Lighttpd - 403 - Forbidden. Co jest grane?

[Camis]

Przesiadlem sie z apache na lighttpd. Wszystko zainstalowalo sie poprawnie, serwer chodzi i wyswietla strone deufaltowa. Ale zrobilem kilka vhostow:

Kod: Zaznacz cały

$HTTP["host"] == "camisnet.pl" {
 server.document-root = "/home/lighttpd/camisnet.pl"
}
$HTTP["host"] == "www.camisnet.pl" {
 server.document-root = "/home/lighttpd/camisnet.pl"
}
$HTTP["host"] == "forum.camisnet.pl" {
 server.document-root = "/home/lighttpd/forum.camisnet.pl"
}
$HTTP["host"] == "blog.camisnet.pl" {
 server.document-root = "/home/lighttpd/blog.camisnet.pl"
}
$HTTP["host"] == "phpmyadmin.camisnet.pl" {
 server.document-root = "/home/lighttpd/phpmyadmin.camisnet.pl"
}

I do /home/lighttpd/forum.camisnet.pl wrzucilem instalke forum, ale jak chce wejsc to wyswietla sie nieszczesny: "403 - Forbidden".

Moj lighttpd.conf:

Kod: Zaznacz cały

# Debian lighttpd configuration file
#



$HTTP["host"] == "camisnet.pl" { 
 server.document-root = "/home/lighttpd/camisnet.pl" 
} 
$HTTP["host"] == "www.camisnet.pl" {        
 server.document-root = "/home/lighttpd/camisnet.pl" 
} 
$HTTP["host"] == "forum.camisnet.pl" {        
 server.document-root = "/home/lighttpd/forum.camisnet.pl" 
}
$HTTP["host"] == "blog.camisnet.pl" {        
 server.document-root = "/home/lighttpd/blog.camisnet.pl" 
}
$HTTP["host"] == "phpmyadmin.camisnet.pl" {
 server.document-root = "/home/lighttpd/phpmyadmin.camisnet.pl"
}



############ Options you really have to take care of ####################

## modules to load
# mod_access, mod_accesslog and mod_alias are loaded by default
# all other module should only be loaded if neccesary
# - saves some time
# - saves memory

server.modules              = (
            "mod_access",
            "mod_alias",
            "mod_accesslog",
            "mod_compress",
#           "mod_rewrite",
#           "mod_redirect",
#           "mod_evhost",
#           "mod_usertrack",
#           "mod_rrdtool",
#           "mod_webdav",
#           "mod_expire",
#           "mod_flv_streaming",
#           "mod_evasive"
)

## a static document-root, for virtual-hosting take look at the
## server.virtual-* options
server.document-root       = "/var/www/"

## where to upload files to, purged daily.
server.upload-dirs = ( "/var/cache/lighttpd/uploads" )

## where to send error-messages to
server.errorlog            = "/var/log/lighttpd/error.log"

## files to check for if .../ is requested
index-file.names           = ( "index.php", "index.html",
                               "index.htm", "default.htm",
                               "index.lighttpd.html" )


## Use the "Content-Type" extended attribute to obtain mime type if possible
# mimetype.use-xattr = "enable"

#### accesslog module
accesslog.filename         = "/var/log/lighttpd/access.log"

## deny access the file-extensions
#
# ~    is for backupfiles from vi, emacs, joe, ...
# .inc is often used for code includes which should in general not be part
#      of the document-root
url.access-deny            = ( "~", ".inc" )

##
# which extensions should not be handle via static-file transfer
#
# .php, .pl, .fcgi are most often handled by mod_fastcgi or mod_cgi
static-file.exclude-extensions = ( ".php", ".pl", ".fcgi" )


######### Options that are good to be but not neccesary to be changed #######

## Use ipv6 only if available.
include_shell "/usr/share/lighttpd/use-ipv6.pl"

## bind to port (default: 80)
# server.port               = 81

## bind to localhost only (default: all interfaces)
## server.bind                = "localhost"

## error-handler for status 404
#server.error-handler-404  = "/error-handler.html"
#server.error-handler-404  = "/error-handler.php"

## to help the rc.scripts
server.pid-file            = "/var/run/lighttpd.pid"

##
## Format: <errorfile-prefix><status>.html
## -> ..../status-404.html for 'File not found'
#server.errorfile-prefix    = "/var/www/"

## virtual directory listings
dir-listing.encoding        = "utf-8"
server.dir-listing          = "enable"

## send unhandled HTTP-header headers to error-log
#debug.dump-unknown-headers  = "enable"

### only root can use these options
#
# chroot() to directory (default: no chroot() )
#server.chroot            = "/"

## change uid to <uid> (default: don't care)
server.username            = "www-data"

## change uid to <uid> (default: don't care)
server.groupname           = "www-data"

#### compress module
compress.cache-dir          = "/var/cache/lighttpd/compress/"
compress.filetype           = ("text/plain", "text/html", "application/x-javascript", "text/css")


#### url handling modules (rewrite, redirect, access)
# url.rewrite                 = ( "^/$"             => "/server-status" )
# url.redirect                = ( "^/wishlist/(.+)" => "http://www.123.org/$1" )

#
# define a pattern for the host url finding
# %% => % sign
# %0 => domain name + tld
# %1 => tld
# %2 => domain name without tld
# %3 => subdomain 1 name
# %4 => subdomain 2 name
#
# evhost.path-pattern = "/home/storage/dev/www/%3/htdocs/"

#### expire module
# expire.url                  = ( "/buggy/" => "access 2 hours", "/asdhas/" => "access plus 1 seconds 2 minutes")

#### rrdtool
# rrdtool.binary = "/usr/bin/rrdtool"
# rrdtool.db-name = "/var/www/lighttpd.rrd"

#### variable usage:
## variable name without "." is auto prefixed by "var." and becomes "var.bar"
#bar = 1
#var.mystring = "foo"

## integer add
#bar += 1
## string concat, with integer cast as string, result: "www.foo1.com"
#server.name = "www." + mystring + var.bar + ".com"
## array merge
#index-file.names = (foo + ".php") + index-file.names
#index-file.names += (foo + ".php")


#### external configuration files
## mimetype mapping
include_shell "/usr/share/lighttpd/create-mime.assign.pl"

## load enabled configuration files,
## read /etc/lighttpd/conf-available/README first
include_shell "/usr/share/lighttpd/include-conf-enabled.pl"

#### handle Debian Policy Manual, Section 11.5. urls
## by default allow them only from localhost
## (This must come last due to #445459)
## Note: =~ "127.0.0.1" works with ipv6 enabled, whereas == "127.0.0.1" doesn't
$HTTP["remoteip"] =~ "127.0.0.1" {
	alias.url += (
		"/doc/" => "/usr/share/doc/",
		"/images/" => "/usr/share/images/"
	)
	$HTTP["url"] =~ "^/doc/|^/images/" {
		dir-listing.activate = "enable"
	}
}

Co mam zle zrobione? Od poczatku instalki nie hulało, wiec raczej nic nie popsulem ;-)

[ruun]

Może prościej bedzie tak:

Kod: Zaznacz cały

lighttpd-enable-mod simple-vhost

w /etc/lighttpd/conf-enabled/10-simple-vhost.conf ustaw tak:

Kod: Zaznacz cały

server.modules += ( "mod_simple_vhost" )
simple-vhost.server-root         = "/var/www"
simple-vhost.document-root       = ""
simple-vhost.default-host        = "camisnet.pl"

i w /var/www tworzysz foldery:

camisnet.pl
forum.camisnet.pl
blog.camisnet.pl

i dowiązania symboliczne:

http://www.camisnet.pl - dowiązanie do camisnet.pl
phpmyadmin.camisnet.pl - dowiązanie do /usr/share/phpmyadmin

[Camis]

Ustawilem tak jak pisales:

Kod: Zaznacz cały

camisnet:/home/camis# cd /usr/sbin/
camisnet:/usr/sbin# lighttpd-enable-mod simple-vhost
Available modules: auth cgi cml fastcgi magnet proxy rrdtool simple-vhost ssi ssl status trigger-b4-dl userdir webdav
Already enabled modules: simple-vhost
Enabling simple-vhost: already enabled
Run /etc/init.d/lighttpd force-reload to enable changes
camisnet:/usr/sbin# /etc/init.d/lighttpd force-reload
Stopping web server: lighttpd.
Starting web server: lighttpd.

I teraz wywala Connection refused:

Kod: Zaznacz cały

B£¡D
¯ądany URL nie może zostać sprowadzony

Podczas sprowadzania URL-a: [url]http://www.camisnet.pl/[/url] 

wystąpił następujący błąd: 
Nie można zrealizować połączenia
System zwrócił następującą wartość: 
    (111) Connection refused
Serwer źródłowy lub sieć mogą być nieczynne. Spróbuj ponowić żądanie później.

[ruun]

Usunąłeś z lighttpd.conf stare definicje vhostów?

[Camis]

Usunąłeś z lighttpd.conf stare definicje vhostów?

Tak

Kod: Zaznacz cały

# Debian lighttpd configuration file
#


## modules to load
# mod_access, mod_accesslog and mod_alias are loaded by default
# all other module should only be loaded if neccesary
# - saves some time
# - saves memory

server.modules              = (
            "mod_access",
            "mod_alias",
            "mod_accesslog",
            "mod_compress",
#           "mod_rewrite",
            "mod_redirect",
            "mod_evhost",
#           "mod_usertrack",
            "mod_rrdtool",
#           "mod_webdav",
#           "mod_expire",
#           "mod_flv_streaming",
#           "mod_evasive"
)



## a static document-root, for virtual-hosting take look at the
## server.virtual-* options
   server.document-root       = "/var/www/"

## where to upload files to, purged daily.
server.upload-dirs = ( "/var/cache/lighttpd/uploads" )

## where to send error-messages to
server.errorlog            = "/var/log/lighttpd/error.log"

## files to check for if .../ is requested
index-file.names           = ( "index.php", "index.html",
                               "index.htm", "default.htm",
                               "index.lighttpd.html" )


## Use the "Content-Type" extended attribute to obtain mime type if possible
# mimetype.use-xattr = "enable"

#### accesslog module
accesslog.filename         = "/var/log/lighttpd/access.log"

## deny access the file-extensions
#
# ~    is for backupfiles from vi, emacs, joe, ...
# .inc is often used for code includes which should in general not be part
#      of the document-root
url.access-deny            = ( "~", ".inc" )

##
# which extensions should not be handle via static-file transfer
#
# .php, .pl, .fcgi are most often handled by mod_fastcgi or mod_cgi
static-file.exclude-extensions = ( ".php", ".pl", ".fcgi" )


######### Options that are good to be but not neccesary to be changed #######

## Use ipv6 only if available.
include_shell "/usr/share/lighttpd/use-ipv6.pl"

## bind to port (default: 80)
# server.port               = 81

## bind to localhost only (default: all interfaces)
## server.bind                = "localhost"

## error-handler for status 404
#server.error-handler-404  = "/error-handler.html"
#server.error-handler-404  = "/error-handler.php"

## to help the rc.scripts
server.pid-file            = "/var/run/lighttpd.pid"

##
## Format: <errorfile-prefix><status>.html
## -> ..../status-404.html for 'File not found'
#server.errorfile-prefix    = "/var/www/"

## virtual directory listings
dir-listing.encoding        = "utf-8"
server.dir-listing          = "enable"

## send unhandled HTTP-header headers to error-log
#debug.dump-unknown-headers  = "enable"

### only root can use these options
#
# chroot() to directory (default: no chroot() )
#server.chroot            = "/"

## change uid to <uid> (default: don't care)
server.username            = "www-data"

## change uid to <uid> (default: don't care)
server.groupname           = "www-data"

#### compress module
compress.cache-dir          = "/var/cache/lighttpd/compress/"
compress.filetype           = ("text/plain", "text/html", "application/x-javascript", "text/css")


#### url handling modules (rewrite, redirect, access)
# url.rewrite                 = ( "^/$"             => "/server-status" )
# url.redirect                = ( "^/wishlist/(.+)" => "http://www.123.org/$1" )

#
# define a pattern for the host url finding
# %% => % sign
# %0 => domain name + tld
# %1 => tld
# %2 => domain name without tld
# %3 => subdomain 1 name
# %4 => subdomain 2 name
#
# evhost.path-pattern = "/home/storage/dev/www/%3/htdocs/"

#### expire module
# expire.url                  = ( "/buggy/" => "access 2 hours", "/asdhas/" => "access plus 1 seconds 2 minutes")

#### rrdtool
# rrdtool.binary = "/usr/bin/rrdtool"
# rrdtool.db-name = "/var/www/lighttpd.rrd"

#### variable usage:
## variable name without "." is auto prefixed by "var." and becomes "var.bar"
#bar = 1
#var.mystring = "foo"

## integer add
#bar += 1
## string concat, with integer cast as string, result: "www.foo1.com"
#server.name = "www." + mystring + var.bar + ".com"
## array merge
#index-file.names = (foo + ".php") + index-file.names
#index-file.names += (foo + ".php")


#### external configuration files
## mimetype mapping
include_shell "/usr/share/lighttpd/create-mime.assign.pl"

## load enabled configuration files,
## read /etc/lighttpd/conf-available/README first
include_shell "/usr/share/lighttpd/include-conf-enabled.pl"

#### handle Debian Policy Manual, Section 11.5. urls
## by default allow them only from localhost
## (This must come last due to #445459)
## Note: =~ "127.0.0.1" works with ipv6 enabled, whereas == "127.0.0.1" doesn't
#$HTTP["remoteip"] =~ "127.0.0.1" {
#	alias.url += (
#		"/doc/" => "/usr/share/doc/",
#		"/images/" => "/usr/share/images/"
#	)
#	$HTTP["url"] =~ "^/doc/|^/images/" {
#		dir-listing.activate = "enable"
#	}
#}

[JarekMk]

Ale w ogóle nie widać abyś miał obsługę PHP.
Jeśli korzystasz z fast.cgi dodaj do server.modules

Kod: Zaznacz cały

"mod_fastcgi",

Potem po:

Kod: Zaznacz cały

#           "mod_evasive"
) 

Dodaj:

Kod: Zaznacz cały

fastcgi.server = ( ".php" => ((
                     "bin-path" => "/usr/bin/php5-cgi",
                     "socket" => "/tmp/php.socket"
                 )))

Kod: Zaznacz cały

apt-get install php5-cgi 

Jeśli nie masz?

Na końcu pliku /etc/php5/cgi/php.ini dodaj:

Kod: Zaznacz cały

cgi.fix_pathinfo = 1

Pzdr!

[Camis]

Nadal nie działa.

To nie wina php, bo wrzuciłem obrazek i nie odczytuje go bezpośrednio też.

Kod: Zaznacz cały

http://camisnet.pl/photo.jpeg -  (111) Connection refused 

Co za... Na apache2 wszystko śmigało dobrze.

[JarekMk]

Widzę na WHT tez piszesz :P Ja teraz męczyłem się właśnie z apache i resztą i udało mi się zejść do 120MB pamięci zajętej, a mam dokładnie:
Apache2.2
Php5
Mysql5
Proftpd
Posftix oraz za chwile Courier-IMAP/Courier-POP3

[Camis]

Kod: Zaznacz cały

2008-10-17 18:26:42: (log.c.75) server started
2008-10-17 18:26:42: (mod_rrdtool.c.343) rrdtool.binary has to be set
2008-10-17 18:26:42: (server.c.908) Configuration of plugins failed. Going down.

Przepraszam, za zawracanie głowy już chodzi. Wyłączyłem po prostu moduł rrdtool. ¯e też wcześniej nie przejrzałem logów.