Website is not accessible: 403 Forbidden AH01797: client denied by server configuration

Follow

Comments

9 comments

  • Avatar
    Palcomonline

    good one

    0
    Comment actions Permalink
  • Avatar
    Nerque

    And if the error is "AH01797: client denied by server configuration: /usr/share/plesk-service.localdomain/"????

    How do I find out what process is trying to get the local website? Could it be nginx access to the apache server? Redirection of an external request?

    Where can I reconfigure the web access permissions for this folder? It doesn't have any htaccess in it.

    0
    Comment actions Permalink
  • Avatar
    Maxim Krasikov

    Hi @Nerque,

    We would like to review the described behavior more closely. Could you submit a request to Plesk support using the link?
    https://support.plesk.com/hc/en-us/requests/new

    0
    Comment actions Permalink
  • Avatar
    Nerque

    In this case I didn't buy the license directly from Plesk, so I don't think I can use the form you indicate.
    I just need to know which process gives access to that folder, and which is its configuration file.
    I have thought that maybe it is due to internal monitoring (Zabbix agent, Watchdog ...), but not knowing what url leads to that message, or where to configure such access, I am somewhat lost.

    0
    Comment actions Permalink
  • Avatar
    Francisco Garcia

    Hi Nerque,

    If it's from an external server, then it's expected because plesk-service.localdomain is only available from localhost

    Also, if the source requesting it is not localhost (for example it's 127.0.0.1), then it's the bug PPPM-11377, and as a workaround:

    1. Log in to Plesk over SSH

    2. Open the file /usr/local/psa/admin/conf/templates/default/server/pleskServiceLocaldomain.php with your favourite text editor

    3. Replace localhost by 127.0.0.1:

      <Directory " <!--?php echo HTTPD_SERVICE_VHOST_D ?--> ">
      AllowOverride None
      Options None
      <!--?php if ($VAR->server->webserver->apache->useRequireOption): ?-->
      Require host localhost
      <!--?php endif; ?-->
      Order deny,allow
      Deny from all
      Allow from localhost

    4. Reconfigure web service:

      plesk repair web

    0
    Comment actions Permalink
  • Avatar
    Nerque

    Thanks a lot.

    I suppose this is the template with which Plesk generates the configuration file for this service, but where is the configuration generated? I'll make the change in the template, but I prefer to change the settings manually so I don't have to use the plesk repair command.

    I like to understand things, so I have several questions from the instructions you gave me. I hope it's not too much (I'll try to investigate it on my own as well)

    I've tried to search for this bug, but nothing. Where can I find information about this bug?

    I'm using the Obsidian 18.0.24.

    You say that if access is attempted from an external server, then it's normal. But how is that possible? How can the system expose an access to /usr/share/plesk-service.localdomain? In other words, what is the url that redirects to the index.html located in that folder?

    About pleskServiceLocaldomain.php template, why does this use the allow and deny directives when this version of plesk uses apache 2.4? I guess the templates add the needed require directive for use with 2.4, but why the deny/allow directives are also used?

    You have marked the localhost used by the Allow directive in bold. But as far as I know, Apache 2.4 doesn't use this directive, it uses Require. So, do I have to change "Require host localhost" to "Require ip 127.0.0.1"?

    Again, thank you very much

    0
    Comment actions Permalink
  • Avatar
    Nerque

    I see that this template applies to "/etc/httpd/conf/plesk.conf.d/server.conf". I didn't expect that.

    But at least I see where the directives are for the plesk-service.localdomain

    0
    Comment actions Permalink
  • Avatar
    Nerque

    Thank you very much.

    It seems that I don't have much skill searching the Plesk website :-).

    0
    Comment actions Permalink

Please sign in to leave a comment.

Have more questions? Submit a request