I think my apache2 is owned and running as root. I don't know if I installed it like a noob a while ago but I would like to secure it now especially since I just figured out how setup virtual hosts and I may want to eventually let people host sites on my server and I obviously don't want to have to give them root access. How can I confirm that apache2 is running as root and how do I take it away from the root user?
I have newly installed Ubuntu server 9.10 in my server machine.And it has tomcat6 in itself.My friend have built a Java software in Fedora ,and he wants to move it to the new server.But problem is the directory structure is different between two systems.He has to either change his directory setting in his software or change the default tomcat6 ROOT directory. But I have not find any configuration file can do this job(change the tomcat default ROOT directory ).
I am using the Desktop Version of Ubuntu Lucid Lynx, but I am posting here because I think all of you server guru's can help me. I am setting up my desktop as a mobile development server. I am hoping to eventually have it work with an intranet. Anyways I am trying to configure this and I hit a snag.
I have a 403 forbidden error. I've read around and I thought it might have something to do with SELinux
i have strange problem on my wordpress-powered blog.while i'm connecting to server by ssh or physical console, everything works fine.however, when i tries to logout almost immediately 403 forbidden error pops up on every pages of my website.if there are two or more connections (like physical console and ssh terminal), terminate one of them does not cause 403 forbidden. but it shows 403 forbidden error page right after i terminated all connections.i can find two types of error in apache error.log while it shows 403 forbidden page.
Code:
(13)Permission denied: access to / denied
Code:
(13)Permission denied: /home/user/.htaccess pcfg_openfile: unable to check htaccess file, ensure it is readable(one strange part is my DocumentRoot is /home/user/www not /home/user)i gave 755 permission to all files and directories in DocumentRoot(which is /home/user/www), but still apache show me the forbidden error page right after logout.i use ubuntu 10.04 lts and i use apt-get command to install all package that i'm using now (apache,mysql,php,mrtg,snmpd,vsftpd,ssh,etc).these are my virtual host config file and apache2.conf. (httpd.conf is empty)
Since I upgraded to 11.04 on my Server edition I have been experiencing some problems with my FTP-server and Apache. Apache just says that the page is "forbidden" if I'm not logged in on the server, which means I need to go to the server and physically log in or I can do it trough ssh but then when I close my ssh client on my work computer the page is "forbidden" again. And I cant seem to reach the FTP-server from an external address so I need to be in the network to access it.
It says something like: Code: An error occurred opening that folder on the FTP Server. Make sure you have permission to access that folder. 200 Switching to ASCII mode. 227 Entering Passive Mode (192,168,0,194,233,166)
I am on mac os x and whenever I make aliases in my apache config file to point to folders outside of main web document root folder, I get access forbidden. I have chmod -R 777 the whole destination directory (to test it) and still no go. Access forbidden. I have also tried pointing directly to [URL].
I am still a newbie at Linux, but have managed to get about 6 different Kubuntu systems up and all running a localhost test web server. I always start out with a server .iso and after installing I add a kubuntu desktop GUI. I have an old laptop that was running 8.04 server w/xubuntu desktop gui and it was running my test web pages through localhost. I got a wild hair and thought it was about time to upgrade to 10.04 server. I always do a complete install and this time I tried lubuntu desktop GUI. I really like lubuntu but for some reason can not get localhost to run. I get a 402 forbidden error. same error with 127.0.0.1 Here is what I get when I run this command
before i using fedora 14, i was used fedora 8.... no problem in setting web server, all client (windows XP) can access my resources in var/www/html/index.html but after upgrade to fedora 14.... this is a problem
"forbidden you don't have permission to access.... apache/2.2.16 (Fedora) server at 192.168.1.1 port 80" i had disable firewall also set SELinux to permissive
I have a web server set up, and for a while I just let it show the default "test" page, but now I am wanting to actually show something of my own.
I downloaded a couple templates from the internet (free ones), and copied the first one to the /var/www/html folder (including subfolders for ./images and such), and it used an index.php file, but when viewing in my browser, it showed the actual text of the file, not the graphics and images and stuff.
So I deleted those files and "installed" the second template, which uses an index.html file instead.
I am once again getting the default "Apache is running but not configured" page again, even though I have verified multiple times that the index.html file is located in /var/www/html
if I include the index.html file in the path to my website, I get a 403 Forbidden, so I'm thinking it has to do with file ownership or permissions.
I placed the files there as "root", and have tried several combinations of possible permissions (root:root is the owner:group) without any luck.
I have installed Redmine according to the instructions on [url] according to the mod_cgi instructions which seem to be the easiest to follow.
The script installed in the installation directory was called 'dispatch.fcgi', and not parsing when I visited the page through the browser, just displaying the contents of the script. OK, so I installed the apache mod libapache2-mod-fastcgi using apt-get. Then 'a2enmod fcgid' followed by an apache restart.
Now when I visit the Redmine folder through the web browser I get 'Forbidden You don't have permission to access /redmine/dispatch.fcgi on this server.'
I checked to ensure www-data owns all files and has correct permissions to the folder. But this doesn't seem to work.
Using httpd - everything usually works but I have written a cgi script and placed in cgi-bin but i cannot access this dir and keep getting forbidden messages. I have tried adding my root and usual user to the /etc/group file against the user stipulated in the httpd.conf file but i still can't access the cgi script i wrote (in browser - localhost/cgibin/myscrippt.cgi) when i place it in the cgi-bin under htdocs. i have also chmod 755 directory and files.
the hard drive on my web server died so I replaced it and installed Fedora 15. I have been installing the OS on a small drive and then mounting other drive(s) for storage and did the same thing here. The problem is that I cannot get Apache to follow symlinks. Apache is partially working, it will serve my index.html page in the web page root directory and I made another directory called webtest and put some files in, and that worked fine. I made a symlink from the root directory to a folder on the mounted drive but when I try to access it, it gives me the old 403 Forbidden error. I also made a similar link in the webtest directory, I can view the other files in that directory but it does not show the link - also, trying to force it by typing the full path in the browser gives the same 403 error.
I have checked the permissions and SELinux types (using ls -Z) and they seem to be fine and I cannot find any .htaccess files. All the files on the mounted drive are owned by www:www but I also tried setting the user and group to www in httpd.conf and it still gave the same issue, so I changed them back to apache. I've been reading posts and sites on this for hours now and I'm still lost. I can post results of log files if they are of any use, I just wasn't sure what to post because it is somewhat working.
I am running a few virtual domains on Apache/Fedora 9. I have some domains working fine but when I tried to put up another one today I get "Directory index forbidden by Options directiveL : /home/jek/www/AAA/" Now here's the weird part. That message appeas in the error log for domain AAA, whereas the new domain is BBB and has it's own log files defined in httpd.conf. On the browser the Fedora test page is displayed. SELinux is turned off.
I have apache working,i have users set under admin group in /home/admin/username/html that is with an html publicfolder at the end, now permissions are set right, /html is set to mode 777, and the contents also inside them. But everytime i do a 10.0.11.25/~les i get a damn forbidden error code, its got me so pissed off and i dont' know whats the problem. This is the error i get: Forbidden 403 You don't have permission to access /~les on this server.
Code:
[Tue May 05 19:37:48 2009] [notice] Apache/2.2.11 (Unix) DAV/2 PHP/5.2.6 configured -- resuming normal operations [Tue May 05 20:44:30 2009] [error] [client 10.3.0.254] (13)Permission denied: access to /~les denied
In /etc/apache2/sites-available/default, I changed my 'Document Root' and 'Directory' from /var/www to /var/www/newdir.have an index.php file in /var/www/newdir I use to authenticate, but when I try to redirect back to index.html in /var/www, i get a 404 error.Anyone have info / know where the link to this discussion is
I am having dificulting with www-data as the user for apache2. I would like to change the user to my desktop user so that I can limit access to one unknown users. I am also having problems with my wordpress website and the permalink settings. which file I should look at modifing and what I need to modify?
I am using Ubuntu Server 10.04 64bit. I am getting an Apache2 start up error after I setup my certificates and configure Apache2 for HTTPS. At the point on start up where I need to type in my certificate pass code I get a lockup due to the Apache2 process being in a hung state. I reboot if needed and switch to console tty2. When I type in the command.
Code:
I get the following error.
Code:
To correct the problem I do this.
Code:
From the output of the command above I look for the apache2 process and make note of its process ID. Then, I kill that process ID. For example, the command below has an apache2 process ID of 1131.
Code:
Next, when I run this command.
Code:
The apache2 server starts up and asks for my certificate password, accepts it when I type it in, and runs perfectly fine afterward.
Fortunately this instance of Ubuntu Server is running inside a VMWare virtual machine. I can just "pause" the virtual machine if I need to rather than going through this crude and tedious start up process too frequently.
Crude and tedious are feelings I'm having too frequently lately with Ubuntu Server.
So I've got a box running 10.04LTS Server, and on it is running the latest build of Apache2.It's a home box - a server set up for the sole purpose of experimenting and having fun with. So far, the fun is mostly breaking it over SSH and then fixing it when I get home and can log into it via recovery.What I really want to do is to get this box set up with Apache2 the way it seems like it was designed - with Apache2 serving web pages from its default file location (/var/www) but also being able to log in and upload/download new web page files to that directory over SCP or SFTP. I keep hitting snags.Here's what I've done so far:
1. The server is set up in a DMZ at home and my router updates a Dynamic DNS record; so far I can SSH into it no problem.
2. Apache is working. I get my "it works!" page when I enter either the IP or the dyndns domain name.
3. SFTP is sort of working. I can log on using WinSCP and see the files and download them, but I can't upload to the default directory with my normal login.
Here's my issues: 1. I want to set up Apache *correctly*. To me, that means leaving it pointing to the default directory, but still being able to upload to that directory. I have not (and probably will not) enable the root account. I've set the permissions to 755. I've tried chown'ing the directory, but then it seems I can't view the webpages.As a workaround, I created a www folder in my default user home directory and pointed Apache2 there in the 'default' file in /etc/apache2/sites-available. The changes read as follows:
That gives me a workaround for the default directory SFTP issue, but I would rather learn what I need to do to have it set up and working with default values.
2. You may notice I added Includes under the Options. My goal is to get server-side includes working. But they aren't. I have some existing webpages my work has set up - I using these as a template to use to adapt a flash movie I made to a specific resolution, as well as to learn how to optimize my flash for a webpage. Our webhost uses virtual hosting; I am not yet doing so. I'm not sure what they've done to set up the server-side includes, but the files they are using are all html files - no shtml. The include files themselves have either .htm or .html extensions. All of the pages have .html extensions.
My reading said that I need mod_include installed in Apache2. Where can I check to see that it is installed? Where do I need to add the Includes under Options?Is it in the right place? And finally, where do I need to add XBitHack on to enable it? This is the method that Apache suggests, but the documentation offers no clue as to where to put it. Most of the documentation out there refers to apache.conf, but that's the Apache 1.3 way of doing things.I really just want this to be set up according to the defaults as much as possible.I want to have a good working knowledge of Apache and of how to set it up and configure it, but dang it if it isn't a frustrating process.
I'm very baffled by this, I was setting up my mumble server since my old one had a hard disk failure. I was messing around with web registration but decided I didn't want it since this server is really only for a few friends.
So I removed all the mumble-django and apache2 packages required for web registration, but for some reason apache2 is still on my system and listening for connections.
terminal output below to further clarify.
Code: Linux voiceserv 2.6.35-27-generic #48-Ubuntu SMP Tue Feb 22 20:25:29 UTC 2011 i686 GNU/Linux Ubuntu 10.10 Welcome to Ubuntu!
I have a problem with apache server. The thing is - I can connect to my server on localhost, but when I try to connect from local network, it doesn't reply.
I can ping my web server from lan. I can ssh my web server from lan.
I haven't modified iptables since install except these commands>
Code: iptables -A INPUT -p tcp -s 0/0 --sport 1024:65535 -d $MY_SERVER_IP --dport 80 -m state --state NEW,ESTABLISHED -j ACCEPT iptables -A OUTPUT -p tcp -s $MY_SERVER_IP --sport 80 -d 0/0 --dport 1024:65535 -m state --state ESTABLISHED -j ACCEPT
I've used mod_rewrite to rewrite my apache2 root (my.server.com/) to point to /var/www/drupal6/ instead of /var/www/. I also have a script installed in my cgi-bin (/usr/lib/cgi-bin) but since the rewrite I can't seem to access it. When I go to my.server.come/cgi-bin/test.pl, I get a page not found from my drupal.
Is there a way I can access my cgi-bin without resorting to accessing my drupal through my.server.com/drupal6/?
Background: I have installed drupal CMS which has a base address of my.server.com/drupal6/ as it resided in /var/www/drupal6/. However I wanted users to be able to access it as my.server.com/ so I added the following into my httpd.conf
Code: NameVirtualHost *:80 <Directory /var/www/drupal6> RewriteEngine on RewriteBase /
I've installed webdav on my server and I can access it fine through cadaver. However, when I try to access it via nautilus, I get Forbidden. It is NOT secured (SSL). When I try to access it via firefox, I get an error since I DO NOT have "Options Indexes" in my apache config file. If I add this option in, then I can browse the root direction and webdav folder via firefox, but still not from nautilus. what other information you need. I've googled and searched the forums for awhile, but not "solutions" I found have worked for me. I want the webdav folder to just be a single folder within the direction, so this is how I have my config file setup:
[Code]....
As a side-note...when I included "Option Indexes", it allowed me to view the passwd.dav file from firefox!That doesn't seem very good...
How to resolve this apache2 problem I keep getting, I have installed a debian LAMP server with ispconfig3 and everytime I reboot apache fails to start, I don't know and I have done some research but nothing seems to work, which leads me to reinstall everything from scratch again, I think I have reinstalled at least 10x or more.
Very new to Ubuntu (linux) in general and read various forum and threads to get .pl file to run on a new Ubuntu 9.10.My cgi-bin is in /var/www/site/cgi-bin. The server will run 2 websites site1 and site 2. Site2 is html only and site1 has some cgi and pl files. Everytime i get to the cgi-bin/other_director the browser tries download the file or even if going directly to index.pl. Please find attached my site-available for both default and site1 for your consideration. I also ran a2ensite site1 and a2ensite site2, the reloaded the apache2 serverQuote:
