Secure.wikimedia.org
From Wikitech
(Difference between revisions)
| Line 22: | Line 22: | ||
* noc.conf ?? | * noc.conf ?? | ||
* planet.conf -> [[planet.wikimedia.org]] | * planet.conf -> [[planet.wikimedia.org]] | ||
| + | * wikimedia-ssl-backend.conf on all apaches | ||
Proxy defs: | Proxy defs: | ||
| Line 36: | Line 37: | ||
ProxyVia On | ProxyVia On | ||
</pre> | </pre> | ||
| + | |||
| + | == Root page == | ||
| + | The root page https://secure.wikimedia.org/ can be edited on [http://meta.wikimedia.org/wiki/Secure.wikimedia.org_template meta]. mod_rewrite and extract2.php are being used to display that page. | ||
[[Category:Services]] | [[Category:Services]] | ||
Revision as of 20:21, 16 September 2008
Two services are serviced at this address:
- SSL secured access to WMF projects like wikipedia, wiktionary, etc
- OTRS
Wiki proxying
bart runs Apache 2.2, with an SSL interface for secure.wikimedia.org. Hits to this interface are proxied to the internal load balancer for our Apaches, on apache.pmtpa.wmnet, which serve the backend requests just like unencrypted hits.
Configuration
Running a custom-compiled Apache 2.2 in /usr/local/apache22
- OTRS runs directly on bart.
- Wikis are proxied.
- Additionally, nagios, mail, noc, and planet may still be run out of this server on the port 80 o_O
Relevant config files...
- wikimedia-ssl.conf -> the main SSL and proxy defs
- ssl-redir.conf -> redirects for port 80 access to secure.wikimedia.org, ticket.wikimedia.org
- mail.conf -> ??
- nagios.conf ??
- noc.conf ??
- planet.conf -> planet.wikimedia.org
- wikimedia-ssl-backend.conf on all apaches
Proxy defs:
<Proxy *>
Allow from all
</Proxy>
ProxyRequests Off
ProxyPreserveHost On
ProxyPass /otrs !
ProxyPass /otrs-2.1.3 !
ProxyPass /otrs-web !
ProxyPass / http://apaches.pmtpa.wmnet/
ProxyVia On
Root page
The root page https://secure.wikimedia.org/ can be edited on meta. mod_rewrite and extract2.php are being used to display that page.
