diff --git a/damia/etc/apache2/sites-available/ml.faivre-all.conf b/damia/etc/apache2/sites-available/ml.faivre-all.conf
new file mode 100644
index 0000000..ad898ba
--- /dev/null
+++ b/damia/etc/apache2/sites-available/ml.faivre-all.conf
@@ -0,0 +1,73 @@
+# all faivre.ml subdomains
+
+
+
+ ServerName $domain
+ ServerAlias www.$domain
+ UseCanonicalName Off
+
+ #DocumentRoot /home/www/ml.faivre/$name
+
+ CustomLog ${APACHE_LOG_DIR}/ml.faivre.$name-access.log combined
+ ErrorLog ${APACHE_LOG_DIR}/ml.faivre.$name-error.log
+
+ # br, feb 13, 2016. The following hack is necessary to have
+ # letsencrypt work in "--webroot" mode, as it does not handle
+ # https redirection
+ RewriteEngine On
+ RewriteCond %{REQUEST_URI} !^/.well-known/acme-challenge [NC]
+ RewriteRule ^(.*)$ https://%{HTTP_HOST}$1 [R=301,L]
+
+
+
+ ServerName $domain
+ ServerAlias www.$domain
+ UseCanonicalName Off
+
+ DocumentRoot /home/www/ml.faivre/$name
+
+ CustomLog ${APACHE_LOG_DIR}/ml.faivre.$name-access.log combined
+ ErrorLog ${APACHE_LOG_DIR}/ml.faivre.$name-error.log
+
+ SSLEngine on
+ SSLCertificateFile /etc/letsencrypt/live/faivre.ml/fullchain.pem
+ SSLCertificateKeyFile /etc/letsencrypt/live/faivre.ml/privkey.pem
+
+
+ SSLRequireSSL On
+ SSLVerifyClient none
+ SSLVerifyDepth 1
+ SSLOptions +StdEnvVars +StrictRequire
+
+
+ RewriteEngine on
+
+
+ Options Indexes FollowSymLinks MultiViews
+ AllowOverride All
+ Require all granted
+ # Kesako ?
+ SSLRenegBufferSize 10486000
+
+
+ # Kesako ?
+
+ Header always set Strict-Transport-Security "max-age=15768000; includeSubDomains; preload"
+
+
+ # Kesako ? Puisque mod_security2 n'est pas utilisé, je commente.
+ #
+ # SecRequestBodyNoFilesLimit 5242880
+ #
+
+
+
+
+
+# macros: Each line is
+# Use
+# with dir: /home/www/ml.faivre/
+Use faivre root faivre.ml
+Use faivre bremond bremond.faivre.ml
+
+UndefMacro faivre