サーバーのセキュリティ</a></li> <li><a href="ExtApp_Help.html">外部アプリ</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGIアプリ</a></li> <li><a href="External_FCGI_Auth.html">Fast CGIオーソライザー</a></li> <li><a href="External_LSAPI.html">LSAPIアプリ</a></li> <li><a href="External_Servlet.html">サーブレットエンジン</a></li> <li><a href="External_WS.html">Webサーバー</a></li> <li><a href="External_PL.html">パイプロガー</a></li> <li><a href="External_LB.html">ロードバランサ</a></li> </ul> <li><a href="ScriptHandler_Help.html">スクリプトハンドラ</a></li> <li><a href="Rails_Help.html">Rack/Railsの設定</a></li> <li><a href="Module_Help.html">モジュール設定</a></li> <li><a href="Listeners_General_Help.html">リスナー全般</a></li> <li><a href="Listeners_SSL_Help.html">リスナーのSSL</a></li> <li><a href="Templates_Help.html">テンプレート</a></li> <li><a href="VirtualHosts_Help.html">バーチャルホストの基本</a></li> <li><a href="VHGeneral_Help.html">バーチャルホスト全般</a></li> <li><a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a></li> <li><a href="VHSSL_Help.html">バーチャルホストのSSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">コンテキスト</a></li> <ul class="level3"> <li><a href="Static_Context.html">静的コンテテキスト</a></li> <li><a href="Java_Web_App_Context.html">Java Webアプリのコンテキスト</a></li> <li><a href="Servlet_Context.html">サーブレットコンテキスト</a></li> <li><a href="FCGI_Context.html">Fast CGIコンテキスト</a></li> <li><a href="LSAPI_Context.html">LSAPIコンテキスト</a></li> <li><a href="Proxy_Context.html">プロキシコンテキスト</a></li> <li><a href="CGI_Context.html">CGIコンテキスト</a></li> <li><a href="LB_Context.html">ロードバランサコンテキスト</a></li> <li><a href="Redirect_Context.html">コンテキストのリダイレクト</a></li> <li><a href="Rails_Context.html">Rack/Railsのコンテキスト</a></li> <li><a href="Module_Context.html">モジュールハンドラのコンテキスト</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socketプロキシ</a></li> </ul> </li> <li><a href="webconsole.html">Webコンソール</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">管理コンソール全般</a></li> <li><a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a></li> <li><a href="AdminListeners_General_Help.html">管理リスナー全般</a></li> <li><a href="AdminListeners_SSL_Help.html">管理リスナーのSSL</a></li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev"> </div><div class="center"><a href="config.html">設定</a></div><div class="next"><a href="ServLog_Help.html">サーバーログ</a> »</div></div> <h1>サーバー全般</h1><section class="ls-spacer-small-bottom">サーバー全体の一般設定。 設定にパス情報が必要な場合は、絶対パスか$SERVER_ROOTのどちらかになります。 $SERVER_ROOTは、LiteSpeed Webサーバーがインストールされている場所です(your_home_dir/lswsまたは/opt/lswsなど)。 サーバー実行ファイルは$SERVER_ROOT/binにあります。</section> <h2 id="top">目次</h2><section class="toc"><section class="toc-row"><header>サーバープロセス</header><p> <a href="#serverName">サーバー名</a> | <a href="#httpdWorkers">ワーカーの数</a> | <a href="#runningAs">実行ユーザ・グループ</a> | <a href="#serverPriority">プライオリティ</a> | <a href="#cpuAffinity">CPU Affinity</a> | <a href="#enableLVE">Cloud-Linux</a> | <a href="#inMemBufSize">最大I/Oバッファサイズ</a> | <a href="#swappingDir">スワップディレクトリ</a> | <a href="#autoFix503">自動修正 503 エラー</a> | <a href="#enableh2c">HTTP/2 over Cleartext TCPを有効にする</a> | <a href="#gracefulRestartTimeout">緩やかな再起動タイムアウト(秒)</a> | <a href="#statDir">統計出力ディレクトリ</a> | <a href="#jsonReports">Output JSON reports</a></p></section> <section class="toc-row"><header>一般設定</header><p> <a href="#mime">MIME設定</a> | <a href="#mimesuffix">サフィックス</a> | <a href="#mimetype">MIMEタイプ</a> | <a href="#disableInitLogRotation">初期ログローテーションを無効にする</a> | <a href="#showVersionNumber">サーバー署名</a> | <a href="#enableIpGeo">IPジオロケーションを有効にする</a> | <a href="#useIpInProxyHeader">ヘッダーにクライアントIPを使用する</a> | <a href="#adminEmails">管理者Eメール</a></p></section> <section class="toc-row"><header>インデックスファイル</header><p> <a href="#indexFiles">インデックスファイル</a> | <a href="#autoIndex">自動インデックス</a> | <a href="#autoIndexURI">自動インデックス URI</a></p></section> <section class="toc-row"><header>期限切れの設定</header><p> <a href="#enableExpires">有効期限を有効にする</a> | <a href="#expiresDefault">デフォルトの期限</a> | <a href="#expiresByType">タイプ別の期限</a></p></section> <section class="toc-row"><header>Rewrite制御</header><p> <a href="#autoLoadHtaccess">Auto Load from .htaccess</a></p></section> <section class="toc-row"><header><a href="#fileUpload">ファイルアップロード</a></header><p> <a href="#uploadTmpDir">一時ファイルパス</a> | <a href="#uploadTmpFilePermission">一時ファイルのアクセス許可</a> | <a href="#uploadPassByPath">ファイルパスによるアップロードデータの転送</a></p></section> <section class="toc-row"><header><a href="#geolocationDB">IPからジオロケーションDB</a></header><p> <a href="#geoipDBFile">DBファイルのパス</a> | <a href="#geoipDBName">DB Name</a> | <a href="#maxMindDBEnv">Environment Variables</a></p></section> <section class="toc-row"><header>IP2Location DB</header><p> <a href="#ip2locDBFile">IP2Location DB File Path</a> | <a href="#ip2locDBCache">DB Cache Type</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="serverName"><h3>サーバー名<span class="ls-permlink"><a href="#serverName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このサーバーの一意の名前。 値として$HOSTNAMEを使用できます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="httpdWorkers"><h3>ワーカーの数<span class="ls-permlink"><a href="#httpdWorkers"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>httpdワーカーの数を指定します。</p> <h4>構文</h4><p>整数値は1〜16です。</p> <h4>ヒント</h4><p>[パフォーマンス]ニーズに合わせて適切な番号を設定します。 より多くのワーカーを追加することは、必ずしもより良いパフォーマンスを意味するとは限りません。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="runningAs"><h3>実行ユーザ・グループ<span class="ls-permlink"><a href="#runningAs"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>サーバープロセスが実行されるユーザー/グループを指定します。 これは、インストールの前にconfigureコマンドを実行するときに、 "--with-user"と "--with-group"というパラメータを使用して設定されます。これらの値をリセットするには、configureコマンドを再実行して再インストールする必要があります。</p> <h4>適用</h4><p>再インストールが必要です。</p> <h4>ヒント</h4><p>[セキュリティ]サーバは、 "root"のような特権ユーザーとして実行しないでください。 サーバーが、ログイン/シェルアクセスを持たない特権のないユーザー/グループの組み合わせで実行するように構成されていることが重要です。 一般的に<span class="val">nobody</span>のユーザー/グループが良い選択です。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="serverPriority"><h3>プライオリティ<span class="ls-permlink"><a href="#serverPriority"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>サーバープロセスの優先度を指定します。値の範囲は<span class="val">-20</span>〜<span class="val">20</span>です。 数値が小さいほど優先度が高くなります。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p>[パフォーマンス]通常、ビジー状態のサーバーで優先度を高くすると、Webパフォーマンスが若干高くなります。 データベースプロセスの優先度よりも高い優先度を設定しないでください。</p> <h4>参照</h4><p class="ls-text-small">External App <span class="tagl"><a href="ExtApp_Help.html#extAppPriority">優先度</a></span>, <span class="tagl"><a href="ServSecurity_Help.html#CGIPriority">CGI プライオリティ</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="cpuAffinity"><h3>CPU Affinity<span class="ls-permlink"><a href="#cpuAffinity"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>CPU affinity binds a process to one or more CPUs (cores). It is beneficial for a process to always use the same CPU because then the process can make use of data left in CPU cache. If the process moves to a different CPU, there is no use of CPU cache and unnecessary overhead is required.<br/><br/> The CPU Affinity setting controls how many CPUs (cores) one server process will be associated with. The minimum value is <span class="val">0</span>, which will disable this feature. The maximum value is the number of cores the server has. Generally, <span class="val">1</span> is the best setting because it creates the strictest use of CPU affinity and thus makes the most use of CPU cache.<br/><br/> Default value: 0</p> <h4>構文</h4><p>Integer value from 0 to 64. (0 will disable this feature)</p> <h4>適用</h4><p>再インストールが必要です。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableLVE"><h3>Cloud-Linux<span class="ls-permlink"><a href="#enableLVE"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>CloudLinuxの軽量バーチャル環境(LVE)が存在する場合に有効にするかどうかを指定します。 LiteSpeedをLVEと共に使用すると、より良いリソース管理を実現できます。 詳細については、<a href="http://www.cloudlinux.com" target="_blank" rel="noopener noreferrer">http://www.cloudlinux.com</a>を参照してください。</p> <h4>構文</h4><p>選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="inMemBufSize"><h3>最大I/Oバッファサイズ<span class="ls-permlink"><a href="#inMemBufSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>要求本体およびその動的生成応答を格納するために使用される最大バッファー・サイズを指定します。 この制限に達すると、サーバーは<span class="tagl"><a href="#swappingDir">スワップディレクトリ</a></span>の下に一時的なスワップファイルを作成し始めます。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p>[パフォーマンス]メモリとディスクのスワップを避けるために、すべての同時要求/応答を収容できる大きさのバッファサイズを設定します。 スワップ・ダイレクトイに頻繁にI/Oアクティビティがある場合(デフォルトでは/tmp/lshttpd/swap/)、このバッファ・サイズは低すぎるため、LiteSpeedはディスクにスワップします。</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#swappingDir">スワップディレクトリ</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="swappingDir"><h3>スワップディレクトリ<span class="ls-permlink"><a href="#swappingDir"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>スワップファイルを配置するディレクトリを指定します。 サーバがchrootモードで起動されると、このディレクトリは新しいルートディレクトリに相対的です。それ以外の場合は、実際のルートディレクトリに相対的です。<br/> サーバーは、独自のバーチャルメモリーを使用してシステムのメモリー使用量を削減します。 バーチャルメモリとディスクスワッピングは、大きな要求本体と動的に生成された応答を格納するために使用されます。 スワッピングディレクトリは、十分なスペースを持つディスク上に配置する必要があります。</p> <h4>構文</h4><p>絶対パス。</p> <h4>ヒント</h4><p>[パフォーマンス]スワッピングディレクトリを別のディスクに配置するか、最大I/Oバッファサイズを増やしてスワッピングを排除します。</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#inMemBufSize">最大I/Oバッファサイズ</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="autoFix503"><h3>自動修正 503 エラー<span class="ls-permlink"><a href="#autoFix503"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>「503 Service Unavailable」エラーを修正するかどうかを指定します。 サーバーを正常に再起動します。 通常、「503」エラーは外部アプリケーションが誤動作したために発生し、Webサーバーを再起動するとエラーが一時的に修正されることがあります。 有効にすると、30秒間に50件以上の「503」エラーが発生すると、サーバーは自動的に再起動します。 この機能はデフォルトで有効になっています。</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableh2c"><h3>HTTP/2 over Cleartext TCPを有効にする<span class="ls-permlink"><a href="#enableh2c"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>暗号化されていないTCP接続に対してHTTP/2を有効にするかどうかを指定します。 デフォルトは無効です。</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="gracefulRestartTimeout"><h3>緩やかな再起動タイムアウト(秒)<span class="ls-permlink"><a href="#gracefulRestartTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>緩やかな再起動時には、新しいサーバーインスタンスが起動した後でも、古いインスタンスは既存の要求を引き続き処理します。 このタイムアウトは、前のインスタンスが終了するまでの待機時間を定義します。 デフォルト値は300秒です。 -1は永遠に待つことを意味します。 0は待機しないことを意味し、直ちに中止します。</p> <h4>構文</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="statDir"><h3>統計出力ディレクトリ<span class="ls-permlink"><a href="#statDir"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Real-Time Statsレポートファイルが書き込まれるディレクトリが作成されます。 デフォルトのディレクトリは<b>/tmp/lshttpd/</b>です。</p> <h4>構文</h4><p>絶対パス。</p> <h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> サーバーの操作中に.rtreportファイルが1秒ごとに書き込まれます。 不必要なディスク書き込みを避けるには、これをRAMディスクに設定します。<br/> .rtreportファイルはサードパーティ製の監視ソフトウェアと一緒に使用してサーバーの状態を追跡できます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="jsonReports"><h3>Output JSON reports<span class="ls-permlink"><a href="#jsonReports"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Output additional JSON formatted report files, with the .json extension, to the /tmp/lshttpd directory.<br/><br/> Default value: <span class="val">No</span></p> <h4>構文</h4><p>ラジオボックスから選択</p> <h4>例</h4><div class="ls-example">When set to <span class="val">Yes</span>, .status.json and .rtreport.json, .rtreport.2.json, etc report files will be created in addition to the usual .status and .rtreport, .rtreport.2, etc report files.</div><h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> This is useful for application developers who may want to integrate LiteSpeed status and real-time reports into their applications using standard JSON processing tools built-in to most programming languages.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="mime"><h3>MIME設定<span class="ls-permlink"><a href="#mime"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このサーバーのMIME設定を含むファイルを指定します。 chrootモードで絶対パスが指定されている場合、実際のルートと常に相対的です。 詳細なMIMEエントリを表示/編集するには、ファイル名をクリックします。</p> <h4>構文</h4><p>ファイル名への絶対パス又は$SERVER_ROOTからの相対パス</p> <h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> ファイル名をクリックしてMIME設定を編集します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="mimesuffix"><h3>サフィックス<span class="ls-permlink"><a href="#mimesuffix"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>同じMIMEタイプの複数のサフィックスをカンマで区切って指定することができます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="mimetype"><h3>MIMEタイプ<span class="ls-permlink"><a href="#mimetype"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>MIMEタイプは、タイプとサブタイプの形式で "タイプ/サブタイプ"で構成されます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="disableInitLogRotation"><h3>初期ログローテーションを無効にする<span class="ls-permlink"><a href="#disableInitLogRotation"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>起動時にサーバーエラーログファイルのローテーションを有効/無効にするかどうかを指定します。 値が「未設定」の場合、初期ログローテーションはデフォルトで有効になっています。</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="showVersionNumber"><h3>サーバー署名<span class="ls-permlink"><a href="#showVersionNumber"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>サーバーの署名とバージョン番号を次の場所に表示するかどうかを指定します。 レスポンスヘッダの「Server」値。 3つのオプションがあります: <span class="val">バージョンを隠す</span>に設定すると、<span class="val">LiteSpeed</span>のみが表示されます。 <span class="val">バージョンを表示する</span>に設定すると、LiteSpeedとバージョン番号が表示されます。 <span class="val">フルヘッダーを隠す</span>に設定すると、サーバーヘッダー全体がレスポンスヘッダーに表示されなくなります。</p> <h4>構文</h4><p>選択</p> <h4>ヒント</h4><p>[セキュリティ]サーバのバージョン番号を公開したくない場合は、<span class="val">バージョンを隠す</span>に設定します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableIpGeo"><h3>IPジオロケーションを有効にする<span class="ls-permlink"><a href="#enableIpGeo"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p> IPジオロケーション検索を有効/無効にするかどうかを指定します。 サーバ、バーチャルホスト、コンテキストレベルで設定できます。 値 「未設定」を使用すると、IPジオロケーションはデフォルトで無効になります。</p> <h4>構文</h4><p>ラジオボックスから選択</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="ServGeneral_Help.html#useIpInProxyHeader">ヘッダーにクライアントIPを使用する</a></span>, <span class="tagl"><a href="ServGeneral_Help.html#geoipDBFile">DBファイルのパス</a></span>,</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="useIpInProxyHeader"><h3>ヘッダーにクライアントIPを使用する<span class="ls-permlink"><a href="#useIpInProxyHeader"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>"X-Forwarded-For" HTTPリクエストヘッダーに記載されているIPアドレスを使用するかどうかを指定します。 接続/帯域幅スロットリング、アクセス制御、IPジオロケーションなどがあります。<br/><br/> この機能は、Webサーバーがロードバランサまたはプロキシサーバーの背後にある場合に便利です。 「信頼できるIPのみ」を選択した場合、X-Forwarded-For IPは、サーバーレベル<span class="tagl"><a href="ServSecurity_Help.html#accessControl_allow">許可リスト</a></span>で定義された信頼できるIPからの要求が送信された場合にのみ使用されます。</p> <h4>構文</h4><p>選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="adminEmails"><h3>管理者Eメール<span class="ls-permlink"><a href="#adminEmails"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>サーバー管理者の電子メールアドレスを指定します。 このオプションを指定すると、重大イベントが電子メールで管理者に通知されます(例えば、LiteSpeedサービスがクラッシュを検出したために自動的に再開された場合、またはライセンスの期限切れになった時など)。</p> <h4>構文</h4><p>Eメールアドレスのカンマ区切りリスト。</p> <h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> メールアラート機能は、サーバにpostfix、exim、sendmailなどのアクティブなMXサーバがある場合にのみ機能します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="indexFiles"><h3>インデックスファイル<span class="ls-permlink"><a href="#indexFiles"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>URLがディレクトリにマップされたときに順番に検索されるインデックスファイルの名前を指定します。 サーバー、バーチャルホスト、コンテキストレベルでカスタマイズできます。</p> <h4>構文</h4><p>インデックスファイル名のカンマ区切りリスト。</p> <h4>ヒント</h4><p>[パフォーマンス]必要なインデックスファイルのみを設定します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="autoIndex"><h3>自動インデックス<span class="ls-permlink"><a href="#autoIndex"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p><span class="tagl"><a href="#indexFiles">インデックスファイル</a></span>にリストされている索引ファイルがディレクトリで使用できないときに、その場でディレクトリー索引を生成するかどうかを指定します。 このオプションは、バーチャルホストおよびコンテキストレベルでカスタマイズ可能で、明示的に上書きされるまでディレクトリツリーに沿って継承されます。 生成された索引ページをカスタマイズできます。 オンラインウィキHow-tosを確認してください。</p> <h4>構文</h4><p>ラジオボックスから選択</p> <h4>ヒント</h4><p>[セキュリティ]可能であれば、自動インデックスをオフにして、機密データを漏らさないようにすることをお勧めします。</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#indexFiles">インデックスファイル</a></span>, <span class="tagl"><a href="#autoIndexURI">自動インデックス URI</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="autoIndexURI"><h3>自動インデックス URI<span class="ls-permlink"><a href="#autoIndexURI"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p><span class="tagl"><a href="#indexFiles">インデックスファイル</a></span>にリストされているインデックスファイルがディレクトリで使用できない場合に、インデックスページを生成するために使用されるURIを指定します。 LiteSpeed Webサーバーは外部スクリプトを使用してインデックスページを生成し、最大限のカスタマイズの柔軟性を提供します。 デフォルトスクリプトは、Apacheと同じ外観のインデックスページを生成します。 生成されたインデックスページをカスタマイズするには、オンラインウィキHow-tosを読んでください。 索引付けされるディレクトリーは、環境変数 "LS_AI_PATH"を介してスクリプトに渡されます。</p> <h4>構文</h4><p>URI</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#indexFiles">インデックスファイル</a></span>, <span class="tagl"><a href="#autoIndex">自動インデックス</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableExpires"><h3>有効期限を有効にする<span class="ls-permlink"><a href="#enableExpires"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>静的ファイルのExpiresヘッダーを生成するかどうかを指定します。 有効にすると、<span class="tagl"><a href="#expiresDefault">デフォルトの期限</a></span>と<span class="tagl"><a href="#expiresByType">タイプ別の期限</a></span>に基づいてExpiresヘッダーが生成されます。<br/><br/> これは、サーバー、バーチャルホスト、コンテキストレベルで設定できます。 下位レベルの設定は上位レベルの設定を上書きします。 コンテキスト設定はバーチャルホストの設定を上書きし、バーチャルホストの設定はサーバーの設定を上書きします。</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expiresDefault"><h3>デフォルトの期限<span class="ls-permlink"><a href="#expiresDefault"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Expiresヘッダー生成のデフォルト設定を指定します。 この設定は、<span class="tagl"><a href="#enableExpires">有効期限を有効にする</a></span>が "はい"に設定されているときに有効になります。 <span class="tagl"><a href="#expiresByType">タイプ別の期限</a></span>で上書きできます。 すべてのページのExpiresヘッダーが生成されるため、必要がない限り、このデフォルトをサーバーまたはバーチャルホストレベルで設定しないでください。 ほとんどの場合、これは頻繁に変更されない特定のディレクトリのコンテキストレベルで設定する必要があります。 デフォルト設定がない場合、<span class="tagl"><a href="#expiresByType">タイプ別の期限</a></span>で指定されていないタイプに対してExpiresヘッダーは生成されません。</p> <h4>構文</h4><p>A|M秒<br/> このファイルは、基本時間(A | M)に指定された秒を加えた後に期限切れになります。 ベース時刻 "A"はクライアントのアクセス時間に値を設定し、 "M"はファイルの最終変更時刻を設定します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expiresByType"><h3>タイプ別の期限<span class="ls-permlink"><a href="#expiresByType"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>各MIMEタイプのExpiresヘッダー設定を指定します。</p> <h4>構文</h4><p>"MIME-type=A|Mseconds"のカンマで区切られたリスト。 このファイルは、基本時間(A|M)に指定された秒を加えた後に期限切れになります。<br/><br/> ベース時刻 "A"はクライアントのアクセス時間に値を設定し、 "M"はファイルの最終変更時刻を設定します。 MIMEタイプはimage/*のようなワイルドカード "*"を受け入れます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="autoLoadHtaccess"><h3>Auto Load from .htaccess<span class="ls-permlink"><a href="#autoLoadHtaccess"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Autoload rewrite rules contained in a directory's .htaccess file when first accessing that directory if an HttpContext for that directory using the <b>rewritefile</b> directive does not already exist. Once initially loaded, a graceful restart must be performed for any further changes to that .htaccess file to take effect.<br/><br/> Virtual Host-level setting overrides Server-level setting. Default values:<br/><br/> <b>Server-level:</b> No<br/><br/> <b>VH-Level:</b> Inherit Server-level setting</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="fileUpload"><h3>ファイルアップロード<span class="ls-permlink"><a href="#fileUpload"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Request Body Parserを使用してファイルをアップロードしてサーバーのローカルディレクトリにファイルを解析し、第三者のモジュールによる悪意のある行為を簡単にスキャンできるようにする、追加のセキュリティ機能を提供します。 Request Body Parserは、<span class="tagl"><a href="#uploadPassByPath">ファイルパスによるアップロードデータの転送</a></span>が有効になっているか、モジュールがLSI_HKPT_HTTP_BEGINレベルでLSIAPIのset_parse_req_bodyを呼び出すときに使用されます。 ソースパッケージで提供されるAPIの例</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#HTTP_BEGIN">フック::HTTP_BEGIN プライオリティ</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="uploadTmpDir"><h3>一時ファイルパス<span class="ls-permlink"><a href="#uploadTmpDir"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>要求本体パーサーが動作している間に、サーバーにアップロードされるファイルが格納される一時ディレクトリ。 デフォルト値は<span class="val">/tmp/lshttpd/</span>です。</p> <h4>構文</h4><p>$SERVER_ROOT(ServerおよびVHostレベルの場合)または$VH_ROOT(VHostレベルの場合)で始まる絶対パスまたはパス。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="uploadTmpFilePermission"><h3>一時ファイルのアクセス許可<span class="ls-permlink"><a href="#uploadTmpFilePermission"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>一時ディレクトリに格納されているファイルに使用されるファイルのアクセス権を決定します。 サーバーレベルの設定はグローバルで、VHostレベルでオーバーライドできます。</p> <h4>構文</h4><p>3桁の8進数。 デフォルト値は666です。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="uploadPassByPath"><h3>ファイルパスによるアップロードデータの転送<span class="ls-permlink"><a href="#uploadPassByPath"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>ファイルデータをパスでアップロードするかどうかを指定します。 有効にすると、アップロード時にファイル自体ではなく、バックエンドハンドラにファイルパスと他の情報が送信されます。 これにより、CPUリソースとファイル転送時間が節約されますが、実装するためにバックエンドに若干の更新が必要です。 無効にすると、ファイルの内容はバックエンドハンドラに転送され、要求本文は引き続きファイルに解析されます。</p> <h4>構文</h4><p>ラジオボックスから選択</p> <h4>ヒント</h4><p>[パフォーマンス]下位互換性が問題にならないようにするには、これを有効にしてファイルのアップロード処理を高速化します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="geolocationDB"><h3>IPからジオロケーションDB<span class="ls-permlink"><a href="#geolocationDB"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p> 複数のMaxMindジオロケーションデータベースをここで指定できます。 MaxMindには、国、地域、市区町村、組織、ISP、Netspeedの各タイプのDBがあります。 「国」、「地域」、および「都市」タイプの複数のデータベースが構成されている場合は、最後のデータベースが有効になります。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="geoipDBFile"><h3>DBファイルのパス<span class="ls-permlink"><a href="#geoipDBFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p> MaxMind GeoIPデータベースへのパスを指定します。</p> <h4>構文</h4><p>ファイルパス</p> <h4>例</h4><div class="ls-example">/usr/local/share/GeoIP/GeoLite2-Country.mmdb</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="geoipDBName"><h3>DB Name<span class="ls-permlink"><a href="#geoipDBName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>MaxMind GeoIP database name. As of GeoIP2, this setting is required.<br/><br/> When upgrading from a GeoIP to a GeoIP2, using values "COUNTRY_DB", "CITY_DB", or "ASN_DB" for this setting will automatically populate PHP's $_SERVER variable with some GeoIP compatible entries (listed by DB Name value below) to help ease this transition.<br/><br/> <b>CITY_DB:</b> 'GEOIP_COUNTRY_CODE', 'GEOIP_COUNTRY_NAME', 'GEOIP_CONTINENT_CODE', 'GEOIP_COUNTRY_CONTINENT', 'GEOIP_DMA_CODE', 'GEOIP_METRO_CODE', 'GEOIP_LATITUDE', 'GEOIP_LONGITUDE', 'GEOIP_POSTAL_CODE', and 'GEOIP_CITY'.<br/> <b>COUNTRY_DB:</b> 'GEOIP_COUNTRY_CODE', 'GEOIP_COUNTRY_NAME', 'GEOIP_CONTINENT_CODE', and 'GEOIP_COUNTRY_CONTINENT'.<br/> <b>ASN_DB:</b> 'GEOIP_ORGANIZATION' and 'GEOIP_ISP'.</p> <h4>例</h4><div class="ls-example">COUNTRY_DB</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxMindDBEnv"><h3>Environment Variables<span class="ls-permlink"><a href="#maxMindDBEnv"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Assign the results of database lookups to environment variables.</p> <h4>構文</h4><p>Variable_Name mapped_DB_data<br/><br/> One entry per line. Path to data can use map keys or 0-based array indexes, both being separated by /.</p> <h4>例</h4><div class="ls-example">COUNTRY_CODE COUNTRY_DB/country/iso_code<br/> REGION_CODE CITY_DB/subdivisions/0/iso_code</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="ip2locDBFile"><h3>IP2Location DB File Path<span class="ls-permlink"><a href="#ip2locDBFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>The location of a valid database file.</p> <h4>構文</h4><p>ファイル名への絶対パス又は$SERVER_ROOTからの相対パス。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="ip2locDBCache"><h3>DB Cache Type<span class="ls-permlink"><a href="#ip2locDBCache"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>The caching method used. The default value is <span class="val">Memory</span>.</p> <h4>構文</h4><p>ドロップダウンリストから選択</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> �������������������������������ja-JP/VHSecurity_Help.html��������������������������������������������������������������������������0000644�����������������00000072070�15027525531�0011363 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Open LiteSpeed Web Serverユーザーズマニュアル - バーチャルホストのセキュリティ</title> <meta name="description" content="Open LiteSpeed Web Serverユーザーズマニュアル - バーチャルホストのセキュリティ." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="../img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h3 class="ls-text-thin">OpenLiteSpeed Web Server <a href="index.html"> ユーザーズマニュアル</a></h3> <h5 class="ls-text-muted">Version 1.8 — Rev. 0</h5> <hr/> <div> <ul> <li><a href="license.html">ライセンス</a></li> <li><a href="intro.html">はじめに</a></li> <li><a href="install.html">インストール</a></li> <li> <a href="admin.html">管理</a> <ul class="level2"> <li><a href="ServerStat_Help.html">サービスマネージャ</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">セキュリティ</a></li> <li><a href="config.html">設定</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">サーバー全般</a></li> <li><a href="ServLog_Help.html">サーバーログ</a></li> <li><a href="ServTuning_Help.html">サーバーのチューニング</a></li> <li><a href="ServSecurity_Help.html">サーバーのセキュリティ</a></li> <li><a href="ExtApp_Help.html">外部アプリ</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGIアプリ</a></li> <li><a href="External_FCGI_Auth.html">Fast CGIオーソライザー</a></li> <li><a href="External_LSAPI.html">LSAPIアプリ</a></li> <li><a href="External_Servlet.html">サーブレットエンジン</a></li> <li><a href="External_WS.html">Webサーバー</a></li> <li><a href="External_PL.html">パイプロガー</a></li> <li><a href="External_LB.html">ロードバランサ</a></li> </ul> <li><a href="ScriptHandler_Help.html">スクリプトハンドラ</a></li> <li><a href="Rails_Help.html">Rack/Railsの設定</a></li> <li><a href="Module_Help.html">モジュール設定</a></li> <li><a href="Listeners_General_Help.html">リスナー全般</a></li> <li><a href="Listeners_SSL_Help.html">リスナーのSSL</a></li> <li><a href="Templates_Help.html">テンプレート</a></li> <li><a href="VirtualHosts_Help.html">バーチャルホストの基本</a></li> <li><a href="VHGeneral_Help.html">バーチャルホスト全般</a></li> <li><span class="current"><a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a></span></li> <li><a href="VHSSL_Help.html">バーチャルホストのSSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">コンテキスト</a></li> <ul class="level3"> <li><a href="Static_Context.html">静的コンテテキスト</a></li> <li><a href="Java_Web_App_Context.html">Java Webアプリのコンテキスト</a></li> <li><a href="Servlet_Context.html">サーブレットコンテキスト</a></li> <li><a href="FCGI_Context.html">Fast CGIコンテキスト</a></li> <li><a href="LSAPI_Context.html">LSAPIコンテキスト</a></li> <li><a href="Proxy_Context.html">プロキシコンテキスト</a></li> <li><a href="CGI_Context.html">CGIコンテキスト</a></li> <li><a href="LB_Context.html">ロードバランサコンテキスト</a></li> <li><a href="Redirect_Context.html">コンテキストのリダイレクト</a></li> <li><a href="Rails_Context.html">Rack/Railsのコンテキスト</a></li> <li><a href="Module_Context.html">モジュールハンドラのコンテキスト</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socketプロキシ</a></li> </ul> </li> <li><a href="webconsole.html">Webコンソール</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">管理コンソール全般</a></li> <li><a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a></li> <li><a href="AdminListeners_General_Help.html">管理リスナー全般</a></li> <li><a href="AdminListeners_SSL_Help.html">管理リスナーのSSL</a></li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="VHGeneral_Help.html">バーチャルホストの一般</a></div><div class="center"><a href="config.html">設定</a></div><div class="next"><a href="VHSSL_Help.html">Virtual Host SSL</a> »</div></div> <h1>バーチャルホストのセキュリティ</h1><h2 id="top">目次</h2><section class="toc"><section class="toc-row"><header><a href="#VHlsrecaptcha">reCAPTCHA Protection</a></header><p> <a href="#enableRecaptcha">Enable reCAPTCHA</a> | <a href="#recaptchaSiteKey">Site Key</a> | <a href="#recaptchaSecretKey">Secret Key</a> | <a href="#recaptchaType">reCAPTCHA Type</a> | <a href="#recaptchaMaxTries">Max Tries</a> | <a href="#recaptchaVhReqLimit">Concurrent Request Limit</a></p></section> <section class="toc-row"><header>Containers</header><p> <a href="#bubbleWrap">Bubblewrap Container</a> | <a href="#namespace">Namespace Container</a> | <a href="#namespaceConfVhAdd">Additional Namespace Template File</a></p></section> <section class="toc-row"><header><a href="#accessControl">アクセス制御</a></header><p> <a href="#accessControl_allow">許可リスト</a> | <a href="#accessControl_deny">拒否リスト</a></p></section> <section class="toc-row"><header><a href="#realms">認可レルム</a></header><p> <a href="#realmName">レルム名</a> | <a href="#userDBLocation">ユーザーDBの場所</a> | <a href="#userDBMaxCacheSize">ユーザーDB最大キャッシュサイズ</a> | <a href="#userDBCacheTimeout">ユーザーDBキャッシュタイムアウト(秒)</a> | <a href="#GroupDBLocation">グループDBの場所</a> | <a href="#groupDBMaxCacheSize">グループDB最大キャッシュサイズ</a> | <a href="#groupDBCacheTimeout">グループDBキャッシュタイムアウト(秒)</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="VHlsrecaptcha"><h3>reCAPTCHA Protection<span class="ls-permlink"><a href="#VHlsrecaptcha"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>reCAPTCHA Protection is a service provided as a way to mitigate heavy server load. reCAPTCHA Protection will activate after one of the below situations is hit. Once active, all requests by NON TRUSTED(as configured) clients will be redirected to a reCAPTCHA validation page. After validation, the client will be redirected to their desired page.<br/><br/> The following situations will activate reCAPTCHA Protection:<br/> 1. The server or vhost concurrent requests count passes the configured connection limit.<br/> 2. Anti-DDoS is enabled and a client is hitting a url in a suspicious manner. The client will redirect to reCAPTCHA first instead of getting denied when triggered.<br/> 3. A new rewrite rule environment is provided to activate reCAPTCHA via RewriteRules. 'verifycaptcha' can be set to redirect clients to reCAPTCHA. A special value ': deny' can be set to deny the client if it failed too many times. For example, [E=verifycaptcha] will always redirect to reCAPTCHA until verified. [E=verifycaptcha: deny] will redirect to reCAPTCHA until Max Tries is hit, after which the client will be denied.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableRecaptcha"><h3>Enable reCAPTCHA<span class="ls-permlink"><a href="#enableRecaptcha"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Enable the reCAPTCHA Protection feature at the current level. This setting must be set to <span class="val">Yes</span> at the Server level before the reCAPTCHA Protection feature can be used.<br/><br/> Default values:<br/> <b>Server-level:</b> <span class="val">Yes</span><br/> <b>VH-Level:</b> Inherit Server level setting</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="recaptchaSiteKey"><h3>Site Key<span class="ls-permlink"><a href="#recaptchaSiteKey"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>The site key is the public key provided by Google via its reCAPTCHA service. A default Site Key will be used if not set.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="recaptchaSecretKey"><h3>Secret Key<span class="ls-permlink"><a href="#recaptchaSecretKey"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>The secret key is the private key provided by Google via its reCAPTCHA service. A default Secret Key will be used if not set.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="recaptchaType"><h3>reCAPTCHA Type<span class="ls-permlink"><a href="#recaptchaType"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Specify the reCAPTCHA type to use with the key pairs.<br/> If a key pair has not been provided and this setting is set to <span class="val">Not Set</span>, a default key pair of type <span class="val">Invisible</span> will be used.<br/><br/> <span class="val">Checkbox</span> will display a checkbox reCAPTCHA for the visitor to validate.<br/><br/> <span class="val">Invisible</span> will attempt to validate the reCAPTCHA automatically and if successful, will redirect to the desired page.<br/><br/> <span class="val">hCaptcha</span> can be used to support reCAPTCHA provider <a href="https://www.hcaptcha.com" target="_blank" rel="noopener noreferrer">hCaptcha</a>.<br/><br/> Default value is <span class="val">Invisible</span>.</p> <h4>構文</h4><p>ドロップダウンリストから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="recaptchaMaxTries"><h3>Max Tries<span class="ls-permlink"><a href="#recaptchaMaxTries"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Max Tries specifies the maximum number of reCAPTCHA attempts permitted before denying the visitor.<br/><br/> Default value is <span class="val">3</span>.</p> <h4>構文</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="recaptchaVhReqLimit"><h3>Concurrent Request Limit<span class="ls-permlink"><a href="#recaptchaVhReqLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>The number of concurrent requests needed to activate reCAPTCHA. reCAPTCHA will be used until concurrent requests drop below this number.<br/><br/> Default value is <span class="val">15000</span>.</p> <h4>構文</h4><p>整数</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="bubbleWrap"><h3>Bubblewrap Container<span class="ls-permlink"><a href="#bubbleWrap"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Set to <span class="val">Enabled</span> if you wish to start CGI processes (including PHP programs) in a bubblewrap sandbox. See <a href=" https://wiki.archlinux.org/title/Bubblewrap " target="_blank" rel="noopener noreferrer"> https://wiki.archlinux.org/title/Bubblewrap </a> for details on using bubblewrap. Bubblewrap must be installed on your system prior to using this setting.<br/><br/> This setting cannot be turned on at the Virtual Host level if set to "Disabled" at the Server level.<br/><br/> Default values:<br/> <b>Server level:</b> Disabled<br/> <b>VH level:</b> Inherit Server level setting</p> <h4>構文</h4><p>ドロップダウンリストから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="namespace"><h3>Namespace Container<span class="ls-permlink"><a href="#namespace"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Set to <span class="val">Enabled</span> if you wish to start CGI processes (including PHP programs) in a namespace container sandbox. Only used when <span class="tagl"><a href="ServSecurity_Help.html#bubbleWrap">Bubblewrap Container</a></span> is set to <span class="val">Disabled</span>.<br/><br/> When not <span class="val">Disabled</span> at the Server level, this settings value can be overridden at the Virtual Host level.<br/><br/> Default values:<br/> <b>Server level:</b> <span class="val">Disabled</span><br/> <b>Virtual Host Level:</b> Inherit Server level setting</p> <h4>構文</h4><p>ドロップダウンリストから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="namespaceConfVhAdd"><h3>Additional Namespace Template File<span class="ls-permlink"><a href="#namespaceConfVhAdd"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>Path to an existing configuration file containing a list of directories to be mounted along with the methods used to mount them. If <span class="tagl"><a href="ServSecurity_Help.html#namespaceConf">Namespace Template File</a></span> is also set at the Server level, both files will be used.</p> <h4>構文</h4><p>絶対パスか$SERVER_ROOTからの相対パス又は$VH_ROOTからの相対パス。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessControl"><h3>アクセス制御<span class="ls-permlink"><a href="#accessControl"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>どのサブネットワークおよび/またはIPアドレスがサーバーにアクセスできるかを指定します。 サーバレベルでは、この設定はすべてのバーチャルホストに影響します。 バーチャルホストレベルで各バーチャルホストに固有のアクセス制御を設定することもできます。 バーチャルホストレベルの設定はサーバーレベルの設定を上書きしません。 <br/><br/> ブロック/ IPの許可は、許可リストと拒否リストの組み合わせによって決まります。 特定のIPまたはサブネットワークのみをブロックする場合は、<span class="tagl"><a href="#accessControl_allow">許可リスト</a></span>に<span class="val">*</span>または<span class="val">ALL</span>を入れ、ブロックされたIPまたはサブネットワークを<span class="tagl"><a href="#accessControl_deny">拒否リスト</a></span>。<br/> 特定のIPまたはサブネットワークのみを許可する場合は、<span class="tagl"><a href="#accessControl_deny">拒否リスト</a></span>に<span class="val">*</span>または<span class="val">ALL</span>を入れ、許可されたIPまたはサブネットワークを<span class="tagl"><a href="#accessControl_allow">許可リスト</a></span>。<br/> IPに適合する最小スコープの設定は、アクセスを決定するために使用されます。<br/><br/> <b>サーバーレベル:</b>信頼できるIPまたはサブネットワークは、<span class="tagl"><a href="#accessControl_allow">許可リスト</a></span>に、末尾の "T"を追加することで指定する必要があります。 信頼できるIPまたはサブネットワークは、接続/スロットリング制限の影響を受けません。 信頼できるIP/サブネットワークは、サーバーレベルのアクセス制御でのみ設定できます。</p> <h4>ヒント</h4><p>[セキュリティ]すべてのバーチャルホストに適用される一般的な制限については、サーバーレベルでこれを使用してください。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessControl_allow"><h3>許可リスト<span class="ls-permlink"><a href="#accessControl_allow"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>許可されるIPまたはサブネットワークのリストを指定します。 <span class="val">*</span>または<span class="val">ALL</span>が受け入れられます。</p> <h4>構文</h4><p>IPアドレスまたはサブネットワークのカンマ区切りリスト。 末尾の「T」は、<span class="val">192.168.1.*T</span>などの信頼できるIPまたはサブネットワークを示すために使用できます。</p> <h4>例</h4><div class="ls-example"><b>Sub-networks:</b> 192.168.1.0/255.255.255.0, 192.168.1.0/24, 192.168.1, or 192.168.1.*<br/> <b>IPv6 addresses:</b> ::1 or [::1] <br/> <b>IPv6 subnets:</b> 3ffe:302:11:2:20f:1fff:fe29:717c/64 or [3ffe:302:11:2:20f:1fff:fe29:717c]/64</div><h4>ヒント</h4><p>[セキュリティ]サーバーレベルのアクセス制御で設定された信頼されたIPまたはサブネットワークは、接続/スロットリングの制限から除外されます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessControl_deny"><h3>拒否リスト<span class="ls-permlink"><a href="#accessControl_deny"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>許可されていないIPまたはサブネットワークのリストを指定します。</p> <h4>構文</h4><p>IPアドレスまたはサブネットワークのカンマ区切りリスト。 <span class="val">*</span>または<span class="val">ALL</span>が受け入れられます。</p> <h4>例</h4><div class="ls-example"><b>Sub-networks:</b> 192.168.1.0/255.255.255.0, 192.168.1.0/24, 192.168.1, or 192.168.1.*<br/> <b>IPv6 addresses:</b> ::1 or [::1] <br/> <b>IPv6 subnets:</b> 3ffe:302:11:2:20f:1fff:fe29:717c/64 or [3ffe:302:11:2:20f:1fff:fe29:717c]/64</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="realms"><h3>認可レルム<span class="ls-permlink"><a href="#realms"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このバーチャルホストのすべての許可レルムをリストします。 認可レルムは、権限のないユーザーが保護されたWebページにアクセスするのをブロックするために使用されます。 レルムは、オプションのグループ分類を持つユーザー名とパスワードを含むユーザーディレクトリです。 認可は、コンテキスト・レベルで実行されます。 異なるコンテキストは同じレルム(ユーザデータベース)を共有できるため、レルムはそれらを使用するコンテキストとは別に定義されます。 コンテキスト設定では、これらの名前でレルムを参照できます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="realmName"><h3>レルム名<span class="ls-permlink"><a href="#realmName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>認可レルムの一意の名前を指定します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="userDBLocation"><h3>ユーザーDBの場所<span class="ls-permlink"><a href="#userDBLocation"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>ユーザーデータベースの場所を指定します。 DBタイプ<span class="val">パスワードファイル</span>の場合、ユーザ/パスワード定義を含むフラットファイルへのパスです。 ファイル名をクリックするとWebAdminコンソールからこのファイルを編集できます。<br/><br/> ユーザーファイルの各行には、ユーザー名の後にコロン、crypt()で暗号化されたパスワードが続き、オプションでコロンとユーザーが所属するグループ名が続きます。 グループ名はカンマで区切られます。 グループ情報がユーザーデータベースに指定されている場合、グループデータベースはチェックされません。<br/> 例:<blockquote><code>john:HZ.U8kgjnMOHo:admin,user</code></blockquote><br/><br/> DBタイプ<span class="val"> LDAP </span>の場合、ユーザー情報を照会するのはLDAP URLです。 有効なユーザーごとに、LDAPサーバーに格納されている認証データには、少なくともユーザーIDとユーザーパスワードが含まれている必要があります。 HTTP認証ヘッダーで受け取ったこのURLとユーザー名に基づいて、LDAP検索要求で1つだけのレコードを返す必要があります。 "$ k"はURLのフィルタ部分で指定する必要があり、ユーザー名で置き換えられます。 ユーザーのパスワード属性は、照会結果に戻されなければなりません。 ユーザーのパスワードの属性名は、<span class="tagl"><a href="#userDB_attrPasswd">パスワード属性</a></span>で指定します。 グループ情報は、<span class="tagl"><a href="#userDB_attrMemberOf">Member-of属性</a></span>で任意に指定できます。<br/><br/> 例: 少なくとも、オブジェクトクラス(uidObject、simpleSecurityObject、およびorganizationalRole)を使用してLDAPでユーザーを定義できます。 次のURLを使用できます: <br/><br/> <blockquote><code>ldap://localhost/ou=UserDB,dc=example,dc=com???(&(objectClass=*)(uid=$k))</code></blockquote></p> <h4>構文</h4><p>ユーザーDBファイルまたはLDAP URL(RFC 2255)へのパス。</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#GroupDBLocation">グループDBの場所</a></span>, <span class="tagl"><a href="#userDB_attrPasswd">パスワード属性</a></span>, <span class="tagl"><a href="#userDB_attrMemberOf">Member-of属性</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="userDBMaxCacheSize"><h3>ユーザーDB最大キャッシュサイズ<span class="ls-permlink"><a href="#userDBMaxCacheSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>ユーザーデータベースの最大キャッシュサイズを指定します。 最近アクセスされたユーザー認証データは、最大のパフォーマンスを提供するためにメモリにキャッシュされます。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p>[パフォーマンス]キャッシュが大きくなるとメモリが消費されるため、値が高くなるほどパフォーマンスが向上する場合があります。 ユーザーのデータベースサイズとサイトの使用状況に応じて適切なサイズに設定します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="userDBCacheTimeout"><h3>ユーザーDBキャッシュタイムアウト(秒)<span class="ls-permlink"><a href="#userDBCacheTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>バックエンドユーザーデータベースの変更の確認頻度を指定します。 キャッシュ内のすべてのエントリにタイムスタンプがあります。 キャッシュされたデータが指定されたタイムアウトよりも古い場合、バックエンドデータベースの変更がチェックされます。 変更がなければ、タイムスタンプは現在の時刻にリセットされ、そうでない場合は新しいデータがロードされます。 Sevrerのリロードと穏やかな再起動により、キャッシュは直ちにクリアされます。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p>[パフォーマンス]バックエンドデータベースが頻繁に変更されない場合は、パフォーマンスを向上させるために、より長いタイムアウトを設定します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="GroupDBLocation"><h3>グループDBの場所<span class="ls-permlink"><a href="#GroupDBLocation"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>グループデータベースの場所を指定します。<br/> グループ情報は、ユーザデータベースまたはこのスタンドアロングループDBに設定することができます。ユーザ認証の場合、ユーザDBが最初にチェックされます。ユーザDBにグループ情報も含まれている場合、グループDBはチェックされません。 <br/><br/> DBタイプの<span class="val">パスワードファイル</span>の場合、グループDBロケーションは、グループ定義を含むフラットファイルへのパスでなければなりません。ファイル名をクリックするとWebAdminコンソールからこのファイルを編集できます。 <br/> グループファイルの各行には、コロンとそのあとにスペース区切りのユーザー名のグループが続くグループ名が含まれている必要があります。例:<br/> <blockquote><code>testgroup: user1 user2 user3</code></blockquote> <br/> DBタイプ<span class="val">LDAP</span>の場合、グループDBロケーションは、グループ情報を照会するLDAP URLでなければなりません。 有効なグループごとに、このURLと<span class="tagl"><a href="Redirect_Context.html#required">必要(許可ユーザー/グループ)</a></span>で指定されたグループ名に基づいて、LDAP検索リクエストで1つのレコードしか返されません。 "$k"はURLのフィルタ部分に指定する必要があり、グループ名に置き換えられます。 このグループのメンバーを指定する属性の名前は、<span class="tagl"><a href="#groupDB_attrGroupMember">グループメンバ属性</a></span>によって指定されます。<br/><br/> 例: objectClass posixGroupがグループ情報の格納に使用されている場合 次のURLを使用できます: <br/> <blockquote><code>ldap://localhost/ou=GroupDB,dc=example,dc=com???(&(objectClass=*)(cn=$k))</code></blockquote></p> <h4>構文</h4><p>ファイル名への絶対パス又は$SERVER_ROOT、$VH_ROOTからの相対パス。</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#userDBLocation">ユーザーDBの場所</a></span>, Context <span class="tagl"><a href="Context_Help.html#required">必要(許可ユーザー/グループ)</a></span>, <span class="tagl"><a href="#groupDB_attrGroupMember">グループメンバ属性</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="groupDBMaxCacheSize"><h3>グループDB最大キャッシュサイズ<span class="ls-permlink"><a href="#groupDBMaxCacheSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>グループデータベースの最大キャッシュサイズを指定します。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p>[パフォーマンス]キャッシュが大きくなるとメモリが消費されるため、値が高くなるほどパフォーマンスが向上する場合があります。 ユーザーのデータベースサイズとサイトの使用状況に応じて適切なサイズに設定します。</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#userDBMaxCacheSize">ユーザーDB最大キャッシュサイズ</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="groupDBCacheTimeout"><h3>グループDBキャッシュタイムアウト(秒)<span class="ls-permlink"><a href="#groupDBCacheTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>バックエンドグループデータベースの変更の確認頻度を指定します。 詳細については、<span class="tagl"><a href="#userDBCacheTimeout">ユーザーDBキャッシュタイムアウト(秒)</a></span>を参照してください。</p> <h4>構文</h4><p>整数</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#userDBCacheTimeout">ユーザーDBキャッシュタイムアウト(秒)</a></span></p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������ja-JP/VirtualHosts_Help.html������������������������������������������������������������������������0000644�����������������00000051535�15027525531�0011770 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>Open LiteSpeed Web Serverユーザーズマニュアル - バーチャルホストの基本</title> <meta name="description" content="Open LiteSpeed Web Serverユーザーズマニュアル - バーチャルホストの基本." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="../img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="../css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="../img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h3 class="ls-text-thin">OpenLiteSpeed Web Server <a href="index.html"> ユーザーズマニュアル</a></h3> <h5 class="ls-text-muted">Version 1.8 — Rev. 0</h5> <hr/> <div> <ul> <li><a href="license.html">ライセンス</a></li> <li><a href="intro.html">はじめに</a></li> <li><a href="install.html">インストール</a></li> <li> <a href="admin.html">管理</a> <ul class="level2"> <li><a href="ServerStat_Help.html">サービスマネージャ</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">セキュリティ</a></li> <li><a href="config.html">設定</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">サーバー全般</a></li> <li><a href="ServLog_Help.html">サーバーログ</a></li> <li><a href="ServTuning_Help.html">サーバーのチューニング</a></li> <li><a href="ServSecurity_Help.html">サーバーのセキュリティ</a></li> <li><a href="ExtApp_Help.html">外部アプリ</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGIアプリ</a></li> <li><a href="External_FCGI_Auth.html">Fast CGIオーソライザー</a></li> <li><a href="External_LSAPI.html">LSAPIアプリ</a></li> <li><a href="External_Servlet.html">サーブレットエンジン</a></li> <li><a href="External_WS.html">Webサーバー</a></li> <li><a href="External_PL.html">パイプロガー</a></li> <li><a href="External_LB.html">ロードバランサ</a></li> </ul> <li><a href="ScriptHandler_Help.html">スクリプトハンドラ</a></li> <li><a href="Rails_Help.html">Rack/Railsの設定</a></li> <li><a href="Module_Help.html">モジュール設定</a></li> <li><a href="Listeners_General_Help.html">リスナー全般</a></li> <li><a href="Listeners_SSL_Help.html">リスナーのSSL</a></li> <li><a href="Templates_Help.html">テンプレート</a></li> <li><span class="current"><a href="VirtualHosts_Help.html">バーチャルホストの基本</a></span></li> <li><a href="VHGeneral_Help.html">バーチャルホスト全般</a></li> <li><a href="VHSecurity_Help.html">バーチャルホストのセキュリティ</a></li> <li><a href="VHSSL_Help.html">バーチャルホストのSSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">コンテキスト</a></li> <ul class="level3"> <li><a href="Static_Context.html">静的コンテテキスト</a></li> <li><a href="Java_Web_App_Context.html">Java Webアプリのコンテキスト</a></li> <li><a href="Servlet_Context.html">サーブレットコンテキスト</a></li> <li><a href="FCGI_Context.html">Fast CGIコンテキスト</a></li> <li><a href="LSAPI_Context.html">LSAPIコンテキスト</a></li> <li><a href="Proxy_Context.html">プロキシコンテキスト</a></li> <li><a href="CGI_Context.html">CGIコンテキスト</a></li> <li><a href="LB_Context.html">ロードバランサコンテキスト</a></li> <li><a href="Redirect_Context.html">コンテキストのリダイレクト</a></li> <li><a href="Rails_Context.html">Rack/Railsのコンテキスト</a></li> <li><a href="Module_Context.html">モジュールハンドラのコンテキスト</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socketプロキシ</a></li> </ul> </li> <li><a href="webconsole.html">Webコンソール</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">管理コンソール全般</a></li> <li><a href="AdminSecurity_Help.html">管理コンソールのセキュリティ</a></li> <li><a href="AdminListeners_General_Help.html">管理リスナー全般</a></li> <li><a href="AdminListeners_SSL_Help.html">管理リスナーのSSL</a></li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="Templates_Help.html">バーチャルホストテンプレート</a></div><div class="center"><a href="config.html">設定</a></div><div class="next"><a href="VHGeneral_Help.html">バーチャルホストの一般</a> »</div></div> <h1>バーチャルホストの基本</h1><section class="ls-spacer-small-bottom">このページには、定義されたすべてのバーチャルホストが一覧表示されます。 ここからバーチャルホストを追加/削除したり、既存のバーチャルホストを変更したりすることができます。 バーチャルホストを追加する前に、バーチャルホストのルートディレクトリが存在することを確認してください。</section> <h2 id="top">目次</h2><section class="toc"><section class="toc-row"><header>基本</header><p> <a href="#vhName">バーチャルホスト名</a> | <a href="#vhRoot">バーチャルホスト Root</a> | <a href="#configFile">設定ファイル</a></p></section> <section class="toc-row"><header>コネクション</header><p> <a href="#vhMaxKeepAliveReq">最大キープアライブ要求</a></p></section> <section class="toc-row"><header>セキュリティ</header><p> <a href="#allowSymbolLink">シンボリックリンク参照</a> | <a href="#enableScript">スクリプトを有効にする</a> | <a href="#restrained">拘束された</a> | <a href="#setUidMode">外部アプリ Set UID モード</a> | <a href="#suexecUser">suEXEC User</a> | <a href="#suexecGroup">suEXEC Group</a></p></section> <section class="toc-row"><header>バーチャルホスト</header><p> <a href="#staticReqPerSec">静的リクエスト/秒</a> | <a href="#dynReqPerSec">動的リクエスト/秒</a> | <a href="#outBandwidth">送信帯域幅(バイト/秒)</a> | <a href="#inBandwidth">受信帯域幅(バイト/秒)</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="vhName"><h3>バーチャルホスト名<span class="ls-permlink"><a href="#vhName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>バーチャルホストの一意の名前。 バーチャルホストのドメイン名をバーチャルホスト名として使用することをお勧めします。 バーチャルホスト名は、変数$VH_NAMEを使用して参照できます。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vhRoot"><h3>バーチャルホスト Root<span class="ls-permlink"><a href="#vhRoot"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>バーチャルホストのルートディレクトリを指定します。 注:これはドキュメントのルートではありません<b> NOT </b>です。 このディレクトリの下に、バーチャルホストに関連するすべてのファイル(ログファイル、htmlファイル、CGIスクリプトなど)を置くことをお勧めします。 バーチャルホストルートは、変数$VH_ROOTを使用して参照できます。</p> <h4>構文</h4><p>絶対パス又は$SERVER_ROOTからの相対パス。</p> <h4>ヒント</h4><p>[パフォーマンス]さまざまなハードドライブに異なるバーチャルホストを配置します。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="configFile"><h3>設定ファイル<span class="ls-permlink"><a href="#configFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このバーチャルホストの設定ファイル名とディレクトリ。 設定ファイルは、$SERVER_ROOT/conf/vhosts/ディレクトリの下になければなりません。</p> <h4>構文</h4><p>ファイル名への絶対パス又は$SERVER_ROOTからの相対パス</p> <h4>ヒント</h4><p><span title="Information" class="ls-icon-info"></span> $SERVER_ROOT/conf/vhosts/$VH_NAME/vhconf.confをお勧めします。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vhMaxKeepAliveReq"><h3>最大キープアライブ要求<span class="ls-permlink"><a href="#vhMaxKeepAliveReq"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>キープアライブ(永続的)接続を介して提供できる最大要求を特定します。 この制限に達すると接続が閉じられます。 バーチャルホストごとに異なる制限を指定できます。 この数値は、サーバーレベルの<span class="tagl"><a href="ServTuning_Help.html#maxKeepAliveReq">最大キープアライブ要求</a></span>の制限を超えることはできません。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p>[パフォーマンス]合理的に高い値に設定します。 「1」以下の値を指定すると、キープアライブ接続が無効になります。</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="ServTuning_Help.html#maxKeepAliveReq">最大キープアライブ要求</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="allowSymbolLink"><h3>シンボリックリンク参照<span class="ls-permlink"><a href="#allowSymbolLink"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このバーチャルホスト内のシンボリックリンクをたどるかどうかを指定します。 <span class="val">IF OWNER MATCH</span>オプションは、同じ所有権を持つ場合にのみシンボリックリンクに従います。 この設定は、デフォルトのサーバーレベルの設定よりも優先されます。</p> <h4>構文</h4><p>ドロップダウンリストから選択</p> <h4>ヒント</h4><p>[パフォーマンスとセキュリティ]セキュリティを強化するために、この機能を無効にしてください。 パフォーマンスを向上させるには、有効にします。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableScript"><h3>スクリプトを有効にする<span class="ls-permlink"><a href="#enableScript"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このバーチャルホストでスクリプティング(非静的ページ)を許可するかどうかを指定します。 無効にすると、CGI、FastCGI、LSAPI、サーブレットエンジン、その他のスクリプト言語はこのバーチャルホストでは許可されません。 このため、スクリプトハンドラを使用する場合は、スクリプトハンドラもここで有効にする必要があります。</p> <h4>構文</h4><p>ラジオボックスから選択</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="restrained"><h3>拘束された<span class="ls-permlink"><a href="#restrained"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>このバーチャルホストのルート($VH_ROOT)を超えるファイルにこのWebサイトからアクセスできるかどうかを指定します。 <span class="val">はい</span>に設定すると、$VH_ROOT以下のファイルにしかアクセスできず、シンボリックリンクや$VH_ROOTを超えるファイルやディレクトリを指すコンテキストへのアクセスが拒否されます。 しかし、これはCGIスクリプトのアクセシビリティを制限しません。 これは共有ホスティング環境で便利です。 <span class="tagl"><a href="#allowSymbolLink">シンボリックリンク参照</a></span>は、ユーザーが$VH_ROOTでシンボリックリンクを使用できるように<span class="val">はい</span>に設定できます。 $VH_ROOTを超えるものはありません。</p> <h4>構文</h4><p>ラジオボックスから選択</p> <h4>ヒント</h4><p>[セキュリティ]共有ホスティング環境で有効にします。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="setUidMode"><h3>外部アプリ Set UID モード<span class="ls-permlink"><a href="#setUidMode"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>外部アプリケーション・プロセスにユーザーIDを設定する方法を指定します。 3つの選択肢があります: <ul><li><span class="val">サーバー UID</span>: 外部アプリケーション・プロセスのユーザー/グループIDをサーバーのユーザー/グループIDと同じに設定します。</li> <li><span class="val">CGIファイル UID</span>: 実行可能ファイルのユーザー/グループIDに基づいて、外部CGIプロセスのユーザー/グループIDを設定します。 このオプションは、FastCGIまたはLSPHPではなく、CGIにのみ適用されます。</li> <li><span class="val">Doc Root UID</span>: 現在のバーチャルホストのドキュメントルートのユーザー/グループIDに基づいて、外部アプリケーションプロセスのユーザー/グループIDを設定します。</li> </ul></p> <h4>構文</h4><p>選択</p> <h4>ヒント</h4><p>[セキュリティ]共有ホスティング環境では、<span class="val">CGIファイルUID</span>または<span class="val">DocルートUID</span>モードを使用して、1つのバーチャルホストが所有するファイルに別のバーチャルホストの外部アプリケーションスクリプト。</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="suexecUser"><h3>suEXEC User<span class="ls-permlink"><a href="#suexecUser"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>At the current context level, run as this user. If set, this value will override the Virtual Host level <b>ExtApp Set UID Mode</b> setting.<br/><br/> This configuration may be overridden at the External Application level using the <b>Run As User</b> setting.<br/><br/> Default value: Not Set</p> <h4>構文</h4><p>Valid user name or uid.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="suexecGroup"><h3>suEXEC Group<span class="ls-permlink"><a href="#suexecGroup"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>At the current context level, run as this group. Either <b>suEXEC User</b> at the Virtual Host level, or <b>Run As User</b> at the External Application level, must be set for <b>suEXEC Group</b> to take effect.<br/><br/> This configuration can be overridden at the External Application level using the <b>Run As Group</b> setting.<br/><br/> Default value: <b>suExec User</b> setting value</p> <h4>構文</h4><p>Valid group name or uid</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="staticReqPerSec"><h3>静的リクエスト/秒<span class="ls-permlink"><a href="#staticReqPerSec"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>確立された接続の数に関係なく、1秒間に処理できる単一のIPアドレスからの静的コンテンツへの要求の最大数を指定します。<br/><br/> この制限に達すると、将来のすべての要求は次の秒までタールピットされます。 動的に生成されるコンテンツのリクエスト制限は、この制限とは関係ありません。 クライアントごとの要求制限は、サーバーまたはバーチャルホストレベルで設定できます。 バーチャルホストレベルの設定は、サーバーレベルの設定よりも優先されます。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p>[セキュリティ]信頼できるIPまたはサブネットワークは影響を受けません。</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#dynReqPerSec">動的リクエスト/秒</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="dynReqPerSec"><h3>動的リクエスト/秒<span class="ls-permlink"><a href="#dynReqPerSec"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>確立された接続の数に関係なく、1秒ごとに処理できる単一のIPアドレスからの動的に生成されるコンテンツへの要求の最大数を指定します。 この制限に達すると、今後のすべての動的コンテンツへのリクエストは、次の秒までタールピットされます。 <br/><br/> 静的コンテンツの要求制限は、この制限とは関係ありません。 このクライアントごとの要求制限は、サーバーまたはバーチャルホストレベルで設定できます。 バーチャルホストレベルの設定は、サーバーレベルの設定よりも優先されます。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p>[セキュリティ]この制限によって、信頼できるIPまたはサブネットワークは制限されません。</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#staticReqPerSec">静的リクエスト/秒</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="outBandwidth"><h3>送信帯域幅(バイト/秒)<span class="ls-permlink"><a href="#outBandwidth"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>確立された接続の数に関係なく、単一のIPアドレスへの最大の送信スループット。 実際の帯域幅は効率上の理由からこの設定よりわずかに高くなることがあります。 帯域幅は4KB単位で割り当てられます。 スロットルを無効にするには、<span class="val">0</span>に設定します。 クライアント単位の帯域幅制限(バイト/秒)は、バーチャルホストレベルの設定がサーバーレベルの設定を上回るサーバーまたはバーチャルホストレベルで設定できます。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p>[パフォーマンス]パフォーマンスを向上させるため、帯域幅を8KB単位で設定します。.<br/><br/> [セキュリティ]信頼できるIPまたはサブネットワークは影響を受けません。</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#inBandwidth">受信帯域幅(バイト/秒)</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="inBandwidth"><h3>受信帯域幅(バイト/秒)<span class="ls-permlink"><a href="#inBandwidth"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>説明</h4><p>確立された接続の数に関係なく、単一のIPアドレスからの最大許容着信スループット。 実際の帯域幅は効率上の理由からこの設定よりわずかに高くなることがあります。 帯域幅は1KB単位で割り当てられます。 スロットルを無効にするには、<span class="val">0</span>に設定します。 クライアント単位の帯域幅制限(バイト/秒)は、バーチャルホストレベルの設定がサーバーレベルの設定を上回るサーバーまたはバーチャルホストレベルで設定できます。</p> <h4>構文</h4><p>整数</p> <h4>ヒント</h4><p>[セキュリティ]信頼できるIPまたはサブネットワークは影響を受けません。</p> <h4>参照</h4><p class="ls-text-small"><span class="tagl"><a href="#outBandwidth">送信帯域幅(バイト/秒)</a></span></p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> �������������������������������������������������������������������������������������������������������������������������������������������������������������������css/hdoc.css����������������������������������������������������������������������������������������0000644�����������������00000017014�15027525531�0006773 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������font-face { font-family: 'Open Sans'; src: local('OPENSSANS-REGULAR'), url ('/font/OPENSSANS-REGULAR.TTF') format('truetype'); } body,td,a,p{font-family: 'Open Sans', sans-serif;} body {color: #555; font-size: 11pt; background-color: #293e6a;} .pagewrapper {width: 60%; min-width: 800px; max-width: 1200px; margin: 25px auto; display:block; padding: 0px 0 35px 0; background-color: #FFF; display: flex; flex-wrap: wrap;} /*.sidetree { width: 200px; padding: 15px; padding-left: 15px; border: 0;background-color: #e6f2ff;float: left;}*/ .sidetree {width: 200px; padding: 15px; padding-left: 20px; padding-top:38px; background-color: #fafcff; font-size:10pt;} .sidetree figure { margin-bottom: 20px; margin-left: 0px; } .contentwrapper { padding: 0px 35px 50px 50px;} h1 {font-size: 24pt; line-height: 36px; margin: 20px 0 35px 0;} h2 {font-size: 16pt;} h3 {font-size: 13pt; line-height: 24px;} h4 {font-size: 12pt; line-height: 16px;} h2,h3 { margin: 20px 0 10px 0;} h1,h2,h3,h4 {font-weight: 100;} h5 {color: #555; font-weight: 400; font-size: 10pt; line-height:5px;} .ls-text-thin {font-weight: 100;} .ls-text-thinner {font-weight: 300;} .ls-text-xlarge {font-size: 32pt; line-height: 42px;} .ls-text-large {font-size: 24pt; line-height: 36px;} .ls-text-medium {font-size: 14pt; line-height: 28px;} .ls-text-small {font-size: 10.5pt; line-height: 14px;} .ls-text-muted {color: #999;} .ls-text-blue {color:#4a70bf;} .ls-text-italic {font-style: italic;} .ls-spacer-micro-top {margin-top: 35px;} .ls-spacer-small-top {margin-top: 50px;} .ls-spacer-large-top {margin-top: 100px;} .ls-spacer-micro-bottom {margin-bottom: 35px;} .ls-spacer-small-bottom {margin-bottom: 50px;} .ls-spacer-large-bottom {margin-bottom: 100px;} .ls-text-style-upper-roman {list-style-type: upper-roman; list-style-position: inside; padding-left: 5px;} .ls-toc-text-right {float:right;} .ls-col-1-5 {width:20%; min-width: 200px;} .ls-col-2-5 {width:40%;} .ls-col-3-5 {width:60%; min-width: 400px;} .ls-col-4-5 {width:80%;} .ls-col-1-1 {width:100%;} section.ls-index {margin-top: 50px;} section.ls-index h1:first-child {font-weight: 100; font-size: 32pt; line-height: 42px;color: #598bd9;} section.ls-index h1:nth-child(2) {font-weight: 100; font-weight: 100; font-size: 32pt; line-height: 42px; margin-bottom: 25px;margin-top: 50px;} section.ls-index h1:last-child {font-weight: 100; margin-bottom: 35px;font-size: 24pt; line-height: 28px; color: #999;} section.ls-index h3 {font-weight: 100; font-size: 24pt; line-height: 36px; margin-bottom: 50px; margin-top: 50px;} section.ls-index ol {list-style-type: upper-roman; list-style-position: inside; padding-left: 5px;} section.ls-index ol li {font-weight: 100; font-size: 14pt; line-height: 28px;} section.ls-index ol li span {float:right;} section.ls-index p {margin-top: 100px; float:right;} .ls-eula {padding-left: 10px;} .ls-eula h3 {margin-top: 50px; margin-bottom: 35px;font-weight: 400;} .ls-eula h4 {margin-top: 35px;font-weight: 400;} .ls-eula p {font-family: monospace; margin: 1em 0px 1em 0px; font-weight: 400; display:block; text-align: justify; line-height:14pt; } .ls-eula ul li {font-family: monospace; list-style: none; font-size: 12pt; line-height: 14pt;margin: 10px 0 20px 0; } .ls-eula ul {margin: 25px 0 35px 0;} .ls-font-monospace {font-family: monospace; margin: 1em 0px 1em; display:block; text-align: justify;} .ls-text-white {color: #FFF;} article .ls-helpitem { font-size: 11pt; margin-top: 50px; } .helpitem {display: block; margin: 20px 0 10px 0; position: relative;} article h4 { margin-top: 30px; margin-bottom: 0px!important; } .ls-helpitem header { margin-top: 30px; } .ls-helpitem header>h3 { color: #737054; font-size: 14pt; line-height: 28px; margin-top: 50px; font-weight: 400; } .ls-example h5 { color:#fff; font-weight: 600; margin-bottom: 15px; line-height: 14pt; } .ls-example p { color:#fff; margin-bottom: 35px; } .clearfix:after { content: ""; display: table; clear: both; } hr {background: #aaa; height: 1px; border: 0; margin-bottom: 20px;} ol {display: block; list-style-type: decimal;} ol li, ul li { margin: 7px 0;} .sidetree ul { list-style-type: none; color:#4a70bf; padding:5px; margin:0; font-weight: 600; } .sidetree ul .level2 { list-style-type: square; padding: 0 0 0 25px; margin:0; font-weight:400; } .sidetree ul .level3 { list-style-type: circle; padding: 0 0 0 25px; margin:0; font-weight:400; } .sidetree .current a, .sidetree .current a:visited {color:#E67E22;font-weight:600;} a, a:visited {text-decoration: none; color: #598bd9; } a:hover{ color: #4caf50; } .toc-row {margin-bottom: 35px;} .toc-row header {color: #666; font-size: 16px; font-weight: 400;} .toc-row p {color:#96926e; font-size: 14px; line-height: 24px;} .toc a{color: #96926e;} .toc a:hover{color: #c27514;} .toc {display: block; padding: 20px 20px 50px 20px; background-color:#faf8f8; border-radius: 3px; box-shadow: 0px 1px 2px rgba(0,0,0,0.2)} .ls-example {display: block; padding: 20px 20px 20px 20px; color: #eee; background-color:#333; border-radius: 3px; box-shadow: 0px 1px 2px rgba(0,0,0,0.2); margin:10px 0 25px 0;} .ht { background-color: transparent; font-size: 13px; color: #555;} .ht-title { font-weight: 600; font-size: 14px; color: #96926e; } .ht-label { font-weight: 600; color: #555; font-size: 13px;} .top { font-size: 24px; text-align: right; float:right; margin-top:-3px; } .top a, .top a:visited {color: #ccc; } .top a:hover {color: #96926e; } .cmd { padding: 0 3px 2px; font-family: Monaco, Menlo, Consolas, "Courier New", monospace; font-size: 12px; color: #d14; background-color: #f7f7f9; border: 1px solid #e1e1e8; white-space: pre-wrap; -webkit-border-radius: 3px; -moz-border-radius: 3px; border-radius: 3px; } .tag { padding: 0 3px 1px; font-size: 12px; color: #fff; background-color: #B6A87C; white-space: nowrap; -webkit-border-radius: 3px; -moz-border-radius: 3px; border-radius: 3px;} .val { color: #ac7339; font-weight: 400 } .tagI, .tagP {font-weight: bold } .tagI a:hover, .tagP a:hover { text-decoration: underline } .copyright {font-size: 11px; color: #aaa; text-align: center; border-top: 1px solid #ddd; padding-top: 20px; display:block;} .copyright a, .copyright a:visited { color: #598bd9; text-decoration: none} .copyright a:hover, #copyright a:active {color: #4caf50; text-decoration: underline} .nav-bar { height:18px; width: 100%; border-bottom: 1px solid #bbb; color: #888; font-size: 14px; padding: 5px; margin-bottom: 50px;} .nav-bar a, .nav-bar a visited { color: #598bd9; text-decoration: none; } .nav-bar a:hover {text-decoration: underline; color:#4caf50;} .nav-bar .prev {text-align: left; float: left; width: 33%;} .nav-bar .center {text-align: center; float: left; width: 33%;} .nav-bar .next {text-align: right; float: right; width: 33%;} .ls-icon-performance { display: inline-block; background: url(/docs/img/lightning-bolt.svg)no-repeat; width: 16px; height: 14px; background-size: contain; } .ls-icon-security { display: inline-block; background: url(/docs/img/shield.svg)no-repeat; width: 16px; height: 14px; background-size: contain; } .ls-icon-info { display: inline-block; background: url(/docs/img/info.svg)no-repeat; width: 16px; height: 14px; background-size: contain; } .ls-icon-attention { display: inline-block; background: url(/docs/img/attention.svg)no-repeat; width: 16px; height: 14px; background-size: contain; } .ls-permlink a:after { content: "\00a0 \0023"; color: #ccc; } .ls-permlink a:hover::after { color: #96926e; } ��������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������img/shield.svg��������������������������������������������������������������������������������������0000644�����������������00000002736�15027525531�0007326 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<?xml version="1.0" encoding="utf-8"?> <!-- Generator: Adobe Illustrator 16.0.3, SVG Export Plug-In . SVG Version: 6.00 Build 0) --> <!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN" "http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd"> <svg version="1.1" id="Layer_1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" x="0px" y="0px" width="12px" height="12px" viewBox="0 0 12 12" enable-background="new 0 0 12 12" xml:space="preserve"> <g> <g> <path fill="#006699" d="M6,1.581c-0.11,0.088-1.625,1.275-3.567,1.684C2.176,7.982,5.997,10.426,6,10.424 c0.002,0.002,3.825-2.441,3.568-7.159C7.625,2.855,6,1.581,6,1.581z"/> <path fill="#006699" d="M10.83,2.504c-0.008-0.143-0.105-0.262-0.24-0.291c-2.367-0.5-4.391-2.067-4.411-2.083 C6.072,0.047,5.925,0.047,5.818,0.132c-0.08,0.064-1.98,1.569-4.409,2.081c-0.133,0.028-0.232,0.147-0.24,0.291 C0.975,6.089,2.573,8.67,3.948,10.201c0.516,0.576,1,1.001,1.316,1.255c0.18,0.147,0.327,0.254,0.417,0.319 c0.169,0.12,0.217,0.154,0.311,0.156c0.004,0,0.008,0,0.012,0c0.092,0,0.148-0.039,0.294-0.143 c0.079-0.055,0.208-0.149,0.368-0.276c0.279-0.223,0.712-0.593,1.184-1.092c0.885-0.938,1.59-1.983,2.096-3.105 C10.625,5.805,10.922,4.188,10.83,2.504z M8.206,9.054c-0.909,1.2-1.85,1.932-2.207,2.188c-0.356-0.256-1.297-0.987-2.207-2.189 C2.37,7.173,1.685,5.064,1.757,2.78c2.051-0.487,3.709-1.614,4.245-2.009C6.545,1.165,8.231,2.3,10.242,2.78 C10.316,5.064,9.631,7.174,8.206,9.054z"/> </g> </g> </svg> ����������������������������������img/attention.svg�����������������������������������������������������������������������������������0000644�����������������00000002403�15027525531�0010052 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<?xml version="1.0" encoding="utf-8"?> <!-- Generator: Adobe Illustrator 16.0.3, SVG Export Plug-In . SVG Version: 6.00 Build 0) --> <!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN" "http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd"> <svg version="1.1" id="Layer_1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" x="0px" y="0px" width="12px" height="12px" viewBox="0 0 12 12" enable-background="new 0 0 12 12" xml:space="preserve"> <path fill="#F15A29" d="M6,0.5C2.967,0.5,0.5,2.967,0.5,6c0,3.032,2.467,5.5,5.5,5.5c3.032,0,5.5-2.468,5.5-5.5 C11.5,2.967,9.032,0.5,6,0.5z M6,10.5c-2.481,0-4.5-2.019-4.5-4.5S3.519,1.5,6,1.5s4.5,2.019,4.5,4.5S8.481,10.5,6,10.5z"/> <g> <path fill="#F15A29" d="M6.602,8.649c0,0.164-0.059,0.305-0.178,0.42C6.306,9.185,6.164,9.243,6,9.243S5.694,9.185,5.576,9.069 c-0.119-0.115-0.178-0.256-0.178-0.42s0.059-0.305,0.178-0.424C5.694,8.106,5.836,8.048,6,8.048s0.306,0.059,0.424,0.178 C6.543,8.345,6.602,8.485,6.602,8.649z M6.563,3.35c0,0.146-0.049,0.639-0.145,1.477C6.321,5.664,6.236,6.475,6.163,7.257H5.82 C5.756,6.475,5.676,5.664,5.58,4.826C5.485,3.988,5.438,3.496,5.438,3.35c0-0.167,0.053-0.308,0.158-0.422S5.836,2.757,6,2.757 s0.299,0.057,0.404,0.169C6.51,3.039,6.563,3.18,6.563,3.35z"/> </g> </svg> �������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������img/lightning-bolt.svg������������������������������������������������������������������������������0000644�����������������00000002213�15027525531�0010765 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<?xml version="1.0" encoding="utf-8"?> <!-- Generator: Adobe Illustrator 16.0.3, SVG Export Plug-In . SVG Version: 6.00 Build 0) --> <!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN" "http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd"> <svg version="1.1" id="Layer_1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" x="0px" y="0px" width="12px" height="12px" viewBox="0 0 12 12" enable-background="new 0 0 12 12" xml:space="preserve"> <path fill="#cca300" d="M9.231,0.389c0.007-0.013-0.002-0.032,0.004-0.047c0.016-0.046,0.035-0.093,0.012-0.149 C9.231,0.154,9.2,0.121,9.163,0.097C9.158,0.093,9.15,0.094,9.143,0.091C9.111,0.074,9.079,0.06,9.046,0.06l0,0 c-0.001,0-0.001,0-0.001,0c-0.058,0-0.12,0.021-0.208,0.066c0,0-5.128,4.836-5.129,4.965C3.705,5.22,3.78,5.34,3.913,5.417L6,7.015 L2.864,11.48c-0.027,0.027-0.071,0.071-0.102,0.129c-0.017,0.034-0.007,0.077-0.008,0.116c-0.002,0.027-0.02,0.051-0.007,0.082 c0.03,0.075,0.12,0.133,0.201,0.133c0,0,0,0,0.001,0l0,0c0.057,0,0.119-0.021,0.207-0.066c0,0,5.135-4.836,5.136-4.965 c0.003-0.131-0.071-0.25-0.205-0.327L6,4.986L9.131,0.52C9.156,0.492,9.2,0.446,9.231,0.389z"/> </svg> �������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������img/web-adc_logo.svg��������������������������������������������������������������������������������0000644�����������������00000127716�15027525531�0010406 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<?xml version="1.0" encoding="utf-8"?> <!-- Generator: Adobe Illustrator 16.0.3, SVG Export Plug-In . SVG Version: 6.00 Build 0) --> <!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN" "http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd"> <svg version="1.1" id="Layer_1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" x="0px" y="0px" width="150px" height="75px" viewBox="0 0 150 75" enable-background="new 0 0 150 75" xml:space="preserve"> <g> <g> <path fill="#798193" d="M-119.062,379.44c0.113,0.113,0.23,0.221,0.346,0.328l-0.337-0.338l-0.338-0.338 C-119.283,379.21-119.176,379.325-119.062,379.44z"/> <path fill="#798193" d="M-118.703,362.048l-0.017,0.018c-0.116,0.107-0.231,0.215-0.343,0.326s-0.218,0.227-0.324,0.342l0,0 l-8.175,8.174l8.174,8.174c0.11,0.117,0.22,0.236,0.334,0.35c0.115,0.115,0.232,0.225,0.351,0.336 c4.614,4.262,11.746,4.26,16.357-0.01l-0.018,0.018c0.119-0.109,0.236-0.219,0.351-0.334s0.225-0.232,0.334-0.352l0,0 c4.27-4.611,4.271-11.746,0.004-16.361l-0.675-0.674C-106.962,357.788-114.09,357.786-118.703,362.048z"/> </g> <path fill="#FFFFFF" d="M-99.822,376.427c-0.017-0.037-0.042-0.078-0.067-0.108c-0.048-0.057-0.092-0.118-0.137-0.178l-0.086-0.117 c-0.883-1.139-1.47-2.46-1.699-3.823c-0.005-0.03-0.013-0.059-0.024-0.087c-0.072-0.505-0.486-0.898-1.011-0.944 c-0.033-0.009-0.067-0.014-0.1-0.014c-0.025,0-0.052,0.003-0.078,0.008h-1.167c-0.026-0.005-0.052-0.008-0.077-0.008 c-0.545,0-1.003,0.418-1.078,0.976c-0.001,0.005-0.002,0.009-0.002,0.009c-0.7,2.215-2.706,3.693-4.994,3.693 c-2.903,0-5.266-2.362-5.266-5.267c0-2.905,2.363-5.269,5.266-5.269c2.348,0,4.367,1.532,5.021,3.813l0.013,0.049l0.009,0.036 c0.025,0.131,0.086,0.223,0.123,0.279l0.022,0.045c0.027,0.073,0.071,0.194,0.186,0.301c0.194,0.193,0.448,0.302,0.724,0.302 c0.018,0,0.037-0.001,0.055-0.004c0.472-0.026,0.851-0.355,0.978-0.848c0.009-0.035,0.014-0.071,0.014-0.107v-0.28v-0.152 c0-0.039-0.005-0.078-0.016-0.116c-0.28-1.001-0.759-1.919-1.423-2.727c-0.678-0.822-1.499-1.476-2.439-1.94 c-0.016-0.009-0.034-0.019-0.051-0.029c-0.044-0.026-0.089-0.051-0.137-0.072c-0.943-0.437-1.985-0.659-3.094-0.659 c-0.502,0-0.998,0.044-1.473,0.132c-3.434,0.714-5.919,3.767-5.919,7.26c0.008,3.505,2.496,6.551,5.917,7.258 c0.501,0.103,1.007,0.154,1.505,0.154c1.037,0,2.059-0.226,3.035-0.669c0.081-0.036,0.161-0.081,0.24-0.126 c0.036-0.02,0.071-0.04,0.107-0.06c0.327-0.173,0.708-0.386,1.066-0.665l0.067-0.059l0.041-0.035 c0.4-0.324,0.757-0.671,1.082-1.055c0.019-0.016,0.036-0.034,0.052-0.053c0.369-0.451,0.682-0.961,0.95-1.55 c0.386,1.356,1.033,2.635,1.893,3.729c0.028,0.036,0.052,0.068,0.076,0.101c0.041,0.053,0.081,0.106,0.125,0.158 c0.022,0.026,0.047,0.051,0.075,0.07c0.113,0.083,0.35,0.256,0.67,0.256c0.645,0,1.17-0.525,1.17-1.171 c0-0.186-0.078-0.32-0.125-0.4C-99.808,376.451-99.816,376.439-99.822,376.427z"/> </g> <g> <path fill="#798193" d="M-74.215,362.729l-0.676-0.677l-8.178-8.178l-8.174,8.176c-0.118,0.107-0.235,0.219-0.351,0.332 c-0.115,0.116-0.225,0.234-0.334,0.352c-2.076,2.247-3.132,5.095-3.185,7.954v-0.259c-0.005,0.158-0.012,0.317-0.012,0.479 c0,0.16,0.005,0.317,0.012,0.476v-0.258c0.052,2.86,1.109,5.708,3.185,7.955l0.686,0.684c4.613,4.263,11.745,4.26,16.356-0.007 l0.667-0.668C-69.949,374.479-69.948,367.345-74.215,362.729z"/> <g> <path fill="#FFFFFF" d="M-74.86,376.427c-0.017-0.036-0.042-0.078-0.067-0.107c-0.048-0.057-0.091-0.116-0.134-0.176l-0.09-0.121 c-0.882-1.138-1.469-2.459-1.698-3.822c-0.003-0.021-0.008-0.039-0.014-0.058c-0.036-0.249-0.148-0.476-0.323-0.647 c-0.099-0.099-0.219-0.181-0.355-0.239c-0.021-0.009-0.048-0.018-0.074-0.023c-0.109-0.04-0.212-0.063-0.318-0.067 c-0.012-0.002-0.023-0.002-0.034-0.002c-0.019,0-0.191,0.002-0.398,0.07c-0.05,0.017-0.077,0.026-0.104,0.039 c-0.08,0.034-0.211,0.099-0.341,0.221c-0.176,0.165-0.289,0.376-0.347,0.647c-0.002,0.007-0.008,0.022-0.014,0.04l-0.023,0.069 c-0.138,0.444-0.354,0.883-0.639,1.303c-0.025,0.039-0.047,0.069-0.069,0.101l-0.034,0.046c-0.114,0.158-0.247,0.318-0.392,0.475 c-1.012,1.123-2.375,1.739-3.844,1.739c-2.173,0-4.13-1.39-4.87-3.457c-0.032-0.09-0.058-0.183-0.084-0.275 c-0.021-0.071-0.039-0.123-0.057-0.175c-0.02-0.058-0.04-0.113-0.053-0.173c-0.01-0.047-0.028-0.091-0.053-0.132 c-0.209-0.342-0.565-0.546-0.951-0.546c-0.558,0-1.022,0.408-1.104,0.971c-0.007,0.052-0.005,0.104,0.006,0.154 c0.04,0.182,0.087,0.361,0.14,0.538c0.085,0.287,0.192,0.576,0.317,0.86c0.064,0.146,0.134,0.288,0.207,0.43l0.064,0.126 c0.83,1.515,2.171,2.692,3.779,3.32c0.835,0.308,1.731,0.463,2.671,0.463c0.862,0,1.684-0.131,2.442-0.389 c0.032-0.01,0.068-0.022,0.104-0.036c0.156-0.056,0.319-0.126,0.481-0.199c0.134-0.061,0.263-0.12,0.388-0.187 c0.044-0.023,0.088-0.049,0.133-0.074l0.038-0.021c0.919-0.52,1.711-1.22,2.326-2.051c0.369,0.858,0.843,1.659,1.417,2.39 c0.027,0.033,0.05,0.064,0.073,0.095c0.042,0.056,0.083,0.11,0.129,0.164c0.021,0.025,0.046,0.049,0.073,0.068 c0.173,0.127,0.388,0.257,0.672,0.257c0.645,0,1.17-0.525,1.17-1.171c0-0.187-0.079-0.32-0.125-0.4 C-74.847,376.45-74.854,376.439-74.86,376.427z"/> <path fill="#FFFFFF" d="M-90.334,370.149c0.531,0,0.97-0.379,1.077-0.926c0.048-0.14,0.326-0.859,0.475-1.134 c0.011-0.021,0.021-0.042,0.028-0.064c0.014-0.03,0.027-0.057,0.04-0.083c0.002-0.003,0.023-0.034,0.025-0.036 c0.009-0.012,0.017-0.023,0.024-0.035c0.957-1.583,2.618-2.527,4.443-2.527c2.291,0,4.283,1.487,4.958,3.701 c0.003,0.017,0.011,0.036,0.02,0.056c0.053,0.587,0.547,1.049,1.148,1.049c0.025,0,0.051-0.003,0.076-0.007 c0.522-0.038,0.952-0.433,1.041-0.961c0.003-0.023,0.006-0.047,0.006-0.071v-14.976v-0.338c0-0.011,0.001-0.02,0.001-0.03v-0.116 c0-0.049-0.009-0.099-0.025-0.146c-0.163-0.453-0.594-0.759-1.071-0.759c-0.51,0-0.948,0.336-1.089,0.835 c-0.01,0.038-0.016,0.077-0.016,0.117v0.384v11.161c-1.435-1.332-3.133-2.006-5.061-2.006c-2.068,0-3.841,0.724-5.269,2.151 c-0.904,0.901-1.521,1.993-1.837,3.246c-0.023,0.093-0.04,0.188-0.056,0.284l-0.021,0.119c-0.01,0.05-0.01,0.101-0.001,0.15 C-91.327,369.745-90.871,370.149-90.334,370.149z M-89.046,367.666L-89.046,367.666L-89.046,367.666L-89.046,367.666z"/> </g> </g> <g> <g> <path fill="#798193" d="M-46.758,362.727c-0.108-0.114-0.214-0.23-0.326-0.341c-0.111-0.112-0.226-0.219-0.341-0.326 c-4.613-4.269-11.748-4.271-16.361-0.003l-0.676,0.676c-2.088,2.257-3.147,5.119-3.192,7.992v-0.304 c-0.007,0.161-0.013,0.322-0.013,0.485s0.005,0.323,0.013,0.482v-0.297c0.043,2.874,1.102,5.735,3.187,7.992l0.686,0.685 c2.222,2.054,5.032,3.108,7.859,3.181h-0.171c0.134,0.006,0.271,0.011,0.408,0.012c0.052-0.001,0.102-0.001,0.156-0.001 c0.134-0.002,0.27-0.005,0.403-0.01l-0.175-0.001c2.831-0.071,5.641-1.125,7.865-3.181l0.686-0.686l8.173-8.175L-46.758,362.727z" /> <path fill="#798193" d="M-64.469,362.729l0.677-0.676c-0.118,0.107-0.235,0.214-0.349,0.329 C-64.254,362.496-64.362,362.612-64.469,362.729z"/> </g> <g> <path fill="#FFFFFF" d="M-49.902,372.64c-0.045-0.031-0.09-0.055-0.125-0.07c-0.026-0.014-0.054-0.025-0.083-0.033 c-0.122-0.043-0.248-0.066-0.375-0.066c-0.364,0-0.704,0.186-0.907,0.496c-0.01,0.016-0.02,0.033-0.028,0.051 c-0.038,0.078-0.076,0.156-0.118,0.238c-0.009,0.02-0.017,0.037-0.023,0.057c-0.004,0.014-0.017,0.045-0.051,0.104l-0.115,0.145 c-0.415,0.547-0.807,1.063-1.313,1.465c-0.513,0.406-1.128,0.684-1.829,0.824c-0.404,0.08-0.817,0.121-1.228,0.121 c-1.093,0-2.106-0.295-2.854-0.834c-0.63-0.453-1.234-1.148-1.658-1.904c-0.186-0.332-0.337-0.689-0.449-1.063l-0.022-0.066 c-0.058-0.283-0.216-0.531-0.449-0.703c-0.157-0.131-0.394-0.215-0.631-0.215c-0.13,0-0.254,0.023-0.368,0.072 c-0.168,0.057-0.313,0.145-0.409,0.252c-0.125,0.131-0.213,0.295-0.262,0.494c-0.021,0.063-0.041,0.135-0.039,0.232 c0,0.018,0.001,0.033,0.004,0.049c0.164,1.219,0.874,2.523,1.946,3.58c0.277,0.273,0.577,0.512,0.867,0.742 c0.604,0.439,1.212,0.77,1.82,0.99c0.603,0.293,1.433,0.438,2.535,0.438c1.101,0,1.929-0.145,2.532-0.438 c1.705-0.617,3.137-1.895,4.036-3.6c0.007-0.014,0.014-0.029,0.02-0.045C-49.289,373.47-49.475,372.915-49.902,372.64z"/> <path fill="#FFFFFF" d="M-62.936,369.806c0.122,0.137,0.303,0.219,0.437,0.264c0.085,0.035,0.21,0.061,0.339,0.061 c0.238,0,0.475-0.084,0.65-0.23c0.213-0.156,0.371-0.404,0.429-0.688l0.016-0.047c0.118-0.393,0.269-0.752,0.455-1.084 c0.01-0.018,0.02-0.037,0.027-0.057c0.017-0.043,0.036-0.084,0.058-0.121c0.017-0.021,0.043-0.057,0.056-0.08 c0.758-1.518,2.444-2.459,4.402-2.459c1.957,0,3.644,0.941,4.401,2.459c0.012,0.023,0.027,0.047,0.043,0.068l0.188-0.111 c0.002,0.004,0.007,0.01,0.008,0.012c0.001,0.002,0.002,0.004,0.003,0.006l-0.172,0.127c0.018,0.033,0.03,0.064,0.035,0.078 c0.006,0.02,0.014,0.037,0.023,0.057c0.042,0.082,0.081,0.16,0.119,0.24c0.008,0.016,0.017,0.031,0.027,0.047 c0.204,0.313,0.543,0.498,0.907,0.498c0.132,0,0.263-0.025,0.389-0.072c0.003-0.002,0.007-0.002,0.01-0.004 c0.005-0.002,0.009-0.002,0.013-0.004c0.003-0.002,0.006-0.002,0.008-0.004c0.037-0.016,0.1-0.043,0.163-0.086 c0.428-0.275,0.613-0.826,0.423-1.313c-0.006-0.016-0.013-0.031-0.02-0.045c-0.898-1.705-2.331-2.982-4.036-3.6 c-0.603-0.293-1.431-0.438-2.532-0.438c-1.103,0-1.932,0.145-2.535,0.439c-0.607,0.219-1.215,0.549-1.806,0.977 c-0.326,0.24-0.63,0.502-0.906,0.777c-1.057,1.059-1.758,2.354-1.921,3.555c-0.002,0.018-0.003,0.033-0.004,0.049 c-0.002,0.105,0.02,0.182,0.042,0.242C-63.156,369.499-63.066,369.673-62.936,369.806z M-60.865,367.646L-60.865,367.646 L-60.865,367.646L-60.865,367.646z"/> </g> </g> <line fill="none" stroke="#FFFFFF" stroke-width="0.3197" stroke-miterlimit="10" x1="238.334" y1="420.834" x2="255.386" y2="420.834"/> <path fill="#57677C" d="M186.972,392.545c-0.066-0.073-0.136-0.146-0.206-0.218c-0.071-0.071-0.146-0.14-0.218-0.207 c-0.71-0.656-1.518-1.146-2.372-1.476c-0.093-0.035-0.188-0.063-0.279-0.095c-0.114-0.038-0.229-0.081-0.345-0.113 c-0.159-0.048-0.321-0.082-0.482-0.118c-0.051-0.012-0.102-0.025-0.153-0.035c-0.199-0.041-0.4-0.069-0.603-0.092 c-0.015-0.003-0.029-0.006-0.045-0.007c-0.217-0.023-0.436-0.036-0.653-0.04h0.157c-0.098-0.004-0.196-0.008-0.297-0.008 s-0.197,0.004-0.296,0.008h0.135c-1.771,0.034-3.532,0.689-4.925,1.979l-0.421,0.418l-5.073,5.074l5.072,5.072 c0.066,0.073,0.136,0.146,0.207,0.218c0.071,0.071,0.144,0.14,0.218,0.207c0.71,0.656,1.517,1.146,2.373,1.476 c0.091,0.035,0.184,0.063,0.276,0.095c0.115,0.039,0.229,0.081,0.346,0.113c0.159,0.048,0.321,0.083,0.482,0.119 c0.052,0.011,0.102,0.024,0.152,0.034c0.201,0.041,0.403,0.07,0.605,0.093c0.014,0.002,0.028,0.005,0.042,0.006 c0.217,0.023,0.436,0.036,0.654,0.04h-0.157c0.098,0.004,0.197,0.008,0.297,0.008s0.197-0.004,0.296-0.008h-0.136 c1.771-0.034,3.534-0.689,4.927-1.978l0.419-0.42l5.074-5.073L186.972,392.545z"/> <g> <path fill="#798193" d="M197.121,402.693c0.066,0.071,0.133,0.143,0.202,0.212s0.141,0.136,0.212,0.201 c2.863,2.648,7.29,2.651,10.151,0.002l0.42-0.419c1.295-1.4,1.952-3.176,1.979-4.959v0.188c0.005-0.1,0.008-0.2,0.008-0.301 c0-0.102-0.003-0.2-0.008-0.299v0.184c-0.026-1.783-0.683-3.559-1.978-4.959l-0.426-0.425c-1.378-1.274-3.121-1.929-4.876-1.974 h0.107c-0.084-0.004-0.169-0.007-0.253-0.008c-0.033,0.001-0.063,0.001-0.098,0.001c-0.084,0.002-0.167,0.003-0.25,0.006 l0.107,0.001c-1.756,0.044-3.499,0.698-4.88,1.974l-0.425,0.426l-5.072,5.072L197.121,402.693z"/> <path fill="#798193" d="M208.109,402.691l-0.42,0.419c0.074-0.065,0.146-0.133,0.217-0.204 C207.977,402.836,208.044,402.765,208.109,402.691z"/> </g> <g> <path fill="#798193" d="M165.621,392.322c-0.07-0.071-0.142-0.138-0.215-0.204l0.21,0.209l0.21,0.21 C165.759,392.465,165.692,392.394,165.621,392.322z"/> <path fill="#798193" d="M165.399,403.113l0.009-0.011c0.074-0.066,0.145-0.134,0.215-0.202c0.067-0.069,0.135-0.141,0.2-0.213l0,0 l5.072-5.071l-5.072-5.071c-0.068-0.073-0.137-0.147-0.207-0.218c-0.072-0.071-0.145-0.14-0.217-0.208 c-2.863-2.645-7.288-2.643-10.15,0.007l0.012-0.012c-0.073,0.068-0.147,0.136-0.217,0.208c-0.072,0.071-0.141,0.144-0.209,0.218 l0,0c-2.648,2.861-2.648,7.288-0.002,10.151l0.419,0.418C158.114,405.756,162.536,405.758,165.399,403.113z"/> </g> <path fill="none" stroke="#57677C" stroke-linecap="round" stroke-linejoin="round" stroke-miterlimit="10" d="M217.965,302.262 c-0.066-0.073-0.136-0.146-0.206-0.218c-0.071-0.071-0.146-0.14-0.218-0.207c-0.71-0.656-1.518-1.146-2.372-1.476 c-0.093-0.035-0.188-0.063-0.279-0.095c-0.114-0.038-0.229-0.081-0.345-0.113c-0.159-0.048-0.321-0.082-0.482-0.118 c-0.051-0.012-0.102-0.025-0.153-0.035c-0.199-0.041-0.4-0.069-0.603-0.092c-0.015-0.003-0.029-0.006-0.045-0.007 c-0.217-0.023-0.436-0.036-0.653-0.04h0.157c-0.098-0.004-0.196-0.008-0.297-0.008s-0.197,0.004-0.296,0.008h0.135 c-1.771,0.034-3.532,0.689-4.925,1.979l-0.421,0.418l-5.073,5.074l5.072,5.072c0.066,0.073,0.136,0.146,0.207,0.218 c0.071,0.071,0.144,0.14,0.218,0.207c0.71,0.656,1.517,1.146,2.373,1.476c0.091,0.035,0.184,0.063,0.276,0.095 c0.115,0.039,0.229,0.081,0.346,0.113c0.159,0.048,0.321,0.083,0.482,0.119c0.052,0.011,0.102,0.024,0.152,0.034 c0.201,0.041,0.403,0.07,0.605,0.093c0.014,0.002,0.028,0.005,0.042,0.006c0.217,0.023,0.436,0.036,0.654,0.04h-0.157 c0.098,0.004,0.197,0.008,0.297,0.008s0.197-0.004,0.296-0.008h-0.136c1.771-0.034,3.534-0.689,4.927-1.978l0.419-0.42l5.074-5.073 L217.965,302.262z"/> <path fill="#57677C" d="M216.865,303.276c-0.054-0.059-0.109-0.117-0.166-0.175c-0.057-0.057-0.117-0.111-0.174-0.165 c-0.568-0.525-1.214-0.918-1.897-1.181c-0.074-0.028-0.149-0.05-0.224-0.076c-0.092-0.03-0.183-0.064-0.275-0.091 c-0.127-0.038-0.258-0.065-0.387-0.094c-0.04-0.01-0.08-0.021-0.122-0.028c-0.159-0.033-0.32-0.056-0.481-0.073 c-0.012-0.003-0.023-0.005-0.037-0.006c-0.173-0.019-0.348-0.029-0.521-0.032h0.125c-0.078-0.003-0.156-0.006-0.237-0.006 s-0.157,0.003-0.237,0.006h0.108c-1.417,0.027-2.825,0.552-3.94,1.583l-0.336,0.334l-4.059,4.06l4.058,4.058 c0.054,0.059,0.108,0.117,0.165,0.175c0.058,0.057,0.115,0.111,0.175,0.165c0.567,0.525,1.214,0.918,1.898,1.181 c0.073,0.028,0.147,0.05,0.222,0.076c0.092,0.031,0.184,0.064,0.275,0.091c0.128,0.038,0.258,0.066,0.387,0.095 c0.041,0.009,0.081,0.02,0.121,0.027c0.162,0.033,0.323,0.057,0.484,0.074c0.012,0.002,0.023,0.004,0.034,0.005 c0.173,0.019,0.349,0.029,0.523,0.032h-0.126c0.078,0.003,0.158,0.006,0.238,0.006c0.079,0,0.157-0.003,0.236-0.006h-0.109 c1.418-0.027,2.828-0.552,3.941-1.582l0.336-0.336l4.059-4.059L216.865,303.276z"/> <g> <path fill="none" stroke="#798193" stroke-linecap="round" stroke-linejoin="round" stroke-miterlimit="10" d="M228.114,312.41 c0.066,0.071,0.133,0.143,0.202,0.212s0.141,0.136,0.212,0.201c2.863,2.648,7.29,2.651,10.151,0.002l0.42-0.419 c1.295-1.4,1.952-3.176,1.979-4.959v0.188c0.005-0.1,0.008-0.2,0.008-0.301c0-0.102-0.003-0.2-0.008-0.299v0.184 c-0.026-1.783-0.683-3.559-1.978-4.959l-0.426-0.425c-1.378-1.274-3.121-1.929-4.876-1.974h0.107 c-0.084-0.004-0.169-0.007-0.253-0.008c-0.033,0.001-0.063,0.001-0.098,0.001c-0.084,0.002-0.167,0.003-0.25,0.006l0.107,0.001 c-1.756,0.044-3.499,0.698-4.88,1.974l-0.425,0.426l-5.072,5.072L228.114,312.41z"/> <path fill="none" stroke="#798193" stroke-linecap="round" stroke-linejoin="round" stroke-miterlimit="10" d="M239.103,312.408 l-0.42,0.419c0.074-0.065,0.146-0.133,0.217-0.204C238.97,312.553,239.037,312.481,239.103,312.408z"/> </g> <g> <path fill="#798193" d="M229.279,311.395c0.053,0.058,0.105,0.114,0.162,0.17c0.055,0.056,0.111,0.108,0.169,0.161 c2.29,2.118,5.832,2.121,8.121,0.001l0.336-0.335c1.036-1.12,1.562-2.541,1.583-3.967v0.15c0.004-0.08,0.007-0.16,0.007-0.24 c0-0.082-0.003-0.16-0.007-0.239v0.146c-0.021-1.427-0.545-2.847-1.582-3.967l-0.34-0.34c-1.103-1.02-2.497-1.543-3.9-1.579h0.086 c-0.068-0.003-0.136-0.006-0.203-0.006c-0.026,0-0.051,0-0.078,0c-0.066,0.002-0.133,0.003-0.199,0.005l0.086,0.001 c-1.405,0.035-2.8,0.559-3.904,1.579l-0.34,0.341l-4.059,4.058L229.279,311.395z"/> <path fill="#798193" d="M238.07,311.394l-0.336,0.335c0.059-0.053,0.117-0.106,0.173-0.163S238.018,311.452,238.07,311.394z"/> </g> <g> <path fill="none" stroke="#798193" stroke-linecap="round" stroke-linejoin="round" stroke-miterlimit="10" d="M196.614,302.039 c-0.07-0.071-0.142-0.138-0.215-0.204l0.21,0.209l0.21,0.21C196.752,302.182,196.686,302.11,196.614,302.039z"/> <path fill="none" stroke="#798193" stroke-linecap="round" stroke-linejoin="round" stroke-miterlimit="10" d="M196.393,312.83 l0.009-0.011c0.074-0.066,0.145-0.134,0.215-0.202c0.067-0.069,0.135-0.141,0.2-0.213l0,0l5.072-5.071l-5.072-5.071 c-0.068-0.073-0.137-0.147-0.207-0.218c-0.072-0.071-0.145-0.14-0.217-0.208c-2.863-2.645-7.288-2.643-10.15,0.007l0.012-0.012 c-0.073,0.068-0.147,0.136-0.217,0.208c-0.072,0.071-0.141,0.144-0.209,0.218l0,0c-2.648,2.861-2.648,7.288-0.002,10.151 l0.419,0.418C189.107,315.473,193.529,315.475,196.393,312.83z"/> </g> <g> <path fill="#798193" d="M195.678,303.098c-0.057-0.057-0.113-0.11-0.172-0.163l0.168,0.167l0.168,0.168 C195.787,303.212,195.734,303.155,195.678,303.098z"/> <path fill="#798193" d="M195.5,311.73l0.007-0.009c0.06-0.053,0.116-0.106,0.172-0.161c0.054-0.056,0.108-0.112,0.16-0.171l0,0 l4.058-4.057l-4.058-4.057c-0.055-0.059-0.109-0.118-0.165-0.175c-0.059-0.057-0.116-0.111-0.174-0.166 c-2.291-2.116-5.83-2.114-8.121,0.005l0.01-0.009c-0.059,0.055-0.117,0.108-0.174,0.166s-0.111,0.115-0.166,0.175l0,0 c-2.119,2.289-2.119,5.83-0.002,8.121l0.335,0.334C189.672,313.845,193.209,313.847,195.5,311.73z"/> </g> <path fill="#D8AD28" d="M196.943,310.531c-0.027-0.031-0.053-0.066-0.078-0.102l-0.041-0.057c-0.479-0.615-0.795-1.328-0.918-2.063 c-0.002-0.014-0.006-0.027-0.012-0.041c-0.035-0.271-0.256-0.481-0.535-0.508c-0.02-0.006-0.038-0.008-0.058-0.008 c-0.015,0-0.028,0.002-0.043,0.004h-0.625c-0.015-0.002-0.028-0.004-0.043-0.004c-0.296,0-0.544,0.23-0.577,0.535 c-0.375,1.185-1.457,1.982-2.692,1.982c-1.566,0-2.841-1.275-2.841-2.842s1.274-2.841,2.841-2.841c1.267,0,2.355,0.826,2.709,2.057 c0.021,0.108,0.056,0.159,0.075,0.191c0.028,0.067,0.053,0.133,0.113,0.188c0.105,0.104,0.239,0.16,0.385,0.16 c0.012,0,0.024,0,0.037-0.003c0.242-0.017,0.445-0.193,0.513-0.45c0.005-0.019,0.007-0.037,0.007-0.057v-0.15v-0.083 c0-0.021-0.002-0.04-0.008-0.061c-0.15-0.54-0.408-1.032-0.766-1.466c-0.363-0.44-0.803-0.791-1.31-1.042 c-0.049-0.028-0.073-0.041-0.097-0.053c-0.51-0.236-1.071-0.356-1.668-0.356c-0.268,0-0.533,0.024-0.789,0.07 c-1.846,0.385-3.182,2.025-3.182,3.902c0.004,1.883,1.341,3.52,3.18,3.9c0.271,0.055,0.543,0.082,0.809,0.082 c0.557,0,1.105-0.121,1.631-0.359c0.043-0.018,0.083-0.041,0.125-0.064l0.061-0.033c0.189-0.102,0.388-0.213,0.574-0.359 l0.054-0.046c0.222-0.181,0.414-0.368,0.587-0.574c0.009-0.008,0.018-0.017,0.025-0.025c0.201-0.244,0.372-0.524,0.519-0.849 c0.208,0.736,0.557,1.43,1.022,2.021l0.037,0.049c0.022,0.031,0.045,0.06,0.068,0.089c0.012,0.015,0.025,0.026,0.041,0.036 c0.061,0.045,0.187,0.139,0.359,0.139c0.344,0,0.623-0.279,0.623-0.623c0-0.1-0.043-0.172-0.068-0.215 C196.979,310.586,196.957,310.549,196.943,310.531z"/> <g> <g> <path fill="#D8AD28" d="M217.506,310.532c-0.025-0.03-0.049-0.063-0.072-0.096l-0.049-0.065c-0.475-0.613-0.791-1.326-0.916-2.06 c0-0.009-0.003-0.019-0.006-0.027c-0.018-0.134-0.078-0.256-0.172-0.349c-0.049-0.051-0.117-0.098-0.192-0.129 c-0.01-0.004-0.022-0.008-0.036-0.012c-0.057-0.021-0.109-0.031-0.164-0.035c-0.008,0-0.016-0.001-0.023-0.001 c-0.01,0-0.103,0.001-0.213,0.038c-0.006,0.002-0.043,0.015-0.048,0.018c-0.056,0.023-0.125,0.058-0.191,0.121 c-0.092,0.088-0.152,0.2-0.183,0.344c-0.002,0.002-0.02,0.057-0.02,0.059c-0.074,0.24-0.191,0.477-0.345,0.705l-0.053,0.074 c-0.065,0.091-0.136,0.177-0.214,0.26c-0.537,0.598-1.293,0.938-2.074,0.938c-1.172,0-2.228-0.75-2.626-1.865 c-0.016-0.044-0.028-0.087-0.041-0.131l-0.034-0.107c-0.011-0.031-0.022-0.062-0.029-0.096c-0.006-0.025-0.016-0.05-0.029-0.071 c-0.112-0.183-0.303-0.291-0.507-0.291c-0.296,0-0.543,0.217-0.587,0.518c-0.004,0.025-0.003,0.053,0.002,0.078 c0.021,0.098,0.047,0.195,0.075,0.291c0.045,0.151,0.101,0.303,0.169,0.463c0.037,0.08,0.074,0.156,0.113,0.23 c0.01,0.021,0.021,0.047,0.037,0.072c0.441,0.809,1.162,1.441,2.028,1.779c0.447,0.166,0.929,0.25,1.435,0.25 c0.465,0,0.906-0.07,1.313-0.209l0.049-0.018c0.09-0.031,0.18-0.069,0.266-0.107c0.072-0.033,0.141-0.067,0.209-0.103l0.055-0.03 c0.525-0.297,0.959-0.68,1.293-1.131c0.199,0.467,0.457,0.9,0.766,1.294l0.033,0.044c0.025,0.033,0.05,0.064,0.077,0.097 c0.011,0.013,0.022,0.024,0.036,0.033c0.092,0.069,0.205,0.138,0.359,0.138c0.344,0,0.624-0.279,0.624-0.623 c0-0.1-0.042-0.171-0.067-0.214C217.543,310.587,217.521,310.549,217.506,310.532z"/> </g> <g> <path fill="#D8AD28" d="M209.218,307.201c0.289,0,0.526-0.211,0.577-0.512c0.011-0.027,0.17-0.443,0.254-0.594l-0.102-0.059 c0.004-0.006,0.009-0.018,0.012-0.023l0.11,0.03c0.001-0.001,0.022-0.04,0.022-0.04c0.535-0.881,1.432-1.391,2.416-1.391 c1.236,0,2.311,0.803,2.675,1.998c0.002,0.005,0.005,0.014,0.01,0.025c0.025,0.314,0.291,0.564,0.613,0.564 c0.013,0,0.026-0.002,0.038-0.004c0.279-0.021,0.509-0.231,0.557-0.512l0.003-8.098v-0.198v-0.063 c0-0.025-0.005-0.052-0.013-0.075c-0.086-0.243-0.316-0.406-0.57-0.406c-0.271,0-0.505,0.18-0.58,0.445 c-0.006,0.02-0.01,0.041-0.01,0.062v0.206v6.021c-0.773-0.723-1.688-1.088-2.729-1.088c-1.112,0-2.064,0.39-2.831,1.156 c-0.486,0.486-0.818,1.072-0.986,1.745c-0.015,0.052-0.023,0.108-0.033,0.165l-0.01,0.054c-0.004,0.026-0.004,0.052,0,0.077 C208.69,306.985,208.933,307.201,209.218,307.201z"/> </g> </g> <g> <path fill="#D8AD28" d="M236.836,308.558c-0.037-0.027-0.075-0.043-0.096-0.053c-0.003,0-0.006-0.002-0.008-0.002l0,0 c-0.008-0.003-0.015-0.006-0.022-0.008c-0.071-0.024-0.132-0.033-0.192-0.033c-0.193,0-0.373,0.099-0.482,0.264l-0.047,0.091 l-0.033,0.068c-0.014,0.038-0.023,0.056-0.038,0.08l-0.069,0.09c-0.221,0.29-0.431,0.565-0.7,0.779 c-0.276,0.221-0.608,0.37-0.988,0.446c-0.216,0.043-0.438,0.065-0.659,0.065c-0.59,0-1.139-0.16-1.543-0.451 c-0.338-0.243-0.664-0.618-0.893-1.025c-0.102-0.181-0.184-0.372-0.243-0.573c0-0.002-0.015-0.042-0.015-0.044 c-0.021-0.136-0.108-0.276-0.239-0.37c-0.08-0.067-0.206-0.111-0.333-0.111c-0.068,0-0.134,0.012-0.193,0.037 c-0.062,0.018-0.168,0.065-0.232,0.15c-0.053,0.049-0.104,0.145-0.131,0.26c-0.004,0.009-0.019,0.052-0.017,0.114 c0.09,0.678,0.472,1.378,1.048,1.944c0.135,0.135,0.28,0.253,0.436,0.378c0.003,0.003,0.033,0.026,0.037,0.03 c0.324,0.233,0.656,0.41,0.983,0.527c0.301,0.152,0.75,0.231,1.349,0.231c0.6,0,1.049-0.079,1.373-0.241 c0.896-0.318,1.672-1.006,2.157-1.929C237.152,308.999,237.057,308.704,236.836,308.558z"/> <path fill="#D8AD28" d="M229.83,307.024c0.043,0.062,0.149,0.109,0.227,0.133c0.042,0.02,0.107,0.032,0.178,0.032 c0.127,0,0.252-0.045,0.346-0.122c0.118-0.084,0.205-0.225,0.232-0.387c0.068-0.219,0.15-0.41,0.252-0.59 c0.023-0.057,0.031-0.074,0.043-0.092c0.003-0.006,0.027-0.042,0.031-0.049c0.408-0.817,1.319-1.325,2.375-1.325 c1.055,0,1.966,0.508,2.375,1.325c0.006,0.016,0.025,0.041,0.035,0.054c0.008,0.015,0.018,0.032,0.02,0.04l0.045,0.099l0.031,0.065 c0.125,0.19,0.305,0.289,0.498,0.289c0.072,0,0.145-0.014,0.213-0.039v-0.002h0.002l0,0c0.002,0,0.005-0.002,0.008-0.002 c0.008-0.004,0.02-0.008,0.03-0.014c0.043-0.014,0.081-0.04,0.108-0.074c0.195-0.16,0.268-0.42,0.176-0.656 c-0.495-0.944-1.27-1.634-2.192-1.963c-0.3-0.152-0.749-0.231-1.349-0.231c-0.599,0-1.048,0.079-1.374,0.241 c-0.306,0.107-0.636,0.286-0.959,0.521c-0.181,0.132-0.339,0.268-0.485,0.417c-0.568,0.567-0.944,1.263-1.032,1.907 c-0.004,0.088,0.013,0.135,0.019,0.154C229.704,306.855,229.756,306.951,229.83,307.024z"/> </g> <path fill="none" stroke="#57677C" stroke-width="1.0993" stroke-linecap="round" stroke-linejoin="round" stroke-miterlimit="10" d=" M151.839,380.018c-0.077-0.076-0.157-0.151-0.238-0.228c-0.083-0.074-0.17-0.146-0.253-0.217c-0.823-0.683-1.758-1.194-2.748-1.538 c-0.108-0.037-0.218-0.064-0.324-0.099c-0.132-0.04-0.264-0.084-0.399-0.117c-0.185-0.051-0.372-0.086-0.56-0.124 c-0.058-0.013-0.116-0.026-0.177-0.036c-0.23-0.044-0.464-0.073-0.698-0.096c-0.017-0.004-0.034-0.006-0.053-0.008 c-0.251-0.024-0.504-0.038-0.757-0.042h0.183c-0.112-0.004-0.227-0.008-0.344-0.008s-0.229,0.004-0.343,0.008h0.155 c-2.052,0.036-4.092,0.72-5.706,2.064l-0.487,0.435l-5.879,5.292l5.878,5.29c0.077,0.076,0.157,0.152,0.24,0.228 c0.082,0.073,0.166,0.145,0.251,0.217c0.823,0.683,1.758,1.194,2.75,1.537c0.106,0.038,0.213,0.065,0.321,0.099 c0.133,0.041,0.265,0.085,0.4,0.119c0.185,0.05,0.372,0.087,0.56,0.123c0.059,0.012,0.116,0.026,0.176,0.036 c0.232,0.043,0.467,0.073,0.701,0.097c0.016,0.002,0.032,0.005,0.049,0.007c0.251,0.024,0.505,0.037,0.759,0.041h-0.183 c0.112,0.005,0.229,0.009,0.344,0.009s0.229-0.004,0.343-0.009h-0.157c2.054-0.035,4.096-0.719,5.709-2.063l0.485-0.438l5.88-5.29 L151.839,380.018z"/> <path fill="#798193" d="M150.565,381.076c-0.063-0.062-0.128-0.123-0.192-0.183c-0.065-0.06-0.136-0.116-0.201-0.173 c-0.659-0.548-1.407-0.957-2.199-1.23c-0.086-0.03-0.174-0.053-0.259-0.08c-0.106-0.031-0.212-0.066-0.319-0.095 c-0.147-0.039-0.299-0.067-0.447-0.098c-0.047-0.01-0.094-0.021-0.143-0.029c-0.185-0.035-0.371-0.058-0.558-0.076 c-0.014-0.003-0.027-0.006-0.043-0.006c-0.2-0.021-0.403-0.031-0.604-0.035h0.146c-0.092-0.002-0.183-0.005-0.275-0.005 c-0.095,0-0.182,0.003-0.275,0.005h0.126c-1.642,0.029-3.273,0.576-4.566,1.652l-0.389,0.349l-4.703,4.232l4.702,4.231 c0.062,0.061,0.125,0.123,0.19,0.182c0.067,0.061,0.134,0.116,0.203,0.173c0.657,0.548,1.406,0.958,2.2,1.231 c0.084,0.029,0.171,0.052,0.256,0.08c0.106,0.032,0.214,0.065,0.319,0.094c0.148,0.04,0.299,0.069,0.447,0.1 c0.049,0.009,0.096,0.02,0.142,0.028c0.188,0.034,0.374,0.059,0.562,0.077c0.014,0.002,0.027,0.004,0.039,0.004 c0.2,0.021,0.404,0.032,0.606,0.035h-0.146c0.092,0.003,0.184,0.006,0.277,0.006c0.091,0,0.182-0.003,0.273-0.006h-0.127 c1.643-0.029,3.277-0.575,4.567-1.65l0.389-0.35l4.703-4.232L150.565,381.076z"/> <path fill="#FFCB05" stroke="#FFFFFF" stroke-width="0.25" stroke-miterlimit="10" d="M214.709,303.664 c0.031-0.041,0.04-0.062,0.027-0.062c-0.008,0-0.027,0.01-0.055,0.032l-3.467,2.66c-0.069,0.054-0.086,0.156-0.035,0.229l1.203,1.73 c0.051,0.071,0.046,0.187-0.008,0.257l-2.154,2.734c-0.032,0.041-0.04,0.063-0.028,0.062c0.009,0.001,0.027-0.01,0.056-0.033 l3.466-2.659c0.07-0.055,0.017-0.256,0.017-0.256l-1.185-1.703c-0.05-0.072-0.046-0.188,0.008-0.258L214.709,303.664z"/> <g> <g> <path fill="none" stroke="#D8AD28" stroke-linecap="round" stroke-linejoin="round" stroke-miterlimit="10" d="M-103.157-432.77 c-0.171-0.188-0.349-0.374-0.53-0.56c-0.183-0.184-0.376-0.359-0.56-0.532c-1.824-1.687-3.9-2.946-6.096-3.792 c-0.238-0.09-0.482-0.161-0.718-0.244c-0.293-0.098-0.587-0.208-0.886-0.291c-0.409-0.123-0.826-0.211-1.24-0.304 c-0.131-0.03-0.261-0.065-0.394-0.09c-0.512-0.105-1.029-0.178-1.549-0.236c-0.038-0.007-0.075-0.015-0.115-0.018 c-0.557-0.06-1.119-0.093-1.679-0.103h0.404c-0.251-0.01-0.504-0.02-0.763-0.02c-0.259,0-0.507,0.01-0.761,0.02h0.347 c-4.553,0.088-9.078,1.772-12.656,5.084l-1.082,1.074l-13.038,13.04l13.035,13.035c0.17,0.188,0.349,0.374,0.532,0.56 c0.184,0.183,0.369,0.359,0.56,0.532c1.824,1.687,3.897,2.946,6.098,3.792c0.233,0.09,0.472,0.161,0.71,0.244 c0.296,0.1,0.59,0.208,0.889,0.291c0.409,0.123,0.826,0.213,1.24,0.306c0.133,0.028,0.261,0.063,0.392,0.088 c0.517,0.105,1.036,0.181,1.556,0.238c0.035,0.005,0.073,0.013,0.108,0.015c0.557,0.06,1.12,0.093,1.682,0.103h-0.404 c0.251,0.01,0.507,0.02,0.763,0.02s0.507-0.01,0.76-0.02h-0.349c4.552-0.088,9.082-1.772,12.661-5.082l1.077-1.079l13.041-13.038 L-103.157-432.77z"/> <path fill="#D8AD28" d="M-105.983-430.162c-0.138-0.15-0.281-0.301-0.426-0.449c-0.146-0.146-0.301-0.286-0.447-0.424 c-1.46-1.35-3.12-2.359-4.876-3.034c-0.19-0.073-0.384-0.128-0.575-0.196c-0.236-0.078-0.469-0.166-0.708-0.233 c-0.326-0.098-0.663-0.168-0.994-0.241c-0.103-0.025-0.206-0.053-0.314-0.073c-0.409-0.085-0.823-0.143-1.237-0.188 c-0.03-0.007-0.06-0.012-0.095-0.015c-0.444-0.048-0.894-0.075-1.34-0.083h0.321c-0.201-0.007-0.401-0.015-0.61-0.015 c-0.208,0-0.404,0.008-0.61,0.015h0.279c-3.642,0.07-7.26,1.418-10.126,4.068l-0.863,0.858l-10.43,10.433l10.427,10.427 c0.138,0.151,0.279,0.301,0.424,0.449c0.148,0.146,0.296,0.286,0.449,0.424c1.458,1.35,3.119,2.359,4.878,3.034 c0.188,0.073,0.379,0.128,0.57,0.196c0.236,0.08,0.472,0.166,0.708,0.233c0.329,0.098,0.663,0.17,0.994,0.243 c0.105,0.022,0.208,0.05,0.311,0.07c0.417,0.085,0.831,0.146,1.245,0.191c0.03,0.005,0.061,0.01,0.088,0.012 c0.444,0.048,0.896,0.076,1.345,0.083h-0.324c0.201,0.008,0.407,0.015,0.612,0.015c0.203,0,0.404-0.007,0.607-0.015h-0.281 c3.644-0.07,7.268-1.418,10.129-4.065l0.863-0.863l10.43-10.43L-105.983-430.162z"/> <path fill="#57677C" d="M-104.216-411.325c-0.025-0.05-0.083-0.148-0.121-0.19c-0.065-0.078-0.125-0.163-0.186-0.246l-0.125-0.168 c-1.22-1.576-2.033-3.408-2.354-5.293c0-0.022-0.008-0.048-0.015-0.07c-0.01-0.078-0.045-0.146-0.065-0.218 c-0.073-0.253-0.19-0.492-0.376-0.678c-0.125-0.13-0.301-0.251-0.494-0.331c-0.025-0.01-0.058-0.02-0.093-0.03 c-0.146-0.053-0.281-0.08-0.422-0.09c-0.02,0-0.04-0.002-0.06-0.002c-0.025,0-0.264,0.002-0.547,0.098 c-0.015,0.005-0.11,0.038-0.123,0.045c-0.143,0.06-0.321,0.148-0.492,0.311c-0.068,0.065-0.08,0.176-0.133,0.251 c-0.658,3.483-3.707,6.124-7.383,6.124c-3.805,0-6.919-2.838-7.418-6.505c-0.045-0.336-0.103-0.667-0.103-1.017 c0-0.404,0.058-0.793,0.118-1.179c0.146-0.909,0.454-1.754,0.893-2.525c0.015-0.025,0.025-0.05,0.041-0.073 c1.305-2.231,3.699-3.747,6.47-3.747c3.747,0,6.829,2.745,7.403,6.332c0.286,0.276,0.67,0.452,1.097,0.452 c0.033,0,0.068-0.005,0.098-0.01c0.718-0.053,1.308-0.595,1.431-1.315v-0.236l0.007-20.574v-0.509v-0.161 c0-0.065-0.012-0.133-0.032-0.193c-0.221-0.625-0.813-1.044-1.466-1.044c-0.698,0-1.297,0.462-1.491,1.145 c-0.015,0.05-0.025,0.105-0.025,0.158v0.529v15.441c-1.842-1.724-4.299-2.798-7.022-2.798c-1.125,0-2.184,0.223-3.197,0.557 c-0.906,0.286-1.772,0.66-2.563,1.202c-0.529,0.361-1.034,0.773-1.508,1.247c-0.058,0.058-0.103,0.123-0.158,0.181 c-0.316,0.329-0.6,0.685-0.868,1.052c-0.17,0.238-0.333,0.477-0.479,0.728c-0.058,0.093-0.103,0.193-0.155,0.289 c-0.851,1.499-1.375,3.205-1.375,5.052c0,5.692,4.613,10.305,10.305,10.305c3.42,0,6.427-1.684,8.302-4.246 c0.512,1.189,1.169,2.299,1.958,3.302l0.085,0.113c0.065,0.085,0.128,0.166,0.198,0.249c0.027,0.032,0.058,0.063,0.093,0.085 c0.236,0.178,0.527,0.354,0.923,0.354c0.883,0,1.604-0.718,1.604-1.601C-104.043-411.031-104.151-411.215-104.216-411.325z"/> <path fill="#FFCB05" stroke="#FCF8EF" stroke-width="0.6425" stroke-miterlimit="10" d="M-111.999-429.168 c0.08-0.105,0.103-0.158,0.07-0.158c-0.021,0-0.07,0.025-0.141,0.083l-8.909,6.836c-0.178,0.138-0.221,0.402-0.09,0.587 l3.092,4.447c0.13,0.183,0.118,0.479-0.02,0.66l-5.536,7.027c-0.083,0.105-0.103,0.161-0.073,0.158 c0.022,0.002,0.07-0.025,0.143-0.085l8.906-6.834c0.181-0.141,0.043-0.657,0.043-0.657l-3.044-4.377 c-0.128-0.186-0.118-0.482,0.02-0.663L-111.999-429.168z"/> </g> <path fill="none" stroke="#EAD090" stroke-linecap="round" stroke-linejoin="round" stroke-miterlimit="10" d="M-77.292-406.685 c0.171,0.183,0.342,0.366,0.52,0.544c0.179,0.178,0.361,0.349,0.545,0.517c7.358,6.806,18.734,6.813,26.087,0.005l1.079-1.077 c3.328-3.599,5.018-8.161,5.088-12.744v0.484c0.012-0.256,0.02-0.515,0.02-0.773c0-0.261-0.008-0.515-0.02-0.768v0.472 c-0.068-4.583-1.755-9.145-5.082-12.744l-1.095-1.092c-3.541-3.275-8.021-4.957-12.53-5.072h0.276 c-0.216-0.01-0.435-0.018-0.65-0.02c-0.085,0.002-0.163,0.002-0.251,0.002c-0.216,0.005-0.429,0.007-0.643,0.015l0.276,0.002 c-4.513,0.113-8.992,1.794-12.541,5.072l-1.091,1.094l-13.035,13.035L-77.292-406.685z"/> <g> <path fill="#EAD090" d="M-74.298-409.295c0.136,0.148,0.271,0.294,0.417,0.437c0.141,0.143,0.286,0.278,0.434,0.414 c5.886,5.443,14.987,5.451,20.87,0.002l0.863-0.861c2.663-2.878,4.013-6.53,4.068-10.194v0.386 c0.01-0.206,0.018-0.412,0.018-0.617c0-0.211-0.008-0.412-0.018-0.615v0.376c-0.053-3.667-1.4-7.315-4.065-10.194l-0.874-0.874 c-2.833-2.62-6.417-3.965-10.023-4.058h0.222c-0.176-0.008-0.35-0.015-0.522-0.015c-0.067,0-0.131,0-0.2,0 c-0.171,0.005-0.342,0.007-0.513,0.012l0.221,0.003c-3.611,0.09-7.194,1.435-10.033,4.058l-0.873,0.876l-10.431,10.428 L-74.298-409.295z"/> <path fill="#EAD090" d="M-51.706-409.297l-0.863,0.861c0.15-0.136,0.301-0.273,0.444-0.419 C-51.982-409.001-51.842-409.146-51.706-409.297z"/> </g> <path fill="#57677C" d="M-73.272-417.062c0.024,0.201,0.095,0.401,0.141,0.602c0.11,0.382,0.2,0.773,0.354,1.14 c0.01,0.025,0.022,0.05,0.032,0.075c0.249,0.577,0.545,1.119,0.889,1.636c0.025,0.035,0.048,0.075,0.075,0.116 c0.324,0.472,0.695,0.908,1.09,1.32c0.05,0.055,0.088,0.11,0.138,0.161c0.072,0.07,0.155,0.13,0.229,0.196 c0.374,0.356,0.768,0.688,1.189,0.984c0.118,0.08,0.243,0.146,0.366,0.226c0.43,0.271,0.873,0.522,1.343,0.733 c0.085,0.035,0.171,0.075,0.259,0.11c1.204,0.497,2.521,0.778,3.904,0.783c0.016,0,0.028-0.005,0.043-0.005 c1.333-0.005,2.598-0.276,3.765-0.743c0.243-0.095,0.479-0.221,0.715-0.341c0.334-0.161,0.66-0.326,0.974-0.527 c0.309-0.196,0.61-0.422,0.901-0.663c0.165-0.13,0.334-0.261,0.489-0.407c0.409-0.371,0.793-0.778,1.146-1.225 c0.021-0.025,0.043-0.05,0.065-0.085c0.377-0.477,0.713-1.009,1.014-1.566c0.018-0.03,0.035-0.065,0.053-0.1 c0.264-0.703,0.022-1.461-0.547-1.832c-0.096-0.075-0.193-0.116-0.246-0.141c-0.01,0-0.018-0.005-0.022-0.005 c-0.02-0.005-0.037-0.015-0.058-0.021c-0.186-0.06-0.341-0.085-0.499-0.085c-0.304,0-0.577,0.12-0.826,0.291 c-0.077,0.19-0.183,0.364-0.276,0.544c-0.095,0.191-0.19,0.379-0.301,0.557c-0.131,0.211-0.273,0.409-0.424,0.605 c-0.096,0.125-0.196,0.246-0.299,0.366c-0.178,0.206-0.358,0.407-0.558,0.59c-0.037,0.035-0.077,0.063-0.115,0.098 c-0.481,0.429-1.019,0.793-1.599,1.089c-0.045,0.022-0.085,0.048-0.13,0.07c-0.289,0.138-0.585,0.251-0.892,0.354 c-0.08,0.027-0.16,0.05-0.24,0.075c-0.681,0.201-1.386,0.344-2.134,0.344c-4.158,0-7.528-3.373-7.528-7.534 c0-0.008,0.002-0.015,0.002-0.025l0,0c0-0.441,0.058-0.873,0.128-1.29c0-0.005,0.003-0.008,0.003-0.013 c0.056-0.306,0.146-0.595,0.236-0.889c0.053-0.166,0.093-0.333,0.155-0.497c0.085-0.221,0.193-0.432,0.299-0.643 c0.11-0.223,0.223-0.442,0.354-0.652c0.096-0.148,0.195-0.289,0.299-0.429c0.19-0.264,0.396-0.512,0.617-0.748 c0.075-0.078,0.148-0.156,0.226-0.231c0.299-0.289,0.617-0.552,0.962-0.791c0.022-0.015,0.042-0.033,0.063-0.045 c1.199-0.816,2.63-1.313,4.19-1.313c2.596,0,4.859,1.328,6.209,3.323c0.018,0.022,0.033,0.045,0.048,0.067 c0.278,0.424,0.534,0.866,0.726,1.343c0.248,0.171,0.515,0.281,0.806,0.281c0.188,0,0.374-0.035,0.552-0.101v-0.01h0.005 c0.005,0,0.013-0.005,0.022-0.005c0.021-0.01,0.051-0.02,0.078-0.035c0.11-0.035,0.208-0.101,0.281-0.191 c0.507-0.417,0.692-1.089,0.456-1.702c-0.64-1.22-1.46-2.273-2.416-3.132c-0.018-0.015-0.035-0.028-0.053-0.043 c-0.43-0.381-0.894-0.718-1.376-1.016c-0.157-0.095-0.326-0.176-0.489-0.264c-0.386-0.213-0.78-0.409-1.191-0.567 c-0.858-0.326-1.774-0.52-2.726-0.605c-0.319-0.022-0.585-0.07-0.943-0.07c-0.131,0-0.244,0.01-0.369,0.013 c-1.192,0.042-2.332,0.278-3.388,0.695c-0.211,0.083-0.427,0.184-0.646,0.292c-0.278,0.133-0.545,0.284-0.808,0.439 c-0.274,0.163-0.548,0.324-0.821,0.522c-0.06,0.045-0.112,0.098-0.173,0.143c-0.404,0.304-0.78,0.612-1.114,0.959 c-0.153,0.153-0.281,0.323-0.422,0.484c-0.238,0.274-0.484,0.54-0.692,0.838c-0.091,0.136-0.179,0.271-0.259,0.407 c-0.278,0.437-0.532,0.888-0.742,1.368c-0.033,0.07-0.065,0.143-0.094,0.213c-0.138,0.339-0.223,0.7-0.328,1.054 c-0.053,0.196-0.115,0.397-0.141,0.585c0,0.005,0,0.005,0,0.01c-0.065,0.268-0.115,0.542-0.166,0.815 c-0.067,0.474-0.143,0.949-0.146,1.443c0,0.03,0.008,0.06,0.008,0.09c0.005,0.437,0.072,0.856,0.131,1.277 c0.047,0.284,0.1,0.567,0.168,0.846C-73.272-417.067-73.272-417.067-73.272-417.062z"/> <path fill="none" stroke="#EAD090" stroke-linecap="round" stroke-linejoin="round" stroke-miterlimit="10" d="M-158.381-405.605 l0.022-0.028c0.191-0.17,0.372-0.344,0.552-0.52c0.173-0.178,0.346-0.361,0.515-0.547l0,0l13.035-13.033l-5.675-5.674l-7.36-7.358 c-0.176-0.188-0.352-0.379-0.532-0.56c-0.186-0.183-0.371-0.359-0.557-0.535c-7.358-6.796-18.729-6.791-26.085,0.018l0.03-0.03 c-0.188,0.176-0.379,0.349-0.557,0.535c-0.186,0.183-0.361,0.369-0.537,0.56l0,0c-6.806,7.354-6.806,18.729-0.005,26.087 l1.077,1.074C-177.103-398.814-165.739-398.81-158.381-405.605z"/> <g> <path fill="#EAD090" d="M-160.075-430.616c-0.146-0.146-0.291-0.284-0.442-0.419l0.432,0.429l0.432,0.432 C-159.794-430.323-159.93-430.468-160.075-430.616z"/> <path fill="#EAD090" d="M-160.532-408.432l0.018-0.022c0.153-0.136,0.299-0.273,0.442-0.414c0.138-0.143,0.279-0.289,0.412-0.439 l0,0l10.427-10.425l-10.427-10.425c-0.141-0.15-0.281-0.304-0.424-0.449c-0.15-0.146-0.298-0.286-0.447-0.427 c-5.887-5.438-14.982-5.433-20.87,0.013l0.025-0.022c-0.15,0.141-0.301,0.278-0.447,0.427c-0.146,0.148-0.286,0.296-0.426,0.449 l0,0c-5.446,5.882-5.446,14.982-0.005,20.87l0.861,0.858C-175.509-402.998-166.419-402.993-160.532-408.432z"/> </g> <path fill="#57677C" d="M-157.066-411.328c-0.022-0.05-0.08-0.146-0.115-0.191c-0.07-0.08-0.136-0.17-0.201-0.261l-0.105-0.146 c-0.042-0.055-0.078-0.118-0.121-0.176c-1.132-1.313-1.895-2.931-2.146-4.733c-0.028-0.131-0.07-0.259-0.093-0.392 c-0.005-0.035-0.015-0.07-0.03-0.105c-0.09-0.695-0.658-1.237-1.375-1.305c-0.05-0.015-0.098-0.02-0.148-0.02 c-0.038,0-0.073,0.005-0.11,0.01l-0.66-0.002c-0.038-0.005-0.073-0.01-0.11-0.01c-0.502,0-0.931,0.271-1.205,0.673 c-0.454,2.135-1.854,3.897-3.727,4.898c-0.078,0.045-0.153,0.088-0.233,0.128c-0.236,0.116-0.475,0.216-0.723,0.306 c-0.206,0.076-0.414,0.136-0.625,0.193c-0.181,0.048-0.359,0.101-0.547,0.136c-0.437,0.08-0.883,0.135-1.343,0.135 c-4.025,0-7.3-3.277-7.3-7.303c0-0.51,0.055-1.009,0.156-1.488c0.675-3.348,3.631-5.87,7.18-5.87c3.579,0,6.548,2.565,7.193,5.956 c0.055,0.128,0.1,0.256,0.218,0.364c0.271,0.266,0.615,0.412,0.989,0.412c0.03,0,0.063,0,0.095-0.008 c0.623-0.042,1.145-0.497,1.318-1.157c0.012-0.048,0.018-0.095,0.018-0.146v-0.387v-0.213c0-0.053-0.005-0.103-0.021-0.156 c-0.386-1.388-1.049-2.653-1.967-3.767c-0.934-1.132-2.063-2.033-3.365-2.678c-0.125-0.073-0.188-0.105-0.249-0.135 c-1.31-0.607-2.753-0.916-4.287-0.916c-0.688,0-1.37,0.063-2.028,0.181c-4.743,0.989-8.176,5.205-8.176,10.028 c0.01,4.838,3.446,9.044,8.171,10.023c0.695,0.141,1.396,0.21,2.078,0.21c1.43,0,2.841-0.311,4.191-0.923 c0.11-0.045,0.213-0.105,0.321-0.166l0.156-0.085c0.487-0.261,0.996-0.547,1.476-0.923l0.138-0.118 c0.57-0.464,1.064-0.946,1.508-1.476c0.023-0.02,0.045-0.042,0.065-0.065c0.517-0.627,0.808-1.187,0.861-1.513 c0.535,1.892,1.579,3.599,2.374,4.447l0.095,0.125c0.058,0.08,0.116,0.153,0.176,0.228c0.03,0.038,0.065,0.068,0.105,0.093 c0.156,0.115,0.647,0.454,1.082,0.356c0.726-0.163,1.222-0.635,1.222-1.518C-156.891-411.031-157.001-411.217-157.066-411.328z"/> </g> <rect x="-26.146" y="-434.683" fill="none" width="351.479" height="27.581"/> <text transform="matrix(1 0 0 1 -26.1465 -408.043)" fill="#657185" stroke="#657185" stroke-width="0.25" stroke-miterlimit="10" font-family="'GeosansLight'" font-size="36">LiteSpeed</text> <text transform="matrix(1 0 0 1 110.3623 -408.043)" fill="#4B5265" font-family="'GeosansLight'" font-size="36"> </text> <text transform="matrix(1 0 0 1 119.542 -408.043)" fill="#595D6F" stroke="#4B5265" stroke-width="0.5" stroke-miterlimit="10" font-family="'GeosansLight'" font-size="36">Web </text> <text transform="matrix(1.25 0 0 1 196.5098 -408.043)" fill="#595D6F" stroke="#4B5265" stroke-width="0.5" stroke-miterlimit="10" font-family="'GeosansLight'" font-size="36">A</text> <text transform="matrix(1.1 0 0 1 224.9941 -408.043)" fill="#595D6F" stroke="#4B5265" stroke-width="0.5" stroke-miterlimit="10" font-family="'GeosansLight'" font-size="36">D</text> <text transform="matrix(1 0 0 1 252.2383 -408.043)" fill="#595D6F" stroke="#4B5265" stroke-width="0.5" stroke-miterlimit="10" font-family="'GeosansLight'" font-size="36">C</text> <g> <g> <path fill="#003B71" d="M92.615,44.693L80.153,57.156c-1.378,1.378-3.21,2.138-5.158,2.14h-0.007c-1.95,0-3.785-0.76-5.167-2.14 L31.927,19.258c-1.005-1.003-2.336-1.554-3.751-1.554c-1.417,0-2.75,0.552-3.752,1.555l-14.49,14.49 c-1.001,1-1.553,2.333-1.553,3.751s0.552,2.751,1.554,3.752l14.489,14.49c0.977,0.974,2.343,1.531,3.752,1.531 c1.41,0,2.777-0.558,3.75-1.53L44.38,43.289l-2.122-2.122L29.806,53.621c-0.871,0.87-2.39,0.869-3.261,0L12.055,39.13 c-0.899-0.898-0.899-2.361,0-3.26l14.49-14.49c0.436-0.436,1.015-0.676,1.631-0.676c0.615,0,1.194,0.24,1.63,0.675l37.896,37.899 c1.947,1.945,4.534,3.018,7.287,3.018c0.003,0,0.006,0,0.01,0c2.749-0.003,5.332-1.074,7.276-3.019l12.462-12.463L92.615,44.693z" /> <path fill="#003B71" d="M28.176,59.296c-1.951,0-3.785-0.76-5.166-2.14L8.52,42.665c-1.377-1.377-2.135-3.211-2.135-5.165 s0.758-3.788,2.134-5.165L23.01,17.844c1.38-1.38,3.215-2.14,5.166-2.14s3.785,0.76,5.165,2.14l23.192,23.134l-0.185-0.225 c0.546,0.594,2.883,2.939,14.884,14.985c0.979,0.978,2.346,1.534,3.757,1.534c1.449,0,2.782-0.543,3.769-1.53l12.453-12.453 l-2.121-2.122L76.637,53.621c-0.438,0.438-1.039,0.653-1.64,0.651c-0.601,0.002-1.202-0.215-1.64-0.651 c0,0-14.694-14.75-14.706-14.768L35.462,15.723c-1.946-1.946-4.533-3.019-7.286-3.019s-5.34,1.072-7.288,3.019L6.398,30.214 c-4.018,4.018-4.018,10.555,0,14.572l4.62,4.62l9.872,9.872c1.947,1.945,4.534,3.018,7.287,3.018s5.34-1.072,7.286-3.019 l12.453-12.453l-2.121-2.121L33.341,57.156C31.96,58.536,30.126,59.296,28.176,59.296z"/> </g> <g> <path fill="#003B71" d="M75.001,15.704c1.956,0,3.791,0.76,5.171,2.14l37.896,37.898c0.976,0.974,2.343,1.531,3.752,1.531 c1.41,0,2.777-0.558,3.75-1.53l14.491-14.492c1.003-1.002,1.555-2.334,1.555-3.751c0-1.418-0.553-2.751-1.557-3.753L125.57,19.258 c-1.005-1.003-2.336-1.554-3.751-1.554c-1.417,0-2.75,0.552-3.752,1.555l-12.434,12.433l2.121,2.122l12.434-12.434 c0.436-0.436,1.015-0.676,1.631-0.676c0.615,0,1.194,0.24,1.63,0.675l14.49,14.492c0.436,0.435,0.676,1.014,0.676,1.629 s-0.24,1.194-0.676,1.63l-14.49,14.491c-0.871,0.87-2.39,0.869-3.261,0L82.293,15.723c-1.946-1.946-4.533-3.019-7.286-3.019 c-0.003,0-0.006,0-0.009,0c-2.75,0.003-5.333,1.074-7.278,3.019L55.277,28.166l2.121,2.121l12.442-12.443 C71.22,16.467,73.052,15.706,75.001,15.704z"/> <path fill="#003B71" d="M143.596,30.214l-14.49-14.491c-1.946-1.946-4.533-3.019-7.286-3.019s-5.34,1.072-7.287,3.019 l-12.434,12.434l2.121,2.121l12.434-12.434c1.381-1.38,3.216-2.14,5.166-2.14s3.785,0.76,5.165,2.14l14.49,14.491 c1.381,1.38,2.141,3.214,2.141,5.165c0,1.95-0.761,3.785-2.141,5.166l-14.49,14.49c-1.38,1.38-3.215,2.14-5.165,2.14 s-3.785-0.76-5.167-2.14L78.758,19.258c-1.005-1.003-2.336-1.554-3.751-1.554c-0.003,0-0.016,0-0.019,0 c-1.417,0-2.75,0.552-3.752,1.555L58.803,31.691l2.121,2.122L73.357,21.38c0.436-0.436,1.015-0.676,1.631-0.676 c0.003,0,0.006,0.001,0.01,0.001c0.003,0,0.006-0.001,0.009-0.001c0.615,0,1.194,0.24,1.63,0.675l37.896,37.899 c1.947,1.945,4.534,3.018,7.287,3.018s5.34-1.072,7.286-3.019l14.49-14.49c1.946-1.946,3.02-4.534,3.02-7.287 S145.542,32.159,143.596,30.214z"/> </g> <g> <path fill="#DCAA00" d="M28.176,31.348l6.151,6.152l-6.151,6.152L22.024,37.5L28.176,31.348 M28.176,29.183 c-0.41,0-0.819,0.156-1.131,0.468l-6.718,6.719c-0.625,0.625-0.625,1.637,0,2.262l6.718,6.719 c0.312,0.313,0.722,0.468,1.131,0.468c0.409,0,0.818-0.155,1.131-0.468l6.718-6.719c0.625-0.625,0.625-1.637,0-2.262l-6.718-6.719 C28.994,29.338,28.585,29.183,28.176,29.183L28.176,29.183z"/> </g> <g> <path fill="#DCAA00" d="M121.813,31.348l6.151,6.152l-6.151,6.152l-6.151-6.152L121.813,31.348 M121.813,29.183 c-0.409,0-0.818,0.156-1.131,0.468l-6.718,6.719c-0.625,0.625-0.625,1.637,0,2.262l6.718,6.719 c0.313,0.313,0.722,0.468,1.131,0.468s0.818-0.155,1.131-0.468l6.718-6.719c0.625-0.625,0.625-1.637,0-2.262l-6.718-6.719 C122.631,29.338,122.222,29.183,121.813,29.183L121.813,29.183z"/> </g> <path fill="#FFD100" d="M69.421,47.079c-0.091-0.025-0.145-0.068-0.153-0.086c-0.026-0.056-0.044-0.152,0.104-0.324l5.271-6.69 c0.072-0.113,0.091-0.279,0.028-0.394l-2.958-4.264c-0.178-0.248-0.12-0.612,0.124-0.798l8.483-6.511 c0.145-0.114,0.213-0.114,0.238-0.114c0.066,0,0.141,0.046,0.172,0.106c0.049,0.095,0.006,0.186-0.09,0.32l-5.282,6.695 c-0.089,0.121-0.089,0.321-0.005,0.435l2.889,4.157c0.063,0.197,0.169,0.678-0.074,0.865l-8.483,6.504 c-0.081,0.064-0.143,0.11-0.214,0.118C69.454,47.091,69.438,47.084,69.421,47.079z"/> <g> <path fill="#407CCA" d="M73.249,39.728l-2.555-3.681c-0.569-0.794-0.396-1.923,0.381-2.516l6.291-4.828l-1.015-1.015 c-0.781-0.78-2.047-0.78-2.828,0l-8.396,8.397c-0.781,0.781-0.781,2.047,0,2.828l4.901,4.901L73.249,39.728z"/> <path fill="#407CCA" d="M84.748,36.086l-4.829-4.83l-3.171,4.019l2.527,3.636c0.092,0.137,0.159,0.284,0.197,0.432 c0.241,0.898,0.044,1.674-0.546,2.128l-6.365,4.88l0.961,0.962c0.781,0.78,2.047,0.78,2.828,0l8.396-8.397 C85.529,38.133,85.529,36.867,84.748,36.086z"/> </g> </g> </svg> ��������������������������������������������������img/info.svg����������������������������������������������������������������������������������������0000644�����������������00000002505�15027525531�0007003 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<?xml version="1.0" encoding="utf-8"?> <!-- Generator: Adobe Illustrator 16.0.3, SVG Export Plug-In . SVG Version: 6.00 Build 0) --> <!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN" "http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd"> <svg version="1.1" id="Layer_1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" x="0px" y="0px" width="12px" height="12px" viewBox="0 0 12 12" enable-background="new 0 0 12 12" xml:space="preserve"> <g> <path fill="#00929E" d="M6,0.5C2.967,0.5,0.5,2.967,0.5,6c0,3.032,2.467,5.5,5.5,5.5c3.032,0,5.5-2.468,5.5-5.5 C11.5,2.967,9.032,0.5,6,0.5z M6,10.5c-2.481,0-4.5-2.019-4.5-4.5S3.519,1.5,6,1.5s4.5,2.019,4.5,4.5S8.481,10.5,6,10.5z"/> <path fill="#00929E" d="M5.978,3.827c0.158,0,0.295-0.057,0.407-0.168c0.112-0.112,0.168-0.249,0.168-0.407 c0-0.155-0.057-0.292-0.169-0.406c-0.229-0.232-0.593-0.229-0.816,0C5.455,2.959,5.398,3.097,5.398,3.252 c0,0.159,0.057,0.296,0.17,0.408C5.682,3.771,5.819,3.827,5.978,3.827z"/> <path fill="#00929E" d="M7.201,8.486H6.586V4.622c0-0.059-0.047-0.106-0.106-0.106H4.985c-0.059,0-0.106,0.048-0.106,0.106v0.444 c0,0.059,0.048,0.106,0.106,0.106h0.624v3.314H4.985c-0.059,0-0.106,0.048-0.106,0.107v0.439c0,0.059,0.048,0.105,0.106,0.105 h2.216c0.06,0,0.107-0.047,0.107-0.105V8.594C7.309,8.534,7.261,8.486,7.201,8.486z"/> </g> </svg> �������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������img/ols_logo.svg������������������������������������������������������������������������������������0000644�����������������00000006726�15027525531�0007676 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<?xml version="1.0" encoding="utf-8"?> <!-- Generator: Adobe Illustrator 16.0.3, SVG Export Plug-In . SVG Version: 6.00 Build 0) --> <!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN" "http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd"> <svg version="1.1" id="Layer_1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" x="0px" y="0px" width="150px" height="100px" viewBox="0 0 150 100" enable-background="new 0 0 150 100" xml:space="preserve"> <g> <path fill="#003E6E" d="M114.12,19.546l-5.682,5.665c5.168,6.938,8.258,15.496,8.258,24.789c0,22.988-18.702,41.696-41.698,41.696 c-0.007,0-0.017,0-0.026,0c-0.013,0-0.018,0-0.037,0c-1.765,0-3.498-0.146-5.207-0.358c-0.333-0.047-0.652-0.104-0.99-0.152 c-1.551-0.236-3.082-0.546-4.574-0.944c-0.128-0.041-0.259-0.065-0.386-0.105c-1.861-0.52-3.668-1.163-5.407-1.924 c-6.742-2.92-12.49-7.607-16.812-13.43c-3.696-4.979-6.357-10.766-7.533-17.11c-0.027-0.121-0.039-0.257-0.063-0.388 c-0.192-1.112-0.369-2.229-0.472-3.367c-0.041-0.401-0.041-0.814-0.062-1.219c-0.052-0.88-0.133-1.753-0.133-2.653 c0-2.886,0.29-5.694,0.852-8.415c0.267-1.297,0.597-2.572,0.982-3.814c0.008-0.05,0.021-0.104,0.031-0.146 C40.437,20.677,56.3,8.302,74.998,8.302c2.794,0,5.487,0.372,8.114,0.916c0.135,0.032,0.27,0.056,0.407,0.086 c1.104,0.234,2.178,0.52,3.245,0.834c0.711,0.206,1.39,0.456,2.084,0.704c0.61,0.215,1.239,0.426,1.834,0.672 c0.264,0.105,0.513,0.248,0.772,0.362l8.751-4.627c-7.397-4.384-16.012-6.915-25.208-6.915C47.616,0.334,25.334,22.61,25.334,50 c0,11.488,3.958,22.048,10.535,30.474c3.834,4.911,8.568,9.073,13.951,12.258c7.396,4.375,15.988,6.934,25.177,6.934 c27.388,0,49.667-22.279,49.667-49.666C124.665,38.509,120.694,27.963,114.12,19.546z"/> <g> <path fill="#F6D000" d="M39.29,90.338c-0.553,0-1.161-0.386-1.372-0.898c-0.417-1.011,0.436-1.855,0.796-2.218L66.66,59.28 L46.717,47.535c-0.903-0.522-1.418-1.325-1.399-2.209c0.008-0.882,0.549-1.674,1.479-2.166l62.515-33.057 c0.593-0.309,1.008-0.443,1.402-0.443c0.548,0,1.157,0.383,1.367,0.892c0.419,1.011-0.404,1.825-0.792,2.219L83.403,40.653 l19.89,11.8c0.905,0.526,1.419,1.332,1.401,2.214c-0.018,0.882-0.563,1.666-1.487,2.158L40.683,89.893 C40.1,90.205,39.681,90.338,39.29,90.338z"/> <path fill="#577BC6" d="M110.714,11.029c0.227,0,0.101,0.27-0.395,0.774L82.432,39.684c-0.796,0.796-0.642,1.909,0.32,2.467 l19.854,11.491c0.97,0.562,0.957,1.444-0.04,1.972L40.042,88.68c-0.364,0.196-0.616,0.284-0.751,0.284 c-0.225,0-0.113-0.267,0.391-0.767l27.948-27.949c0.794-0.793,0.647-1.903-0.328-2.455L47.407,46.345 c-0.976-0.559-0.961-1.445,0.031-1.972l62.516-33.057C110.319,11.122,110.572,11.029,110.714,11.029 M110.714,8.288L110.714,8.288 c-0.638,0-1.246,0.18-2.05,0.608L46.16,41.948c-1.37,0.723-2.196,1.98-2.219,3.357c-0.023,1.374,0.761,2.653,2.097,3.419 l18.565,10.679L37.74,86.256c-1.228,1.227-1.601,2.477-1.09,3.708c0.42,1.024,1.531,1.746,2.64,1.746 c0.629,0,1.241-0.181,2.041-0.606l62.519-33.065c1.358-0.719,2.183-1.972,2.21-3.346c0.032-1.372-0.746-2.654-2.079-3.424 L85.451,40.547l26.806-26.803c1.234-1.233,1.603-2.486,1.087-3.717C112.926,9.006,111.82,8.288,110.714,8.288L110.714,8.288z"/> </g> </g> <g> </g> <g> <path fill="#003E6E" d="M66.16,188.362l0.004-8.877c0,0.088,0,0.18,0,0.279L66.16,188.362z"/> <path fill="#003E6E" d="M66.163,199.491c-0.007-0.004-0.013-1.137-0.011-2.52l0.008-8.609l-0.01,11.117L66.163,199.491z"/> <path fill="#003E6E" d="M67.947,197.733c-0.977,0.975-1.778,1.768-1.784,1.758l0.011,0.016L67.947,197.733z"/> </g> </svg> ������������������������������������������img/lsws_logo.svg�����������������������������������������������������������������������������������0000644�����������������00000005260�15027525531�0010061 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<?xml version="1.0" encoding="utf-8"?> <!-- Generator: Adobe Illustrator 16.0.3, SVG Export Plug-In . SVG Version: 6.00 Build 0) --> <!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN" "http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd"> <svg version="1.1" id="Layer_1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" x="0px" y="0px" width="300px" height="300px" viewBox="0 0 300 300" enable-background="new 0 0 300 300" xml:space="preserve"> <g> <path fill="#5E8CDA" d="M254.859,146.258l-68.508-68.516l-29.203,37.055l31.461,31.461c2.922,2.922,2.922,7.68,0,10.57 l-9.086,9.086c0,0,6.148,9.195,6.414,9.75c1.422,2.836,1.742,9.492-2.273,12.547l-71.57,54.969c0,18.422-0.016,56.336,0,56.344 c0.031,0,142.766-142.695,142.766-142.695C257.75,153.898,257.75,149.18,254.859,146.258z"/> <path fill="#093071" d="M95.703,154.891c-2.898-2.875-2.898-7.641,0-10.531l9.109-9.125l-6.219-8.938 c-2.977-4.219-2.039-10.203,2.055-13.344l71.602-54.938l0.023-56.328l-0.023-0.031l-0.039-0.047L29.477,144.359 c-2.922,2.891-2.922,7.656,0,10.539l68.5,68.508l29.219-37.055L95.703,154.891z"/> </g> <path fill="#5E8CDA" d="M208.297,35.727c1.092,0,2.147,0.654,2.624,1.624c0.804,1.658-0.217,3.189-1.236,4.495l-0.04,0.051 l-62.727,79.64c-0.829,1.05-0.891,3.144-0.132,4.218c0.339,0.491,33.879,49.111,35.027,50.794c1.342,1.918,1.425,7.623-1.657,9.978 L79.348,263.915c-1.305,0.993-2.252,1.535-3.492,1.546c-0.99-0.082-2.015-0.756-2.44-1.601c-0.783-1.612,0.143-3.176,1.253-4.616 l62.727-79.607c0.83-1.114,0.908-3.081,0.152-4.231l-35.019-50.348c-2.308-3.283-1.585-7.943,1.611-10.39l100.851-77.445 C206.396,36.146,207.321,35.727,208.297,35.727 M208.297,34.727c-1.211,0-2.336,0.492-3.914,1.703l-100.852,77.445 c-3.625,2.773-4.445,8.023-1.82,11.758l35.016,50.344c0.508,0.773,0.438,2.297-0.133,3.063l-62.711,79.586 c-0.813,1.055-2.523,3.289-1.367,5.672c0.594,1.18,1.945,2.07,3.305,2.164c1.555,0,2.695-0.656,4.133-1.75l100.813-77.391 c3.508-2.68,3.523-8.977,1.867-11.344c-1.156-1.695-35.023-50.789-35.023-50.789c-0.508-0.719-0.461-2.328,0.094-3.031 l62.727-79.641c0.805-1.031,2.555-3.203,1.391-5.602C211.172,35.594,209.766,34.727,208.297,34.727L208.297,34.727z"/> <path fill="#F5CD21" d="M178.992,176.898c0.82,1.25,1.563,5.867-0.477,7.422L77.641,261.75c-0.836,0.664-1.391,0.984-1.617,0.961 c-0.359,0.023-0.102-0.586,0.82-1.797l62.688-79.555c1.586-2.039,1.688-5.414,0.227-7.516l-34.977-50.367 C104.781,123.477,178.188,175.664,178.992,176.898z"/> <path fill="#FDDD75" d="M178.992,176.898l-34.461-49.555c-1.438-2.125-1.336-5.492,0.242-7.508l62.695-79.578 c0.945-1.203,1.164-1.781,0.828-1.781c-0.227,0-0.805,0.281-1.625,0.945l-100.875,77.422c-2.016,1.555-2.477,4.547-1.016,6.633 L178.992,176.898z"/> </svg> ������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������External_Servlet.html�������������������������������������������������������������������������������0000644�����������������00000025621�15027525531�0010733 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Servlet Engine</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Servlet Engine." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 9</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><span class="current"><a href="External_Servlet.html">Servlet Engine</a></span></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="External_LSAPI.html">LiteSpeed SAPI App</a></div><div class="center"><a href="ExtApp_Help.html">External Apps</a></div><div class="next"><a href="External_WS.html">Web Server</a> »</div></div> <h1>Servlet Engine</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header>Servlet Engine</header><p> <a href="#extAppName">Name</a> | <a href="#extAppAddress">Address</a> | <a href="#maxConns">Max Connections</a> | <a href="#pcKeepAliveTimeout">Connection Keepalive Timeout</a> | <a href="#env">Environment</a> | <a href="#initTimeout">Initial Request Timeout (secs)</a> | <a href="#retryTimeout">Retry Timeout (secs)</a> | <a href="#respBuffer">Response Buffering</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="extAppName"><h3>Name<span class="ls-permlink"><a href="#extAppName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>A unique name for this external application. You will refer to it by this name when you use it in other parts of the configuration.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAppAddress"><h3>Address<span class="ls-permlink"><a href="#extAppAddress"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>A unique socket address used by the external application. IPv4/IPv6 sockets and Unix Domain Sockets (UDS) are supported. IPv4/IPv6 sockets can be used for communication over the network. UDS can only be used when the external application resides on the same machine as the server.</p> <h4>Syntax</h4><p>IPv4 or IPV6 address:port or UDS://path</p> <h4>Example</h4><div class="ls-example">127.0.0.1:5434<br/> UDS://tmp/lshttpd/php.sock.</div><h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> If the external application runs on the same machine, UDS is preferred. If you have to use an IPv4|IPV6 socket, set the IP address to <span class="val">localhost</span> or <span class="val">127.0.0.1</span>, so the external application is inaccessible from other machines.<br/> <span title="Performance" class="ls-icon-performance"></span> Unix Domain Sockets generally provide higher performance than IPv4 sockets.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxConns"><h3>Max Connections<span class="ls-permlink"><a href="#maxConns"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the maximum number of concurrent connections that can be established between the server and an external application. This setting controls how many requests can be processed concurrently by an external application, however, the real limit also depends on the external application itself. Setting this value higher will not help if the external application is not fast enough or cannot scale to a large number of concurrent requests.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> Setting a high value does not directly translate to higher performance. Setting the limit to a value that will not overload the external application will provide the best performance/throughput.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="pcKeepAliveTimeout"><h3>Connection Keepalive Timeout<span class="ls-permlink"><a href="#pcKeepAliveTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the maximum time in seconds to keep an idle persistent connection open.<br/><br/> When set to "-1", the connection will never timeout. When set to 0 or greater, the connection will be closed after this time in seconds has passed.</p> <h4>Syntax</h4><p>int</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="env"><h3>Environment<span class="ls-permlink"><a href="#env"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies extra environment variables for the external application.</p> <h4>Syntax</h4><p>Key=value. Multiple variables can be separated by "ENTER"</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="initTimeout"><h3>Initial Request Timeout (secs)<span class="ls-permlink"><a href="#initTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the maximum time in seconds the server will wait for the external application to respond to the first request over a new established connection. If the server does not receive any data from the external application within this timeout limit, it will mark this connection as bad. This helps to identify communication problems with external applications as quickly as possible. If some requests take longer to process, increase this limit to avoid 503 error messages.</p> <h4>Syntax</h4><p>Integer number</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="retryTimeout"><h3>Retry Timeout (secs)<span class="ls-permlink"><a href="#retryTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the period of time that the server waits before retrying an external application that had a prior communication problem.</p> <h4>Syntax</h4><p>Integer number</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="respBuffer"><h3>Response Buffering<span class="ls-permlink"><a href="#respBuffer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to buffer responses received from external applications. If a "nph-" (Non-Parsed-Header) script is detected, buffering is turned off for responses with full HTTP headers.</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ���������������������������������������������������������������������������������������������������������������ServLog_Help.html�����������������������������������������������������������������������������������0000644�����������������00000042674�15027525531�0010005 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Server Log</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Server Log." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 9</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><span class="current"><a href="ServLog_Help.html">Server Log</a></span></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="ServGeneral_Help.html">Server General</a></div><div class="center"><a href="config.html">Configuration</a></div><div class="next"><a href="ServTuning_Help.html">Server Tuning</a> »</div></div> <h1>Server Log</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header>Server Log</header><p> <a href="#log_fileName">File Name</a> | <a href="#log_logLevel">Log Level</a> | <a href="#log_debugLevel">Debug Level</a> | <a href="#log_rollingSize">Rolling Size (bytes)</a> | <a href="#log_keepDays">Keep Days</a> | <a href="#log_compressArchive">Compress Archive</a> | <a href="#log_enableStderrLog">Enable stderr Log</a></p></section> <section class="toc-row"><header>Access Log</header><p> <a href="#accessLog_fileName">File Name</a> | <a href="#accessLog_pipedLogger">Piped Logger</a> | <a href="#accessLog_logFormat">Log Format</a> | <a href="#accessLog_logHeader">Log Headers</a> | <a href="#log_rollingSize">Rolling Size (bytes)</a> | <a href="#log_keepDays">Keep Days</a> | <a href="#log_compressArchive">Compress Archive</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="log_fileName"><h3>File Name<span class="ls-permlink"><a href="#log_fileName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the path for the log file.</p> <h4>Syntax</h4><p>Filename which can be an absolute path or a relative path to $SERVER_ROOT.</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> Place the log file on a separate disk.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="log_logLevel"><h3>Log Level<span class="ls-permlink"><a href="#log_logLevel"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the level of logging to include in your log file. Available levels (from high to low) are: <span class="val">ERROR</span>, <span class="val">WARNING</span>, <span class="val">NOTICE</span>, <span class="val">INFO</span> and <span class="val">DEBUG</span>. Only messages with level higher or equal to the current setting will be logged.</p> <h4>Syntax</h4><p>Select from drop down list</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> Using <span class="val">DEBUG</span> log level does not have any performance impact, unless <span class="tagl"><a href="#log_debugLevel">Debug Level</a></span> is set to a level other than <span class="val">NONE</span>. It's recommended to set Log Level to <span class="val">DEBUG</span> and Debug Level to <span class="val">NONE</span>. These settings mean that you will not fill up your hard disk with debug logging, but you will be able to use the <span class="tagl"><a href="ServerStat_Help.html#toggleDebugLog">Toggle Debug Logging</a></span> action to control debug output. This action can turn debug logging on and off on the fly, and is useful for debugging busy production servers.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#log_debugLevel">Debug Level</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="log_debugLevel"><h3>Debug Level<span class="ls-permlink"><a href="#log_debugLevel"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the level of debug logging. <span class="tagl"><a href="#log_logLevel">Log Level</a></span> must be set to <span class="val">DEBUG</span> to use this feature. Debug logging is disabled when "Debug Level" is set to <span class="val">NONE</span> even if <span class="tagl"><a href="#log_logLevel">Log Level</a></span> is set to <span class="val">DEBUG</span>. <span class="tagl"><a href="ServerStat_Help.html#toggleDebugLog">Toggle Debug Logging</a></span> can be used to control debug level on a live server without restarting.</p> <h4>Syntax</h4><p>Select from drop down list</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> Important! Always set this to <span class="val">NONE</span> if you do not need detailed debug logging. Active debug logging will severely degrade service performance and potentially saturate disk space in a very short time. Debug logging includes detailed information for each request and response.<br/><br/> It's recommended to set Log Level to <span class="val">DEBUG</span> and Debug Level to <span class="val">NONE</span>. These settings mean that you will not fill up your hard disk with debug logging, but you will be able to use the <span class="tagl"><a href="ServerStat_Help.html#toggleDebugLog">Toggle Debug Logging</a></span> action to control debug output. This action can turn debug logging on and off on the fly, and is useful for debugging busy production servers.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#log_logLevel">Log Level</a></span>, <span class="tagl"><a href="ServerStat_Help.html#toggleDebugLog">Toggle Debug Logging</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="log_rollingSize"><h3>Rolling Size (bytes)<span class="ls-permlink"><a href="#log_rollingSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies when the current log file needs to be rolled over, also known as log rotation. When the file size is over the rollover limit, the active log file will be renamed to log_name.mm_dd_yyyy(.sequence) in the same directory and a new active log file will be created. The actual size of the rotated log file once it is created will sometimes be a little bigger than this size limit. Set to <span class="val">0</span> to disable log rotation.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> Append "K", "M", "G" to the number for kilo-, mega- and giga- bytes.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="log_keepDays"><h3>Keep Days<span class="ls-permlink"><a href="#log_keepDays"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies how many days the access log file will be kept on disk. Only rotated log files older than the specified number of days will be deleted. The current log file will not be touched regardless how many days worth of data it contains. If you do not want to auto-delete stale and very old log files, set this to <span class="val">0</span>.</p> <h4>Syntax</h4><p>Integer number</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="log_compressArchive"><h3>Compress Archive<span class="ls-permlink"><a href="#log_compressArchive"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to compress rotated log files in order to save disk space.</p> <h4>Syntax</h4><p>Select from radio box</p> <h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> Log files are highly compressible and this is recommended to reduce disk usage for old logs.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="log_enableStderrLog"><h3>Enable stderr Log<span class="ls-permlink"><a href="#log_enableStderrLog"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to write to log when receiving stderr output from processes started by the server.<br/><br/> If enabled, stderr messages will be logged in the same directory as the server log with the fixed name "stderr.log". If disabled, all stderr output will be discarded.<br/><br/> Functions like PHP's error_log() which do not write directly to stderr (file handle 2) are not affected by this setting and will write to the file set in PHP ini directive 'error_log' or the server's "error.log" file with tag '[STDERR]' if that directive is not set.</p> <h4>Syntax</h4><p>Select from radio box</p> <h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> Turn it on if you need to debug configured external applications: i.e. PHP, Ruby, Java, Python, Perl.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessLog_fileName"><h3>File Name<span class="ls-permlink"><a href="#accessLog_fileName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The access log filename.</p> <h4>Syntax</h4><p>Filename which can be an absolute path or a relative path to $SERVER_ROOT.</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> Put access log file on a separate disk.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessLog_pipedLogger"><h3>Piped Logger<span class="ls-permlink"><a href="#accessLog_pipedLogger"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the external application that will receive the access log data sent by LiteSpeed through a pipe on its STDIN stream (file handle is 0). When this field is specified, the access log will be sent only to the logger application and not the access log file specified in previous entry.<br/><br/> The logger application must be defined in <span class="tagP"><a href="#ExtApp_Help">External Apps</a></span> section first. Server-level access logging can only use an external logger application defined at the server level. Virtual host-level access logging can only use a logger application defined at the virtual host level.<br/><br/> The logger process is spawned in the same way as other external (CGI/FastCGI/LSAPI) processes. This means it will execute as the user ID specified in the virtual host's <span class="tagl"><a href="VirtualHosts_Help.html#setUidMode">External App Set UID Mode</a></span> settings and will never run on behalf of a privileged user. <br/><br/> LiteSpeed web server performs simple load balancing among multiple logger applications if more than one instance of a logger application is configured. LiteSpeed server always attempts to keep the number of logger applications as low as possible. Only when one logger application fails to process access log entries in time will the server attempt to spawn another instance of the logger application. <br/><br/> If a logger crashes, the web server will start another instance but the log data in the stream buffer will be lost. It is possible to lose log data if external loggers cannot keep up with the speed and volume of the log stream.</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessLog_logFormat"><h3>Log Format<span class="ls-permlink"><a href="#accessLog_logFormat"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p> Specifies the log format for the access log. When log format is set, it will override the <span class="tagl"><a href="#accessLog_logHeader">Log Headers</a></span> setting.</p> <h4>Syntax</h4><p>String. The syntax of log format is compatible with Apache 2.0's custom <a href="http://httpd.apache.org/docs/current/mod/mod_log_config.html#formats" target="_blank" rel="noopener noreferrer">log format</a>.</p> <h4>Example</h4><div class="ls-example"><b>Common Log Format (CLF)</b><br/> "%h %l %u %t \"%r\" %>s %b"<br/><br/> <b>Common Log Format with Virtual Host</b><br/> "%v %h %l %u %t \"%r\" %>s %b"<br/><br/> <b>NCSA extended/combined log format</b><br/> "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-agent}i\" <br/><br/> <b>Log cookie value of Foobar</b><br/> "%{Foobar}C"</div><h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#accessLog_logHeader">Log Headers</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessLog_logHeader"><h3>Log Headers<span class="ls-permlink"><a href="#accessLog_logHeader"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to log HTTP request headers: <span class="val">Referer</span>, <span class="val">UserAgent</span>, and <span class="val">Host</span>.</p> <h4>Syntax</h4><p>Select from checkbox</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> Turn this off if you do not need these headers in the access log.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#accessLog_logFormat">Log Format</a></span></p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ��������������������������������������������������������������������CompilePHP_Help.html��������������������������������������������������������������������������������0000644�����������������00000020755�15027525531�0010360 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Compile PHP</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Compile PHP." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 9</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="webconsole.html">Web Console</a></div><div class="center"><a href="index.html">Home</a></div><div class="next"> </div></div> <h1>Compile PHP</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header>Compile PHP</header><p> <a href="#extrapathenv">Extra PATH Environment Variables</a> | <a href="#installpathprefix">Installation Path Prefix</a> | <a href="#compilerflags">Compiler Flags</a> | <a href="#configureparams">Configure Parameters</a> | <a href="#addonmodules">Add-on Modules</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="extrapathenv"><h3>Extra PATH Environment Variables<span class="ls-permlink"><a href="#extrapathenv"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Additional PATH values that will be appended to the current PATH environment variables for build scripts.</p> <h4>Syntax</h4><p>path values separated by ":"</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="installpathprefix"><h3>Installation Path Prefix<span class="ls-permlink"><a href="#installpathprefix"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Sets the value for the "--prefix" configure option. The default installation location is under LiteSpeed Web Server's install directory.</p> <h4>Syntax</h4><p>path</p> <h4>Example</h4><div class="ls-example">/usr/local/lsws/lsphp5</div><h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> LiteSpeed Web Server can use multiple PHP versions at the same time. If you are installing multiple versions, you should give them different prefixes.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="compilerflags"><h3>Compiler Flags<span class="ls-permlink"><a href="#compilerflags"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Add additional compiler flags, like optimized compiler options.</p> <h4>Syntax</h4><p>Supported flags are CFLAGS, CXXFLAGS, CPPFLAGS, LDFLAGS. Use a space to separate different flags. Use single quotes (not double quotes) for flag values.</p> <h4>Example</h4><div class="ls-example">CFLAGS='-O3 -msse2 -msse3 -msse4.1 -msse4.2 -msse4 -mavx'</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="configureparams"><h3>Configure Parameters<span class="ls-permlink"><a href="#configureparams"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Configure parameters for PHP build. Apache-specific parameters and "--prefix" value will be automatically removed and "--with-litespeed" will be automatically appended when you click Next Step. (Prefix can be set in the field above.) This way you can simply copy and paste the configure parameters from the phpinfo() output of an existing working PHP build.</p> <h4>Syntax</h4><p>Space-delimited series of options (with or without double quotes)</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="addonmodules"><h3>Add-on Modules<span class="ls-permlink"><a href="#addonmodules"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Select the add-on modules you wish to use. If you want to use a version not listed here, you can manually update the source code. (The location of the source code is shown in a prompt at this step of the PHP build.)</p> <h4>Syntax</h4><p>Select from checkbox</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> �������������������ScriptHandler_Help.html�����������������������������������������������������������������������������0000644�����������������00000021500�15027525531�0011147 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Script Handler</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Script Handler." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 9</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><span class="current"><a href="ScriptHandler_Help.html">Script Handler</a></span></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="ExtApp_Help.html">External Apps</a></div><div class="center"><a href="config.html">Configuration</a></div><div class="next"><a href="App_Server_Help.html">App Server Settings</a> »</div></div> <h1>Script Handler</h1><section class="ls-spacer-small-bottom">LiteSpeed Web Server supports all scripting languages including Perl, PHP, Ruby, Python, Java, etc. Scripts written in these different languages must be brought to the appropriate external application to be processed. LiteSpeed Web Server uses script handlers to decide which external application a script should go to. These script handlers map files to external applications by using the file suffix. (Actually, the suffix is used to determine a MIME type which is then mapped to the external application.) External applications must be set up in the External Application tab before they can be selected for use in a script handler. <br /><br /> You can set up script handler at the server or virtual host level. Server-level script handlers apply to all virtual hosts unless overridden in virtual host level. Virtual host-level script handlers only apply within that virtual host.</section> <h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header>Script Handler Definition</header><p> <a href="#suffix">Suffix</a> | <a href="#shType">Handler Type</a> | <a href="#shHandlerName">Handler Name</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="suffix"><h3>Suffix<span class="ls-permlink"><a href="#suffix"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the script file suffixes that will be handled by this script handler. Suffixes must be unique.</p> <h4>Syntax</h4><p>Comma delimited list with period "." character prohibited.</p> <h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> The server will automatically add a special MIME type ("application/x-httpd-[suffix]") for the first suffix in the list. For example, MIME type "application/x-httpd-php53" will be added for suffix "php53". Suffixes after the first need to set up in the <span class="tagl"><a href="#mime">MIME Settings</a></span> settings.<br/> Though we list suffixes in this field, the script handlers use MIME types, not suffixes, to decide which scripts to handle. <br/> <span title="Performance" class="ls-icon-performance"></span><span title="Security" class="ls-icon-security"></span> Only specify the suffixes you really need.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="shType"><h3>Handler Type<span class="ls-permlink"><a href="#shType"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the type of external application that processes these script files. Available types are: <span class="val">CGI</span>, <span class="val">FastCGI</span>, <span class="val">Web Server</span>, <span class="val">LSAPI app</span>, <span class="val">Load balancer</span>, or <span class="val">Servlet Engine</span>. For FastCGI, Web Server and Servlet Engine, a <span class="tagl"><a href="#shHandlerName">Handler Name</a></span> needs to be specified. This is an external application name as predefined in the <span class="tagP"><a href="#ExtApp_Help">External Apps</a></span> section.</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="shHandlerName"><h3>Handler Name<span class="ls-permlink"><a href="#shHandlerName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the name of the external application that processes the script files when the handler type is FastCGI, Web Server, LSAPI, Load Balancer, or Servlet Engine.</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������install.html����������������������������������������������������������������������������������������0000644�����������������00000025115�15027525531�0007111 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Installation</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Installation." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 9</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><span class="current"><a href="install.html">Installation</a></span></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="intro.html">Introduction</a></div><div class="center"><a href="index.html">Home</a></div><div class="next"><a href="admin.html">Administration</a> »</div></div> <h1>Installation/Uninstallation</h1> <h2>Minimum system requirements</h2> <ul> <li> <strong>Operating System:</strong> <ul> <li>Linux(i386): kernel 2.4 and up, glibc-2.2 and up</li> <li>CentOS: 5 and up</li> <li>Ubuntu: 8.04 and up</li> <li>Debian: 4 and up</li> <li>FreeBSD(i386): 4.5 and up</li> <li>MacOSX: 10.3 and up</li> </ul> </li> <li> <strong>CPU:</strong> <ul> <li>Intel: 80486 and up</li> <li>PowerPC: PowerPC G4</li> </ul> </li> <li><strong>Memory:</strong> 32MB and up</li> <li> <strong>Disk:</strong> <ul> <li>Installation: 200MB</li> <li>Runtime: 300MB and up, swapping space depends on usage.</li> </ul> </li> </ul> <h2>Installation</h2> <p> Installation must be performed in a command line terminal. For testing purposes, LiteSpeed Web Server can be installed into a home directory by a non-privileged user. For production use, it should be installed into a system directory. </p> <p> In Mac OS X, the root user is disabled by default. It can be enabled using a series of actions detailed on the Apple website. You can also use the sudo command to install LSWS into a system directory without enabling the root user, but system folders will still only be manipulable by the root user. This means that every time you want to control LSWS from the command line terminal (like when you want to start or stop LSWS), you will have to use the sudo command. </p> <h3>Installation Steps:</h3> <p> Visit the <a href="https://openlitespeed.org/kb/" target="_blank" rel="noopener"> OpenLiteSpeed Knowledge Base </a> for a list of installation methods. </p> <h2>Getting Started</h2> <ol> <li> <p> For detailed information on controlling the server processes, please see the Administration Guide. </p> <p> To start the server, simply run [your_install_dir]/bin/lswsctrl start. (To stop it, run [your_install_dir]/bin/lswsctrl stop.) </p> </li> <li> <p>A sample site should be running on the server.</p> <p> To access your site, point your browser to http://[address]:8088/, [address] being the IP address or domain name of your web server machine. Use "localhost" if the server is on the machine you are using. "8088" is the default port. If you chose another port for LiteSpeed during installation, use the port you designated. </p> <p> A congratulations page linked to other testing pages should load into the browser when pointed to the above address. If not, try testing the WebAdmin Console interface. </p> </li> <li> <p>The default port for the WebAdmin console is 7080.</p> <p> Plug http://[address]:7080/, into your browser to go to the WebAdmin interface. (If you changed the port for WebAdmin during installation, use that port instead.) </p> <p> Remember that for [address] you can use "localhost" if you're currently using the machine the server is on. </p> <p> The WebAdmin welcome page should load. Click the "Log on" link and use the administrator's username and password specified during installation to log on. </p> <p> For detailed information regarding configuration, please refer to our Configuration Guide, or click the "Help" link at the top of each page. </p> </li> <li> <p> If your server uses firewall, please make sure that localhost is trusted. </p> <p> For instance, Linux with IPTables should include a rule ALLOW INPUT from LO. </p> </li> <li> <p> If your web site and the WebAdmin Console are inaccessible, please take a look at the error log [your_install_dir]/logs/error.log. </p> <p> If there is a TCP port conflict with other server applications, the web server should be reinstalled with an available port. The following command can be used to find an available port: <span class="cmd">netstat -an | grep XXXX </span> XXXX is a port number. If the port is available, the command will produce no output. </p> <p> If the swapping directory is not writable, you can either grant writing permission for the swapping directory to the user whom the web server is running as, or change the swapping directory's configurations manually. The swapping directory is configured in the server's XML configuration file: [your_install_dir]/conf/httpd_config.xml. Search the XML file for swappingDir. The default location for the swapping directory is /tmp/lshttpd/swap. </p> <p> If you still have problems with installation, please check out our wiki or post your problem on our support forum. </p> </li> </ol> <h2>Notes</h2> <ul> <li> OpenLiteSpeed supports both native LiteSpeed XML configuration files and plain text configuration files (for those used to editing Apache's httpd.conf). Run [your_install_dir]/conf/switch_config.sh to switch between these formats. </li> <li> On FreeBSD, Mac OS X, Ubuntu, and Debian, the shipped PHP (for CentOS) will not run. You will need to build a new PHP for OpenLiteSpeed in order to run PHP applications with OpenLiteSpeed. </li> </ul> <h2>Uninstallation Steps</h2> <ol> <li> Stop OpenLiteSpeed if it is running: [your_install_dir]/bin/lswsctrl stop </li> <li>Remove the install directory: rm -rf [your_install_dir]</li> </ol></article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ���������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������App_Server_Context.html�����������������������������������������������������������������������������0000644�����������������00000071440�15027525531�0011217 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - App Server Context</title> <meta name="description" content="OpenLiteSpeed Users' Manual - App Server Context." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 9</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><span class="current"><a href="App_Server_Context.html">App Server Context</a></span></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="Redirect_Context.html">Redirect Context</a></div><div class="center"><a href="Context_Help.html">Context</a></div><div class="next"><a href="Module_Context.html">Module Handler Context</a> »</div></div> <h1>App Server Context</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header><a href="#appServerContext">App Server Context</a></header><p> <a href="#expuri">URI</a> | <a href="#as_location">Location</a> | <a href="#binPath">Binary Path</a> | <a href="#appType">Application Type</a> | <a href="#as_startupfile">Startup File</a> | <a href="#appserverEnv">Run-Time Mode</a> | <a href="#maxConns">Max Connections</a> | <a href="#env">Environment</a> | <a href="#enableExpires">Enable Expires</a> | <a href="#expiresDefault">Expires Default</a> | <a href="#expiresByType">Expires By Type</a> | <a href="#extraHeaders">Header Operations</a> | <a href="#indexFiles">Index Files</a> | <a href="#autoIndex">Auto Index</a> | <a href="#realm">Realm</a> | <a href="#authName">Authentication Name</a> | <a href="#required">Require (Authorized Users/Groups)</a> | <a href="#accessAllowed">Access Allowed</a> | <a href="#accessDenied">Access Denied</a> | <a href="#extAuthorizer">Authorizer</a> | <a href="#enableRewrite">Enable Rewrite</a> | <a href="#rewriteInherit">Rewrite Inherit</a> | <a href="#rewriteBase">Rewrite Base</a> | <a href="#rewriteRules">Rewrite Rules</a> | <a href="#addDefaultCharset">Add Default Charset</a> | <a href="#defaultCharsetCustomized">Customized Default Charset</a> | <a href="#enableIpGeo">Enable GeoLocation Lookup</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="appServerContext"><h3>App Server Context<span class="ls-permlink"><a href="#appServerContext"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>An App Server Context provides an easy way to configure a Ruby Rack/Rails, WSGI, or Node.js application. To add a an application through an App Server Context, only mounting the URL and the application's root directory is required. There is no need to go through all the trouble to define an external application, add a 404 handler, and rewrite rules, etc.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expuri"><h3>URI<span class="ls-permlink"><a href="#expuri"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the URI for this context.</p> <h4>Syntax</h4><p>The URI can be a plain URI (starting with "/") or a Perl compatible regular expression URI (starting with "exp:"). If a plain URI ends with a "/", then this context will include all sub-URIs under this URI. If the context maps to a directory on the file system, a trailing "/" must be added.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#location">Location</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="as_location"><h3>Location<span class="ls-permlink"><a href="#as_location"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the corresponding location of this context in the file system.<br/><br/> Default value: $DOC_ROOT + <span class="tagl"><a href="#expuri">URI</a></span></p> <h4>Syntax</h4><p>It can be an absolute path or path relative to $SERVER_ROOT, $VH_ROOT, or $DOC_ROOT. $DOC_ROOT is the default relative path, and can be omitted.<br/><br/> If the <span class="tagl"><a href="#expuri">URI</a></span> is a regular expression, then the matched sub-string can be used to form the "Root" string. The matched sub-string can be referenced with the values "$1" - "$9". "$0" and "&" can be used to reference the whole matched string. Additionally, a query string can be set by appending a "?" followed by the query string. Be careful. "&" should be escaped as "\&" in the query string.</p> <h4>Example</h4><div class="ls-example">A plain URI like <span class="val">/examples/</span> with <span class="tagl"><a href="#location">Location</a></span> set to <span class="val">/home/john/web_examples</span> will map the request "/examples/foo/bar.html" to file "/home/john/web_examples/foo/bar.html".<br/> To simulate Apache's mod_userdir, set URI to <span class="val">exp: ^/~([A-Za-z0-9]+)(.*)</span>, set <span class="tagl"><a href="#location">Location</a></span> to <span class="val">/home/$1/public_html$2</span>. With these settings, a request of URI /~john/foo/bar.html will map to file /home/john/public_html/foo/bar.html.</div><h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#expuri">URI</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="binPath"><h3>Binary Path<span class="ls-permlink"><a href="#binPath"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The location of the App Server application binary.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="appType"><h3>Application Type<span class="ls-permlink"><a href="#appType"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The type of application used for this context. Rack/Rails, WSGI, or Node.js are supported.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="as_startupfile"><h3>Startup File<span class="ls-permlink"><a href="#as_startupfile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The location of file used to start the application, relative to the application root directory.<br/><br/> Default startup file names include 'config.ru' for Rack/Rails, 'wsgi.py' and 'passenger_wsgi.py' for WSGI, and 'app.js' for NodeJS.</p> <h4>Syntax</h4><p>Path relative to application root directory</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="appserverEnv"><h3>Run-Time Mode<span class="ls-permlink"><a href="#appserverEnv"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies which mode the application will be running as: "Development", "Production", or "Staging". The default is "Production".</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxConns"><h3>Max Connections<span class="ls-permlink"><a href="#maxConns"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the maximum number of concurrent connections that can be established between the server and an external application. This setting controls how many requests can be processed concurrently by an external application, however, the real limit also depends on the external application itself. Setting this value higher will not help if the external application is not fast enough or cannot scale to a large number of concurrent requests.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> Setting a high value does not directly translate to higher performance. Setting the limit to a value that will not overload the external application will provide the best performance/throughput.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="env"><h3>Environment<span class="ls-permlink"><a href="#env"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies extra environment variables for the external application.</p> <h4>Syntax</h4><p>Key=value. Multiple variables can be separated by "ENTER"</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableExpires"><h3>Enable Expires<span class="ls-permlink"><a href="#enableExpires"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to generate an Expires header for static files. If enabled, an Expires header will be generated based on <span class="tagl"><a href="#expiresDefault">Expires Default</a></span> and <span class="tagl"><a href="#expiresByType">Expires By Type</a></span>.<br/><br/> This can be set at server, virtual host and context level. Lower level settings will override higher level ones, i.e. context settings will override virtual host settings and virtual host settings will override server settings.</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expiresDefault"><h3>Expires Default<span class="ls-permlink"><a href="#expiresDefault"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies default settings for Expires header generation. This setting takes effect when <span class="tagl"><a href="#enableExpires">Enable Expires</a></span> is set to "Yes". It can be overridden by <span class="tagl"><a href="#expiresByType">Expires By Type</a></span>. Do not set this default at the server or virtual host level unless you have to, since it will generate Expires headers for all pages. Most of time this should be set at the context level for certain directories that do not change often. If there is no default setting, no Expires header will be generated for types not specified in <span class="tagl"><a href="#expiresByType">Expires By Type</a></span>.</p> <h4>Syntax</h4><p>A|Mseconds<br/> The file will expire after base time(A|M) plus specified seconds. Base time "A" sets the value to the client's access time and "M" to the file's last modified time.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expiresByType"><h3>Expires By Type<span class="ls-permlink"><a href="#expiresByType"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies Expires header settings for individual MIME types.</p> <h4>Syntax</h4><p>Comma delimited list of "MIME-type=A|Mseconds". The file will expire after base time (A|M) plus specified seconds.<br/><br/> Base time "A" sets the value to the client's access time and "M" to the file's last modified time. MIME-type accepts wildcard "*", like image/*.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extraHeaders"><h3>Header Operations<span class="ls-permlink"><a href="#extraHeaders"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies additional response/request headers to be added. Multiple header directives can be added with one directive per line. "NONE" can be used to disable parent header inheritance. If no directive is provided 'Header' is assumed.</p> <h4>Syntax</h4><p>[Header]|RequestHeader [condition] set|append|merge|add|unset header [value] [early|env=[!]variable]</p> <h4>Example</h4><div class="ls-example">set Cache-control no-cache<br/> append Cache-control no-store<br/> Header set My-header cust_header_val<br/> RequestHeader set My-req-header cust_req_header_val</div><h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> Syntax and usage are similar to <a href="https://httpd.apache.org/docs/2.2/mod/mod_headers.html#header" target="_blank" rel="noopener noreferrer">Apache's mod_headers directives</a> for supported operations.<br/><br/> <span title="Information" class="ls-icon-info"></span> The 'Header' directive is is optional and can be excluded or left in when copying rules from elsewhere without issue.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="indexFiles"><h3>Index Files<span class="ls-permlink"><a href="#indexFiles"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies names of index files that will be searched sequentially when a URL is mapped to a directory. You can customize it at the server, virtual host, and context level.</p> <h4>Syntax</h4><p>Comma-delimited list of index filenames.</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> Only set index files that you need.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="autoIndex"><h3>Auto Index<span class="ls-permlink"><a href="#autoIndex"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to generate a directory index on the fly when index files listed in <span class="tagl"><a href="#indexFiles">Index Files</a></span> are not available in a directory. This option is customizable at the virtual host and context level, and is inherited along the directory tree until it is explicitly overridden. You can customize the generated index page. Please check online wiki How-tos.</p> <h4>Syntax</h4><p>Select from radio box</p> <h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> It is recommended to turn off Auto Index wherever possible to prevent revealing confidential data.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#indexFiles">Index Files</a></span>, <span class="tagl"><a href="#autoIndexURI">Auto Index URI</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="realm"><h3>Realm<span class="ls-permlink"><a href="#realm"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the authorization realm for this context. When specified, a valid username and password must be provided in order to access this context. <span class="tagl"><a href="VHSecurity_Help.html#realms">Authorization Realms</a></span> are set up in the <span class="tagP"><a href="#VHSecurity_Help">Virtual Host Security</a></span> section. This setting uses each realm's <span class="tagl"><a href="VHSecurity_Help.html#realmName">Realm Name</a></span>.</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="authName"><h3>Authentication Name<span class="ls-permlink"><a href="#authName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies an alternative name for the authorization realm for the current context. If not specified, the original realm name will be used. The authentication name is displayed on the browser's login pop-up.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="required"><h3>Require (Authorized Users/Groups)<span class="ls-permlink"><a href="#required"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies which user/group can access this context. This allows you to use one user/group database (specified in <span class="tagl"><a href="#realm">Realm</a></span>) across a number of contexts, but only allow certain users/groups from that database to access this context.</p> <h4>Syntax</h4><p>Syntax is compatible with Apache's Require directive. For example: <ul> <li><span class="val">user username [username ...]</span><br/> Only listed users can access this context.</li> <li> <span class="val">group groupid [groupid ...]</span><br/> Only users belonging to the listed groups can access this context.</li> </ul> If this setting is not specified, all valid users will be allowed to access this resource.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessAllowed"><h3>Access Allowed<span class="ls-permlink"><a href="#accessAllowed"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies which IPs or sub-networks are allowed to access resources under this context. Together with <span class="tagl"><a href="#accessDenied">Access Denied</a></span> and server/virtual host level access control, accessibility is determined by the smallest scope that a client's IP address falls into.</p> <h4>Syntax</h4><p>Comma-delimited list of IPs/sub-networks.</p> <h4>Example</h4><div class="ls-example">Sub-networks can be written as <span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span>, or <span class="val">192.168.1.*</span>.</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessDenied"><h3>Access Denied<span class="ls-permlink"><a href="#accessDenied"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies which IPs or sub-networks are NOT allowed to access resources under this context. Together with <span class="tagl"><a href="#accessAllowed">Access Allowed</a></span> and server/virtual host-level access control, accessibility is determined by the smallest scope that a client's IP address falls into.</p> <h4>Syntax</h4><p>Comma-delimited list of IPs/sub-networks.</p> <h4>Example</h4><div class="ls-example">Sub-networks can be written as <span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span>, or <span class="val">192.168.1.*</span>.</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAuthorizer"><h3>Authorizer<span class="ls-permlink"><a href="#extAuthorizer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies an external application that can be used to generate authorized/unauthorized decisions. Currently, only the FastCGI Authorizer is available. For more details about the FastCGI Authorizer role, please visit <a href=" https://fastcgi-archives.github.io/ " target="_blank" rel="noopener noreferrer"> https://fastcgi-archives.github.io/ </a>.</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableRewrite"><h3>Enable Rewrite<span class="ls-permlink"><a href="#enableRewrite"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to enable LiteSpeed's URL rewrite engine. This option can be customized at the virtual host or context level, and is inherited along the directory tree until it is explicitly overridden.</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="rewriteInherit"><h3>Rewrite Inherit<span class="ls-permlink"><a href="#rewriteInherit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to inherit rewrite rules from parent contexts. If rewrite is enabled and not inherited, rewrite base and rewrite rules defined in this context will be used.</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="rewriteBase"><h3>Rewrite Base<span class="ls-permlink"><a href="#rewriteBase"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the base URL for rewrite rules.</p> <h4>Syntax</h4><p>URL</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="rewriteRules"><h3>Rewrite Rules<span class="ls-permlink"><a href="#rewriteRules"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies a list of rewrite rules at the virtual host level.<br/><br/> Do NOT add any document root level rewrite rules here. If you have any document root level rewrite rules from .htaccess, you should instead create a static context with uri "/" and add the rewrite rules there.<br/><br/> A rewrite rule is comprised of one <span class="val">RewriteRule</span> directive and optionally preceded by multiple <span class="val">RewriteCond</span> directives. <ul> <li>Each directive should take only one line.</li> <li> <span class="val">RewriteCond</span> and <span class="val">RewriteRule</span> follow Apache's rewrite directive syntax. Just copy and paste rewrite directives from your Apache configuration files. </li> <li> There are minor differences between LiteSpeed and Apache mod_rewrite implementation: <ul> <li> <span class="val">%\{LA-U:variable\}</span> and <span class="val">%\{LA-F:variable\}</span> are ignored by the LiteSpeed rewrite engine </li> <li> Two new server variables are added in the LiteSpeed rewrite engine: <span class="val">%\{CURRENT_URI\}</span> represents the current URI being processed by the rewrite engine and <span class="val">%\{SCRIPT_NAME\}</span> has the same meaning as the corresponding CGI environment variable. </li> <li> The LiteSpeed rewrite engine will stop processing rewrite rules after encountering an <span class="val">[L]</span> flag to avoid looping while Apache mod_rewrite will stop processing rewrite rules for the current iteration only. This behavior is similar to that of the <span class="val">[END]</span> flag in Apache mod_rewrite. </li> </ul> </li> </ul><br/> The implementation of LiteSpeed's rewrite engine follows Apache's rewrite engine specifications. For more details about rewrite rules, please refer to <a href="https://httpd.apache.org/docs/current/mod/mod_rewrite.html" target="_blank" rel="noopener noreferrer"> Apache's mod_rewrite document </a> and <a href="https://httpd.apache.org/docs/current/rewrite/" target="_blank" rel="noopener noreferrer"> Apache's URL rewriting guide </a>.</p> <h4>Syntax</h4><p>string</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="addDefaultCharset"><h3>Add Default Charset<span class="ls-permlink"><a href="#addDefaultCharset"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to add a character set tag to the "Content-Type" response header, when content type is either "text/html" or "text/plain" without any parameters. When set to <span class="val">Off</span>, this function is disabled. When set to <span class="val">On</span>, either the character set specified by <span class="tagl"><a href="#defaultCharsetCustomized">Customized Default Charset</a></span> or the default "iso-8859-1" will be added.</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="defaultCharsetCustomized"><h3>Customized Default Charset<span class="ls-permlink"><a href="#defaultCharsetCustomized"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies a character set to be used when <span class="tagl"><a href="#addDefaultCharset">Add Default Charset</a></span> is <span class="val">On</span>. This is optional. The default value is <span class="val">iso-8859-1</span>. This entry has no effect when <span class="tagl"><a href="#addDefaultCharset">Add Default Charset</a></span> is <span class="val">Off</span>.</p> <h4>Syntax</h4><p>Name of a character set.</p> <h4>Example</h4><div class="ls-example">utf-8</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableIpGeo"><h3>Enable GeoLocation Lookup<span class="ls-permlink"><a href="#enableIpGeo"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p> Specifies whether to enable/disable IP Geolocation lookup. Can be set at server, virtual host, or context level. IP Geolocation is disabled by default when using value "Not Set".</p> <h4>Syntax</h4><p>Select from radio box</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="ServGeneral_Help.html#useIpInProxyHeader">Use Client IP in Header</a></span>, <span class="tagl"><a href="ServGeneral_Help.html#geoipDBFile">DB File Path</a></span>,</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ��������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������Static_Context.html���������������������������������������������������������������������������������0000644�����������������00000072031�15027525531�0010375 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Static Context</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Static Context." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 9</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><span class="current"><a href="Static_Context.html">Static Context</a></span></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev"> </div><div class="center"><a href="Context_Help.html">Context</a></div><div class="next"><a href="Java_Web_App_Context.html">Java Web App Context</a> »</div></div> <h1>Static Context</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header><a href="#generalContext">Static Context</a></header><p> <a href="#expuri">URI</a> | <a href="#location">Location</a> | <a href="#allowBrowse">Accessible</a> | <a href="#enableExpires">Enable Expires</a> | <a href="#expiresDefault">Expires Default</a> | <a href="#expiresByType">Expires By Type</a> | <a href="#extraHeaders">Header Operations</a> | <a href="#addMIMEType">MIME Type</a> | <a href="#forceType">Force MIME Type</a> | <a href="#defaultType">Default MIME Type</a> | <a href="#indexFiles">Index Files</a> | <a href="#autoIndex">Auto Index</a> | <a href="#realm">Realm</a> | <a href="#authName">Authentication Name</a> | <a href="#required">Require (Authorized Users/Groups)</a> | <a href="#accessAllowed">Access Allowed</a> | <a href="#accessDenied">Access Denied</a> | <a href="#extAuthorizer">Authorizer</a> | <a href="#addDefaultCharset">Add Default Charset</a> | <a href="#defaultCharsetCustomized">Customized Default Charset</a> | <a href="#enableRewrite">Enable Rewrite</a> | <a href="#rewriteInherit">Rewrite Inherit</a> | <a href="#rewriteBase">Rewrite Base</a> | <a href="#rewriteRules">Rewrite Rules</a> | <a href="#enableIpGeo">Enable GeoLocation Lookup</a> | <a href="#phpIniOverride">php.ini Override</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="generalContext"><h3>Static Context<span class="ls-permlink"><a href="#generalContext"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Context settings are used to specify special settings for files in a certain location. These settings can be used to bring in files outside of the document root (like Apache's Alias or AliasMatch directives), to protect a particular directory using authorization realms, or to block or restrict access to a particular directory within the document root.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expuri"><h3>URI<span class="ls-permlink"><a href="#expuri"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the URI for this context.</p> <h4>Syntax</h4><p>The URI can be a plain URI (starting with "/") or a Perl compatible regular expression URI (starting with "exp:"). If a plain URI ends with a "/", then this context will include all sub-URIs under this URI. If the context maps to a directory on the file system, a trailing "/" must be added.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#location">Location</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="location"><h3>Location<span class="ls-permlink"><a href="#location"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the corresponding location of this context in the file system.<br/><br/> Default value: $DOC_ROOT + <span class="tagl"><a href="#expuri">URI</a></span></p> <h4>Syntax</h4><p>It can be an absolute path or path relative to $SERVER_ROOT, $VH_ROOT, or $DOC_ROOT. $DOC_ROOT is the default relative path, and can be omitted.<br/><br/> If the <span class="tagl"><a href="#expuri">URI</a></span> is a regular expression, then the matched sub-string can be used to form the "Root" string. The matched sub-string can be referenced with the values "$1" - "$9". "$0" and "&" can be used to reference the whole matched string. Additionally, a query string can be set by appending a "?" followed by the query string. Be careful. "&" should be escaped as "\&" in the query string.</p> <h4>Example</h4><div class="ls-example">A plain URI like <span class="val">/examples/</span> with <span class="tagl"><a href="#location">Location</a></span> set to <span class="val">/home/john/web_examples</span> will map the request "/examples/foo/bar.html" to file "/home/john/web_examples/foo/bar.html".<br/> To simulate Apache's mod_userdir, set URI to <span class="val">exp: ^/~([A-Za-z0-9]+)(.*)</span>, set <span class="tagl"><a href="#location">Location</a></span> to <span class="val">/home/$1/public_html$2</span>. With these settings, a request of URI /~john/foo/bar.html will map to file /home/john/public_html/foo/bar.html.</div><h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#expuri">URI</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="allowBrowse"><h3>Accessible<span class="ls-permlink"><a href="#allowBrowse"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether this context can be accessed. Set to <span class="val">No</span> to deny access. You can use this feature to protect the specified directory from being visited. You may use it when you are updating contents for this context or you have special data in this directory.</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableExpires"><h3>Enable Expires<span class="ls-permlink"><a href="#enableExpires"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to generate an Expires header for static files. If enabled, an Expires header will be generated based on <span class="tagl"><a href="#expiresDefault">Expires Default</a></span> and <span class="tagl"><a href="#expiresByType">Expires By Type</a></span>.<br/><br/> This can be set at server, virtual host and context level. Lower level settings will override higher level ones, i.e. context settings will override virtual host settings and virtual host settings will override server settings.</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expiresDefault"><h3>Expires Default<span class="ls-permlink"><a href="#expiresDefault"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies default settings for Expires header generation. This setting takes effect when <span class="tagl"><a href="#enableExpires">Enable Expires</a></span> is set to "Yes". It can be overridden by <span class="tagl"><a href="#expiresByType">Expires By Type</a></span>. Do not set this default at the server or virtual host level unless you have to, since it will generate Expires headers for all pages. Most of time this should be set at the context level for certain directories that do not change often. If there is no default setting, no Expires header will be generated for types not specified in <span class="tagl"><a href="#expiresByType">Expires By Type</a></span>.</p> <h4>Syntax</h4><p>A|Mseconds<br/> The file will expire after base time(A|M) plus specified seconds. Base time "A" sets the value to the client's access time and "M" to the file's last modified time.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expiresByType"><h3>Expires By Type<span class="ls-permlink"><a href="#expiresByType"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies Expires header settings for individual MIME types.</p> <h4>Syntax</h4><p>Comma delimited list of "MIME-type=A|Mseconds". The file will expire after base time (A|M) plus specified seconds.<br/><br/> Base time "A" sets the value to the client's access time and "M" to the file's last modified time. MIME-type accepts wildcard "*", like image/*.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extraHeaders"><h3>Header Operations<span class="ls-permlink"><a href="#extraHeaders"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies additional response/request headers to be added. Multiple header directives can be added with one directive per line. "NONE" can be used to disable parent header inheritance. If no directive is provided 'Header' is assumed.</p> <h4>Syntax</h4><p>[Header]|RequestHeader [condition] set|append|merge|add|unset header [value] [early|env=[!]variable]</p> <h4>Example</h4><div class="ls-example">set Cache-control no-cache<br/> append Cache-control no-store<br/> Header set My-header cust_header_val<br/> RequestHeader set My-req-header cust_req_header_val</div><h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> Syntax and usage are similar to <a href="https://httpd.apache.org/docs/2.2/mod/mod_headers.html#header" target="_blank" rel="noopener noreferrer">Apache's mod_headers directives</a> for supported operations.<br/><br/> <span title="Information" class="ls-icon-info"></span> The 'Header' directive is is optional and can be excluded or left in when copying rules from elsewhere without issue.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="addMIMEType"><h3>MIME Type<span class="ls-permlink"><a href="#addMIMEType"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies additional MIME types and mappings for this context. New mappings will override existing mappings under this context and its children contexts.<br/> If you want to show PHP scripts as text files instead of being executed as scripts, just override the .php mapping to MIME type "text/plain".</p> <h4>Syntax</h4><p>MIME-type1 extension extension ..., MIME-type2 extension ... Use comma to separate between MIME types, use space to separate multiple extensions.</p> <h4>Example</h4><div class="ls-example"><span class="val">image/jpg jpeg jpg, image/gif gif</span></div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="forceType"><h3>Force MIME Type<span class="ls-permlink"><a href="#forceType"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>When specified, all files under this context will be served as static files with the MIME type specified regardless of file suffix. When set to <span class="val">NONE</span>, inherited force type setting will be disabled.</p> <h4>Syntax</h4><p>MIME type or NONE.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="defaultType"><h3>Default MIME Type<span class="ls-permlink"><a href="#defaultType"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>When specified, this type will be used when MIME type mapping cannot be determined by the suffix of a document or if there is no suffix. If not specified, the default value <span class="val">application/octet-stream</span> will be used.</p> <h4>Syntax</h4><p>MIME-type</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="indexFiles"><h3>Index Files<span class="ls-permlink"><a href="#indexFiles"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies names of index files that will be searched sequentially when a URL is mapped to a directory. You can customize it at the server, virtual host, and context level.</p> <h4>Syntax</h4><p>Comma-delimited list of index filenames.</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> Only set index files that you need.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="autoIndex"><h3>Auto Index<span class="ls-permlink"><a href="#autoIndex"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to generate a directory index on the fly when index files listed in <span class="tagl"><a href="#indexFiles">Index Files</a></span> are not available in a directory. This option is customizable at the virtual host and context level, and is inherited along the directory tree until it is explicitly overridden. You can customize the generated index page. Please check online wiki How-tos.</p> <h4>Syntax</h4><p>Select from radio box</p> <h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> It is recommended to turn off Auto Index wherever possible to prevent revealing confidential data.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#indexFiles">Index Files</a></span>, <span class="tagl"><a href="#autoIndexURI">Auto Index URI</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="realm"><h3>Realm<span class="ls-permlink"><a href="#realm"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the authorization realm for this context. When specified, a valid username and password must be provided in order to access this context. <span class="tagl"><a href="VHSecurity_Help.html#realms">Authorization Realms</a></span> are set up in the <span class="tagP"><a href="#VHSecurity_Help">Virtual Host Security</a></span> section. This setting uses each realm's <span class="tagl"><a href="VHSecurity_Help.html#realmName">Realm Name</a></span>.</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="authName"><h3>Authentication Name<span class="ls-permlink"><a href="#authName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies an alternative name for the authorization realm for the current context. If not specified, the original realm name will be used. The authentication name is displayed on the browser's login pop-up.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="required"><h3>Require (Authorized Users/Groups)<span class="ls-permlink"><a href="#required"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies which user/group can access this context. This allows you to use one user/group database (specified in <span class="tagl"><a href="#realm">Realm</a></span>) across a number of contexts, but only allow certain users/groups from that database to access this context.</p> <h4>Syntax</h4><p>Syntax is compatible with Apache's Require directive. For example: <ul> <li><span class="val">user username [username ...]</span><br/> Only listed users can access this context.</li> <li> <span class="val">group groupid [groupid ...]</span><br/> Only users belonging to the listed groups can access this context.</li> </ul> If this setting is not specified, all valid users will be allowed to access this resource.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessAllowed"><h3>Access Allowed<span class="ls-permlink"><a href="#accessAllowed"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies which IPs or sub-networks are allowed to access resources under this context. Together with <span class="tagl"><a href="#accessDenied">Access Denied</a></span> and server/virtual host level access control, accessibility is determined by the smallest scope that a client's IP address falls into.</p> <h4>Syntax</h4><p>Comma-delimited list of IPs/sub-networks.</p> <h4>Example</h4><div class="ls-example">Sub-networks can be written as <span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span>, or <span class="val">192.168.1.*</span>.</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessDenied"><h3>Access Denied<span class="ls-permlink"><a href="#accessDenied"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies which IPs or sub-networks are NOT allowed to access resources under this context. Together with <span class="tagl"><a href="#accessAllowed">Access Allowed</a></span> and server/virtual host-level access control, accessibility is determined by the smallest scope that a client's IP address falls into.</p> <h4>Syntax</h4><p>Comma-delimited list of IPs/sub-networks.</p> <h4>Example</h4><div class="ls-example">Sub-networks can be written as <span class="val">192.168.1.0/255.255.255.0</span>, <span class="val">192.168.1</span>, or <span class="val">192.168.1.*</span>.</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="extAuthorizer"><h3>Authorizer<span class="ls-permlink"><a href="#extAuthorizer"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies an external application that can be used to generate authorized/unauthorized decisions. Currently, only the FastCGI Authorizer is available. For more details about the FastCGI Authorizer role, please visit <a href=" https://fastcgi-archives.github.io/ " target="_blank" rel="noopener noreferrer"> https://fastcgi-archives.github.io/ </a>.</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="addDefaultCharset"><h3>Add Default Charset<span class="ls-permlink"><a href="#addDefaultCharset"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to add a character set tag to the "Content-Type" response header, when content type is either "text/html" or "text/plain" without any parameters. When set to <span class="val">Off</span>, this function is disabled. When set to <span class="val">On</span>, either the character set specified by <span class="tagl"><a href="#defaultCharsetCustomized">Customized Default Charset</a></span> or the default "iso-8859-1" will be added.</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="defaultCharsetCustomized"><h3>Customized Default Charset<span class="ls-permlink"><a href="#defaultCharsetCustomized"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies a character set to be used when <span class="tagl"><a href="#addDefaultCharset">Add Default Charset</a></span> is <span class="val">On</span>. This is optional. The default value is <span class="val">iso-8859-1</span>. This entry has no effect when <span class="tagl"><a href="#addDefaultCharset">Add Default Charset</a></span> is <span class="val">Off</span>.</p> <h4>Syntax</h4><p>Name of a character set.</p> <h4>Example</h4><div class="ls-example">utf-8</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableRewrite"><h3>Enable Rewrite<span class="ls-permlink"><a href="#enableRewrite"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to enable LiteSpeed's URL rewrite engine. This option can be customized at the virtual host or context level, and is inherited along the directory tree until it is explicitly overridden.</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="rewriteInherit"><h3>Rewrite Inherit<span class="ls-permlink"><a href="#rewriteInherit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to inherit rewrite rules from parent contexts. If rewrite is enabled and not inherited, rewrite base and rewrite rules defined in this context will be used.</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="rewriteBase"><h3>Rewrite Base<span class="ls-permlink"><a href="#rewriteBase"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the base URL for rewrite rules.</p> <h4>Syntax</h4><p>URL</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="rewriteRules"><h3>Rewrite Rules<span class="ls-permlink"><a href="#rewriteRules"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies a list of rewrite rules at the virtual host level.<br/><br/> Do NOT add any document root level rewrite rules here. If you have any document root level rewrite rules from .htaccess, you should instead create a static context with uri "/" and add the rewrite rules there.<br/><br/> A rewrite rule is comprised of one <span class="val">RewriteRule</span> directive and optionally preceded by multiple <span class="val">RewriteCond</span> directives. <ul> <li>Each directive should take only one line.</li> <li> <span class="val">RewriteCond</span> and <span class="val">RewriteRule</span> follow Apache's rewrite directive syntax. Just copy and paste rewrite directives from your Apache configuration files. </li> <li> There are minor differences between LiteSpeed and Apache mod_rewrite implementation: <ul> <li> <span class="val">%\{LA-U:variable\}</span> and <span class="val">%\{LA-F:variable\}</span> are ignored by the LiteSpeed rewrite engine </li> <li> Two new server variables are added in the LiteSpeed rewrite engine: <span class="val">%\{CURRENT_URI\}</span> represents the current URI being processed by the rewrite engine and <span class="val">%\{SCRIPT_NAME\}</span> has the same meaning as the corresponding CGI environment variable. </li> <li> The LiteSpeed rewrite engine will stop processing rewrite rules after encountering an <span class="val">[L]</span> flag to avoid looping while Apache mod_rewrite will stop processing rewrite rules for the current iteration only. This behavior is similar to that of the <span class="val">[END]</span> flag in Apache mod_rewrite. </li> </ul> </li> </ul><br/> The implementation of LiteSpeed's rewrite engine follows Apache's rewrite engine specifications. For more details about rewrite rules, please refer to <a href="https://httpd.apache.org/docs/current/mod/mod_rewrite.html" target="_blank" rel="noopener noreferrer"> Apache's mod_rewrite document </a> and <a href="https://httpd.apache.org/docs/current/rewrite/" target="_blank" rel="noopener noreferrer"> Apache's URL rewriting guide </a>.</p> <h4>Syntax</h4><p>string</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableIpGeo"><h3>Enable GeoLocation Lookup<span class="ls-permlink"><a href="#enableIpGeo"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p> Specifies whether to enable/disable IP Geolocation lookup. Can be set at server, virtual host, or context level. IP Geolocation is disabled by default when using value "Not Set".</p> <h4>Syntax</h4><p>Select from radio box</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="ServGeneral_Help.html#useIpInProxyHeader">Use Client IP in Header</a></span>, <span class="tagl"><a href="ServGeneral_Help.html#geoipDBFile">DB File Path</a></span>,</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="phpIniOverride"><h3>php.ini Override<span class="ls-permlink"><a href="#phpIniOverride"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Used to overwrite php.ini settings in the current context (Virtual Host level or Context level).<br/><br/> Supported directives are:<br/> php_value<br/> php_flag<br/> php_admin_value<br/> php_admin_flag<br/><br/> All other lines/directives will be ignored.</p> <h4>Syntax</h4><p>Override syntax is similar to Apache, a newline separated list of directives and their values with each directive being prepended by php_value, php_flag, php_admin_value, or php_admin_flag appropriately.</p> <h4>Example</h4><div class="ls-example">php_value include_path ".:/usr/local/lib/php"<br/> php_admin_flag engine on<br/> php_admin_value open_basedir "/home"</div></article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> �������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������ServGeneral_Help.html�������������������������������������������������������������������������������0000644�����������������00000107534�15027525531�0010636 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Server General</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Server General." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 9</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><span class="current"><a href="ServGeneral_Help.html">Server General</a></span></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev"> </div><div class="center"><a href="config.html">Configuration</a></div><div class="next"><a href="ServLog_Help.html">Server Log</a> »</div></div> <h1>Server General</h1><section class="ls-spacer-small-bottom">General settings for the whole server. When path information is required in a setting, it can be either absolute or relative to $SERVER_ROOT. $SERVER_ROOT is the location where LiteSpeed web server has been installed (your_home_dir/lsws or /opt/lsws, for example). The server executable is under $SERVER_ROOT/bin.</section> <h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header>Server Process</header><p> <a href="#serverName">Server Name</a> | <a href="#httpdWorkers">Number of Workers</a> | <a href="#runningAs">Running As</a> | <a href="#serverPriority">Priority</a> | <a href="#cpuAffinity">CPU Affinity</a> | <a href="#enableLVE">Cloud-Linux</a> | <a href="#inMemBufSize">Max I/O Buffer Size</a> | <a href="#swappingDir">Swapping Directory</a> | <a href="#autoFix503">Auto Fix 503 Error</a> | <a href="#enableh2c">Enable HTTP/2 Over Cleartext TCP</a> | <a href="#gracefulRestartTimeout">Graceful Restart Timeout (secs)</a> | <a href="#statDir">Statistics Output Directory</a> | <a href="#jsonReports">Output JSON reports</a></p></section> <section class="toc-row"><header>General Settings</header><p> <a href="#mime">MIME Settings</a> | <a href="#mimesuffix">Suffixes</a> | <a href="#mimetype">MIME Type</a> | <a href="#disableInitLogRotation">Disable Initial Log Rotation</a> | <a href="#showVersionNumber">Server Signature</a> | <a href="#enableIpGeo">Enable GeoLocation Lookup</a> | <a href="#useIpInProxyHeader">Use Client IP in Header</a> | <a href="#adminEmails">Administrator Email</a></p></section> <section class="toc-row"><header>Index Files</header><p> <a href="#indexFiles">Index Files</a> | <a href="#autoIndex">Auto Index</a> | <a href="#autoIndexURI">Auto Index URI</a></p></section> <section class="toc-row"><header>Expires Settings</header><p> <a href="#enableExpires">Enable Expires</a> | <a href="#expiresDefault">Expires Default</a> | <a href="#expiresByType">Expires By Type</a></p></section> <section class="toc-row"><header>Rewrite Control</header><p> <a href="#autoLoadHtaccess">Auto Load from .htaccess</a></p></section> <section class="toc-row"><header><a href="#fileUpload">File Upload</a></header><p> <a href="#uploadTmpDir">Temporary File Path</a> | <a href="#uploadTmpFilePermission">Temporary File Permissions</a> | <a href="#uploadPassByPath">Pass Upload Data by File Path</a></p></section> <section class="toc-row"><header><a href="#geolocationDB">MaxMind GeoIP DB</a></header><p> <a href="#geoipDBFile">DB File Path</a> | <a href="#geoipDBName">DB Name</a> | <a href="#maxMindDBEnv">Environment Variables</a></p></section> <section class="toc-row"><header>IP2Location DB</header><p> <a href="#ip2locDBFile">IP2Location DB File Path</a> | <a href="#ip2locDBCache">DB Cache Type</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="serverName"><h3>Server Name<span class="ls-permlink"><a href="#serverName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>A unique name for this server. If empty, server hostname will be used by default.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="httpdWorkers"><h3>Number of Workers<span class="ls-permlink"><a href="#httpdWorkers"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the number of httpd workers.</p> <h4>Syntax</h4><p>Integer value between 1 and 16.</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> Set an appropriate number to suit your needs. Adding more workers may not necessarily mean better performance.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="runningAs"><h3>Running As<span class="ls-permlink"><a href="#runningAs"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the user/group that the server process runs as. This is set using the parameters "--with-user" and "--with-group" when running the configure command before installation. To reset these values, you must rerun the configure command and reinstall.</p> <h4>Apply</h4><p>Reinstall required.</p> <h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> Server should not run as a privileged user such as "root". It is critical that the server is configured to run with a un-privileged user/group combination that does not have login/shell access. A user/group of <span class="val">nobody</span> is generally a good choice.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="serverPriority"><h3>Priority<span class="ls-permlink"><a href="#serverPriority"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies priority of the server processes. Value ranges from <span class="val">-20</span> to <span class="val">20</span>. A lower number means higher priority.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> Usually a higher priority leads to slightly higher web performance on a busy server. Do not set priority higher than that of database processes.</p> <h4>See Also</h4><p class="ls-text-small">External App <span class="tagl"><a href="ExtApp_Help.html#extAppPriority">Priority</a></span>, <span class="tagl"><a href="ServSecurity_Help.html#CGIPriority">CGI Priority</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="cpuAffinity"><h3>CPU Affinity<span class="ls-permlink"><a href="#cpuAffinity"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>CPU affinity binds a process to one or more CPUs (cores). It is beneficial for a process to always use the same CPU because then the process can make use of data left in CPU cache. If the process moves to a different CPU, there is no use of CPU cache and unnecessary overhead is required.<br/><br/> The CPU Affinity setting controls how many CPUs (cores) one server process will be associated with. The minimum value is <span class="val">0</span>, which will disable this feature. The maximum value is the number of cores the server has. Generally, <span class="val">1</span> is the best setting because it creates the strictest use of CPU affinity and thus makes the most use of CPU cache.<br/><br/> Default value: 0</p> <h4>Syntax</h4><p>Integer value from 0 to 64. (0 will disable this feature)</p> <h4>Apply</h4><p>Reinstall required.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableLVE"><h3>Cloud-Linux<span class="ls-permlink"><a href="#enableLVE"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to enable CloudLinux's Lightweight Virtual Environment (LVE) when it exists. You can use LiteSpeed with LVE to achieve better resource management. For more information, please check <a href="http://www.cloudlinux.com" target="_blank" rel="noopener noreferrer">http://www.cloudlinux.com</a>.</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="inMemBufSize"><h3>Max I/O Buffer Size<span class="ls-permlink"><a href="#inMemBufSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the maximum buffer size that is used to store a request body and its dynamically generated response. When this limit is reached, the server will start to create temporary swapping files under <span class="tagl"><a href="#swappingDir">Swapping Directory</a></span>.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> Set the buffer size large enough to accommodate all concurrent requests/replies to avoid memory to disk swapping. If there is frequent I/O activity to the swap directoy, by default /tmp/lshttpd/swap/, this buffer size is too low and LiteSpeed is swapping to disk.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#swappingDir">Swapping Directory</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="swappingDir"><h3>Swapping Directory<span class="ls-permlink"><a href="#swappingDir"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the directory where the swapping files should be placed. When the server is started in chroot mode, this directory is relative to the new root directory, otherwise it is relative to the real root directory.<br/><br/> The server uses its own virtual memory to reduce system memory usage. Virtual memory and disk swapping are used to store large request bodies and dynamically generated responses. The swapping directory should be placed on a disk with enough space.<br/><br/> Default value: /tmp/lshttpd/swap</p> <h4>Syntax</h4><p>Absolute path</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> Place the swapping directory on a separate disk or increase Max I/O Buffer Size to eliminate swapping.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#inMemBufSize">Max I/O Buffer Size</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="autoFix503"><h3>Auto Fix 503 Error<span class="ls-permlink"><a href="#autoFix503"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to try to fix the "503 Service Unavailable" error by restarting the server gracefully. A "503" error is usually caused by malfunctioning external applications and a web server restart can often fix the error temporarily. If enabled, the server will restart automatically whenever there are more than 30 "503" errors within a 30 seconds span.<br/><br/> Default value: <span class="val">No</span></p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableh2c"><h3>Enable HTTP/2 Over Cleartext TCP<span class="ls-permlink"><a href="#enableh2c"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to enable HTTP/2 over non-encrypted TCP connections. Default is disabled.</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="gracefulRestartTimeout"><h3>Graceful Restart Timeout (secs)<span class="ls-permlink"><a href="#gracefulRestartTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>During a graceful restart, even after the new server instance is up, the old instance will continue to handle existing requests. This timeout defines how long the previous instance shall wait before exit. Default value is 300 seconds. -1 means wait forever. 0 means no wait and abort immediately.</p> <h4>Syntax</h4><p>int</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="statDir"><h3>Statistics Output Directory<span class="ls-permlink"><a href="#statDir"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The directory where the Real-Time Stats report file will be written. The default directory is <b>/tmp/lshttpd/</b> .</p> <h4>Syntax</h4><p>Absolute path</p> <h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> During server operation, the .rtreport file will be written to every second. To avoid unnecessary disk writes, set this to a RAM Disk.<br/> The .rtreport file can be used with 3rd party monitoring software to track server health.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="jsonReports"><h3>Output JSON reports<span class="ls-permlink"><a href="#jsonReports"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Output additional JSON formatted report files, with the .json extension, to the /tmp/lshttpd directory.<br/><br/> Default value: <span class="val">No</span></p> <h4>Syntax</h4><p>Select from radio box</p> <h4>Example</h4><div class="ls-example">When set to <span class="val">Yes</span>, .status.json and .rtreport.json, .rtreport.2.json, etc report files will be created in addition to the usual .status and .rtreport, .rtreport.2, etc report files.</div><h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> This is useful for application developers who may want to integrate LiteSpeed status and real-time reports into their applications using standard JSON processing tools built-in to most programming languages.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="mime"><h3>MIME Settings<span class="ls-permlink"><a href="#mime"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the file that contains the MIME settings for this server. It is always relative to the real root when an absolute path is given in chroot mode. Click on the filename to view/edit the detailed MIME entries.</p> <h4>Syntax</h4><p>Filename which can be an absolute path or a relative path to $SERVER_ROOT.</p> <h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> Click the filename to edit the MIME settings.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="mimesuffix"><h3>Suffixes<span class="ls-permlink"><a href="#mimesuffix"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>You can list multiple suffixes for the same MIME type, using comma to separate.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="mimetype"><h3>MIME Type<span class="ls-permlink"><a href="#mimetype"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>A MIME type consists of a type and subtype in the format of "type/subtype".</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="disableInitLogRotation"><h3>Disable Initial Log Rotation<span class="ls-permlink"><a href="#disableInitLogRotation"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to enable/disable rotation of server error log file at startup. Initial log rotation is enabled by default when using value "Not Set".</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="showVersionNumber"><h3>Server Signature<span class="ls-permlink"><a href="#showVersionNumber"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to show the server signature and version number in the response header's "Server" value. There are three options: when set to <span class="val">Hide Version</span>, only <span class="val">LiteSpeed</span> is shown. When set to <span class="val">Show Version</span>, LiteSpeed and the version number are shown. When set to <span class="val">Hide Full Header</span>, the entire Server header will not be shown in the response header.</p> <h4>Syntax</h4><p>Select from drop down list</p> <h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> Set to <span class="val">Hide Version</span> if you do not wish to expose the server version number.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableIpGeo"><h3>Enable GeoLocation Lookup<span class="ls-permlink"><a href="#enableIpGeo"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p> Specifies whether to enable/disable IP Geolocation lookup. Can be set at server, virtual host, or context level. IP Geolocation is disabled by default when using value "Not Set".</p> <h4>Syntax</h4><p>Select from radio box</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="ServGeneral_Help.html#useIpInProxyHeader">Use Client IP in Header</a></span>, <span class="tagl"><a href="ServGeneral_Help.html#geoipDBFile">DB File Path</a></span>,</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="useIpInProxyHeader"><h3>Use Client IP in Header<span class="ls-permlink"><a href="#useIpInProxyHeader"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to use the first most valid IP IP address listed in the "X-Forwarded-For" HTTP request header for all IP address-related features, including connection/bandwidth throttling, access control, and IP geolocation.<br/><br/> This feature is useful if your web server is behind a load balancer or a proxy server. If you select <span class="val">Trusted IP Only</span>, then X-Forwarded-For IP will be used only when the request is coming from trusted IPs defined in the server-level <span class="tagl"><a href="ServSecurity_Help.html#accessControl_allow">Allowed List</a></span>.<br/><br/> <span class="val">Keep Header from Trusted IP</span> is the same as <span class="val">Trusted IP Only</span>, but the X-Forwarded-For header used for the backend will not be modified to include the connecting peer address.<br/><br/> <span class="val">Use Last IP (for AWS ELB)</span> will use the last IP address in the "X-Forwarded-For" list. Select this option if you are using AWS Elastic Load Balancer or expect the real IP to appended to the end of the "X-Forwarded-For" list.</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="adminEmails"><h3>Administrator Email<span class="ls-permlink"><a href="#adminEmails"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the server administrator's email address(es). If specified, administrators will be notified by email of important events (for example, when the LiteSpeed service is restarted automatically due to crash detection or when license is expiring).</p> <h4>Syntax</h4><p>Comma delimited list of email address.</p> <h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> Email alert feature will only work if the server has an active MX server such as postfix, exim, or sendmail.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="indexFiles"><h3>Index Files<span class="ls-permlink"><a href="#indexFiles"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies names of index files that will be searched sequentially when a URL is mapped to a directory. You can customize it at the server, virtual host, and context level.</p> <h4>Syntax</h4><p>Comma-delimited list of index filenames.</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> Only set index files that you need.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="autoIndex"><h3>Auto Index<span class="ls-permlink"><a href="#autoIndex"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to generate a directory index on the fly when index files listed in <span class="tagl"><a href="#indexFiles">Index Files</a></span> are not available in a directory. This option is customizable at the virtual host and context level, and is inherited along the directory tree until it is explicitly overridden. You can customize the generated index page. Please check online wiki How-tos.</p> <h4>Syntax</h4><p>Select from radio box</p> <h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> It is recommended to turn off Auto Index wherever possible to prevent revealing confidential data.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#indexFiles">Index Files</a></span>, <span class="tagl"><a href="#autoIndexURI">Auto Index URI</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="autoIndexURI"><h3>Auto Index URI<span class="ls-permlink"><a href="#autoIndexURI"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the URI that will be used to generate the index page when index files listed in <span class="tagl"><a href="#indexFiles">Index Files</a></span> are not available in a directory. LiteSpeed web server uses an external script to generate the index page providing the maximum customization flexibility. The default script produces an index page with same look as Apache's. To customize the generated index page, please read online wiki How-tos. The directory to be indexed is passed to the script via an environment variable "LS_AI_PATH".</p> <h4>Syntax</h4><p>URI</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#indexFiles">Index Files</a></span>, <span class="tagl"><a href="#autoIndex">Auto Index</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableExpires"><h3>Enable Expires<span class="ls-permlink"><a href="#enableExpires"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to generate an Expires header for static files. If enabled, an Expires header will be generated based on <span class="tagl"><a href="#expiresDefault">Expires Default</a></span> and <span class="tagl"><a href="#expiresByType">Expires By Type</a></span>.<br/><br/> This can be set at server, virtual host and context level. Lower level settings will override higher level ones, i.e. context settings will override virtual host settings and virtual host settings will override server settings.</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expiresDefault"><h3>Expires Default<span class="ls-permlink"><a href="#expiresDefault"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies default settings for Expires header generation. This setting takes effect when <span class="tagl"><a href="#enableExpires">Enable Expires</a></span> is set to "Yes". It can be overridden by <span class="tagl"><a href="#expiresByType">Expires By Type</a></span>. Do not set this default at the server or virtual host level unless you have to, since it will generate Expires headers for all pages. Most of time this should be set at the context level for certain directories that do not change often. If there is no default setting, no Expires header will be generated for types not specified in <span class="tagl"><a href="#expiresByType">Expires By Type</a></span>.</p> <h4>Syntax</h4><p>A|Mseconds<br/> The file will expire after base time(A|M) plus specified seconds. Base time "A" sets the value to the client's access time and "M" to the file's last modified time.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="expiresByType"><h3>Expires By Type<span class="ls-permlink"><a href="#expiresByType"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies Expires header settings for individual MIME types.</p> <h4>Syntax</h4><p>Comma delimited list of "MIME-type=A|Mseconds". The file will expire after base time (A|M) plus specified seconds.<br/><br/> Base time "A" sets the value to the client's access time and "M" to the file's last modified time. MIME-type accepts wildcard "*", like image/*.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="autoLoadHtaccess"><h3>Auto Load from .htaccess<span class="ls-permlink"><a href="#autoLoadHtaccess"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Autoload rewrite rules contained in a directory's .htaccess file when first accessing that directory if an HttpContext for that directory using the <b>rewritefile</b> directive does not already exist. Once initially loaded, a graceful restart must be performed for any further changes to that .htaccess file to take effect.<br/><br/> Virtual Host-level setting overrides Server-level setting. Default values:<br/><br/> <b>Server-level:</b> No<br/><br/> <b>VH-Level:</b> Inherit Server-level setting</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="fileUpload"><h3>File Upload<span class="ls-permlink"><a href="#fileUpload"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Provides additional security functionality when uploading files by using a Request Body Parser to parse files to a server local directory where they can be easily scanned for malicious intent by third party modules. Request Body Parser is used when <span class="tagl"><a href="#uploadPassByPath">Pass Upload Data by File Path</a></span> is enabled or a module calls LSIAPI’s set_parse_req_body in the LSI_HKPT_HTTP_BEGIN level. API examples provided in source package.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#HTTP_BEGIN">Hook::HTTP_BEGIN Priority</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="uploadTmpDir"><h3>Temporary File Path<span class="ls-permlink"><a href="#uploadTmpDir"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Temporary directory where files being uploaded to server will be stored while request body parser is working. Default value is <span class="val">/tmp/lshttpd/</span>.</p> <h4>Syntax</h4><p>Absolute path or path starting with $SERVER_ROOT (for Server and VHost levels) or $VH_ROOT (for VHost levels).</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="uploadTmpFilePermission"><h3>Temporary File Permissions<span class="ls-permlink"><a href="#uploadTmpFilePermission"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Determines file permissions used for files stored in temporary directory. Server level setting is global, can be overridden at VHost level.</p> <h4>Syntax</h4><p>3 digits octet number. Default value is 666.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="uploadPassByPath"><h3>Pass Upload Data by File Path<span class="ls-permlink"><a href="#uploadPassByPath"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specify whether or not to pass upload file data by path. If enabled, file path along with some other information is sent to backend handler instead of file itself when uploading. This saves on CPU resources and file transfer time but requires some updates to backend to implement. If disabled, file content will be transferred to backend handler, request body is still parsed to files.</p> <h4>Syntax</h4><p>Select from radio box</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> Enable this to speed up file upload processing if backward compatibility is not an issue.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="geolocationDB"><h3>MaxMind GeoIP DB<span class="ls-permlink"><a href="#geolocationDB"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Multiple MaxMind geolocation databases can be specified here. MaxMind has the following type of DBs: Country, Region, City, Organization, ISP and Netspeed. If multiple databases of types "Country", "Region", and "City" are configured, the last configuration will be effective.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="geoipDBFile"><h3>DB File Path<span class="ls-permlink"><a href="#geoipDBFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the path to MaxMind GeoIP database.</p> <h4>Syntax</h4><p>Absolute path</p> <h4>Example</h4><div class="ls-example">/usr/local/share/GeoIP/GeoLite2-Country.mmdb</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="geoipDBName"><h3>DB Name<span class="ls-permlink"><a href="#geoipDBName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>MaxMind GeoIP database name. As of GeoIP2, this setting is required.<br/><br/> When upgrading from a GeoIP to a GeoIP2, using values "COUNTRY_DB", "CITY_DB", or "ASN_DB" for this setting will automatically populate PHP's $_SERVER variable with some GeoIP compatible entries (listed by DB Name value below) to help ease this transition.<br/><br/> <b>CITY_DB:</b> 'GEOIP_COUNTRY_CODE', 'GEOIP_COUNTRY_NAME', 'GEOIP_CONTINENT_CODE', 'GEOIP_COUNTRY_CONTINENT', 'GEOIP_DMA_CODE', 'GEOIP_METRO_CODE', 'GEOIP_LATITUDE', 'GEOIP_LONGITUDE', 'GEOIP_POSTAL_CODE', and 'GEOIP_CITY'.<br/> <b>COUNTRY_DB:</b> 'GEOIP_COUNTRY_CODE', 'GEOIP_COUNTRY_NAME', 'GEOIP_CONTINENT_CODE', and 'GEOIP_COUNTRY_CONTINENT'.<br/> <b>ASN_DB:</b> 'GEOIP_ORGANIZATION' and 'GEOIP_ISP'.</p> <h4>Example</h4><div class="ls-example">COUNTRY_DB</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="maxMindDBEnv"><h3>Environment Variables<span class="ls-permlink"><a href="#maxMindDBEnv"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Assign the results of database lookups to environment variables.</p> <h4>Syntax</h4><p>Variable_Name mapped_DB_data<br/><br/> One entry per line. Path to data can use map keys or 0-based array indexes, both being separated by /.</p> <h4>Example</h4><div class="ls-example">COUNTRY_CODE COUNTRY_DB/country/iso_code<br/> REGION_CODE CITY_DB/subdivisions/0/iso_code</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="ip2locDBFile"><h3>IP2Location DB File Path<span class="ls-permlink"><a href="#ip2locDBFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The location of a valid database file.</p> <h4>Syntax</h4><p>Filename which can be an absolute path or a relative path to $SERVER_ROOT.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="ip2locDBCache"><h3>DB Cache Type<span class="ls-permlink"><a href="#ip2locDBCache"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The caching method used. The default value is <span class="val">Memory</span>.</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ��������������������������������������������������������������������������������������������������������������������������������������������������������������������VHSecurity_Help.html��������������������������������������������������������������������������������0000644�����������������00000060760�15027525531�0010465 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Virtual Host Security</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Virtual Host Security." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 9</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><a href="VirtualHosts_Help.html">Virtual Host Basic</a></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><span class="current"><a href="VHSecurity_Help.html">Virtual Host Security</a></span></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="VHGeneral_Help.html">Virtual Host General</a></div><div class="center"><a href="config.html">Configuration</a></div><div class="next"><a href="VHSSL_Help.html">Virtual Host SSL</a> »</div></div> <h1>Virtual Host Security</h1><h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header><a href="#VHlsrecaptcha">reCAPTCHA Protection</a></header><p> <a href="#enableRecaptcha">Enable reCAPTCHA</a> | <a href="#recaptchaSiteKey">Site Key</a> | <a href="#recaptchaSecretKey">Secret Key</a> | <a href="#recaptchaType">reCAPTCHA Type</a> | <a href="#recaptchaMaxTries">Max Tries</a> | <a href="#recaptchaVhReqLimit">Concurrent Request Limit</a></p></section> <section class="toc-row"><header>Containers</header><p> <a href="#bubbleWrap">Bubblewrap Container</a> | <a href="#namespace">Namespace Container</a> | <a href="#namespaceConfVhAdd">Additional Namespace Template File</a></p></section> <section class="toc-row"><header><a href="#accessControl">Access Control</a></header><p> <a href="#accessControl_allow">Allowed List</a> | <a href="#accessControl_deny">Denied List</a></p></section> <section class="toc-row"><header><a href="#realms">Authorization Realms</a></header><p> <a href="#realmName">Realm Name</a> | <a href="#userDBLocation">User DB Location</a> | <a href="#userDBMaxCacheSize">User DB Max Cache Size</a> | <a href="#userDBCacheTimeout">User DB Cache Timeout (secs)</a> | <a href="#GroupDBLocation">Group DB Location</a> | <a href="#groupDBMaxCacheSize">Group DB Max Cache Size</a> | <a href="#groupDBCacheTimeout">Group DB Cache Timeout (secs)</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="VHlsrecaptcha"><h3>reCAPTCHA Protection<span class="ls-permlink"><a href="#VHlsrecaptcha"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>reCAPTCHA Protection is a service provided as a way to mitigate heavy server load. reCAPTCHA Protection will activate after one of the below situations is hit. Once active, all requests by NON TRUSTED(as configured) clients will be redirected to a reCAPTCHA validation page. After validation, the client will be redirected to their desired page.<br/><br/> The following situations will activate reCAPTCHA Protection:<br/> 1. The server or vhost concurrent requests count passes the configured connection limit.<br/> 2. Anti-DDoS is enabled and a client is hitting a url in a suspicious manner. The client will redirect to reCAPTCHA first instead of getting denied when triggered.<br/> 3. A new rewrite rule environment is provided to activate reCAPTCHA via RewriteRules. 'verifycaptcha' can be set to redirect clients to reCAPTCHA. A special value ': deny' can be set to deny the client if it failed too many times. For example, [E=verifycaptcha] will always redirect to reCAPTCHA until verified. [E=verifycaptcha: deny] will redirect to reCAPTCHA until Max Tries is hit, after which the client will be denied.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableRecaptcha"><h3>Enable reCAPTCHA<span class="ls-permlink"><a href="#enableRecaptcha"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Enable the reCAPTCHA Protection feature at the current level. This setting must be set to <span class="val">Yes</span> at the Server level before the reCAPTCHA Protection feature can be used.<br/><br/> Default values:<br/> <b>Server-level:</b> <span class="val">Yes</span><br/> <b>VH-Level:</b> Inherit Server level setting</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="recaptchaSiteKey"><h3>Site Key<span class="ls-permlink"><a href="#recaptchaSiteKey"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The site key is the public key provided by Google via its reCAPTCHA service. A default Site Key will be used if not set.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="recaptchaSecretKey"><h3>Secret Key<span class="ls-permlink"><a href="#recaptchaSecretKey"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The secret key is the private key provided by Google via its reCAPTCHA service. A default Secret Key will be used if not set.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="recaptchaType"><h3>reCAPTCHA Type<span class="ls-permlink"><a href="#recaptchaType"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specify the reCAPTCHA type to use with the key pairs.<br/> If a key pair has not been provided and this setting is set to <span class="val">Not Set</span>, a default key pair of type <span class="val">Invisible</span> will be used.<br/><br/> <span class="val">Checkbox</span> will display a checkbox reCAPTCHA for the visitor to validate.<br/><br/> <span class="val">Invisible</span> will attempt to validate the reCAPTCHA automatically and if successful, will redirect to the desired page.<br/><br/> <span class="val">hCaptcha</span> can be used to support reCAPTCHA provider <a href="https://www.hcaptcha.com" target="_blank" rel="noopener noreferrer">hCaptcha</a>.<br/><br/> Default value is <span class="val">Invisible</span>.</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="recaptchaMaxTries"><h3>Max Tries<span class="ls-permlink"><a href="#recaptchaMaxTries"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Max Tries specifies the maximum number of reCAPTCHA attempts permitted before denying the visitor.<br/><br/> Default value is <span class="val">3</span>.</p> <h4>Syntax</h4><p>Integer number</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="recaptchaVhReqLimit"><h3>Concurrent Request Limit<span class="ls-permlink"><a href="#recaptchaVhReqLimit"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The number of concurrent requests needed to activate reCAPTCHA. reCAPTCHA will be used until concurrent requests drop below this number.<br/><br/> Default value is <span class="val">15000</span>.</p> <h4>Syntax</h4><p>Integer number</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="bubbleWrap"><h3>Bubblewrap Container<span class="ls-permlink"><a href="#bubbleWrap"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Set to <span class="val">Enabled</span> if you wish to start CGI processes (including PHP programs) in a bubblewrap sandbox. See <a href=" https://wiki.archlinux.org/title/Bubblewrap " target="_blank" rel="noopener noreferrer"> https://wiki.archlinux.org/title/Bubblewrap </a> for details on using bubblewrap. Bubblewrap must be installed on your system prior to using this setting.<br/><br/> This setting cannot be turned on at the Virtual Host level if set to "Disabled" at the Server level.<br/><br/> Default values:<br/> <b>Server level:</b> Disabled<br/> <b>VH level:</b> Inherit Server level setting</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="namespace"><h3>Namespace Container<span class="ls-permlink"><a href="#namespace"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Set to <span class="val">Enabled</span> if you wish to start CGI processes (including PHP programs) in a namespace container sandbox. Only used when <span class="tagl"><a href="ServSecurity_Help.html#bubbleWrap">Bubblewrap Container</a></span> is set to <span class="val">Disabled</span>.<br/><br/> When not <span class="val">Disabled</span> at the Server level, this settings value can be overridden at the Virtual Host level.<br/><br/> Default values:<br/> <b>Server level:</b> <span class="val">Disabled</span><br/> <b>Virtual Host Level:</b> Inherit Server level setting</p> <h4>Syntax</h4><p>Select from drop down list</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="namespaceConfVhAdd"><h3>Additional Namespace Template File<span class="ls-permlink"><a href="#namespaceConfVhAdd"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Path to an existing configuration file containing a list of directories to be mounted along with the methods used to mount them. If <span class="tagl"><a href="ServSecurity_Help.html#namespaceConf">Namespace Template File</a></span> is also set at the Server level, both files will be used.</p> <h4>Syntax</h4><p>A path which can be absolute, relative to $SERVER_ROOT, or relative to $VH_ROOT.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessControl"><h3>Access Control<span class="ls-permlink"><a href="#accessControl"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies what sub networks and/or IP addresses can access the server. At the server level, this setting will affect all virtual hosts. You can also set up access control unique to each virtual host at the virtual host level. Virtual host level settings will NOT override server level settings.<br/><br/> Blocking/Allowing an IP is determined by the combination of the allowed list and the denied list. If you want to block only certain IPs or sub-networks, put <span class="val">*</span> or <span class="val">ALL</span> in the <span class="tagl"><a href="#accessControl_allow">Allowed List</a></span> and list the blocked IPs or sub-networks in the <span class="tagl"><a href="#accessControl_deny">Denied List</a></span>. If you want to allow only certain IPs or sub-networks, put <span class="val">*</span> or <span class="val">ALL</span> in the <span class="tagl"><a href="#accessControl_deny">Denied List</a></span> and list the allowed IPs or sub-networks in the <span class="tagl"><a href="#accessControl_allow">Allowed List</a></span>. The setting of the smallest scope that fits for an IP will be used to determine access.<br/><br/> <b>Server Level:</b> Trusted IPs or sub-networks must be specified in the <span class="tagl"><a href="#accessControl_allow">Allowed List</a></span> by adding a trailing "T". Trusted IPs or sub-networks are not affected by connection/throttling limits. Only server level access control can set up trusted IPs/sub-networks.</p> <h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> Use this at the server level for general restrictions that apply to all virtual hosts.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessControl_allow"><h3>Allowed List<span class="ls-permlink"><a href="#accessControl_allow"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the list of IPs or sub-networks allowed. <span class="val">*</span> or <span class="val">ALL</span> are accepted.</p> <h4>Syntax</h4><p>Comma delimited list of IP addresses or sub-networks. A trailing "T" can be used to indicate a trusted IP or sub-network, such as <span class="val">192.168.1.*T</span>.</p> <h4>Example</h4><div class="ls-example"><b>Sub-networks:</b> 192.168.1.0/255.255.255.0, 192.168.1.0/24, 192.168.1, or 192.168.1.*<br/> <b>IPv6 addresses:</b> ::1 or [::1]<br/> <b>IPv6 subnets:</b> 3ffe:302:11:2:20f:1fff:fe29:717c/64 or [3ffe:302:11:2:20f:1fff:fe29:717c]/64</div><h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> Trusted IPs or sub-networks set at the server level access control will be excluded from connection/throttling limits.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="accessControl_deny"><h3>Denied List<span class="ls-permlink"><a href="#accessControl_deny"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the list of IPs or sub-networks disallowed.</p> <h4>Syntax</h4><p>Comma delimited list of IP addresses or sub-networks. <span class="val">*</span> or <span class="val">ALL</span> are accepted.</p> <h4>Example</h4><div class="ls-example"><b>Sub-networks:</b> 192.168.1.0/255.255.255.0, 192.168.1.0/24, 192.168.1, or 192.168.1.*<br/> <b>IPv6 addresses:</b> ::1 or [::1]<br/> <b>IPv6 subnets:</b> 3ffe:302:11:2:20f:1fff:fe29:717c/64 or [3ffe:302:11:2:20f:1fff:fe29:717c]/64</div></article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="realms"><h3>Authorization Realms<span class="ls-permlink"><a href="#realms"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Lists all authorization realms for this virtual host. Authorization realms are used to block unauthorized users from accessing protected web pages. A realm is a user directory containing usernames and passwords with optional group classifications. Authorization is performed at context level. Since different contexts can share the same realm (user database), so realms are defined separately from the contexts that use them. You can refer to a realm by these names in context configuration.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="realmName"><h3>Realm Name<span class="ls-permlink"><a href="#realmName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies a unique name for the authorization realm.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="userDBLocation"><h3>User DB Location<span class="ls-permlink"><a href="#userDBLocation"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the location of the user database. It is recommended that the database be stored under the $SERVER_ROOT/conf/vhosts/$VH_NAME/ directory.<br/><br/> For DB type <span class="val">Password File</span>, it is the path to the flat file containing user/password definitions. You can edit this file through the WebAdmin console by clicking on the filename.<br/><br/> Each line of the user file contains a username followed by a colon, followed by a crypt() encrypted password, optionally followed by a colon and group names that user belongs to. Group names are delimitated by commas. If group information is specified in the user database, then the group database will not be checked.<br/><br/> Example:<blockquote><code>john:HZ.U8kgjnMOHo:admin,user</code></blockquote></p> <h4>Syntax</h4><p>Path to user DB file.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#GroupDBLocation">Group DB Location</a></span>, <span class="tagl"><a href="#userDB_attrPasswd">Password Attribute</a></span>, <span class="tagl"><a href="#userDB_attrMemberOf">Member-of Attribute</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="userDBMaxCacheSize"><h3>User DB Max Cache Size<span class="ls-permlink"><a href="#userDBMaxCacheSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the maximum cache size of the user database. Recently accessed user authentication data will be cached in memory to provide maximum performance.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> As a larger cache will consume more memory, a higher value may or may not provide better performance. Set it to an appropriate size according to your user database size and site usage.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="userDBCacheTimeout"><h3>User DB Cache Timeout (secs)<span class="ls-permlink"><a href="#userDBCacheTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies how often the backend user database will be checked for changes. Every entry in the cache has a timestamp. When cached data is older than the specified timeout, the backend database will be checked for changes. If there is no change, the timestamp will be reset to the current time, otherwise the new data will be loaded. Sevrer reload and graceful restart will clear the cache immediately.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> If the backend database does not change very often, set a longer timeout for better performance.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="GroupDBLocation"><h3>Group DB Location<span class="ls-permlink"><a href="#GroupDBLocation"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the location of the group database. It is recommended that the database be stored under the $SERVER_ROOT/conf/vhosts/$VH_NAME/ directory.<br/><br/> Group information can be set either in the user database or in this standalone group DB. For user authentication, the user DB will be checked first. If the user DB also contains group information, then the group DB will not be checked.<br/><br/> For the DB type <span class="val">Password File</span>, the group DB location should be the path to the flat file containing group definitions. You can edit this file through the WebAdmin console by clicking on the filename.<br/><br/> Each line of a group file should contain a groupname followed by a colon, followed by space delimited group of usernames. Example:<br/> <blockquote><code>testgroup: user1 user2 user3</code></blockquote></p> <h4>Syntax</h4><p>Filename which can be an absolute path or a relative path to $SERVER_ROOT, $VH_ROOT.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#userDBLocation">User DB Location</a></span>, Context <span class="tagl"><a href="Context_Help.html#required">Require (Authorized Users/Groups)</a></span>, <span class="tagl"><a href="#groupDB_attrGroupMember">Group Member Attribute</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="groupDBMaxCacheSize"><h3>Group DB Max Cache Size<span class="ls-permlink"><a href="#groupDBMaxCacheSize"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the maximum cache size of the group database.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> As a larger cache will consume more memory, a higher value may or may not provide better performance. Set it to an appropriate size according to your user database size and site usage.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#userDBMaxCacheSize">User DB Max Cache Size</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="groupDBCacheTimeout"><h3>Group DB Cache Timeout (secs)<span class="ls-permlink"><a href="#groupDBCacheTimeout"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies how often the backend group database will be checked for changes. For more detail please refer to <span class="tagl"><a href="#userDBCacheTimeout">User DB Cache Timeout (secs)</a></span>.</p> <h4>Syntax</h4><p>Integer number</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#userDBCacheTimeout">User DB Cache Timeout (secs)</a></span></p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ����������������VirtualHosts_Help.html������������������������������������������������������������������������������0000644�����������������00000045032�15027525531�0011062 0����������������������������������������������������������������������������������������������������ustar�00�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������<!DOCTYPE html> <head> <meta charset="utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" /> <title>OpenLiteSpeed Users' Manual - Virtual Hosts Basic</title> <meta name="description" content="OpenLiteSpeed Users' Manual - Virtual Hosts Basic." /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="robots" content="noindex"> <link rel="shortcut icon" href="img/favicon.ico" /> <link rel="stylesheet" type="text/css" href="css/hdoc.css"> </head> <body> <div class="pagewrapper clearfix"><aside class="sidetree ls-col-1-5"> <figure> <img src="img/ols_logo.svg" alt="openlitespeed logo" width="150px"/> </figure> <h2 class="ls-text-thin"> OpenLiteSpeed Web Server <a href="index.html"> Users' Manual</a> </h2> <h3 class="ls-text-muted">Version 1.8 — Rev. 9</h3> <hr/> <div> <ul> <li><a href="license.html">License</a></li> <li><a href="intro.html">Introduction</a></li> <li><a href="install.html">Installation</a></li> <li> <a href="admin.html">Administration</a> <ul class="level2"> <li><a href="ServerStat_Help.html">Service Manager</a></li> <li><a href="Real_Time_Stats_Help.html">Real-Time Stats</a></li> </ul> </li> <li><a href="security.html">Security</a></li> <li> <a href="config.html">Configuration</a> <ul class="level2"> <li><a href="ServGeneral_Help.html">Server General</a></li> <li><a href="ServLog_Help.html">Server Log</a></li> <li><a href="ServTuning_Help.html">Server Tuning</a></li> <li><a href="ServSecurity_Help.html">Server Security</a></li> <li><a href="ExtApp_Help.html">External Apps</a></li> <ul class="level3"> <li><a href="External_FCGI.html">Fast CGI App</a></li> <li><a href="External_FCGI_Auth.html">Fast CGI Authorizer</a></li> <li><a href="External_LSAPI.html">LSAPI App</a></li> <li><a href="External_Servlet.html">Servlet Engine</a></li> <li><a href="External_WS.html">Web Server</a></li> <li><a href="External_PL.html">Piped logger</a></li> <li><a href="External_LB.html">Load Balancer</a></li> </ul> <li><a href="ScriptHandler_Help.html">Script Handler</a></li> <li><a href="App_Server_Help.html">App Server Settings</a></li> <li><a href="Module_Help.html">Module Configuration</a></li> <li><a href="Listeners_General_Help.html">Listener General</a></li> <li><a href="Listeners_SSL_Help.html">Listener SSL</a></li> <li><a href="Templates_Help.html">Virtual Host Templates</a></li> <li><span class="current"><a href="VirtualHosts_Help.html">Virtual Host Basic</a></span></li> <li><a href="VHGeneral_Help.html">Virtual Host General</a></li> <li><a href="VHSecurity_Help.html">Virtual Host Security</a></li> <li><a href="VHSSL_Help.html">Virtual Host SSL</a></li> <li><a href="Rewrite_Help.html">Rewrite</a></li> <li><a href="Context_Help.html">Context</a></li> <ul class="level3"> <li><a href="Static_Context.html">Static Context</a></li> <li> <a href="Java_Web_App_Context.html">Java Web App Context</a> </li> <li><a href="Servlet_Context.html">Servlet Context</a></li> <li><a href="FCGI_Context.html">Fast CGI Context</a></li> <li><a href="LSAPI_Context.html">LSAPI Context</a></li> <li><a href="Proxy_Context.html">Proxy Context</a></li> <li><a href="CGI_Context.html">CGI Context</a></li> <li><a href="LB_Context.html">Load Balancer Context</a></li> <li><a href="Redirect_Context.html">Redirect Context</a></li> <li><a href="App_Server_Context.html">App Server Context</a></li> <li><a href="Module_Context.html">Module Handler Context</a></li> </ul> <li><a href="VHWebSocket_Help.html">Web Socket Proxy</a></li> </ul> </li> <li><a href="webconsole.html">Web Console</a> <ul class="level2"> <li><a href="AdminGeneral_Help.html">Admin Console General</a></li> <li><a href="AdminSecurity_Help.html">Admin Console Security</a></li> <li> <a href="AdminListeners_General_Help.html"> Admin Listener General </a> </li> <li> <a href="AdminListeners_SSL_Help.html">Admin Listener SSL</a> </li> </ul> </li> </ul> </div> </aside> <article class="contentwrapper ls-col-3-5 clearfix"><div class="nav-bar ls-spacer-micro-top"><div class="prev">« <a href="Templates_Help.html">Virtual Host Templates</a></div><div class="center"><a href="config.html">Configuration</a></div><div class="next"><a href="VHGeneral_Help.html">Virtual Host General</a> »</div></div> <h1>Virtual Hosts Basic</h1><section class="ls-spacer-small-bottom">This page lists all defined virtual hosts. From here you can add/delete a virtual host or make changes to an existing one. Before you add a virtual host, make sure the virtual host root directory exists.</section> <h2 id="top">Table of Contents</h2><section class="toc"><section class="toc-row"><header>Base</header><p> <a href="#vhName">Virtual Host Name</a> | <a href="#vhRoot">Virtual Host Root</a> | <a href="#configFile">Config File</a></p></section> <section class="toc-row"><header>Connection</header><p> <a href="#vhMaxKeepAliveReq">Max Keep-Alive Requests</a></p></section> <section class="toc-row"><header>Security</header><p> <a href="#allowSymbolLink">Follow Symbolic Link</a> | <a href="#enableScript">Enable Script</a> | <a href="#restrained">Restrained</a> | <a href="#setUidMode">External App Set UID Mode</a> | <a href="#suexecUser">suEXEC User</a> | <a href="#suexecGroup">suEXEC Group</a></p></section> <section class="toc-row"><header>Virtual Host</header><p> <a href="#staticReqPerSec">Static Requests/Second</a> | <a href="#dynReqPerSec">Dynamic Requests/Second</a> | <a href="#outBandwidth">Outbound Bandwidth (bytes/sec)</a> | <a href="#inBandwidth">Inbound Bandwidth (bytes/sec)</a></p></section> </section> <section><div class="helpitem"><article class="ls-helpitem"><div><header id="vhName"><h3>Virtual Host Name<span class="ls-permlink"><a href="#vhName"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>A unique name for a virtual host. It is recommended to use the virtual host's domain name as the Virtual Host Name. Virtual Host Name can be referred to using the variable $VH_NAME.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vhRoot"><h3>Virtual Host Root<span class="ls-permlink"><a href="#vhRoot"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the root directory of the virtual host. Note: This is <b>NOT</b> the document root. It is recommended to place all files related to the virtual host (like log files, html files, CGI scripts, etc.) under this directory. Virtual Host Root can be referred to using the variable $VH_ROOT.</p> <h4>Syntax</h4><p>An absolute path or a relative path to $SERVER_ROOT.</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> Place different virtual hosts on different hard drives.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="configFile"><h3>Config File<span class="ls-permlink"><a href="#configFile"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The configuration filename and directory for this virtual host. The configuration file must be under the $SERVER_ROOT/conf/vhosts/ directory.</p> <h4>Syntax</h4><p>Filename which can be an absolute path or a relative path to $SERVER_ROOT.</p> <h4>Tips</h4><p><span title="Information" class="ls-icon-info"></span> $SERVER_ROOT/conf/vhosts/$VH_NAME/vhconf.conf is recommended</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="vhMaxKeepAliveReq"><h3>Max Keep-Alive Requests<span class="ls-permlink"><a href="#vhMaxKeepAliveReq"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the maximum requests that can be served through a keep-alive (persistent) connection. Connections will be closed once this limit is reached. You can specify a different limit for each virtual hosts. This number cannot exceed the server-level <span class="tagl"><a href="ServTuning_Help.html#maxKeepAliveReq">Max Keep-Alive Requests</a></span> limit.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> Set to a reasonably high value. A value of "1" or less will disable keep-alive connections.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="ServTuning_Help.html#maxKeepAliveReq">Max Keep-Alive Requests</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="allowSymbolLink"><h3>Follow Symbolic Link<span class="ls-permlink"><a href="#allowSymbolLink"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether to follow symbolic links in this virtual host. <span class="val">IF OWNER MATCH</span> option will follow a symbolic link only if it has the same ownership. This setting overrides the default server-level setting.</p> <h4>Syntax</h4><p>Select from drop down list</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span><span title="Security" class="ls-icon-security"></span> For better security, disable this feature. For better performance, enable it.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="enableScript"><h3>Enable Script<span class="ls-permlink"><a href="#enableScript"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether scripting (non-static pages) is allowed in this virtual host. If disabled, CGI, FastCGI, LSAPI, Servlet engines and other scripting languages will not be allowed in this virtual host. Therefore, if you want to use a script handler, you need to enable it here as well.</p> <h4>Syntax</h4><p>Select from radio box</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="restrained"><h3>Restrained<span class="ls-permlink"><a href="#restrained"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies whether files beyond this virtual host root($VH_ROOT) can be accessed though this web site. If set to <span class="val">Yes</span>, only files under $VH_ROOT can be accessed and access to symbolic links or context pointing to files or directories beyond $VH_ROOT will be denied. This, however, does not limit the accessibility of CGI scripts. This is useful in the shared hosting environment. <span class="tagl"><a href="#allowSymbolLink">Follow Symbolic Link</a></span> can be set to <span class="val">Yes</span> to allow users to use symbolic links under $VH_ROOT, but not anything beyond $VH_ROOT.</p> <h4>Syntax</h4><p>Select from radio box</p> <h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> Turn it on in the shared hosting environment.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="setUidMode"><h3>External App Set UID Mode<span class="ls-permlink"><a href="#setUidMode"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies how user ID is set for an external application process. Three choices are available: <ul><li><span class="val">Server UID</span>: Set the user/group ID of external application processes to the same as the server's user/group ID.</li> <li><span class="val">CGI File UID</span>: Set the user/group ID of external CGI processes based on the user/group ID of the executable. This option only applies to CGI, not FastCGI or LSPHP.</li> <li><span class="val">Doc Root UID</span>: Set the user/group ID of external application processes based on the user/group ID of the document root of the current virtual host.</li> </ul><br/><br/> Default value: <span class="val">Server UID</span></p> <h4>Syntax</h4><p>Select from drop down list</p> <h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> In the shared hosting environment, it is recommended to use the <span class="val">CGI File UID</span> or <span class="val">Doc Root UID</span> modes to prevent files owned by one virtual host from being accessed by the external application scripts of another virtual host.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="suexecUser"><h3>suEXEC User<span class="ls-permlink"><a href="#suexecUser"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>At the current context level, run as this user. If set, this value will override the Virtual Host level <b>ExtApp Set UID Mode</b> setting.<br/><br/> This configuration may be overridden at the External Application level using the <b>Run As User</b> setting.<br/><br/> Default value: Not Set</p> <h4>Syntax</h4><p>Valid user name or uid.</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="suexecGroup"><h3>suEXEC Group<span class="ls-permlink"><a href="#suexecGroup"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>At the current context level, run as this group. Either <b>suEXEC User</b> at the Virtual Host level, or <b>Run As User</b> at the External Application level, must be set for <b>suEXEC Group</b> to take effect.<br/><br/> This configuration can be overridden at the External Application level using the <b>Run As Group</b> setting.<br/><br/> Default value: <b>suExec User</b> setting value</p> <h4>Syntax</h4><p>Valid group name or uid</p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="staticReqPerSec"><h3>Static Requests/Second<span class="ls-permlink"><a href="#staticReqPerSec"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the maximum number of requests to static content coming from a single IP address that can be processed in a single second regardless of the number of connections established.<br/><br/> When this limit is reached, all future requests are tar-pitted until the next second. Request limits for dynamically generated content are independent of this limit. Per-client request limits can be set at server- or virtual host-level. Virtual host-level settings override server-level settings.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> Trusted IPs or sub-networks are not affected.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#dynReqPerSec">Dynamic Requests/Second</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="dynReqPerSec"><h3>Dynamic Requests/Second<span class="ls-permlink"><a href="#dynReqPerSec"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>Specifies the maximum number of requests to dynamically generated content coming from a single IP address that can be processed in each second regardless of the number of connections established. When this limit is reached, all future requests to dynamic content are tar-pitted until the next second.<br/><br/> The request limit for static content is independent of this limit. This per client request limit can be set at server or virtual host level. Virtual host-level settings override server-level settings.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> Trusted IPs or sub-networks are not restrained by this limit.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#staticReqPerSec">Static Requests/Second</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="outBandwidth"><h3>Outbound Bandwidth (bytes/sec)<span class="ls-permlink"><a href="#outBandwidth"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The maximum allowed outgoing throughput to a single IP address, regardless of the number of connections established. The real bandwidth may end up being slightly higher than this setting for efficiency reasons. Bandwidth is allocated in 4KB units. Set to <span class="val">0</span> to disable throttling. Per-client bandwidth limits (bytes/sec) can be set at the server or virtual host level where virtual host level settings override server level settings.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Performance" class="ls-icon-performance"></span> Set the bandwidth in 8KB units for better performance.<br/><br/> <span title="Security" class="ls-icon-security"></span> Trusted IPs or sub-networks are not affected.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#inBandwidth">Inbound Bandwidth (bytes/sec)</a></span></p> </article> </div> <div class="helpitem"><article class="ls-helpitem"><div><header id="inBandwidth"><h3>Inbound Bandwidth (bytes/sec)<span class="ls-permlink"><a href="#inBandwidth"></a></span><span class="top"><a href="#top">⇑</a></span></h3></header></div><h4>Description</h4><p>The maximum allowed incoming throughput from a single IP address, regardless of the number of connections established. The real bandwidth may end up being slightly higher than this setting for efficiency reasons. Bandwidth is allocated in 1KB units. Set to <span class="val">0</span> to disable throttling. Per-client bandwidth limits (bytes/sec) can be set at the server or virtual host level where virtual host level settings override server level settings.</p> <h4>Syntax</h4><p>Integer number</p> <h4>Tips</h4><p><span title="Security" class="ls-icon-security"></span> Trusted IPs or sub-networks are not affected.</p> <h4>See Also</h4><p class="ls-text-small"><span class="tagl"><a href="#outBandwidth">Outbound Bandwidth (bytes/sec)</a></span></p> </article> </div> </section> </article><div class="ls-col-1-1"><footer class="copyright">Copyright © 2013-2020. <a href="https://www.litespeedtech.com">LiteSpeed Technologies Inc.</a> All rights reserved.</footer> </div></div> </body> </html> ����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������
| ver. 1.4 |
Github
|
.
| PHP 8.2.28 | Generation time: 0.08 |
proxy
|
phpinfo
|
Settings