Apache Error Client Denied By Server Configuration

by on September 19, 2008 · 13 comments· LAST UPDATED September 19, 2008

in , ,

Q. I'm running Apache 2 Web sever under CentOS Linux and getting an error that read as follows:

[Wed Sep 17 21:53:49 2008] [error] [client 122.1xx.y9.zzz] client denied by server configuration: /var/www/examples.com/

How do I fix this error?

A. By default Apache is configured as restrictive server. It will not allow end users (client) to do anything on default DocumentRoot. To fix this issue you need to add following lines to your VirtualHost configuration directives:

<Directory "/var/www/example.com">
    Options -Indexes FollowSymLinks
    AllowOverride AuthConfig FileInfo
    Order allow,deny
    Allow from all
</Directory>

'Order allow,deny' and 'Allow from all' will set appropriate permission for the directory. At the end it should look like as follows:

<VirtualHost *:80>
	ServerAdmin webmaster@example.com
        DocumentRoot "/var/www/example.com"
        ServerName example.com
        ServerAlias www.example.com
        ErrorLog "/var/logs/httpd/example.com/error.log"
        CustomLog "/var/logs/httpd/example.com/access.log" common
        ScriptAlias /cgi-bin/ "/var/suexec/example.com/cgi-bin/"
 
<Directory "/var/www/example.com">
	Options -Indexes FollowSymLinks
	AllowOverride AuthConfig FileInfo
	Order allow,deny
	Allow from all
</Directory>
 
  SuExecUserGroup user group
</VirtualHost>

Restart apache:
# service httpd restart

TwitterFacebookGoogle+PDF versionFound an error/typo on this page? Help us!

{ 13 comments… read them below or add one }

1 TrueColorTech April 8, 2009 at 5:29 pm

While I thought this was going to be the ticket I still ended up with errors I am going to try again using each of these inside each vhost config directive.

Reply

2 TrueColorTech April 8, 2009 at 6:26 pm

It turned out to be an invalid vhost config and not the allow directives, thanks for the stating place!

Reply

3 FingAZ September 17, 2010 at 11:08 am

Something else worth noting for people turning up on this page;
I had this same issue (exactly the same error) – and it turned out to be that the person who reported the issue was repeatedly calling the same file in a non-stop loop, and http-Security.conf had been setup for DDOS protection ;)

Added the IP into whitelist, slapped a few wrists, and all is well again!

FingAZ

Reply

4 Galgon October 13, 2010 at 6:28 pm

Hi FingAZ!

I’m having the exact same problem you stated, about people calling the same file non-stop. This has been a real problem for me, especially with scripts using AJAX. However, I am a newbie in Linux/CentOS. Could you please clarify about the http-Security.conf? Is it a file? I haven’t found it in my system.
Thanks in advance!

Reply

5 Galgon October 14, 2010 at 12:39 pm

I finally discovered what the problem was: mod_evasive. Because of this I kept getting too many false positives, especially with AJAX. I disabled it and everything works fine now. :)

Reply

6 krishna December 6, 2010 at 9:09 am

Hi
Thanks a lot I got useful information

Reply

7 Alex April 9, 2011 at 3:39 pm

Thanks a lot! This really helped!

Reply

8 sdsds April 20, 2011 at 12:46 pm

thanks

Reply

9 sinyo July 6, 2011 at 5:34 am

thanks.
now my server run well

Reply

10 Gary July 15, 2011 at 4:31 am

Thank you.. thank you so much! Did the trick nicely.

BTW, will it not compromise the site’s security since we used “Allow from All”?

Reply

11 Dharmi January 8, 2013 at 12:33 am

exactly what I was looking for…thx

Reply

12 Edgars Zagorskis October 17, 2013 at 12:42 pm

Hi. Thanks for the tip, but it still didnt work when i tried accessing a server located on a local machine
So i found this article which also mentions ACL and it solved by adding this to the section which you had above.
Allow from 127.0.0.0/255.0.0.0 ::1/128

Reply

13 Westend November 29, 2013 at 6:45 pm

I have been getting these errors also but when I check them against my blocked IP addresses I found that they were all from IP that I had already blocked. So for me it looks like my IP filters are working.

Reply

Leave a Comment

Tagged as: , , , , , , , ,

Previous Faq:

Next Faq: