You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@httpd.apache.org by Andrew Walmsley <an...@ttsltd.com> on 2005/05/20 11:12:14 UTC

[users@httpd] Alias and user directories gives 403 errors

Hi.

I'm trying to duplicate a server setup from one machine running Redhat
9.0 and Apache 2.0.44 to a machine running
Red Hat Enterprise 2.6.9-5.0.5.Elsmp and Apache 2.0.52

The machine was setup, and Apache test page works correctly, tarred over
relevant user directories and Apache conf.d files. This setup works fine
on the old machine.

With UserDir disabled, we use an alias file in conf.d to change /~atx/
to /home/atx/public_html/
Whenever we try to connect to it, 403 errors are given.
Access to /home/atx/public/ is 755 for all directories, home owned by
root, atx & below by atx

To test this I enabled UserDir, but get the same errors for anything
from a user directory.

If I copy the atx directories under the document root, everything works.
If I put a symbolic link to a user directory under document root, it
gives a 403.


Can't find anything relevant on web search (403 is file usually file
permissions, which seem to be correct), or apacheforum.net.
Any help that you can point my way would be greatly appreciated.


Permissions are
drwxr-xr-x   8 root root  4096 May 17 15:38 home
drwxr-xr-x  28 atx    atx    4096 May 17 11:55 atx
drwxr-xr-x   5 atx atx  4096 May 17 14:32 public_html
-rwxrwxr-x   1 atx atx  839 May 17 11:55 hello.php

Httpd.conf is straight from the box. 
Atx.conf is 
########################################################################
######
#
# ATX Apache configuration file
#
########################################################################
######
#
# 1.01 06Aug03 Nic
#
# . Added RedirectMatch for DocumentRoot
#
# . Removed Indexes from Options for <Directory /home/*/public_html>
#
# 1.00 30May03 Nic
#
# Original Version
#
########################################################################
######

#RedirectMatch permanent ^/$ DELETED/

ScriptAlias /~atx/cgi-bin/ "/home/atx/cgi-bin/"

<Directory "/home/atx/cgi-bin">
    AllowOverride None
    Options None
    Order allow,deny
    Allow from all
</Directory>

Alias /~atx/ "/home/atx/public_html/"

<Directory /home/*/public_html>
    AllowOverride FileInfo AuthConfig Limit
    Options MultiViews SymLinksIfOwnerMatch IncludesNoExec
    <Limit GET POST OPTIONS>
        Order allow,deny
        Allow from all
    </Limit>
    <LimitExcept GET POST OPTIONS>
        Order deny,allow
        Deny from all
    </LimitExcept>
</Directory>


-- 
Andrew Walmsley
Software Development
Travel Technology Systems Ltd.
2 Nile Close, Riversway
Preston, PR2 2XU
Tel: 01772 766800
Fax: 01772 766801

(please note the new address and contact number)

This Email may contain information of a confidential and/or privileged
nature.
The information transmitted is intended only for the benefit of the
person or entity to which it is addressed and must not be copied or
forwarded without the sender's express permission.
This Email does not reflect the views or opinions of Travel Technology
Systems Ltd.
This Email is without prejudice.
This Email does not constitute an agreement either explicitly or
implicitly with Travel Technology Systems Ltd. 

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

Re: [users@httpd] Alias and user directories gives 403 errors

Posted by Joe Orton <jo...@redhat.com>.

On Fri, May 20, 2005 at 10:12:14AM +0100, Andrew Walmsley wrote:
> I'm trying to duplicate a server setup from one machine running Redhat
> 9.0 and Apache 2.0.44 to a machine running
> Red Hat Enterprise 2.6.9-5.0.5.Elsmp and Apache 2.0.52
> 
> The machine was setup, and Apache test page works correctly, tarred over
> relevant user directories and Apache conf.d files. This setup works fine
> on the old machine.
> 
> With UserDir disabled, we use an alias file in conf.d to change /~atx/
> to /home/atx/public_html/
> Whenever we try to connect to it, 403 errors are given.
> Access to /home/atx/public/ is 755 for all directories, home owned by
> root, atx & below by atx

This is probably due to the SELinux policy - please see, e.g:

http://fedora.redhat.com/docs/selinux-apache-fc3/

http://fedora.redhat.com/docs/selinux-apache-fc3/sn-user-homedir.html

there is RHEL-specific SELinux information in the RHEL documentation,
too.

Regards,

joe

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org