When I restarted my apache server. I am using the fedora 9 here.
I did not get my default page opened in browser.
When I opened the apache error log file. I saw following error.
ModSecurity: Access denied with code 400 (phase 2). Pattern match “%0[ad]” at REQUEST_HEADERS:Cookie. [id “950910”] [msg “HTTP Response Splitting Attack. Matched signature <%0a>”] [severity “ALERT”] [hostname “localhost”] [uri “/”] [unique_id “SuWoGH8AAAEAAFF3rKEAAAAA”]
I after doing some R&D but I did not got any perfect soluction.
Then I cleared the whole browser cookies. That solves my problem.
solution – clear the browser cookies…
When I tried to run my one of my project on server I got following error on the Browser.:
Internal Server Error
The server encountered an internal error or misconfiguration and was unable to complete your request.
Please contact the server administrator, root@localhost and inform them of the time the error occurred, and anything you might have done that may have caused the error.
More information about this error may be available in the server error log.
When I got above error I opened the error log file.
Error Log File log(#vim /var/log/httpd/error_log)
[Wed Oct 14 12:02:56 2009] [notice] mod_python: Creating 4 session mutexes based on 256 max processes and 0 max threads.
[Wed Oct 14 12:02:56 2009] [notice] mod_python: using mutex_directory /tmp
[Wed Oct 14 12:02:56 2009] [notice] Apache/2.2.9 (Unix) DAV/2 PHP/5.2.6 mod_python/3.3.1 Python/2.5.1 mod_ssl/2.2.9 OpenSSL/0.9.8g mod_perl/2.0.4 Perl/v5.10.0 configured — resuming normal operations
[Wed Oct 14 12:02:59 2009] [alert] [client 127.0.0.1] /var/www/html/your_domain_name/.htaccess: DirectoryIndex not allowed here, referer: http://your_domain_name.org/
[Wed Oct 14 12:03:29 2009] [alert] [client 127.0.0.1] /var/www/html/your_domain_name/.htaccess: DirectoryIndex not allowed here, referer: http://your_domain_name.org/
[Wed Oct 14 12:11:13 2009] [notice] caught SIGTERM, shutting down
[Wed Oct 14 12:11:13 2009] [notice] suEXEC mechanism enabled (wrapper: /usr/sbin/suexec)
[Wed Oct 14 12:11:13 2009] [notice] Digest: generating secret for digest authentication …
[Wed Oct 14 12:11:13 2009] [notice] Digest: done
At the end of file I saw above error.
When I saw that I opened the httpd.conf file and I searched for line.
I commented this line.
Then I added following lines to that tag
Allow from all
Then I saved the httpd.conf file and restarted the apache server.
This solved the my issue.
Here I am using the Fedora 9 for this example.
If you want to host many sites on one computer or machine.
I added following lines to httpd.conf file(end of file).
When I restarted the apache server using following command.
I got the following error;
[warn] _default_ VirtualHost overlap on port 80, the first has precedence
Again I opend the httpd.conf tile and I read following lines;
# Use name-based virtual hosting.
# NOTE: NameVirtualHost cannot be used without a port specifier
# (e.g. :80) if mod_ssl is being used, due to the nature of the
# SSL protocol.
Than only I uncommented following line and restarted the Server.
My promlem get solved.
Ref URL: http://wpapi.com/solved-warn-_default_-virtualhost-overlap-on-port-80-the-first-has-precedence/
Two months back i got requirement of do basic authentication for testing site server. So Google or any search engine site cannot index the testing sites.
We are using Fedora as Operating System and Apache as webserver on our testing machine. We hosted more than fifteen test sites on that server.
I successfully created basic authentication on server.
Use following commands:
in that file you need to insert following lines.
AccessFileName htaccess.acl .htaccess
# htpasswd -c /home/USER/pwd.txt USER(you can define your user of stystem.)
New password: mypassword
Re-type new password: mypassword
That sit. Your username and password is set for popup.
Now you need to only create or update your .htaccess file. You can create or find .htaccess file in your project folder.
Use or copy and paste following code in that file: (.htaccess file)
<Limit GET POST>
I following exact method for my server and projects. It is working perfect for me.