David Colville <email@hidden> writes:
>What are your Apache access logs indicating? These will often give
>you a better representation of the issue?
192.168.1.110 - - [23/Nov/2007:08:33:20 -0700] "GET /favicon.ico HTTP/1.1"
403 296
192.168.1.110 - - [23/Nov/2007:08:34:36 -0700] "GET / HTTP/1.1" 403 285
192.168.1.110 - - [23/Nov/2007:08:34:36 -0700] "GET /favicon.ico HTTP/1.1"
403 296
129.215.100.25 - - [23/Nov/2007:08:36:50 -0700] "GET / HTTP/1.1" 403 285
129.215.100.25 - - [23/Nov/2007:08:36:50 -0700] "GET /favicon.ico
HTTP/1.1" 403 296
192.33.97.66 - - [23/Nov/2007:08:36:51 -0700] "GET / HTTP/1.1" 403 285
192.33.97.66 - - [23/Nov/2007:08:36:52 -0700] "GET /favicon.ico HTTP/1.1"
403 296
137.82.3.32 - - [23/Nov/2007:08:37:17 -0700] "GET / HTTP/1.1" 403 285
137.82.3.32 - - [23/Nov/2007:08:37:17 -0700] "GET /favicon.ico HTTP/1.1"
403 296
81.217.140.209 - - [23/Nov/2007:11:33:13 -0700] "GET / HTTP/1.1" 403 285
192.168.1.33 - - [23/Nov/2007:12:16:46 -0700] "GET / HTTP/1.0" 403 -
192.168.1.33 - - [23/Nov/2007:12:16:46 -0700] "GET /favicon.ico HTTP/1.0"
403 -
192.168.1.33 - - [23/Nov/2007:12:17:27 -0700] "GET / HTTP/1.0" 403 273
192.168.1.33 - - [23/Nov/2007:12:19:25 -0700] "GET / HTTP/1.0" 403 273
66.196.97.161 - - [23/Nov/2007:12:25:04 -0700] "GET / HTTP/1.0" 403 273
66.196.97.161 - - [23/Nov/2007:12:25:04 -0700] "GET / HTTP/1.0" 403 273
192.168.1.33 - - [23/Nov/2007:12:52:13 -0700] "GET / HTTP/1.0" 403 273
192.168.1.33 - - [23/Nov/2007:12:52:13 -0700] "GET /favicon.ico HTTP/1.0"
403 284
24.65.236.220 - - [24/Nov/2007:09:16:35 -0700] "GET / HTTP/1.1" 403 285
24.65.236.220 - - [24/Nov/2007:09:16:35 -0700] "GET /favicon.ico HTTP/1.1"
403 296
As you can see, everything gets a 403. Is there something in Apache that
could wrong? Something in the config that would act like a denyall rule?
Config is below:
<VirtualHost 192.168.1.14:80>
ServerName courses.phrd.ab.ca
ServerAdmin email@hidden
DirectoryIndex "index.html" "index.php"
CustomLog '|/usr/sbin/rotatelogs "/var/log/httpd/access_log"
604800' "%h %l %u %t \"%r\" %>s %b"
<Directory "/Library/WebServer/Documents">
Options All +Includes -Indexes +MultiViews +ExecCGI
<IfModule mod_dav.c>
DAV Off
</IfModule>
AllowOverride All
</Directory>
ErrorLog '|/usr/sbin/rotatelogs "/var/log/httpd/error_log" 604800'
ErrorDocument 404 /error.html
LogLevel debug
<IfModule mod_ssl.c>
SSLCertificateFile "/etc/certificates/Default.crt"
SSLEngine Off
SSLCipherSuite
"ALL:!ADH:RC4+RSA:+HIGH:+MEDIUM:+LOW:!SSLv2:+EXP:+eNULL"
SSLLog "/var/log/httpd/ssl_engine_log"
SSLCertificateKeyFile "/etc/certificates/Default.key"
</IfModule>
<IfModule mod_dav.c>
DAVLockDB "/var/run/davlocks/.davlockany_80_default"
DAVMinTimeout 600
</IfModule>
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteRule .* - [F]
RewriteCond %{REQUEST_METHOD} ^TRACE
</IfModule>
<IfModule mod_alias.c>
</IfModule>
DocumentRoot "/Library/WebServer/Documents"
ServerAlias *
</VirtualHost>
>
>How about the permissions on the index page itself rather than that
>directory?
-rwxr-xr-x 1 www admin 183 Sep 12 08:49 index.html
Just to check I removed the original file, made a brand new one with
BBEdit and set permissions to the ones above.
>
>Have you got a realm involved without realising it?
>
I had wondered that myself at first. But no, there are no realms defined
in ServerAdmin.
Gene Anderson
Systems Analyst, Microsoft Certified Professional
Pembina Hills Regional Division No.7
Phone: (780) 674-8535 ext 6860
email: email@hidden
"Passwords are like bubble gum, strongest when fresh, should never be
used by groups and create a sticky mess when left laying around"
-anon
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Macos-x-server mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
http://lists.apple.com/mailman/options/macos-x-server/email@hidden
This email sent to email@hidden
