For the Considerations in adopting RHEL 10 Document

For the httpd package, the following list describes changes which can affect how the httpd daemon is used and deployed.

1. Default configuration changes: the `mod_authnz_fcgi` package is now loaded by default. This module can be used with FastCGI-based authorizer applications to authenticate users. See https://httpd.apache.org/docs/2.4/mod/mod_authnz_fcgi.html for more information
2. systemd service configuration changes: the `httpd.service` unit file applies a number of security hardening settings by default which were not enabled in Red Hat Enterprise Linux 9. For example, the `ProtectHome=read-only` setting is applied which mounts the `/home` filesystem read-only for the httpd service. See `/usr/lib/systemd/system/httpd.service` for the full list of hardening settings used.
3. mod_ssl: OpenSSL "ENGINE" support is removed. The `SSLCryptoDevice` configuration directive must no longer be used. PKCS#11 URIs are still supported via the OpenSSL `pkcs11-provider` package
4. Support for Berkeley DB databases has been dropped since Red Hat Enterprise Linux 9. The default database type now used by modules such as `mod_authz_dbm` is LMDB; the SDBM database type remains available as an alternative.