Hello All,

I've just installed apache2 for the first time (after years of using Apache "1") and after a clean install, I type in:

http://localhost/

and get this:

>>>>>>>>>>>>>>
Access forbidden!

You don't have permission to access the requested directory. There is either no index document or the directory is read-protected.

If you think this is a server error, please contact the webmaster.
Error 403
localhost
Sat Jan 6 14:57:13 2007
Apache/2.2.0 (Linux/SUSE)
<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<

The directories are not read protected, and I just made an index.html file, but still no luck?!?!

I keep on seeing this in the error logs:
>>>>>>>>>
[Sat Jan 06 15:31:44 2007] [error] [client 127.0.0.1] client denied by server configuration: /srv/www/htdocs/
<<<<<<<<<

So I checked the Doc Root:
default-server.confocumentRoot "/srv/www/htdocs"



I've changed the httpd-userdir.conf file and added this:

UserDir /srv/www/htdocs

<Directory /srv/www/htdocs>
AllowOverride FileInfo AuthConfig Limit Indexes
Options MultiViews Indexes SymLinksIfOwnerMatch IncludesNoExec
<Limit GET POST OPTIONS>
Order allow,deny
Allow from all
</Limit>
<LimitExcept GET POST OPTIONS>
Order deny,allow
Deny from all
</LimitExcept>
</Directory>

But still no luck! (Yes, I did check if the "LoadModule userdir_module /usr/lib64/apache2-prefork/mod_userdir.so" was being executed...)


What am I missing? Are there extra config steps I need to follow in order to get this Apache2 config going?

Ha!!

I found the "solution":

>>>>>
<Directory />
Options None
AllowOverride None
Order deny,allow
# Deny from all
</Directory>

<<<<<

BUT I wonder if this not going to expose any other vulnerabilities?

Does anybody know if this is the best way of doing this?

I have had the same problem so many times now and couldn't figure out what was wrong! I am using Suse 10.2.
I fixed it in a much more secure way like this:

# forbid access to the entire filesystem by default
<Directory />
Options None
AllowOverride None
Order deny,allow
Deny from all
</Directory>
# public_html dir
<Directory /srv/www/htdocs>
Options None
AllowOverride None
Order deny,allow
Allow from all
</Directory>

Is this just a Suse problem? Why should we have to manually edit config files when YaST is supposed to do this for us?

Hi everybody, i changed my httpd.conf. but i have problem yet!! this is my httpd.conf file:
<Directory />
Options None
AllowOverride None
Order deny,allow
allow from all
</Directory>
# public_html dir
<Directory /srv/www/htdocs/>
Options None
AllowOverride None
Order deny,allow
allow from all
</Directory>
in addition i use opensuse

If you have SELINUX security enabled then try disabling it and see if that makes any difference.