httpd conf Question

[nootkan]

Hello all, here is my server info:

WHM/cPanel Version: 102.0.11
Linux x86_64 with Centos v7.9209 OS
Apache: 2.4.53
php: 7.4.29
Mysql: 5.7.37
Kernel: 3.10.0-1160.49.1el7.x86_64

Every now and then I am seeing a 404 error when clicking on a login link or option link with a dating site script running on the server.

At first I thought it may be a session issue as I was also logged into the admin in the same browser.

So I used a different computer and logged in with the client user information and after clicking around the profile and other options, the issue occurred a couple of times again.

Here is what I found in my apache error logs:

[Fri Apr 22 14:09:32.097514 2022] [:error] [pid 11778:tid 47447952926464] [client ip address:51602] client denied by server configuration: /home/username/public_html/dating/asset, referer: https://www.website.com/dating/

I searched this forum and google and found a few references to changing the httpd conf file to:

<Directory />
Require all granted
</Directory>

from this:

<Directory "/">

      AllowOverride All

    Options IncludesNOEXEC FollowSymLinks ExecCGI Indexes
</Directory>

which is what I see in my httpd conf file currently.

So my question after all this is should I make those changes as suggested or is there something else going on maybe that I haven't been able to troubleshoot.

Forgot to add that I've checked my csf firewall logs and nothing shows there that could lead to the issue.

I checked with the developer of the script and he tells me it is an issue with my server and not the script.

Also not seeing anything in developer tools>>console regarding the issue ether.

Thanks for the support and patience for the long winded post.

 

[cPRex]

Hey there! Does your issue sound like what is being discussed here?

SOLVED - CPANEL-40507 - WHM/CPANEL Broke two sites on my server (that I know of) out of the blue today.

Two sites had their document root paths crossed up out of the blue in the middle of the work day. No one on my team was even working on anything on the server. Apparently WHM did something to the HTTPD config that caused the issue. The issue is that for both sites we have the following setup...

forums.cpanel.net

If so, we're hoping to push the fix to the Release tier today.

 

[nootkan]

Hi cPRex, thanks for the reply.

It sounds similar however I haven't had any website crashes or anything else (that I am aware of ) no one is banging down the door.

As of today I haven't seen the issue again but it seemed to be only on the Chrome browser so maybe my first hunch was correct.

I will keep an eye on it for a while in case it reappears.

 

[cPRex]

Do you have any DoS prevention tools installed, such as mod_evasive that could be temporarily blocking users? I'm afraid I don't have a good explanation for that behavior.

 

[nootkan]

Hi cPRex, no mod_evasive isn't installed on the server but the csf package is.

However, there were nothing in the logs for csf or modsecurity that raised any flags.

cPhulk, KernelCare’s Free Symlink Protection and ImunifyAV are also installed but didn't see anything in my apache logs either.