Fedora Servers :: File Permissions - Get A 403 Forbidden ?
Jul 28, 2011
I have a web server set up, and for a while I just let it show the default "test" page, but now I am wanting to actually show something of my own.
I downloaded a couple templates from the internet (free ones), and copied the first one to the /var/www/html folder (including subfolders for ./images and such), and it used an index.php file, but when viewing in my browser, it showed the actual text of the file, not the graphics and images and stuff.
So I deleted those files and "installed" the second template, which uses an index.html file instead.
I am once again getting the default "Apache is running but not configured" page again, even though I have verified multiple times that the index.html file is located in /var/www/html
if I include the index.html file in the path to my website, I get a 403 Forbidden, so I'm thinking it has to do with file ownership or permissions.
I placed the files there as "root", and have tried several combinations of possible permissions (root:root is the owner:group) without any luck.
before i using fedora 14, i was used fedora 8.... no problem in setting web server, all client (windows XP) can access my resources in var/www/html/index.html but after upgrade to fedora 14.... this is a problem
"forbidden you don't have permission to access.... apache/2.2.16 (Fedora) server at 192.168.1.1 port 80" i had disable firewall also set SELinux to permissive
the hard drive on my web server died so I replaced it and installed Fedora 15. I have been installing the OS on a small drive and then mounting other drive(s) for storage and did the same thing here. The problem is that I cannot get Apache to follow symlinks. Apache is partially working, it will serve my index.html page in the web page root directory and I made another directory called webtest and put some files in, and that worked fine. I made a symlink from the root directory to a folder on the mounted drive but when I try to access it, it gives me the old 403 Forbidden error. I also made a similar link in the webtest directory, I can view the other files in that directory but it does not show the link - also, trying to force it by typing the full path in the browser gives the same 403 error.
I have checked the permissions and SELinux types (using ls -Z) and they seem to be fine and I cannot find any .htaccess files. All the files on the mounted drive are owned by www:www but I also tried setting the user and group to www in httpd.conf and it still gave the same issue, so I changed them back to apache. I've been reading posts and sites on this for hours now and I'm still lost. I can post results of log files if they are of any use, I just wasn't sure what to post because it is somewhat working.
I am running a few virtual domains on Apache/Fedora 9. I have some domains working fine but when I tried to put up another one today I get "Directory index forbidden by Options directiveL : /home/jek/www/AAA/" Now here's the weird part. That message appeas in the error log for domain AAA, whereas the new domain is BBB and has it's own log files defined in httpd.conf. On the browser the Fedora test page is displayed. SELinux is turned off.
this costed me a whole day of trying and retrying. I set up a small home server with apache, php, and mysql.
System infos: Linux 2.6.31-22-generic-pae Ubuntu 9.10 Karmic Server edition Apache/2.2.12 (Ubuntu)
Until now, it served happily a couple of sites, with no problems. But now, I wanted to set up my ftp server to point to the same directory as one of the sites, for me to be able to upload and manage files via ftp. As a server I normally use proftpd. With my usual config, proftpd runs with its own user and simulates the user ftpuser:ftpgroup when creating files. So I just changed all the files to be owned by this user and group. Permissions set to 770.
Everything works fine, and I'm able to access the data via ftp. BUT, when I try to browse my site the usual way (i.e. point firefox to its address) a 403 forbidden error is issued. Of course, you will say: you didn't allow access to apache. Well, I remembered that right away, and added the user www-data to the ftpgroup user. Now I espect apache to be able to read and serve the files.
Still same problem. 403. The apache error log is full with "permission denied" errors. After many attempts, I logged in as the user www-data, and tested access to the files. This way I'm able to cd into the directory, and read-write the files with nano. As a test, I tryed the other way around. Setting www-data:www-data as the owner of the files, and adding the ftpuser to the www-data group. This way apache works, but proftpd does not. Most probably it has something to do with a misunderstanding of groups permissions or the way this two deamons access the files.
I have apache working,i have users set under admin group in /home/admin/username/html that is with an html publicfolder at the end, now permissions are set right, /html is set to mode 777, and the contents also inside them. But everytime i do a 10.0.11.25/~les i get a damn forbidden error code, its got me so pissed off and i dont' know whats the problem. This is the error i get: Forbidden 403 You don't have permission to access /~les on this server.
[Tue May 05 19:37:48 2009] [notice] Apache/2.2.11 (Unix) DAV/2 PHP/5.2.6 configured -- resuming normal operations [Tue May 05 20:44:30 2009] [error] [client 10.3.0.254] (13)Permission denied: access to /~les denied
I've installed webdav on my server and I can access it fine through cadaver. However, when I try to access it via nautilus, I get Forbidden. It is NOT secured (SSL). When I try to access it via firefox, I get an error since I DO NOT have "Options Indexes" in my apache config file. If I add this option in, then I can browse the root direction and webdav folder via firefox, but still not from nautilus. what other information you need. I've googled and searched the forums for awhile, but not "solutions" I found have worked for me. I want the webdav folder to just be a single folder within the direction, so this is how I have my config file setup:
As a side-note...when I included "Option Indexes", it allowed me to view the passwd.dav file from firefox!That doesn't seem very good...
on certain folders on a samba-server I would like to allow everyone everything.(Note: This refers to the filesystem-permissions. External security is cared for by samba. No problem here)That means: every local user and every remote user should be able to fully create, delete and modify every file in certain folders and all subfolder of these folders. This should include file contents and timestamps and permissions. And it should include modifying files owned by someone else, again meaning create/delete/modify/timestamp etc.
I have a recently setup my first linux server (hardy) and am having problems with the permissions for a log file being changed. I believe this is caused by syslogd, but am not sure how to correct it. Bacula will report it is unable to start a backup because it is unable to open the log file (/var/lib/bacula/log) "permission denied". After changing the owner from syslog to bacula, the backup will resume. However, the following day I encounter the same problem because the owner of the log has been changed back to syslog.I see where the permissions for logs are altered in sysklogd, but I am not certain how to make bacula exempt or if this is the right approach.
Is ACL the best way to ensure the permissions of newly created files? Basically I have a directory: /data/department
I've done chmod g+s on it so the group is correct on new files but I want new files to also have 775 permissions so the rest of the group can access these files fully. Currently they are created with the default 755 (which I want still every where out side of /data/department ).
Trying to setup a file server for a small group of users and I am in need of help with file permissions with Ubuntu Server 10.10.
I have a single share mapping (ex /media/hdd1/share1). There are several folders that everyone will need read/write/edit permissions and there will be a few folders that all users will need read permissions and a couple of users will need read/write/edit permissions.
I have tried several things and as long as I create the folders/files through ssh using sudo, the permissions are fine, but when the users create file and folders through their computers (mixture of Windows and Mac) that user becomes the owner and no one else can write or edit those files.
I am using SAMBA and though it was a config issue with that but I logged each user directly into the server with the same issue.
I tried sudo chmod 777 /media/hdd1/share1 but all newly created files have the above issue.
What is recommended way to set permissions of folders VAR/WWW for use with apache in 11.04? I would like to let the user "ABC" have access to read/write the website files in this directory. How should permissions on these files be set?
This is probably a pretty basic question seeing as I'm pretty new to Ubuntu Server. I'm running a simple website from my Ubuntu Server machine with The files are all stored in /var/www/ and then subdirectories. The problem is that when I add files through FTP I need to go and change all of the file permissions since by default they do not have read access so can't be accessed through a web browser on another machine.How can I make the default permissions readable for the directory and all new files that will be moved in it
I'm working on a remote Ubuntu 9.10 server, which is accessed via VPN. I installed Joomla, but had difficulty uploading new components, which I traced to a file permissions problem. I used FileZilla to FTP onto the site and tried to make the chmod changes I needed, but the commands kept failing. Eventually, I contacted the sys admin and told him I thought that there was an ownership problem with the directories. He checked and told me that I was logging in with exactly the same user name and password that he was using (it's not a live system currently) and that he could make chmod changes without any problems. Because all my attempts were still failing, he eventually did the following:
chown -R administrator:administrator /var/www
/var/www is where all the Joomla files are stored and Administrator is the user name.Now I find that when I run a chmod command in FileZilla, the server reports that it worked (see below):
However, if I go back and check the tmp folder permissions, I find that they are still set to 777.This still looks like an ownership problem to me, but I don't understand why the server seems to think that the chmod changes are working, when they aren't.
I have a little problem: I have a share folder on Ubuntu server: - Dump That folder is share with SAMBA and everyone can put files on it My problem is the following: When someone create a folder, the folder permissions are automatically set with: (let's take my username: Yann)
Owner: Yann Group: Yann
Clearly that's wrong.. I want the Group to be auto set has "users" so everyone can access the folders on that share. Anyone know how to change this ? chmod and chown is getting a bit boring
I had a major raid event recently which caused my Ubuntu 9.04 server to recover part of its file journal on the system partition. This caused some of the file permissions to go all funny and I now need to change them manually.
What the file permissions should for the following folders: /etc/ /home/ /lost+found/ /mnt/ /root/ /sbin/ /srv/ /tmp/
The server is running and I fixed the some of the ownership issues already. I use a basic LAMP setup with samba, and proftp.
Looking for some help writing a simple script on my dapper server. I want the script to play a short 5 second wmv sound file. So I can tell another program to run the script. What player can or should I use and how can I set permissions on the file and script so my program has access to it . Total newb here
I am using the Desktop Version of Ubuntu Lucid Lynx, but I am posting here because I think all of you server guru's can help me. I am setting up my desktop as a mobile development server. I am hoping to eventually have it work with an intranet. Anyways I am trying to configure this and I hit a snag.
I have a 403 forbidden error. I've read around and I thought it might have something to do with SELinux
i have strange problem on my wordpress-powered blog.while i'm connecting to server by ssh or physical console, everything works fine.however, when i tries to logout almost immediately 403 forbidden error pops up on every pages of my website.if there are two or more connections (like physical console and ssh terminal), terminate one of them does not cause 403 forbidden. but it shows 403 forbidden error page right after i terminated all connections.i can find two types of error in apache error.log while it shows 403 forbidden page.
(13)Permission denied: access to / denied
(13)Permission denied: /home/user/.htaccess pcfg_openfile: unable to check htaccess file, ensure it is readable(one strange part is my DocumentRoot is /home/user/www not /home/user)i gave 755 permission to all files and directories in DocumentRoot(which is /home/user/www), but still apache show me the forbidden error page right after logout.i use ubuntu 10.04 lts and i use apt-get command to install all package that i'm using now (apache,mysql,php,mrtg,snmpd,vsftpd,ssh,etc).these are my virtual host config file and apache2.conf. (httpd.conf is empty)
Since I upgraded to 11.04 on my Server edition I have been experiencing some problems with my FTP-server and Apache. Apache just says that the page is "forbidden" if I'm not logged in on the server, which means I need to go to the server and physically log in or I can do it trough ssh but then when I close my ssh client on my work computer the page is "forbidden" again. And I cant seem to reach the FTP-server from an external address so I need to be in the network to access it.
It says something like: Code: An error occurred opening that folder on the FTP Server. Make sure you have permission to access that folder. 200 Switching to ASCII mode. 227 Entering Passive Mode (192,168,0,194,233,166)
Every time I try to change file or folder permissions on a separate internal drive in ubuntu 10.10 desktop in sudo file manager, It sets it right back to the way it was before and doesn't save the permissions I want to change it to. The files aren't critical system files that are not even existent on this hard drive.
Its on a completely separate drive, Yet aren't I suppose to be in control of what gets changed to what? Instead of a Operating System doing something just for my safety? A simple AVI files permissions being changed shouldn't hurt anything. How to I stop ubuntu 10.10 from auto setting the permissions of my folders and files? Its really starting to me off right now. I've been looking around on google for Auto reset permissions for ubuntu, Haven't found one word about it. Yet I'm just going to assume someone might know how to resolve this? Or has dealed with this before.
I'm just trying to Forcefully set my folders on my separate drive all to 777 because they are all 775 and 755 and I can only access them with Write privileges if I run the SUDO file manager which I really hate having to do every so often I'm sure you can relate to how annoying it is to have to open up terminal and type something in to open a fully priviledged file manager.
I am still a newbie at Linux, but have managed to get about 6 different Kubuntu systems up and all running a localhost test web server. I always start out with a server .iso and after installing I add a kubuntu desktop GUI. I have an old laptop that was running 8.04 server w/xubuntu desktop gui and it was running my test web pages through localhost. I got a wild hair and thought it was about time to upgrade to 10.04 server. I always do a complete install and this time I tried lubuntu desktop GUI. I really like lubuntu but for some reason can not get localhost to run. I get a 402 forbidden error. same error with 127.0.0.1 Here is what I get when I run this command
I have installed Redmine according to the instructions on [url] according to the mod_cgi instructions which seem to be the easiest to follow.
The script installed in the installation directory was called 'dispatch.fcgi', and not parsing when I visited the page through the browser, just displaying the contents of the script. OK, so I installed the apache mod libapache2-mod-fastcgi using apt-get. Then 'a2enmod fcgid' followed by an apache restart.
Now when I visit the Redmine folder through the web browser I get 'Forbidden You don't have permission to access /redmine/dispatch.fcgi on this server.'
I checked to ensure www-data owns all files and has correct permissions to the folder. But this doesn't seem to work.
Using httpd - everything usually works but I have written a cgi script and placed in cgi-bin but i cannot access this dir and keep getting forbidden messages. I have tried adding my root and usual user to the /etc/group file against the user stipulated in the httpd.conf file but i still can't access the cgi script i wrote (in browser - localhost/cgibin/myscrippt.cgi) when i place it in the cgi-bin under htdocs. i have also chmod 755 directory and files.
This morning my NFS shares mount but permissions are all NOBODY NOBODY. If I ssh to the server to check the drive(s) permissions are all as they should be! Exports there are fine as is my local fstab. I hope I am just suffering and update glitch because they usually go-away in a subsequent update.
I just spent an hour and a half trying to track it down with no success - time to give up before I do real damage (to which I am prone ).