|
| PORTAIL | ANNUAIRE | ARTICLES | COMPARATEUR HÉBERGEURS | DEVIS | FORUMS | RÉDUCTEUR D'URL |
|
|
|
|
||||||
| comp.info.servers.unix Web servers for UNIX platforms. |
 |
|
|
LinkBack | Outils de la discussion |
24/04/2006, 03h07
|
#1 |
Messages: n/a
Hébergeur: |
403 error on new Apache 2.2 install
Just installed Fedora Core 5.
Without doing any configuration, just starting httpd, when I browse to the server I get the default welcome message just fine. So I comment the lines out of /etc/httd/conf.d/welcome.conf, and put a basic index.html file in /var/www/html/ and I get: Forbidden You don't have permission to access / on this server. Apache/2.2.0 (Fedora) Server at 192.168.0.58 Port 80 I made sure it's permission is 755, and same thing. So I look in /var/log/messages and see this: Apr 23 19:50:23 localhost kernel: audit(1145839823.518:19): avc: denied { getattr } for pid=2169 comm="httpd" name="index.html" dev=hda3 ino=2918174 scontext=root:system_r:httpd_t:s0 tcontext=system_u  bject_r:file_t:s0 tclass=fileI searched the newsgroups for possible fixes and based on what I found I checked such things properly formed <Directory>, define VirtualHost, AllowOverides. Not sure what else I can do. Below is a copy of my httpd.conf (without the commented out lines. Any suggestions? Thanks, -Liam ### Section 1: Global Environment ServerRoot "/etc/httpd" PidFile run/httpd.pid Timeout 120 KeepAlive Off MaxKeepAliveRequests 100 KeepAliveTimeout 15 <IfModule prefork.c> StartServers 8 MinSpareServers 5 MaxSpareServers 20 ServerLimit 256 MaxClients 256 MaxRequestsPerChild 4000 </IfModule> <IfModule worker.c> StartServers 2 MaxClients 150 MinSpareThreads 25 MaxSpareThreads 75 ThreadsPerChild 25 MaxRequestsPerChild 0 </IfModule> Listen 80 LoadModule auth_basic_module modules/mod_auth_basic.so LoadModule auth_digest_module modules/mod_auth_digest.so LoadModule authn_file_module modules/mod_authn_file.so LoadModule authn_alias_module modules/mod_authn_alias.so LoadModule authn_anon_module modules/mod_authn_anon.so LoadModule authn_dbm_module modules/mod_authn_dbm.so LoadModule authn_default_module modules/mod_authn_default.so LoadModule authz_host_module modules/mod_authz_host.so LoadModule authz_user_module modules/mod_authz_user.so LoadModule authz_owner_module modules/mod_authz_owner.so LoadModule authz_groupfile_module modules/mod_authz_groupfile.so LoadModule authz_dbm_module modules/mod_authz_dbm.so LoadModule authz_default_module modules/mod_authz_default.so LoadModule ldap_module modules/mod_ldap.so LoadModule authnz_ldap_module modules/mod_authnz_ldap.so LoadModule include_module modules/mod_include.so LoadModule log_config_module modules/mod_log_config.so LoadModule logio_module modules/mod_logio.so LoadModule env_module modules/mod_env.so LoadModule ext_filter_module modules/mod_ext_filter.so LoadModule mime_magic_module modules/mod_mime_magic.so LoadModule expires_module modules/mod_expires.so LoadModule deflate_module modules/mod_deflate.so LoadModule headers_module modules/mod_headers.so LoadModule usertrack_module modules/mod_usertrack.so LoadModule setenvif_module modules/mod_setenvif.so LoadModule mime_module modules/mod_mime.so LoadModule dav_module modules/mod_dav.so LoadModule status_module modules/mod_status.so LoadModule autoindex_module modules/mod_autoindex.so LoadModule info_module modules/mod_info.so LoadModule dav_fs_module modules/mod_dav_fs.so LoadModule vhost_alias_module modules/mod_vhost_alias.so LoadModule negotiation_module modules/mod_negotiation.so LoadModule dir_module modules/mod_dir.so LoadModule actions_module modules/mod_actions.so LoadModule speling_module modules/mod_speling.so LoadModule userdir_module modules/mod_userdir.so LoadModule alias_module modules/mod_alias.so LoadModule rewrite_module modules/mod_rewrite.so LoadModule proxy_module modules/mod_proxy.so LoadModule proxy_balancer_module modules/mod_proxy_balancer.so LoadModule proxy_ftp_module modules/mod_proxy_ftp.so LoadModule proxy_http_module modules/mod_proxy_http.so LoadModule proxy_connect_module modules/mod_proxy_connect.so LoadModule cache_module modules/mod_cache.so LoadModule suexec_module modules/mod_suexec.so LoadModule disk_cache_module modules/mod_disk_cache.so LoadModule file_cache_module modules/mod_file_cache.so LoadModule mem_cache_module modules/mod_mem_cache.so LoadModule cgi_module modules/mod_cgi.so Include conf.d/*.conf User apache Group apache ### Section 2: 'Main' server configuration ServerAdmin root@localhost UseCanonicalName Off DocumentRoot "/var/www/html" <Directory /> Options FollowSymLinks AllowOverride None </Directory> <Directory "/var/www/html"> Options Indexes FollowSymLinks #AllowOverride None AllowOverride AuthConfig Order allow,deny Allow from all </Directory> <IfModule mod_userdir.c> UserDir disable </IfModule> DirectoryIndex index.html index.html.var AccessFileName .htaccess <Files ~ "^\.ht"> Order allow,deny Deny from all </Files> TypesConfig /etc/mime.types DefaultType text/plain <IfModule mod_mime_magic.c> # MIMEMagicFile /usr/share/magic.mime MIMEMagicFile conf/magic </IfModule> HostnameLookups Off ErrorLog logs/error_log LogLevel warn LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\"" combined LogFormat "%h %l %u %t \"%r\" %>s %b" common LogFormat "%{Referer}i -> %U" referer LogFormat "%{User-agent}i" agent CustomLog logs/access_log combined ServerSignature On Alias /icons/ "/var/www/icons/" <Directory "/var/www/icons"> Options Indexes MultiViews AllowOverride None Order allow,deny Allow from all </Directory> <IfModule mod_dav_fs.c> # Location of the WebDAV lock database. DAVLockDB /var/lib/dav/lockdb </IfModule> ScriptAlias /cgi-bin/ "/var/www/cgi-bin/" <Directory "/var/www/cgi-bin"> AllowOverride None Options None Order allow,deny Allow from all </Directory> IndexOptions FancyIndexing VersionSort NameWidth=* HTMLTable AddIconByEncoding (CMP,/icons/compressed.gif) x-compress x-gzip AddIconByType (TXT,/icons/text.gif) text/* AddIconByType (IMG,/icons/image2.gif) image/* AddIconByType (SND,/icons/sound2.gif) audio/* AddIconByType (VID,/icons/movie.gif) video/* AddIcon /icons/binary.gif .bin .exe AddIcon /icons/binhex.gif .hqx AddIcon /icons/tar.gif .tar AddIcon /icons/world2.gif .wrl .wrl.gz .vrml .vrm .iv AddIcon /icons/compressed.gif .Z .z .tgz .gz .zip AddIcon /icons/a.gif .ps .ai .eps AddIcon /icons/layout.gif .html .shtml .htm .pdf AddIcon /icons/text.gif .txt AddIcon /icons/c.gif .c AddIcon /icons/p.gif .pl .py AddIcon /icons/f.gif .for AddIcon /icons/dvi.gif .dvi AddIcon /icons/uuencoded.gif .uu AddIcon /icons/script.gif .conf .sh .shar .csh .ksh .tcl AddIcon /icons/tex.gif .tex AddIcon /icons/bomb.gif core AddIcon /icons/back.gif .. AddIcon /icons/hand.right.gif README AddIcon /icons/folder.gif ^^DIRECTORY^^ AddIcon /icons/blank.gif ^^BLANKICON^^ DefaultIcon /icons/unknown.gif ReadmeName README.html HeaderName HEADER.html IndexIgnore .??* *~ *# HEADER* README* RCS CVS *,v *,t AddLanguage ca .ca AddLanguage cs .cz .cs AddLanguage da .dk AddLanguage de .de AddLanguage el .el AddLanguage en .en AddLanguage eo .eo AddLanguage es .es AddLanguage et .et AddLanguage fr .fr AddLanguage he .he AddLanguage hr .hr AddLanguage it .it AddLanguage ja .ja AddLanguage ko .ko AddLanguage ltz .ltz AddLanguage nl .nl AddLanguage nn .nn AddLanguage no .no AddLanguage pl .po AddLanguage pt .pt AddLanguage pt-BR .pt-br AddLanguage ru .ru AddLanguage sv .sv AddLanguage zh-CN .zh-cn AddLanguage zh-TW .zh-tw LanguagePriority en ca cs da de el eo es et fr he hr it ja ko ltz nl nn no pl pt pt-BR ru sv zh-CN zh-TW ForceLanguagePriority Prefer Fallback AddDefaultCharset UTF-8 AddType application/x-compress .Z AddType application/x-gzip .gz .tgz AddHandler type-map var AddType text/html .shtml AddOutputFilter INCLUDES .shtml Alias /error/ "/var/www/error/" <IfModule mod_negotiation.c> <IfModule mod_include.c> <Directory "/var/www/error"> AllowOverride None Options IncludesNoExec AddOutputFilter Includes html AddHandler type-map var Order allow,deny Allow from all LanguagePriority en es de fr ForceLanguagePriority Prefer Fallback </Directory> </IfModule> </IfModule> BrowserMatch "Mozilla/2" nokeepalive BrowserMatch "MSIE 4\.0b2;" nokeepalive downgrade-1.0 force-response-1.0 BrowserMatch "RealPlayer 4\.0" force-response-1.0 BrowserMatch "Java/1\.0" force-response-1.0 BrowserMatch "JDK/1\.0" force-response-1.0 BrowserMatch "Microsoft Data Access Internet Publishing Provider" redirect-carefully BrowserMatch "MS FrontPage" redirect-carefully BrowserMatch "^WebDrive" redirect-carefully BrowserMatch "^WebDAVFS/1.[0123]" redirect-carefully BrowserMatch "^gnome-vfs/1.0" redirect-carefully BrowserMatch "^XML Spy" redirect-carefully BrowserMatch "^Dreamweaver-WebDAV-SCM1" redirect-carefully ### Section 3: Virtual Hosts |
|
|
24/04/2006, 03h29
|
#2 |
|
Messages: n/a
Hébergeur: |
Re: 403 error on new Apache 2.2 install
news@celticbear.com wrote: > Just installed Fedora Core 5. > Without doing any configuration, just starting httpd, when I browse to > the server I get the default welcome message just fine. > So I comment the lines out of /etc/httd/conf.d/welcome.conf, and put a > basic index.html file in /var/www/html/ and I get: > > Forbidden > You don't have permission to access / on this server. > Apache/2.2.0 (Fedora) Server at 192.168.0.58 Port 80 > > I made sure it's permission is 755, and same thing. > > So I look in /var/log/messages and see this: > > Apr 23 19:50:23 localhost kernel: audit(1145839823.518:19): avc: > denied { getattr } for pid=2169 comm="httpd" name="index.html" > dev=hda3 ino=2918174 scontext=root:system_r:httpd_t:s0 > tcontext=system_u bject_r:file_t:s0 tclass=file> > I searched the newsgroups for possible fixes and based on what I found > I checked such things properly formed <Directory>, define VirtualHost, > AllowOverides. > > Not sure what else I can do. > Below is a copy of my httpd.conf (without the commented out lines. > Any suggestions? > Thanks, > -Liam > > [..] Immediately after posting this, I found a newsgroup comment regarding SELinux. So I searched about that. Come to find out, that can cause the errors. So more searching, and I found: http://fedora.redhat.com/docs/selinu...html#id2826243 "Q: My application isn't working as expected and I am seeing avc: denied messages, how do I fix this? " So I ran "restorecon -R" in /var/www/html/ and all of a sudden everything works again. Sheesh! Hope this s someone else with this problem! -Liam |
|
|
|
24/04/2006, 03h29
|
#3 |
|
Messages: n/a
Hébergeur: |
Re: 403 error on new Apache 2.2 install
news@celticbear.com wrote: > Just installed Fedora Core 5. > Without doing any configuration, just starting httpd, when I browse to > the server I get the default welcome message just fine. > So I comment the lines out of /etc/httd/conf.d/welcome.conf, and put a > basic index.html file in /var/www/html/ and I get: > > Forbidden > You don't have permission to access / on this server. > Apache/2.2.0 (Fedora) Server at 192.168.0.58 Port 80 > > I made sure it's permission is 755, and same thing. > > So I look in /var/log/messages and see this: > > Apr 23 19:50:23 localhost kernel: audit(1145839823.518:19): avc: > denied { getattr } for pid=2169 comm="httpd" name="index.html" > dev=hda3 ino=2918174 scontext=root:system_r:httpd_t:s0 > tcontext=system_u bject_r:file_t:s0 tclass=file> > I searched the newsgroups for possible fixes and based on what I found > I checked such things properly formed <Directory>, define VirtualHost, > AllowOverides. > > Not sure what else I can do. > Below is a copy of my httpd.conf (without the commented out lines. > Any suggestions? > Thanks, > -Liam > > [..] Immediately after posting this, I found a newsgroup comment regarding SELinux. So I searched about that. Come to find out, that can cause the errors. So more searching, and I found: http://fedora.redhat.com/docs/selinu...html#id2826243 "Q: My application isn't working as expected and I am seeing avc: denied messages, how do I fix this? " So I ran "restorecon -R" in /var/www/html/ and all of a sudden everything works again. Sheesh! Hope this s someone else with this problem! -Liam |
|
|
|
24/04/2006, 12h12
|
#4 |
|
Messages: n/a
Hébergeur: |
Re: 403 error on new Apache 2.2 install
In comp.os.linux.misc, on Mon 24 April 2006 02:29, news@celticbear.com
<news@celticbear.com> wrote: > > news@celticbear.com wrote: >> Just installed Fedora Core 5. [snip] >> >> Forbidden >> You don't have permission to access / on this server. >> Apache/2.2.0 (Fedora) Server at 192.168.0.58 Port 80 [snip] >> >> I searched the newsgroups for possible fixes and based on what I >> found I checked such things properly formed <Directory>, define >> VirtualHost, AllowOverides. >> >> Not sure what else I can do. [snip] >> > > Immediately after posting this, I found a newsgroup comment regarding > SELinux. [snip] > Hope this s someone else with this problem! I'm sure it will others. Thank you for taking time to post the solution. -- Robert HULL Archival or publication of this article on any part of thisishull.net is without consent and is in direct breach of the Data Protection Act |
|
|
|
24/04/2006, 12h12
|
#5 |
|
Messages: n/a
Hébergeur: |
Re: 403 error on new Apache 2.2 install
In comp.os.linux.misc, on Mon 24 April 2006 02:29, news@celticbear.com
<news@celticbear.com> wrote: > > news@celticbear.com wrote: >> Just installed Fedora Core 5. [snip] >> >> Forbidden >> You don't have permission to access / on this server. >> Apache/2.2.0 (Fedora) Server at 192.168.0.58 Port 80 [snip] >> >> I searched the newsgroups for possible fixes and based on what I >> found I checked such things properly formed <Directory>, define >> VirtualHost, AllowOverides. >> >> Not sure what else I can do. [snip] >> > > Immediately after posting this, I found a newsgroup comment regarding > SELinux. [snip] > Hope this s someone else with this problem! I'm sure it will others. Thank you for taking time to post the solution. -- Robert HULL Archival or publication of this article on any part of thisishull.net is without consent and is in direct breach of the Data Protection Act |
|
|
|
| Outils de la discussion | |
|
|
