Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: http to https Apache, AllowOverride All receives 403 err htaccess
Top Forums UNIX for Dummies Questions & Answers http to https Apache, AllowOverride All receives 403 err htaccess Post 302493876 by Sai245 on Friday 4th of February 2011 03:53:17 AM
Old 02-04-2011
http to https Apache, AllowOverride All receives 403 err htaccess
Hi new to the forum,

I have a Apache server on CentOS which hosts a web site. I've set up the SSL which has been tested as I can access my website via http and https.

I would like to redirect all browsers to use https instead of http. I have created the htaccess file which contains 'Allow from all' as I wanted to see if the htacess files works.

But when I change the httpd.conf file 'AllowOveride to All', the browsers (accessing website) shows 403 error on both http and https.

I've been searching the internet for the past two weeks, hopefully someone can help.

Thanks
 

9 More Discussions You Might Find Interesting

1. UNIX for Advanced & Expert Users

403 Error in Apache?

I have installed Apache lots of times before. I have recently installed apache on FreeBSD. And it gives me all the time 403 Frobidden - you don't have permittion to access / directory. I have checked permitions. I've got -rwxrwxr-x for for all Apache DocumentRoot. I've checked Files directive in... (6 Replies)
Discussion started by: solvman
6 Replies

2. Shell Programming and Scripting

stripping http and https from a url using sed

I have to write a sed script which removes http and https from a URL. So if a URL is https://www.example.com or Example Web Page, script should return me Example Web Page i tried echo $url | sed 's|^http://||g'. It doesn't work. Please help (4 Replies)
Discussion started by: vickylife
4 Replies

3. Shell Programming and Scripting

http and https

Hi friends, I have a local host http://ss3/cgi-bin/page/page_list.cgi running on apache webserver perfectly well. But suddenly, it stopped working and gave an error "Internet explorer Explorer cannot display the webpage". But when i added https, as https://ss3/cgi-bin/page/page_list.cgi the... (2 Replies)
Discussion started by: nmattam
2 Replies

4. Web Development

redirect http to https in apache

i read thru a few article how to do it, but i could not get it to work the way i want it. vi ../httpd.conf Redirect permanent /dev https://servername/portal/ when i type servername, works fine. my goal is to type dev, and it takes me to https://servername/portal/ (4 Replies)
Discussion started by: lawsongeek
4 Replies

5. Web Development

.htaccess Not Working With AllowOverride All

Source: Apache.org The .htaccess file is not read by the server based the test above and the lack of change in the operation of the server. httpd.conf <Directory /> Options None AllowOverride All # Initially this was set to None and I would prefer it be again, just testing ... (6 Replies)
Discussion started by: gnurob
6 Replies

6. Shell Programming and Scripting

sed -i '11 b; s/AllowOverride None\b/AllowOverride All/' test

I searched everywhere and have had no luck. here is what I'm trying to do. sed -i '11 b; s/AllowOverride None\b/AllowOverride All/' test I have a single file I want to edit one line that appears 4 times. in this case line 11. I want to change it from AllowOverride None to AllowOverride All... (2 Replies)
Discussion started by: lmao32895
2 Replies

7. Web Development

Mod_rewrite http to https

Hi Team, I have a question on the apache mod_rewrite module. I have a requirement of rewriting only specific url's to https. Requirement below:- want to match a word (test) on the url and if matches then it should rewrite to https. example:- ... (1 Reply)
Discussion started by: arumon
1 Replies

8. UNIX for Advanced & Expert Users

Apache - tcpdump get HTTP and HTTPS Headers

Hello I googled for "tcpdump view HOST http headers" -- that fine However can we do same for HTTPS like after the HTTPS gets decrypted by Apache ? I think this is legitimate on the server where the site is hosted since at some point the Apache itself needs to get the HOST patrameter in... (1 Reply)
Discussion started by: coolatt
1 Replies

9. Red Hat

Apache Tomcat(403 Access Denied)

Good evening, i've got a problem. I fail to enter "Manager App" in Apache Tomcat/9.0.0.M9 on server, it says "403 Access Denied». for example, server address is 192.168.1.4, when I type 'localhost ' in the browser and press "Manager App", then everything is ok. but if I enter 192.168.1.4 and press... (0 Replies)
Discussion started by: v.k.l.chr.by
0 Replies

LEARN ABOUT SUNOS

mod_apparmor

MOD_APPARMOR(8) 						     AppArmor							   MOD_APPARMOR(8)

NAME

       mod_apparmor - fine-grained AppArmor confinement for Apache

DESCRIPTION

       An AppArmor profile applies to an executable program; if a portion of the program needs different access permissions than other portions,
       the program can "change hats" via aa_change_hat(2) to a different role, also known as a subprofile.  The mod_apparmor Apache module uses
       the aa_change_hat(2) mechanism to offer more fine-grained confinement of dynamic elements within Apache such as individual php and perl
       scripts, while still allowing the performance benefits of using mod_php and mod_perl.

       To use mod_apparmor with Apache, ensure that mod_apparmor is configured to be loaded into Apache, either via a2enmod, yast or manual
       editing of the apache2(8)/httpd(8) configuration files, and restart Apache. Make sure that apparmor is also functioning.

       Once mod_apparmor is loaded within Apache, all requests to Apache will cause mod_apparmor to attempt to change into a hat named by the URI
       (e.g. /app/some.cgi). If no such hat is found, it will fall back to attempting to use the hat DEFAULT_URI; if that also does not exist, it
       will fall back to using the global Apache profile. Most static web pages can simply make use of the DEFAULT_URI hat.

       Additionally, before any requests come in to Apache, mod_apparmor will attempt to change hat into the HANDLING_UNTRUSTED_INPUT hat.
       mod_apparmor will attempt to use this hat while Apache is doing the initial parsing of a given http request, before its given to a specific
       handler (like mod_php) for processing.

       Because defining hats for every URI/URL often becomes tedious, mod_apparmor provides the AAHatName and AADefaultHatName Apache
       configuration options.

       AAHatName
	   AAHatName allows you to specify a hat to be used for a given Apache <Directory>, <DirectoryMatch>, <Location> or <LocationMatch>
	   directive (see the Apache documenation for more details). Note that mod_apparmor behavior can become confused if <Directory*> and
	   <Location*> directives are intermingled and it is recommended to use one type of directive. If the hat specified by AAHatName does not
	   exist in the Apache profile, then it falls back to the behavior described above.

       AADefaultHatName
	   AADefaultHatName allows you to specify a default hat to be used for virtual hosts and other Apache server directives, so that you can
	   have different defaults for different virtual hosts. This can be overridden by the AAHatName directive and is checked for only if there
	   isn't a matching AAHatName or hat named by the URI. If the AADefaultHatName hat does not exist, it falls back to the DEFAULT_URI hat if
	   it exists (as described above).

URI REQUEST SUMMARY

       When profiling with mod_apparmor, it is helpful to keep the following order of operations in mind:

       On each URI request, mod_apparmor will first aa_change_hat(2) into ^HANDLING_UNTRUSTED_INPUT, if it exists.

       Then, after performing the initial parsing of the request, mod_apparmor will:

	 1. try to aa_change_hat(2) into a matching AAHatName hat if it exists and applies, otherwise it will

	 2. try to aa_change_hat(2) into the URI itself, otherwise it will

	 3. try to aa_change_hat(2) into an AADefaultHatName hat if it has been defined for the server/vhost, otherwise it will

	 4. try to aa_change_hat(2) into the DEFAULT_URI hat, if it exists, otherwise it will

	 5. fall back to the global Apache policy

BUGS

       mod_apparmor() currently only supports apache2, and has only been tested with the prefork MPM configuration -- threaded configurations of
       Apache may not work correctly.

       There are likely other bugs lurking about; if you find any, please report them at <http://https://bugs.launchpad.net/apparmor/+filebug>.

SEE ALSO

       apparmor(7), subdomain.conf(5), apparmor_parser(8), aa_change_hat(2) and <http://wiki.apparmor.net>.

AppArmor 2.7.103						    2012-06-28							   MOD_APPARMOR(8)
All times are GMT -4. The time now is 08:40 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy