Solved

Symlink between multiple domains on PLESK 8.1 (Linux)

Posted on 2007-03-22
8
1,644 Views
Last Modified: 2008-01-09
Hey Experts!

I'm in a situation where I need to create a symlink from one domain to another in PLESK 8.1.  Althought the symlink is properly created, I keep getting a FORBIDDEN error from Apache when trying to access files which should  be accessible through the symlink.

I'm guessing this is a chown issue where Apache is locked down by PLESK to not allow symlinks between domains.

Does anyone know a simple way around this?  If so, are there serious security implications to your suggested change?

Thanks a lot!

Brendan
0
Comment
Question by:brendanwov
  • 3
  • 3
8 Comments
 
LVL 27

Expert Comment

by:Nopius
ID: 18769595
There is an option in httpd.conf to allow following symlinks:
Options FollowSymLinks
Without this option following symlinks is forbidden.
Read here: http://httpd.apache.org/docs/2.0/mod/core.html#options

What is the exact error text? Please provide the error line from apache error_log file.
0
 

Author Comment

by:brendanwov
ID: 18769604
Hey Nopius!

Thanks for your quick reply.  Here is how my httpd.conf file is currently configured...

<Directory />
    Options FollowSymLinks
    AllowOverride None
</Directory>

Can you give me the exact syntax of what I need to change in order to allow symlinks between domains?

I look forward to your reply.  Thanks!

Brendan
0
 

Author Comment

by:brendanwov
ID: 18769619
Hey Nopius!

Just to be sure you have all the information you need...

# Each directory to which Apache has access can be configured with respect
# to which services and features are allowed and/or disabled in that
# directory (and its subdirectories).
#
# First, we configure the "default" to be a very restrictive set of
# features.
#
<Directory />
    Options FollowSymLinks
    AllowOverride None
</Directory>

#
# Note that from this point forward you must specifically allow
# particular features to be enabled - so if something's not working as
# you might expect, make sure that you have specifically enabled it
# below.
#

#
# This should be changed to whatever you set DocumentRoot to.
#
<Directory "/var/www/html">

#
# Possible values for the Options directive are "None", "All",
# or any combination of:
#   Indexes Includes FollowSymLinks SymLinksifOwnerMatch ExecCGI MultiViews
#
# Note that "MultiViews" must be named *explicitly* --- "Options All"
# doesn't give it to you.
#
# The Options directive is both complicated and important.  Please see
# http://httpd.apache.org/docs-2.0/mod/core.html#options
# for more information.
#
    Options Indexes FollowSymLinks

#
# AllowOverride controls what directives may be placed in .htaccess files.
# It can be "All", "None", or any combination of the keywords:
#   Options FileInfo AuthConfig Limit
#
    AllowOverride None

#
# Controls who can get stuff from this server.
#
    Order allow,deny
    Allow from all

</Directory>


I look forward to your reply.  Thanks!

Brendan
0
VMware Disaster Recovery and Data Protection

In this expert guide, you’ll learn about the components of a Modern Data Center. You will use cases for the value-added capabilities of Veeam®, including combining backup and replication for VMware disaster recovery and using replication for data center migration.

 
LVL 27

Expert Comment

by:Nopius
ID: 18769632
It looks that you have required option. Now I need to see what Apache says in /var/www/logs/error_log (I belive it's correct path), just try to access symlinked domain then copy-paste the output from:

tail -20 /var/www/logs/error_log

0
 

Author Comment

by:brendanwov
ID: 18769686
Hey Nopius!

I triggered the error and then viewed the log files and there didn't seem to be any errors listed within the most recent 20 minutes.  So I don't think this error is registering.  To calrify, the log file you suggested I tail didn't exist so I used the command below.

tail -50 /var/log/httpd/error_log

Thanks for your help!  What do you suggest?  Let me know.

Brendan
0
 
LVL 27

Accepted Solution

by:
Nopius earned 500 total points
ID: 18769696
If you get 'forbidden' then _very_ likely there are some logs about your access attempt. Maybe not in this file. May be in /var/log/httpd/access_log (try tail that file).

Or you may have different logfiles for different domains. To check it, run
grep -i errorlog httpd.conf
and post results here.

If there is nothing either in access_log or in error_log (or in all logs for all domains if you have separate), then probably 'forbidden' comes not from Apache or your server, but from some kind of proxy between you and Apache. Please provide what exact error message your browser says.

0

Featured Post

Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Issues with SSL enablement in Apache 2.0.50 6 22
LAMP problem identifier tool ? 9 116
Apache,  not running php on top level 14 65
Missing Apache mod_DBD packages in Centos 7 2 76
As Wikipedia explains 'robots.txt' as -- the robot exclusion standard, also known as the Robots Exclusion Protocol or robots.txt protocol, is a convention to prevent cooperating web spiders and other web robots from accessing all or part of a websit…
If your site has a few sections that need to be secure when data is transmitted between the server and local computer, such as a /order/ section for ordering or /customer/ which contains customer data, etc it would of course be recommended to secure…
Although Jacob Bernoulli (1654-1705) has been credited as the creator of "Binomial Distribution Table", Gottfried Leibniz (1646-1716) did his dissertation on the subject in 1666; Leibniz you may recall is the co-inventor of "Calculus" and beat Isaac…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

785 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question