Navigation

GoremanX · #1 16th May 2010, 10:30

Using ISPConfig 3.0.2.1 on Ubuntu 10.04 based on the Perfect Server guide.

I'm not sure where I'm supposed to set AllowOverride to be able to use an .htaccess file in /var/www. There are threads about this on the forum, but the configuration files seem to have changed since those threads were solved.

In addition, I'd like to be able to use an .htaccess file for all requests to port 8080. How would I go about doing that?

What are the minimum permissions needed by an .htpasswd file?

Thanks,

mike_p · #2 16th May 2010, 18:23

An htaccess file needs to be in a folder thats looked at by apache.
eg in the document root of a website

If you have a global directive, put it in your httpd.conf

GoremanX · #3 16th May 2010, 20:25

Quote:

Originally Posted by mike_p

An htaccess file needs to be in a folder thats looked at by apache.
eg in the document root of a website

If you have a global directive, put it in your httpd.conf

But /var/www is the document root of a web site. It's the server's root website. If I type myserver.com or my server's ip address in the browser, I get the index.html from /var/www

I have an .htaccess file there, it does nothing. I tried adding the following to httpd.conf:

<Directory /var/www>
AllowOverride All
Order Deny,Allow
Deny from all
</Directory>

and restarted Apache. It didn't work. The .htaccess file still does nothing.

ChaosRealm · #4 16th May 2010, 23:26

If your using debian/ubuntu, the reason for this is most likely due to the fact that inside /etc/apache2/sites-enabled/000-default /var/www is set as follows:

Code:

        <Directory /var/www/>
                Options Indexes FollowSymLinks MultiViews
                AllowOverride None
                Order allow,deny
                allow from all
        </Directory>

Which will override your changes defined in httpd.conf.
In order to allow processing of htaccess Options for files inside /var/www, you will need to change the AllowOverride line from that file to something other than None.

HTH,

Keith

GoremanX · #5 17th May 2010, 03:06

That's the file I was looking for! Thank you!

Instead of using an .htaccess file, I just changed /etc/apache2/sites-enabled/000-default like this:

Code:

        <Directory /var/www/>
                Options Indexes FollowSymLinks MultiViews
                AllowOverride All
                Order deny,allow
                deny from all
        </Directory>

And now the spam/scraper/harvester bots are hitting a "permission denied" page rather than a "file not found" page.

Navigation

Facebook

News

Recent comments

Newsletter