httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Boyle Owen" <Owen.Bo...@swx.com>
Subject RE: [users@httpd] access to user directories
Date Mon, 30 May 2005 14:04:23 GMT


> -----Original Message-----
> From: John Canderan [mailto:dcbuddy@dcbuddy.com]
> Sent: Montag, 30. Mai 2005 15:54
> To: users@httpd.apache.org
> Subject: RE: [users@httpd] access to user directories
> 
> 
> Owen,
> 	Thanks very much for your detailed suggestions.  However, I have
> suspected unix permissions to be the problem from the very 
> beginning, and
> believe that I have them set correctly, as I mentioned early on.  
> 	Let me try and show them to you, starting with the "home" dir:
> 
> drwxr-xr-x    4 root root  4096 May 25 13:20 home
> 
> drwxr-xr-x  30 canderan canderan 4096 May 29 00:52 canderan
> 
> drwxr-xr-x  3 canderan canderan    4096 May 27 06:04 public_html
> 
> drwxrwxr-x  2 canderan canderan 4096 May 25 13:03 crap
> -rw-r--r--  1 canderan canderan   49 May 25 09:40 index.html

Well they *look* OK, but the problem is definately unix permissions so you need to dig deeper:

- did you check that point Joshua raised about SELinux?
- is /home/canderan a physical disk on the web server?
- if you login as the apache user, can you list/open the files in /home/canderan?
- if you run apache as user "canderan", does it work?
- if you do something like:

	Alias /testurl /home/canderan/public_html

then hit http://yourserver/testurl, do you see the dir?

You've basically got to try all the angles to see if anything turns on the light...

Rgds,
Owen Boyle
Disclaimer: Any disclaimer attached to this message may be ignored. 

PS - in each of the above, please report (ie, cut'n'paste) the exact error message returned
by the browser, the shell or found in the logfile.


> 
> (the dir "crap" and the file "index.html" are in the public_html dir)
> 
> Could there possibly be something with these permissions that 
> is causing the
> problem?  Now, let me also say that the files in 
> /var/www/html (the web dir
> for the box) can be accessed from the Internet, no problem, 
> and I notice
> that the permissions for those dirs and files are relatively 
> the same as I
> have for the user dirs and files as shown above.
> 
> Having thought that the permissions were set correctly, I 
> have been focusing
> on possible problems with the httpd.conf file.  Have tried 
> everything that
> anyone has suggested there, with no luck !
> 
> Thanks again,
> John
> 
> -----Original Message-----
> From: Boyle Owen [mailto:Owen.Boyle@swx.com] 
> Sent: Monday, May 30, 2005 3:54 AM
> To: users@httpd.apache.org
> Subject: RE: [users@httpd] access to user directories
> 
> 
> 
> > -----Original Message-----
> > From: John Canderan [mailto:dcbuddy@dcbuddy.com]
> > Sent: Freitag, 27. Mai 2005 17:20
> > To: users@httpd.apache.org
> > Subject: RE: [users@httpd] access to user directories
> > 
> > 
> > Here's  "cut and paste" from the error_log file:
> > [Fri May 27 06:42:33 2005] [error] [client 66.92.146.208] 
> > (13)Permission
> > denied: access to /~canderan denied
> > 
> > That's all I'm getting !
> 
> That's actually tons....
> 
> The browser gets a 403 Forbidden when either of *two* apache 
> errors occur:
> 1) "client denied by server configuration": caused by a "Deny from"
> directive in apache config.
> 2) "Permission denied": caused by insufficient Unix access privileges.
> 
> Not that *neither* contains the string "access denied", so I 
> hope you now
> realise why it is essential to cut'n'paste error messages and 
> not to try to
> type them in from memory.
> 
> So now go and fix the unix permissions and all will be well.
> 
> [hint: I suppose /~canderan points to your home directory, so 
> check that it
> is executable and readable by others (eg, 755), or if you 
> don't want to
> allow that, put you and apache in the same group and make it 
> executable and
> readable by group (eg, 750) or whatever].
> 
> Rgds,
> Owen Boyle
> Disclaimer: Any disclaimer attached to this message may be ignored. 
> 
> > 
> > -----Original Message-----
> > From: Boyle Owen [mailto:Owen.Boyle@swx.com] 
> > Sent: Friday, May 27, 2005 6:59 AM
> > To: users@httpd.apache.org
> > Subject: RE: [users@httpd] access to user directories
> > 
> > 
> > 
> > > -----Original Message-----
> > > From: John Canderan [mailto:dcbuddy@dcbuddy.com]
> > > Sent: Freitag, 27. Mai 2005 12:50
> > > To: users@httpd.apache.org
> > > Subject: RE: [users@httpd] access to user directories
> > > 
> > > 
> > > I've checked it quite a few times...........it just says "access
> > > denied", that's all ...........nothing specific to go on !
> > 
> > Isn't it more like: "client denied by server configuration... 
> > etc"? Please
> > cut'n'paste the *exact* line.
> > 
> > Sorry to put you out, but the exact wording is important and 
> > can distinguish
> > several possible causes.
> > 
> > Rgds,
> > Owen Boyle
> > Disclaimer: Any disclaimer attached to this message may be ignored. 
> > 
> > > 
> > > -----Original Message-----
> > > From: Boyle Owen [mailto:Owen.Boyle@swx.com] 
> > > Sent: Friday, May 27, 2005 6:41 AM
> > > To: users@httpd.apache.org
> > > Subject: RE: [users@httpd] access to user directories
> > > 
> > > You must've missed the line in David's original response:
> > > 
> > > > Check the error_log, there should be a clearer message.
> > > 
> > > So what does it say?
> > > 
> > > Rgds,
> > > Owen Boyle
> > > Disclaimer: Any disclaimer attached to this message may 
> be ignored. 
> > > 
> > > > -----Original Message-----
> > > > From: John Canderan [mailto:dcbuddy@dcbuddy.com]
> > > > Sent: Freitag, 27. Mai 2005 12:09
> > > > To: users@httpd.apache.org
> > > > Subject: RE: [users@httpd] access to user directories
> > > > 
> > > > 
> > > > Davide,
> > > > 	Thanks for your suggestions.  
> > > > However, I do have an index.html file in the public_html 
> > > > directory, and
> > > > I'm quite sure that the permissions are set as they are 
> > > > supposed to be.
> > > > 
> > > > 	I also do have the <Directory ...  block that 
> you suggested, as
> > > > follows:
> > > > <Directory /home/*/public_html>
> > > >     AllowOverride FileInfo AuthConfig Limit
> > > >     Options MultiViews Indexes SymLinksIfOwnerMatch 
> IncludesNoExec
> > > >     <Limit GET POST OPTIONS>
> > > >         Order allow,deny
> > > >         Allow from all
> > > >     </Limit>
> > > >     <LimitExcept GET POST OPTIONS>
> > > >         Order deny,allow
> > > >         Deny from all
> > > >     </LimitExcept>
> > > > </Directory>
> > > > 
> > > > Is there something wrong with this particular block?  
> It's the one
> > > > suggested for "read-only", by default.
> > > > 
> > > > But, I still get the error as stated previously.
> > > > 
> > > > I'm perplexed !
> > > > 
> > > > Hope someone can figure this out.
> > > > 
> > > > Thanks again,
> > > > John
> > > > 
> > > > -----Original Message-----
> > > > From: Davide Bianchi [mailto:davide@onlyforfun.net] 
> > > > Sent: Friday, May 27, 2005 12:28 AM
> > > > To: users@httpd.apache.org
> > > > Subject: Re: [users@httpd] access to user directories
> > > > 
> > > > John Canderan wrote:
> > > > > However, I can not get it to deliver web pages for 
> users.  I am
> > > > storing
> > > > > the html pages at /home/<user>/public_html, and I am 
> > > quite sure that
> > > > the
> > > > > file permissions are set correctly.  I have also set "UserDir
> > > > > pubic_html" in httpd.conf. 
> > > > 
> > > > Plain text post only please,
> > > > 
> > > > You should also have a <Directory /home/*/public_html> block
> > > > detailing what you can and cannot do in there. But from your
> > > > error I think that you miss an index.html file in the
> > > > public html directory.
> > > > Check the error_log, there should be a clearer message.
> > > > 
> > > > Davide
> > > > 
> > > > 
> > > 
> > 
> ---------------------------------------------------------------------
> > > > The official User-To-User support forum of the Apache 
> HTTP Server
> > > > Project.
> > > > See <URL:http://httpd.apache.org/userslist.html> for more info.
> > > > To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
> > > >    "   from the digest: 
> users-digest-unsubscribe@httpd.apache.org
> > > > For additional commands, e-mail: users-help@httpd.apache.org
> > > > 
> > > > 
> > > > 
> > > > 
> > > 
> > 
> ---------------------------------------------------------------------
> > > > The official User-To-User support forum of the Apache HTTP 
> > > > Server Project.
> > > > See <URL:http://httpd.apache.org/userslist.html> for more info.
> > > > To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
> > > >    "   from the digest: 
> users-digest-unsubscribe@httpd.apache.org
> > > > For additional commands, e-mail: users-help@httpd.apache.org
> > > > 
> > > > 
> > > Diese E-mail ist eine private und persönliche 
> Kommunikation. Sie hat
> > > keinen Bezug zur Börsen- bzw. Geschäftstätigkeit der SWX 
> > Gruppe. This
> > > e-mail is of a private and personal nature. It is not 
> related to the
> > > exchange or business activities of the SWX Group. Le présent 
> > > e-mail est
> > > un message privé et personnel, sans rapport avec l'activité 
> > > boursière du
> > > Groupe SWX.
> > >  
> > >  
> > > This message is for the named person's use only. It may contain
> > > confidential, proprietary or legally privileged information. No
> > > confidentiality or privilege is waived or lost by any 
> > mistransmission.
> > > If you receive this message in error, please notify the 
> > > sender urgently
> > > and then immediately delete the message and any copies of 
> > it from your
> > > system. Please also immediately destroy any hardcopies of 
> > the message.
> > > You must not, directly or indirectly, use, disclose, 
> > > distribute, print,
> > > or copy any part of this message if you are not the intended 
> > > recipient.
> > > The sender's company reserves the right to monitor all e-mail
> > > communications through their networks. Any views expressed in this
> > > message are those of the individual sender, except where 
> the message
> > > states otherwise and the sender is authorised to state them 
> > to be the
> > > views of the sender's company.
> > > 
> > > 
> > 
> ---------------------------------------------------------------------
> > > The official User-To-User support forum of the Apache HTTP Server
> > > Project.
> > > See <URL:http://httpd.apache.org/userslist.html> for more info.
> > > To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
> > >    "   from the digest: users-digest-unsubscribe@httpd.apache.org
> > > For additional commands, e-mail: users-help@httpd.apache.org
> > > 
> > > 
> > > 
> > > 
> > > 
> > 
> ---------------------------------------------------------------------
> > > The official User-To-User support forum of the Apache HTTP 
> > > Server Project.
> > > See <URL:http://httpd.apache.org/userslist.html> for more info.
> > > To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
> > >    "   from the digest: users-digest-unsubscribe@httpd.apache.org
> > > For additional commands, e-mail: users-help@httpd.apache.org
> > > 
> > > 
> > 
> > 
> ---------------------------------------------------------------------
> > The official User-To-User support forum of the Apache HTTP 
> > Server Project.
> > See <URL:http://httpd.apache.org/userslist.html> for more info.
> > To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
> >    "   from the digest: users-digest-unsubscribe@httpd.apache.org
> > For additional commands, e-mail: users-help@httpd.apache.org
> > 
> > 
> > 
> > 
> > 
> ---------------------------------------------------------------------
> > The official User-To-User support forum of the Apache HTTP 
> > Server Project.
> > See <URL:http://httpd.apache.org/userslist.html> for more info.
> > To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
> >    "   from the digest: users-digest-unsubscribe@httpd.apache.org
> > For additional commands, e-mail: users-help@httpd.apache.org
> > 
> > 
> 
> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP 
> Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
>    "   from the digest: users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org
> 
> 
> 
> 
> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP 
> Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
>    "   from the digest: users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org
> 
> 

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message