Hi all, Some months ago I setup my ubuntu 7.04 server and everything looks like was working fine. ISPconfig was capital (to simplify the administration) and I'm quite concerned about security, so I followed the ubuntu 7.04 perfect setup and after this I applied suPHP howto and an specific howto for Drupal CMS. My installations is just for a few people (just 30 users) so right now I only have web1 and web3 sites active. Web1 site works like a charm, but yesterday I noticed that web3 subfolders always return a 403 error. My goal is allowing my final users to install different CMSs on different subfolders. As you know, running different .htaccess is important to have Drupal, Joomla, Gallery all together in a single site. Getting this 403 error I reviewed web3 error log where I found that: Code: [Thu Nov 15 15:31:58 2007] [crit] [client 22.214.171.124] (13)Permission denied: /var/www/web3/web/video/.htaccess pcfg_openfile: unable to check htaccess file, ensure it is readable I didn't see any other useful information in any other log. So I checked privileges four times (all files are web3_admin:web3 and I also temporally set .htaccess to 777 to be full sure was reachable) with same 403 results. Finally I created an empty folder with 777 and web3 user/group (and without any .htaccess inside) but I still get the same error. I need to say that Drupal is required in quite every site I create, so I decided to edit a "retailed" .htaccess (as is suggested in a howto) and changed apache2.conf with the following general directives: Code: <Directory /var/www/*/web> Options +Includes -Indexes #AllowOverride None AllowOverride All AllowOverride Indexes AuthConfig Limit FileInfo Order allow,deny Allow from all <Files ~ "^\.ht"> Deny from all </Files> </Directory> <Directory /var/www/*/user/*/web> Options +Includes -Indexes AllowOverride None AllowOverride Indexes AuthConfig Limit FileInfo Order allow,deny Allow from all <Files ~ "^\.ht"> Deny from all </Files> </Directory> I also tried adding similar stuff to each site's Apache Directives: Code: <Directory /var/www/web1/web> Options +Includes +FollowSymlinks -Indexes AllowOverride All Order allow,deny Allow from all <Files ~ "^\.ht"> Deny from all </Files> </Directory> <Directory /var/www/web1/*/files> SetHandler Drupal_Security_Do_Not_Remove_See_SA_2006_006 Options None Options +FollowSymLinks </Directory> But nothing changes: web3 root works fine (a drupal is running) but I'm unable to reach web3 new subfolders... while (as I said) web1 is perfectly working with 3 Drupal installations, 1 OpenJournalSystem, 2 Joomlas and 1 moodle on it... Sorry for the long report, but I feel lost so I didn't know what information was important to be reported. Thanks a lot in advance for your help, Marc.