403 error
Johan Lithander
johan.lithander at teligent.se
Tue Sep 19 07:01:44 UTC 2006
_____
From: redhat-install-list-bounces at redhat.com
[mailto:redhat-install-list-bounces at redhat.com] On Behalf Of Nair,
Murlidharan T
Sent: den 18 september 2006 21:36
To: Getting started with Red Hat Linux
Subject: RE: 403 error
_____
From: redhat-install-list-bounces at redhat.com on behalf of Johan Lithander
Sent: Mon 9/18/2006 1:47 PM
To: Getting started with Red Hat Linux
Cc: Getting started with Red Hat Linux
Subject: Re: 403 error
> I am getting the following error while trying getting a virtualHost up and
> running.
>
> Forbidden
>
>
> You don't have permission to access / on this server.
>
> Additionally, a 403 Forbidden error was encountered while trying to use an
> ErrorDocument to handle the request.
>
> My main server is running fine www.bioinformatics.iusb.edu but
> splice.bioinformatics.iusb.edu which is a virtual host gives the above
> error. Anyone familier with this one. Greatly appreciate your help.
>
> Thanks../Murli
>
>
>
> _______________________________________________
> Redhat-install-list mailing list
> Redhat-install-list at redhat.com
> <https://www.redhat.com/mailman/listinfo/redhat-install-list>
https://www.redhat.com/mailman/listinfo/redhat-install-list
> To Unsubscribe Go To ABOVE URL or send a message to:
> redhat-install-list-request at redhat.com
> Subject: unsubscribe`
Do You have SELinux enabled (getenforce) ?
If that's the case, verify that the content files (html) is set to the
correct "domain" (ls -Z). if not set the domain for the files using the
chcon command, i.e. chcon --reference=/var/www/html [content files].
Or simply turn SElinux off (IMO not recommended).
/J
How do I check if SELinux is enabled?
with the utility getenforce. If getenforce reports enforcing, SELinux is
eanbled and "active".
Here is the output of my ls -Z
[root at bioinformatics webservice]# ls -Z splicehtml
-rwxr-xr-x root root root:object_r:file_t index.html
That file does not have the correct security context (if SELInux is
eanbled). Should say something about httpd_sys_content_t
Its failing when its trying to access this file. In your example above what
does --reference=/var/www/html mean?
It instructs chcon to use a reference file/directory when setting the
security context on a file/directory. In other words, it will set the same
security context on the files/directory that the reference file/directory is
set to. This is an easiy way to set the "correct" security context without
understanding all the bits and pieces of SELinux.
/J
Is the above set correct ?
Here is a little snippet of my httpd.conf file let me if I have everything
correct in there
Virtual hosts
#
# Virtual host Default Virtual Host
NameVirtualHost *:80
<VirtualHost *:80>
ServerName bioinformatics.iusb.edu
VirtualDocumentRoot /var/www/html
ScriptAlias /cgi-bin/ "/var/www/cgi-bin/"
ErrorLog "/var/log/httpd/error_log"
ServerSignature email
DirectoryIndex index.php index.html index.htm index.shtml
<Directory "/">
Options FollowSymLinks
AllowOverride None
#############################
</Directory>
<Directory "/var/www/html">
Options Indexes Includes FollowSymLinks
AllowOverride None
Allow from all
Order allow,deny
</Directory>
<Directory "/var/www/icons">
Options Indexes MultiViews
AllowOverride None
Allow from all
Order allow,deny
</Directory>
<Directory "/var/www/cgi-bin">
Options ExecCGI
AllowOverride None
Allow from all
Order allow,deny
</Directory>
#############################
LogLevel warn
# HostNameLookups off
</VirtualHost>
<VirtualHost *:80>
ServerName splice.bioinformatics.iusb.edu
VirtualDocumentRoot /mnt/webservice/splicehtml
ScriptAlias /cgi/ "/mnt/webservice/splicecgi-bin/"
ErrorLog "/var/log/httpd/error_log"
DirectoryIndex index.php index.html index.htm index.shtml
<Directory "/mnt/webservice/splicehtml">
Options Indexes Includes FollowSymLinks
AllowOverride None
Allow from all
Order allow,deny
</Directory>
<Directory "/var/www/icons">
Options Indexes MultiViews
AllowOverride None
Allow from all
Order allow,deny
</Directory>
<Directory "/mnt/webservice/splicecgi-bin">
Options ExecCGI
AllowOverride None
Allow from all
Order allow,deny
</Directory>
</VirtualHost>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: winmail.dat
Type: application/ms-tnef
Size: 8902 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/redhat-install-list/attachments/20060919/b77fde6d/attachment.bin>
More information about the Redhat-install-list
mailing list