From nobody@hyperreal.com Sun May 11 04:12:20 1997 Received: (from nobody@localhost) by hyperreal.com (8.8.5/8.8.5) id EAA21206; Sun, 11 May 1997 04:12:20 -0700 (PDT) Message-Id: <199705111112.EAA21206@hyperreal.com> Date: Sun, 11 May 1997 04:12:20 -0700 (PDT) From: Olivier Sessink Reply-To: olivier@lx.student.wau.nl To: apbugs@hyperreal.com Subject: .../~userdir/ acces denied on 1.2b10 X-Send-Pr-Version: 3.2 >Number: 568 >Category: config >Synopsis: .../~userdir/ acces denied on 1.2b10 >Confidential: no >Severity: serious >Priority: medium >Responsible: apache >State: closed >Class: sw-bug >Submitter-Id: apache >Arrival-Date: Sun May 11 04:20:01 1997 >Last-Modified: Mon May 12 07:21:14 PDT 1997 >Originator: olivier@lx.student.wau.nl >Organization: >Release: 1.2b10 >Environment: Linux slackware kernel 2.0.30 on a 486 DX100, 16 mb RAM 540 Mb pio2 harddisk normal GNU compiler, compiling gives no problems. Apache 1.2b7 didn't give this problem, but the config files where different. >Description: Apache is normally working but I can't access any userdirs ( virtual path http:/..../~user/ and actual path /home/user/public_html/ ) All may read the files, and the dir can be executed and read by all. Apache is running as user nobody like in the template makefiles. In fact I didn't make a change to any of the options before compile-time. The Userdir is (like default) public_html in srm.conf. My access.conf is here: --------------------------------- Order deny,allow deny from All AllowOverride None Options Indexes FollowSymLinks Includes AllowOverride All order deny,allow allow from all Options Indexes Includes Order deny,allow Allow from All AllowOverride All --------------------------------- And it seems OK to me, so I can't find the problem.. Using Apache 1.2b7 everything worked fine.. (NOT the same config files). >How-To-Repeat: if my server is running (mostly during european daytime and evening) try: http://137.224.177.59/ http://137.224.177.59/~olivier/ http://137.224.177.59/~olivier/index.htm >Fix: I think it's an config problem otherwise more people would have the same problem. In comp.os.linux.networking people said my config was OK. that's why I try here. >Audit-Trail: From: Marc Slemko To: Olivier Sessink Subject: Re: config/568: .../~userdir/ acces denied on 1.2b10 Date: Sun, 11 May 1997 10:22:31 -0600 (MDT) On Sun, 11 May 1997, Olivier Sessink wrote: [...] > > Options Indexes Includes > Order deny,allow > Allow from All > AllowOverride All > What does the password file say is your home directory? If it is something like /usr/home with /home being a symlink to it, your directory directive for /home will not apply. What does the error_log say? From: Olivier To: Marc Slemko Subject: Re: config/568: .../~userdir/ acces denied on 1.2b10 Date: Sun, 11 May 1997 19:37:13 +0200 At 10:22 AM 5/11/97 -0600, you wrote: >On Sun, 11 May 1997, Olivier Sessink wrote: > >[...] >> >> Options Indexes Includes >> Order deny,allow >> Allow from All >> AllowOverride All >> > >What does the password file say is your home directory? If it is >something like /usr/home with /home being a symlink to it, your directory >directive for /home will not apply. > >What does the error_log say? the password file sais /home/olivier/ is a user directory error_log tells (strangely) nothing! acces_log tells only ....."GET /~olivier/ HTTP1.0" 403 165 the /home is a physical directory, not a symlink... what's wrong? When I use the standard config file (access.conf-dist) it gives the same problem. I recompiled the deamon twice already... cu, Olivier From: Marc Slemko To: Olivier Subject: Re: config/568: .../~userdir/ acces denied on 1.2b10 Date: Sun, 11 May 1997 14:21:14 -0600 (MDT) On Sun, 11 May 1997, Olivier wrote: > At 10:22 AM 5/11/97 -0600, you wrote: > >On Sun, 11 May 1997, Olivier Sessink wrote: > > > >[...] > >> > >> Options Indexes Includes > >> Order deny,allow > >> Allow from All > >> AllowOverride All > >> Try changing: Allow from All to: Allow from all From: Olivier To: Marc Slemko Subject: Re: config/568: .../~userdir/ acces denied on 1.2b10 Date: Sun, 11 May 1997 22:52:47 +0200 At 02:21 PM 5/11/97 -0600, you wrote: >On Sun, 11 May 1997, Olivier wrote: > > >Try changing: > > Allow from All > >to: > > Allow from all nope.... the strange thing is: when I make " Allow from all" (remove all security) and remove the section "" I still get "access denied"... The server is running user 'nobody'. can this be the problem? cu, Olivier From: Marc Slemko To: Olivier Subject: Re: config/568: .../~userdir/ acces denied on 1.2b10 Date: Sun, 11 May 1997 14:58:01 -0600 (MDT) On Sun, 11 May 1997, Olivier wrote: > At 02:21 PM 5/11/97 -0600, you wrote: > >On Sun, 11 May 1997, Olivier wrote: > > > > > > >Try changing: > > > > Allow from All > > > >to: > > > > Allow from all > > nope.... > > the strange thing is: when I make " Allow from all" (remove all > security) and remove the section "" I still get "access > denied"... > > The server is running user 'nobody'. can this be the problem? I had assumed all the permissions were ok. Do a: ls -ld / /home /home/olivier /home/olivier/public_html From: Marc Slemko To: Olivier Subject: Re: config/568: .../~userdir/ acces denied on 1.2b10 Date: Sun, 11 May 1997 16:06:42 -0600 (MDT) On Sun, 11 May 1997, Olivier wrote: > At 02:58 PM 5/11/97 -0600, you wrote: > > > >I had assumed all the permissions were ok. > > > >Do a: > > > > ls -ld / /home /home/olivier /home/olivier/public_html > > they are OK: > > drwxr-xr-x 18 root root 1024 Feb 6 08:54 // > drwxr-xr-x 5 root root 1024 May 10 12:49 /home/ > drwx------ 7 olivier users 1024 May 11 22:06 /home/olivier/ > drwxr-xr-x 3 olivier users 1024 May 11 18:56 /home/olivier/public_html/ No they aren't. You need world read and execute (although you can generally get away with just world execute) on /home/oliver otherwise Apache can't read the files. That is your problem. From: Olivier To: Marc Slemko Subject: Re: config/568: .../~userdir/ acces denied on 1.2b10 Date: Mon, 12 May 1997 08:40:30 +0200 At 04:06 PM 5/11/97 -0600, you wrote: >On Sun, 11 May 1997, Olivier wrote: > >> At 02:58 PM 5/11/97 -0600, you wrote: >> >> >> >I had assumed all the permissions were ok. >> > >> >Do a: >> > >> > ls -ld / /home /home/olivier /home/olivier/public_html >> >> they are OK: >> >> drwxr-xr-x 18 root root 1024 Feb 6 08:54 // >> drwxr-xr-x 5 root root 1024 May 10 12:49 /home/ >> drwx------ 7 olivier users 1024 May 11 22:06 /home/olivier/ >> drwxr-xr-x 3 olivier users 1024 May 11 18:56 /home/olivier/public_html/ > >No they aren't. You need world read and execute (although you can >generally get away with just world execute) on /home/oliver otherwise >Apache can't read the files. That is your problem. > YES !!! Thanks! I didn't know apache needs to read _that_ directory! Do I have to inform the apache bug database? I send a cc to apbugs@apache.org is that enough? cu, Olivier State-Changed-From-To: open-closed State-Changed-By: marc State-Changed-When: Mon May 12 07:21:14 PDT 1997 State-Changed-Why: User didn't have world read/execute on home directory. >Unformatted: