What we have done so far is set the "Directory /" to "Order deny,allow" and then "Deny from all", and then set "Order allow,deny" and "Allow from all" on the Alias. So the Alias should be more open than the base.
When we put the index.html page at the DocumentRoot (/var/www/html) it is viewable.
The other test I did was to use a non-security "fixed" httpd.conf file, add the "Alias" and "Directory" stanza at the end, and test. The index.html could be seen then.
Since I did the editing of the httpd.conf file, I own fixing the issue. Appreciate any guidance you can give.
Thanks! Leam On 10/26/18 5:23 AM, Gillis J. de Nijs wrote:
For any troubleshooting, your starting point should be the error log. It usually explains pretty well why something is forbidden.On Thu, Oct 25, 2018 at 9:52 PM Leam Hall <leamhall@xxxxxxxxx <mailto:leamhall@xxxxxxxxx>> wrote:Following the Alias docs (https://httpd.apache.org/docs/2.2/mod/mod_alias.html#alias) and it's not working. Debug is turned on and i know some security stuff has been done to the config. Since mod_alias is still there, what else could prevent an Alias from getting a "Forbidden". If I take an unmodified config file, tack on the alias, it works. Leam
--------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|