Apache 2 4 6 on Ubuntu Server Client denied by server configuration PHP FPM While loading PHP file

Question

Today I was updated Ubuntu server 13 04  Raring Ringtail    13 10  Saucy Salamander    And my Apache 2 installation is broken   Here my configuration   File error log   Fri Oct 18 10 48 07 237170 2013    notice   pid 8292 tid 139804677900160  FastCGI  process manager initialized  pid 8292   Fri Oct 18 10 48 07 241185 2013   mpm event notice   pid 8289 tid 139804677900160  AH00489  Apache 2 4 6  Ubuntu  mod fastcgi mod fastcgi-SNAP-0910052141 configured -- resuming normal operations  Fri Oct 18 10 48 07 241652 2013   core notice   pid 8289 tid 139804677900160  AH00094  Command line    usr sbin apache2   Fri Oct 18 10 48 28 313923 2013   authz core error   pid 8294 tid 139804573181696     client 81 219 59 75 3536  AH01630  client denied by server configuration   usr lib cgi-bin php5-fcgi   File default conf   EU  lt VirtualHost   80 gt       ServerName     DocumentRoot  var www dev stable      DirectoryIndex index php index html index htm       lt Directory  var www dev stable gt            Options Indexes FollowSymLinks MultiViews            AllowOverride all           Require all granted      lt  Directory gt   lt  VirtualHost gt    File mods-enabled fastcgi conf    lt IfModule mod fastcgi c gt     AddHandler fastcgi-script  fcgi   FastCgiWrapper  usr lib apache2 suexec    FastCgiIpcDir  var lib apache2 fastcgi   lt  IfModule gt     lt IfModule mod fastcgi c gt      AddHandler php5-fcgi  php     Action php5-fcgi  php5-fcgi     Alias  php5-fcgi  usr lib cgi-bin php5-fcgi     FastCgiExternalServer  usr lib cgi-bin php5-fcgi -socket  var run php5-fpm sock -pass-header Authorization  lt  Ifmodule gt    When I trying to load the file via the browser I got   site name TEST   Forbidden  You don t have permission to access  php5-fcgi TEST index php on this server    What should I to fix it

User · Answer

In apache2 conf  replace or delete  lt Directory    AllowOverride None Require all denied  lt  Directory   like suggested Jan Czarny   For example    lt Directory   gt      Options FollowSymLinks     AllowOverride None      Require all denied     Require all granted  lt  Directory gt    This worked in Ubuntu nbsp 14 04  Trusty Tahr

User · Answer

For those of you on AWS  Amazon Web Services   remember to add a rule for your SSL port  in my case 443  to your security groups  I was getting this error because I forgot to open the port    3 hours of tearing my hair out later

User · Answer

I ran into this exact issue upon a new install of Apache 2 4  After a few hours of googling and testing I finally found out that I also had to allow access to the directory that contains the  non-existent  target of the Alias directive  That is  this worked for me     File   etc apache2 conf-available php5-fpm conf  lt IfModule mod fastcgi c gt      AddHandler php5-fcgi  php     Action php5-fcgi  php5-fcgi     Alias  php5-fcgi  usr lib cgi-bin php5-fcgi     FastCgiExternalServer  usr lib cgi-bin php5-fcgi -socket  var run php5-fpm sock -pass-header Authorization        NOTE  using   usr lib cgi-bin php5-cgi  here does not work          it doesn t exist in the filesystem       lt Directory  usr lib cgi-bin gt          Require all granted      lt  Directory gt   lt  Ifmodule gt

User · Answer

I had the same issue after upgrading my system  In my case  the problem was caused by the order of loading configuration files  In the  etc httpd httpd confinitally it was defined as follows   IncludeOptional conf d   conf IncludeOptional sites-enabled   conf   After some hours of attempts  I tried the following order   IncludeOptional sites-enabled   conf IncludeOptional conf d   conf   And it works fine now

User · Answer

Your virtualhost filename should be mysite com conf and should contain this info   lt VirtualHost   80 gt        The ServerName directive sets the request scheme  hostname and port that       the server uses to identify itself  This is used when creating       redirection URLs  In the context of virtual hosts  the ServerName       specifies what hostname must appear in the request s Host  header to       match this virtual host  For the default virtual host  this file  this       value is not decisive as it is used as a last resort host regardless        However  you must set it for any further virtual host explicitly      ServerName mysite com     ServerAlias www mysite com      ServerAdmin info mysite com     DocumentRoot  var www mysite        Available loglevels  trace8       trace1  debug  info  notice  warn        error  crit  alert  emerg        It is also possible to configure the loglevel for particular       modules  e g       LogLevel info ssl warn      ErrorLog   APACHE LOG DIR  error log     CustomLog   APACHE LOG DIR  access log combined   lt Directory   var www mysite  gt  Options All AllowOverride All Require all granted  lt  Directory gt          For most configuration files from conf-available   which are       enabled or disabled at a global level  it is possible to       include a line for only one particular virtual host  For example the       following line enables the CGI configuration for this host only       after it has been globally disabled with  a2disconf        Include conf-available serve-cgi-bin conf  lt  VirtualHost gt     vim  syntax apache ts 4 sw 4 sts 4 sr noet

User · Answer

I don t think that replacing   Require all denied  with  Require all granted  in this directive    lt Directory gt       Options FollowSymLinks     AllowOverride None      Require all denied     Require all granted  lt  Directory gt    as suggested by Jan Czarny and seonded by user3801675 is the most secure way of solving this problem   According to the Apache configuration files  that line denies access to the entirety of your server s filesystem   Replacing it might indeed allow access to your virtual host folders but at the price of allowing access to your entire computer as well   Gev Balyan s approach seems to be the most secure approach here   It was the answer to the  access denied problems  plaguing me after setting up my new Apache server this morning

User · Answer

I ran into a similar problem today  but with mod wsgi   It might be an Apache 2 2-to-2 4 problem  A comprehensive list of changes can be found here   For me  it helped to add an additional  lt Directory gt -entry for every path the error-log was complaining about and filling the section with Require all granted   So in your case you could try   lt Directory  usr lib cgi-bin php5-fcgi gt      Require all granted     Options FollowSymLinks  lt  Directory gt    and I had to move my configuration file from folder conf d to folder sites-enabled   All in all  that did the trick for me  but I don t guarantee it works in your case as well

User · Answer

I had the following configuration in my httpd conf that denied executing the wpadmin setup-config php file from wordpress  Removing the  -config part solved the problem  I think this httpd conf is from plesk but it could be some default suggested config from wordpress  i don t know  Anyway  I could safely add it back after the setup finished    lt LocationMatch    i    wp-config   bak    wp-config   php   swp    readme license changelog -config -sample       php md txt htm html     gt                          Require all denied                  lt  LocationMatch gt

User · Answer

And I simply got this error because I used a totally different DocumentRoot directory   My main DocumentRoot was the default   var www html and on the VirtualHost I used  sites example com  I have created a link on  var www html example com   to  sites example com   DocumentRoot was set to  var www html example com  It worked like a charm

User · Answer

I have exactly the same issue  I ran a couple of virtual hosts on my local machine for developing   First  I changed  etc apache2 conf-available php5-fpm conf  I replaced every  Order Deny Allow Deny from all   to  Require all granted   The configuration has to be enabled by a2enconf php5-fpm  I did the same with my virtual hosts configurations and made the replacements   I think this is not advised for security reasons  but as long as I use my server for local purposes only I can live with it

User · Answer

I recently ran into the same problem  I had to change my virtual hosts from    lt VirtualHost   80 gt    ServerName local example com    DocumentRoot  home example public     lt Directory   gt      Order allow deny     Allow from all    lt  Directory gt   lt  VirtualHost gt    To    lt VirtualHost   80 gt    ServerName local example com    DocumentRoot  home example public     lt Directory   gt      Options All     AllowOverride All     Require all granted    lt  Directory gt   lt  VirtualHost gt

[apache] Apache 2.4.6 on Ubuntu Server: Client denied by server configuration (PHP FPM) [While loading PHP file]

Examples related to apache

Examples related to ubuntu

Examples related to php