Re: [users@httpd] apache 2.4 allow by IP

Thu, 19 Mar 2015 10:25:50 -0700 

2015-03-19 18:06 GMT+01:00 Robert Webb <[email protected]>:

> I don't agree with your analysis.
>
> <ul><li><a href="healthcheck.php"> healthcheck.php</a></li> is an href
> inside an html page that does nothing until clicked on by the client.
>
> This is all assuming that the access denied he is getting is from http://
> $(hostname>>-i)/server-status and "server-status" is the html page of the
> code he posted. Not when clicking on the healthcheck.php href link.
>
>
> Robert
>
>
> On Thu, 19 Mar 2015 17:57:09 +0100
>  Daniel <[email protected]> wrote:
>
>> 2015-03-19 17:41 GMT+01:00 Tim Dunphy <[email protected]>:
>>
>>  Hey all,
>>>
>>>  I'm attempting to setup the server-status module and limit access to it
>>> by IP.
>>>
>>> So I have this block in my apache configuration file:
>>>
>>> #Mod_status config
>>>     ExtendedStatus on
>>> <Location /server-status>
>>>     SetHandler server-status
>>>     Require ip 10.10.10.5 127.0.0.1
>>> </Location>
>>>
>>> And if I do a GET by IP, I'm getting permission denied
>>>
>>> [root@uszwslp00031la apache2]# GET http://$(hostname -i)/server-status
>>> <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2 Final//EN">
>>> <html>
>>>  <head>
>>>   <title>Index of /</title>
>>>  </head>
>>>  <body>
>>> <h1>Index of /</h1>
>>> <ul><li><a href="healthcheck.php"> healthcheck.php</a></li>
>>> </ul>
>>> </body></html>
>>> <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
>>> <html><head>
>>> <title>403 Forbidden</title>
>>> </head><body>
>>> <h1>Forbidden</h1>
>>> *<p>You don't have permission to access /server-status*
>>> on this server.<br />
>>> </p>
>>> </body></html>
>>>
>>> Can someone please let me know where I'm going wrong?
>>>
>>> Thanks
>>> Tim
>>>
>>> --
>>> GPG me!!
>>>
>>> gpg --keyserver pool.sks-keyservers.net --recv-keys F186197B
>>>
>>>
>>>  Hello,
>>
>> This shoud give you a tip:
>> <h1>Index of /</h1>
>> <ul><li><a href="healthcheck.php"> healthcheck.php</a></li> <-------------
>> which has nothing to do with server-status
>>
>> make sure you are accessing the correct virtualhost
>>
>> --
>> *Daniel Ferradal*
>> IT Specialist
>>
>> email         [email protected]
>> linkedin     es.linkedin.com/in/danielferradal
>>
>
>
>
Should that be the case he still needs to check the error.log


-- 
*Daniel Ferradal*
IT Specialist

email         [email protected]
linkedin     es.linkedin.com/in/danielferradal

Reply via email to