httpd conf Question
Hello all, here is my server info:
WHM/cPanel Version: 102.0.11
Linux x86_64 with Centos v7.9209 OS
Apache: 2.4.53
php: 7.4.29
Mysql: 5.7.37
Kernel: 3.10.0-1160.49.1el7.x86_64
Every now and then I am seeing a 404 error when clicking on a login link or option link with a dating site script running on the server.
At first I thought it may be a session issue as I was also logged into the admin in the same browser.
So I used a different computer and logged in with the client user information and after clicking around the profile and other options, the issue occurred a couple of times again.
Here is what I found in my apache error logs:
[quote][Fri Apr 22 14:09:32.097514 2022] [:error] [pid 11778:tid 47447952926464] [client ip address:51602] client denied by server configuration: /home/username/public_html/dating/asset, referer:
AllowOverride All
Options IncludesNOEXEC FollowSymLinks ExecCGI Indexes
which is what I see in my httpd conf file currently. So my question after all this is should I make those changes as suggested or is there something else going on maybe that I haven't been able to troubleshoot. Forgot to add that I've checked my csf firewall logs and nothing shows there that could lead to the issue. I checked with the developer of the script and he tells me it is an issue with my server and not the script. Also not seeing anything in developer tools>>console regarding the issue ether. Thanks for the support and patience for the long winded post.
which is what I see in my httpd conf file currently. So my question after all this is should I make those changes as suggested or is there something else going on maybe that I haven't been able to troubleshoot. Forgot to add that I've checked my csf firewall logs and nothing shows there that could lead to the issue. I checked with the developer of the script and he tells me it is an issue with my server and not the script. Also not seeing anything in developer tools>>console regarding the issue ether. Thanks for the support and patience for the long winded post.
-
Hi cPRex, thanks for the reply. It sounds similar however I haven't had any website crashes or anything else (that I am aware of ) no one is banging down the door. As of today I haven't seen the issue again but it seemed to be only on the Chrome browser so maybe my first hunch was correct. I will keep an eye on it for a while in case it reappears. 0 -
Do you have any DoS prevention tools installed, such as mod_evasive that could be temporarily blocking users? I'm afraid I don't have a good explanation for that behavior. 0 -
Hi cPRex, no mod_evasive isn't installed on the server but the csf package is. However, there were nothing in the logs for csf or modsecurity that raised any flags. cPhulk, KernelCare"s Free Symlink Protection and ImunifyAV are also installed but didn't see anything in my apache logs either. 0
Please sign in to leave a comment.
Comments
4 comments