Quote from: Fredouil on December 27, 2025, 11:44:41 AM[...]it should be a priority[...]
Quote from: allddd on December 29, 2025, 01:53:12 PMJumping to the beginning/end would require checking the view length on every render ... I looked at how less handles it to get an idea, and even there you can scroll infinitely...Fair point and you can plant an easter egg if someone scroll for 10000 characters the OPNsense maskot jumps up :)
QuoteDoes your terminal support formatting/colors? I haven't updated the screenshot in the repo yet since the view may still change a bit, but I've added formatting that makes it easy to see the difference between IPs and ports:Yep, the formatting work, 'block' is red and the IPs are in bold, that work well. Did you experiment with the ports being in color and/or the direction being bold or in color?
# Tipp von Bernd Krumböck wegen Sicherheitsproblemen mit dem MPM Modul und NTLM Authentifizierung
# Clients welche EWS verwenden (z.B. AquaMail) bekommen E-Mails anderer Sitzungen synchronisiert
# ServerLimit und MaxRequestWorkers ggf. an die Anzahl der vorhandenen Clients anpassen
#ServerLimit 300
#MaxRequestWorkers 300
MaxConnectionsPerChild 1
<VirtualHost 192.168.80.43:80>
ServerName mail.example.com
ServerAlias autodiscover.example.com
ServerAdmin webmaster@znil.org
ErrorLog /var/log/apache2/error.log
# Nachfolgende Zeile loggt jeden Zugriff, alternativ den Zeile darunter verwenden, dann werden die Logs verworfen
CustomLog /var/log/apache2/access.log combined
#CustomLog /dev/null common
Header always set X-Frame-Options SAMEORIGIN
Header set Server Apache
RequestHeader unset Expect early
Header unset X-AspNet-Version
Header unset X-OWA-Version
Header unset X-Powered-By
ProxyRequests Off
RewriteEngine On
RewriteCond %{HTTPS} !=on
RewriteRule ^/owa(.*) https://mail.example.com/owa$1 [R,L]
RewriteRule ^/ecp(.*) https://mail.example.com/ecp$1 [R,L]
RewriteRule ^/Microsoft-Server-ActiveSync(.*) https://mail.example.com/Microsoft-Server-ActiveSync$1 [R,L]
DocumentRoot /var/www/mail.example.com/web
<Directory />
Order deny,allow
Deny from all
</Directory>
<Directory /var/www/mail.example.com/web>
DirectoryIndex index.php index.html
Options -Indexes +FollowSymLinks
Order allow,deny
Allow from all
</Directory>
<Proxy *>
Order deny,allow
Allow from all
</Proxy>
</VirtualHost>
<VirtualHost 192.168.80.43:443>
DocumentRoot /var/www/mail.example.com/web
ServerName mail.example.com
ServerAlias autodiscover.example.com
ServerAdmin webmaster@znil.org
ErrorLog /var/log/apache2/error.log
# Nachfolgende Zeile loggt jeden Zugriff, alternativ den Zeile darunter verwenden, dann werden die Logs verworfen
CustomLog /var/log/apache2/access.log combined
#CustomLog /dev/null common
Header always set X-Frame-Options SAMEORIGIN
Header set Server Apache
Header unset X-AspNet-Version
Header unset X-OWA-Version
Header unset X-Powered-By
RequestHeader unset Expect early
SetEnvIf User-Agent ".*MSIE.*" value BrowserMSIE
# 10.12.2020: Nachfolgende Zeilen würden eine Standardauthentifizierung erzwingen, ist nun nicht mehr Notwendig
# Tipp von Marco Maus, Fragen an marco.maus@mit-system.eu
# Header unset WWW-Authenticate
# Header add WWW-Authenticate "Basic realm=mail.example.com"
ProxyRequests Off
ProxyPreserveHost On
#abgeschaut von https://github.com/phr0gz/Apache-reverse-proxy-for-Exchange-2010-2013-2016/blob/master/webmail.conf
ProxyVia Full
RequestHeader edit Transfer-Encoding Chunked chunked early
RequestHeader unset Accept-Encoding
TimeOut 1800
# Ende abgeschaut
SSLProxyEngine On
# Problemen mit Kommunikation zwischen Apache-Proxy und Exchange-Server aus dem Wege gehen
# Alle SSL Prüfungen werden damit ausgeschaltet. So kann z.B. auch intern ein Selbstsigniertes Zertifikat verwendet werden
SSLProxyVerify none
SSLProxyCheckPeerCN off
SSLProxyCheckPeerName off
SSLProxyCheckPeerExpire off
#Nachfolgende Zeile bewirkt das ein Aufruf von nur https://sub.name.suffix auf https://sub.name.suffix/owa weiter geleitet wird.
Redirect / /owa/
# owa
ProxyPass /owa https://192.168.80.112/owa
ProxyPassReverse /owa https://192.168.80.112/owa
ProxyPass /OWA https://192.168.80.112/OWA
ProxyPassReverse /OWA https://192.168.80.112/OWA
ProxyPass /Owa https://192.168.80.112/Owa
ProxyPassReverse /Owa https://192.168.80.112/Owa
# ecp = Adminoberfläche - falls Zugriff nicht gewünscht einfach auskommentieren!
ProxyPass /ecp https://192.168.80.112/ecp
ProxyPassReverse /ecp https://192.168.80.112/ecp
ProxyPass /ECP https://192.168.80.112/ECP
ProxyPassReverse /ECP https://192.168.80.112/ECP
ProxyPass /Ecp https://192.168.80.112/Ecp
ProxyPassReverse /Ecp https://192.168.80.112/Ecp
# mapi
ProxyPass /mapi https://192.168.80.112/mapi
ProxyPassReverse /mapi https://192.168.80.112/mapi
# ews -> Exchange Web Services
ProxyPass /ews https://192.168.80.112/ews
ProxyPassReverse /ews https://192.168.80.112/ews
ProxyPass /EWS https://192.168.80.112/EWS
ProxyPassReverse /EWS https://192.168.80.112/EWS
ProxyPass /Ews https://192.168.80.112/Ews
ProxyPassReverse /Ews https://192.168.80.112/Ews
ProxyPass /exchange https://192.168.80.112/exchange
ProxyPassReverse /exchange https://192.168.80.112/exchange
ProxyPass /Exchange https://192.168.80.112/Exchange
ProxyPassReverse /Exchange https://192.168.80.112/Exchange
ProxyPass /exchweb https://192.168.80.112/exchweb
ProxyPassReverse /exchweb https://192.168.80.112/exchweb
ProxyPass /public https://192.168.80.112/public
ProxyPassReverse /public https://192.168.80.112/public
# oab (Offline Address Book)
ProxyPass /oab https://192.168.80.112/oab
ProxyPassReverse /oab https://192.168.80.112/oab
ProxyPass /OAB https://192.168.80.112/OAB
ProxyPassReverse /OAB https://192.168.80.112/OAB
# RPC over http(s) / Outlook Anywhere
#OutlookAnywherePassthrough On
ProxyPass /rpc https://192.168.80.112/rpc
ProxyPassReverse /rpc https://192.168.80.112/rpc
ProxyPass /Rpc https://192.168.80.112/Rpc
ProxyPassReverse /Rpc https://192.168.80.112/Rpc
# Microsoft-Server-ActiveSync
ProxyPass /Microsoft-Server-ActiveSync https://192.168.80.112/Microsoft-Server-ActiveSync connectiontimeout=900
ProxyPassReverse /Microsoft-Server-ActiveSync https://192.168.80.112/Microsoft-Server-ActiveSync
# Problem mit dem Versenden von Dateianhängen > 128KByte per ActiceSync umgehen (neuer Wert 30MByte)
<Directory /Microsoft-Server-ActiveSync>
SSLRenegBufferSize 31457280
</Directory>
# AutoDiscover -> Autodiscover for non-AD integrated Clients (Mac, eg.)
ProxyPass /autodiscover https://192.168.80.112/autodiscover
ProxyPassReverse /autodiscover https://192.168.80.112/autodiscover
ProxyPass /Autodiscover https://192.168.80.112/Autodiscover
ProxyPassReverse /Autodiscover https://192.168.80.112/Autodiscover
ProxyPass /AutoDiscover https://192.168.80.112/AutoDiscover
ProxyPassReverse /AutoDiscover https://192.168.80.112/AutoDiscover
# Zeichensatz spezifieren fuer Umlaute
AddDefaultCharset ISO-8859-1
<Directory />
Order deny,allow
Deny from all
</Directory>
<Directory /var/www/mail.example.com/web>
DirectoryIndex index.php index.html
Options -Indexes +FollowSymLinks
Order allow,deny
Allow from all
</Directory>
<Proxy *>
# 10.12.2020: Nachfolgende 2 Zeilen sind nicht mehr Notwendig
# Tipp von Marco Maus, Fragen an marco.maus@mit-system.eu
# SetEnv proxy-nokeepalive 1
# SetEnv force-proxy-request-1.0 1
Order deny,allow
Allow from all
</Proxy>
# Nach extern ein Lets Encrypt Zertifikat nutzen:
SSLEngine on
SSLProtocol All -SSLv2 -SSLv3
SSLHonorCipherOrder on
SSLCertificateFile /etc/ssl/certs/wsmail03.pem
SSLCertificateKeyFile /etc/ssl/private/wsmail03.key
SSLCertificateChainFile /etc/ssl/certs/r13.pem
BrowserMatch "MSIE [2-6]" nokeepalive ssl-unclean-shutdown downgrade-1.0 force-response-1.0
# MSIE 7 and newer should be able to use keepalive
BrowserMatch "MSIE [17-9]" ssl-unclean-shutdown
</VirtualHost>