You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@httpd.apache.org by Jeffrey Walton <no...@gmail.com> on 2020/04/26 04:16:35 UTC
[users@httpd] What search permissions are missing from where?
Hi Everyone,
I'm trying to configure a test server on CentOS 7. I'm catching this
error in error_log:
[Sun Apr 26 00:02:13.215014 2020] [core:error] [pid 14840]
(13)Permission denied: [client 172.16.5.26:41746] AH00035: access to
/index.html denied (filesystem path '/var/www/html/index.html')
because search permissions are missing on a component of the path
That message is pretty useless given the number of questions sprayed
across the web citing it.
As far as I can tell, the search permissions are present. Apache has
access to the file:
# ls -Al /var
...
drwxr-xr-x. 4 root apache 33 Apr 26 00:00 www
# ls -Al /var/www/
...
drwxr-xr-x. 2 root apache 24 Apr 21 11:20 html
# ls -Al /var/www/html
-rw-r--r--. 1 root apache 104 Apr 21 11:20 index.html
How do I find out what search permissions are mission from which
directory or directories?
Thanks in advance.
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: [users@httpd] What search permissions are missing from where?
Posted by Yann Ylavic <yl...@gmail.com>.
On Sun, Apr 26, 2020 at 6:17 AM Jeffrey Walton <no...@gmail.com> wrote:
>
> As far as I can tell, the search permissions are present. Apache has
> access to the file:
>
> # ls -Al /var
> ...
> drwxr-xr-x. 4 root apache 33 Apr 26 00:00 www
> # ls -Al /var/www/
> ...
> drwxr-xr-x. 2 root apache 24 Apr 21 11:20 html
> # ls -Al /var/www/html
> -rw-r--r--. 1 root apache 104 Apr 21 11:20 index.html
>
> How do I find out what search permissions are mission from which
> directory or directories?
Probably selinux ones, adding -Z to `ls` command could help.
IIRC, on RHEL/centos, you need selinux context "httpd_sys_content_t"
for read access, `chcon` command may be your friend here.
Regards,
Yann.
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org