Back out last commit.

Some devs are not convinced.

acme response challenge location to issue better error code

Notified to me by jmc@

Diff by Matthias Pressfreund <mpfr @ fn de>, thanks

Rename httpd.conf "root strip" option to "request strip".

"root strip" was semantically incorrect and did cause some confusion
as it never stripped the root but the client's request path.

Discussed with many. Heads up: this is a grammar change that also
affects acme-client(1) configurations (see current.html).

OK claudio@

"listen on * port 80" means all v4 and v6 addresses these days.
OK benno

Provide an example httpd.conf that's actually useful.
With & OK deraadt
input sthen
looks better to beck
OK benno

Remove /etc/ssl/acme/. We don't need it now that we have a default acme-conf(5)
that direclty uses /etc/ssl/{,private} by default. Adapt the httpd.conf example
accordingly.

ok florian@ benno@ millert@

pathnames for cert and key files need to be quoted.

reported by brynet

add example certificate and key files generated with acme-client.

ok florian

Typo
From Michael (lesniewskister AT gmail), thanks!

Change the default ext_addr from "egress" to "*". Listening on the
egress group only works if you have a default route; this confused
some people.

Like previously done in relayd, change the keyword "ssl" to "tls" to
reflect reality.

OK benno@

Add a generic system-wide /usr/share/misc/mime.types file that can be
included in httpd.conf. httpd(8) now supports both mime.types
flavours with or without semicolon at the end of the line (nginx- or
apache-style).

Discussed with many, with input from halex@
OK halex@

Change grammar to remove a shift/reduce conflict that was introduced
with the ssl options.
"listen on $ip port 443 ssl" turns into "listen on $ip ssl port 443".

ok florian@

Add configuration options for the most-important connection limits:
max requests (per connection) and timeout. We don't want to add too
many button, and there are good defaults, but these ones are kind of
mandatory.

Add HTTPS server example.

Change grammar from "log [style]" to "log style [style]".

The first server example should be the "minimal default" to illustrate
that you don't have to push all kinds of buttons to run httpd.

More examples, include FastCGI for php and cgi-bin and logging.

Add "location" keyword to specify path-specific configuration in
servers, for example auto index for a sub-directory only. Internally,
a "location" is just a special type of a "virtual" server.

Add extended directory index options: "[no] index" and "[no] auto index".
The option "directory auto index" implements basic directory listing
and is turned off by default.

ok deraadt@

Add more examples. Requested by deraadt@

Add initial httpd.conf(5) example for httpd(8)

Requested by deraadt@

acme response challenge location to issue better error code

Notified to me by jmc@

Diff by Matthias Pressfreund <mpfr @ fn de>, thanks

Rename httpd.conf "root strip" option to "request strip".

"root strip" was semantically incorrect and did cause some confusion
as it never stripped the root but the client's request path.

Discussed with many. Heads up: this is a grammar change that also
affects acme-client(1) configurations (see current.html).

OK claudio@

"listen on * port 80" means all v4 and v6 addresses these days.
OK benno

Provide an example httpd.conf that's actually useful.
With & OK deraadt
input sthen
looks better to beck
OK benno

Remove /etc/ssl/acme/. We don't need it now that we have a default acme-conf(5)
that direclty uses /etc/ssl/{,private} by default. Adapt the httpd.conf example
accordingly.

ok florian@ benno@ millert@

pathnames for cert and key files need to be quoted.

reported by brynet

add example certificate and key files generated with acme-client.

ok florian

Typo
From Michael (lesniewskister AT gmail), thanks!

Change the default ext_addr from "egress" to "*". Listening on the
egress group only works if you have a default route; this confused
some people.

Like previously done in relayd, change the keyword "ssl" to "tls" to
reflect reality.

OK benno@

Add a generic system-wide /usr/share/misc/mime.types file that can be
included in httpd.conf. httpd(8) now supports both mime.types
flavours with or without semicolon at the end of the line (nginx- or
apache-style).

Discussed with many, with input from halex@
OK halex@

Change grammar to remove a shift/reduce conflict that was introduced
with the ssl options.
"listen on $ip port 443 ssl" turns into "listen on $ip ssl port 443".

ok florian@

Add configuration options for the most-important connection limits:
max requests (per connection) and timeout. We don't want to add too
many button, and there are good defaults, but these ones are kind of
mandatory.

Add HTTPS server example.

Change grammar from "log [style]" to "log style [style]".

The first server example should be the "minimal default" to illustrate
that you don't have to push all kinds of buttons to run httpd.

More examples, include FastCGI for php and cgi-bin and logging.

Add "location" keyword to specify path-specific configuration in
servers, for example auto index for a sub-directory only. Internally,
a "location" is just a special type of a "virtual" server.

Add extended directory index options: "[no] index" and "[no] auto index".
The option "directory auto index" implements basic directory listing
and is turned off by default.

ok deraadt@

Add more examples. Requested by deraadt@

Add initial httpd.conf(5) example for httpd(8)

Requested by deraadt@

Rename httpd.conf "root strip" option to "request strip".

"root strip" was semantically incorrect and did cause some confusion
as it never stripped the root but the client's request path.

Discussed with many. Heads up: this is a grammar change that also
affects acme-client(1) configurations (see current.html).

OK claudio@

"listen on * port 80" means all v4 and v6 addresses these days.
OK benno

Provide an example httpd.conf that's actually useful.
With & OK deraadt
input sthen
looks better to beck
OK benno

Remove /etc/ssl/acme/. We don't need it now that we have a default acme-conf(5)
that direclty uses /etc/ssl/{,private} by default. Adapt the httpd.conf example
accordingly.

ok florian@ benno@ millert@

pathnames for cert and key files need to be quoted.

reported by brynet

add example certificate and key files generated with acme-client.

ok florian

Typo
From Michael (lesniewskister AT gmail), thanks!

Change the default ext_addr from "egress" to "*". Listening on the
egress group only works if you have a default route; this confused
some people.

Like previously done in relayd, change the keyword "ssl" to "tls" to
reflect reality.

OK benno@

Add a generic system-wide /usr/share/misc/mime.types file that can be
included in httpd.conf. httpd(8) now supports both mime.types
flavours with or without semicolon at the end of the line (nginx- or
apache-style).

Discussed with many, with input from halex@
OK halex@

Change grammar to remove a shift/reduce conflict that was introduced
with the ssl options.
"listen on $ip port 443 ssl" turns into "listen on $ip ssl port 443".

ok florian@

Add configuration options for the most-important connection limits:
max requests (per connection) and timeout. We don't want to add too
many button, and there are good defaults, but these ones are kind of
mandatory.

Add HTTPS server example.

Change grammar from "log [style]" to "log style [style]".

The first server example should be the "minimal default" to illustrate
that you don't have to push all kinds of buttons to run httpd.

More examples, include FastCGI for php and cgi-bin and logging.

Add "location" keyword to specify path-specific configuration in
servers, for example auto index for a sub-directory only. Internally,
a "location" is just a special type of a "virtual" server.

Add extended directory index options: "[no] index" and "[no] auto index".
The option "directory auto index" implements basic directory listing
and is turned off by default.

ok deraadt@

Add more examples. Requested by deraadt@

Add initial httpd.conf(5) example for httpd(8)

Requested by deraadt@

"listen on * port 80" means all v4 and v6 addresses these days.
OK benno

Provide an example httpd.conf that's actually useful.
With & OK deraadt
input sthen
looks better to beck
OK benno

Remove /etc/ssl/acme/. We don't need it now that we have a default acme-conf(5)
that direclty uses /etc/ssl/{,private} by default. Adapt the httpd.conf example
accordingly.

ok florian@ benno@ millert@

pathnames for cert and key files need to be quoted.

reported by brynet

add example certificate and key files generated with acme-client.

ok florian

Typo
From Michael (lesniewskister AT gmail), thanks!

Change the default ext_addr from "egress" to "*". Listening on the
egress group only works if you have a default route; this confused
some people.

Like previously done in relayd, change the keyword "ssl" to "tls" to
reflect reality.

OK benno@

Add a generic system-wide /usr/share/misc/mime.types file that can be
included in httpd.conf. httpd(8) now supports both mime.types
flavours with or without semicolon at the end of the line (nginx- or
apache-style).

Discussed with many, with input from halex@
OK halex@

Change grammar to remove a shift/reduce conflict that was introduced
with the ssl options.
"listen on $ip port 443 ssl" turns into "listen on $ip ssl port 443".

ok florian@

Add configuration options for the most-important connection limits:
max requests (per connection) and timeout. We don't want to add too
many button, and there are good defaults, but these ones are kind of
mandatory.

Add HTTPS server example.

Change grammar from "log [style]" to "log style [style]".

The first server example should be the "minimal default" to illustrate
that you don't have to push all kinds of buttons to run httpd.

More examples, include FastCGI for php and cgi-bin and logging.

Add "location" keyword to specify path-specific configuration in
servers, for example auto index for a sub-directory only. Internally,
a "location" is just a special type of a "virtual" server.

Add extended directory index options: "[no] index" and "[no] auto index".
The option "directory auto index" implements basic directory listing
and is turned off by default.

ok deraadt@

Add more examples. Requested by deraadt@

Add initial httpd.conf(5) example for httpd(8)

Requested by deraadt@

Provide an example httpd.conf that's actually useful.
With & OK deraadt
input sthen
looks better to beck
OK benno

Remove /etc/ssl/acme/. We don't need it now that we have a default acme-conf(5)
that direclty uses /etc/ssl/{,private} by default. Adapt the httpd.conf example
accordingly.

ok florian@ benno@ millert@

pathnames for cert and key files need to be quoted.

reported by brynet

add example certificate and key files generated with acme-client.

ok florian

Typo
From Michael (lesniewskister AT gmail), thanks!

Change the default ext_addr from "egress" to "*". Listening on the
egress group only works if you have a default route; this confused
some people.

Like previously done in relayd, change the keyword "ssl" to "tls" to
reflect reality.

OK benno@

Add a generic system-wide /usr/share/misc/mime.types file that can be
included in httpd.conf. httpd(8) now supports both mime.types
flavours with or without semicolon at the end of the line (nginx- or
apache-style).

Discussed with many, with input from halex@
OK halex@

Change grammar to remove a shift/reduce conflict that was introduced
with the ssl options.
"listen on $ip port 443 ssl" turns into "listen on $ip ssl port 443".

ok florian@

Add configuration options for the most-important connection limits:
max requests (per connection) and timeout. We don't want to add too
many button, and there are good defaults, but these ones are kind of
mandatory.

Add HTTPS server example.

Change grammar from "log [style]" to "log style [style]".

The first server example should be the "minimal default" to illustrate
that you don't have to push all kinds of buttons to run httpd.

More examples, include FastCGI for php and cgi-bin and logging.

Add "location" keyword to specify path-specific configuration in
servers, for example auto index for a sub-directory only. Internally,
a "location" is just a special type of a "virtual" server.

Add extended directory index options: "[no] index" and "[no] auto index".
The option "directory auto index" implements basic directory listing
and is turned off by default.

ok deraadt@

Add more examples. Requested by deraadt@

Add initial httpd.conf(5) example for httpd(8)

Requested by deraadt@

Remove /etc/ssl/acme/. We don't need it now that we have a default acme-conf(5)
that direclty uses /etc/ssl/{,private} by default. Adapt the httpd.conf example
accordingly.

ok florian@ benno@ millert@

pathnames for cert and key files need to be quoted.

reported by brynet

add example certificate and key files generated with acme-client.

ok florian

Typo
From Michael (lesniewskister AT gmail), thanks!

Change the default ext_addr from "egress" to "*". Listening on the
egress group only works if you have a default route; this confused
some people.

Like previously done in relayd, change the keyword "ssl" to "tls" to
reflect reality.

OK benno@

Add a generic system-wide /usr/share/misc/mime.types file that can be
included in httpd.conf. httpd(8) now supports both mime.types
flavours with or without semicolon at the end of the line (nginx- or
apache-style).

Discussed with many, with input from halex@
OK halex@

Change grammar to remove a shift/reduce conflict that was introduced
with the ssl options.
"listen on $ip port 443 ssl" turns into "listen on $ip ssl port 443".

ok florian@

Add configuration options for the most-important connection limits:
max requests (per connection) and timeout. We don't want to add too
many button, and there are good defaults, but these ones are kind of
mandatory.

Add HTTPS server example.

Change grammar from "log [style]" to "log style [style]".

The first server example should be the "minimal default" to illustrate
that you don't have to push all kinds of buttons to run httpd.

More examples, include FastCGI for php and cgi-bin and logging.

Add "location" keyword to specify path-specific configuration in
servers, for example auto index for a sub-directory only. Internally,
a "location" is just a special type of a "virtual" server.

Add extended directory index options: "[no] index" and "[no] auto index".
The option "directory auto index" implements basic directory listing
and is turned off by default.

ok deraadt@

Add more examples. Requested by deraadt@

Add initial httpd.conf(5) example for httpd(8)

Requested by deraadt@