Apache2 site client denied by server

AH01630: client denied by server configuration:

[Sun Apr 27 17:15:44.947817 2025] [access_compat:error] [pid 4049818:tid 4049821] [client 82.77.209.12:0] AH01797: client denied by server configuration: /home/tweky/web/minios.ro/public_html/index.html, referer: https://minios.ro/register
[Sun Apr 27 17:15:44.947928 2025] [access_compat:error] [pid 4049818:tid 4049821] [client 82.77.209.12:0] AH01797: client denied by server configuration: /home/tweky/web/minios.ro/public_html/index.cgi, referer: https://minios.ro/register
[Sun Apr 27 17:15:44.948003 2025] [access_compat:error] [pid 4049818:tid 4049821] [client 82.77.209.12:0] AH01797: client denied by server configuration: /home/tweky/web/minios.ro/public_html/index.pl, referer: https://minios.ro/register

[Sun Apr 27 17:18:39.273277 2025] [authz_core:error] [pid 4049818:tid 4049827] [client 43.159.128.237:0] AH01630: client denied by server configuration: /home/tweky/web/minios.ro/public_html/
[Sun Apr 27 18:41:36.900218 2025] [authz_core:error] [pid 4049818:tid 4049841] [client 82.77.209.12:0] AH01630: client denied by server configuration: /home/tweky/web/minios.ro/public_html/index.html
[Sun Apr 27 18:41:36.900274 2025] [authz_core:error] [pid 4049818:tid 4049841] [client 82.77.209.12:0] AH01630: client denied by server configuration: /home/tweky/web/minios.ro/public_html/index.cgi
[Sun Apr 27 18:41:36.900313 2025] [authz_core:error] [pid 4049818:tid 4049841] [client 82.77.209.12:0] AH01630: client denied by server configuration: /home/tweky/web/minios.ro/public_html/index.pl
[Sun Apr 27 18:42:09.354436 2025] [authz_core:error] [pid 4049818:tid 4049850] [client 82.77.209.12:0] AH01630: client denied by server configuration: /home/tweky/web/minios.ro/public_html/index.html
[Sun Apr 27 18:42:09.354546 2025] [authz_core:error] [pid 4049818:tid 4049850] [client 82.77.209.12:0] AH01630: client denied by server configuration: /home/tweky/web/minios.ro/public_html/index.cgi
[Sun Apr 27 18:42:09.354609 2025] [authz_core:error] [pid 4049818:tid 4049850] [client 82.77.209.12:0] AH01630: client denied by server configuration: /home/tweky/web/minios.ro/public_html/index.pl

I have a script and it gives me these errors… I’m looking for someone to help me solve this problem, from what I’ve read it might be some permissions in Apache, etc. I don’t understand if anyone can tell me why I can’t get rid of this problem… if necessary I’ll pay for help

I guess you have an .htaccess file denying access, did you check that .htaccess file?

cat /home/tweky/web/minios.ro/public_html/.htaccess

If you don’t have that file or that is not causing the problem, check your apache’s conf:

cat /etc/apache2/conf.d/domains/minios.ro.conf
cat /etc/apache2/conf.d/domains/minios.ro.ssl.conf

frist .conf

type or p<VirtualHost 82.77.209.13:8080>

    ServerName minios.ro
    ServerAlias www.minios.ro
    ServerAdmin [email protected]
    DocumentRoot /home/tweky/web/minios.ro/public_html
    ScriptAlias /cgi-bin/ /home/tweky/web/minios.ro/cgi-bin/
    Alias /vstats/ /home/tweky/web/minios.ro/stats/
    Alias /error/ /home/tweky/web/minios.ro/document_errors/
    #SuexecUserGroup tweky tweky
    CustomLog /var/log/apache2/domains/minios.ro.bytes bytes
    CustomLog /var/log/apache2/domains/minios.ro.log combined
    ErrorLog /var/log/apache2/domains/minios.ro.error.log

    IncludeOptional /home/tweky/conf/web/minios.ro/apache2.forcessl.conf*

    <Directory /home/tweky/web/minios.ro/stats>
        AllowOverride All
    </Directory>
    <Directory /home/tweky/web/minios.ro/public_html>
 Require all denied
        AllowOverride All
        Options +Includes -Indexes +ExecCGI
    </Directory>

    <FilesMatch \.php$>
 Require all denied
 SetHandler "proxy:unix:/run/php/php7.4-fpm-minios.ro.sock|fcgi://localhost"
    </FilesMatch>
    SetEnvIf Authorization .+ HTTP_AUTHORIZATION=$0

    IncludeOptional /home/tweky/conf/web/minios.ro/apache2.conf_*
    IncludeOptional /etc/apache2/conf.d/*.inc
</VirtualHost>aste code here

ssl.conf here

type <VirtualHost 82.77.209.13:8443>

    ServerName minios.ro
    ServerAlias www.minios.ro
    ServerAdmin [email protected]
    DocumentRoot /home/tweky/web/minios.ro/public_html
    ScriptAlias /cgi-bin/ /home/tweky/web/minios.ro/cgi-bin/
    Alias /vstats/ /home/tweky/web/minios.ro/stats/
    Alias /error/ /home/tweky/web/minios.ro/document_errors/
    #SuexecUserGroup tweky tweky
    CustomLog /var/log/apache2/domains/minios.ro.bytes bytes
    CustomLog /var/log/apache2/domains/minios.ro.log combined
    ErrorLog /var/log/apache2/domains/minios.ro.error.log
    <Directory /home/tweky/web/minios.ro/stats>
        AllowOverride All
    </Directory>
    <Directory /home/tweky/web/minios.ro/public_html>
        AllowOverride All
        SSLRequireSSL
        Options +Includes -Indexes +ExecCGI
        </Directory>
    SSLEngine on
    SSLVerifyClient none
    SSLCertificateFile /home/tweky/conf/web/minios.ro/ssl/minios.ro.crt
    SSLCertificateKeyFile /home/tweky/conf/web/minios.ro/ssl/minios.ro.key
    SSLCertificateChainFile /home/tweky/conf/web/minios.ro/ssl/minios.ro.ca

    <FilesMatch \.php$>
        SetHandler "proxy:unix:/run/php/php7.4-fpm-minios.ro.sock|fcgi://localhost"
    </FilesMatch>
    SetEnvIf Authorization .+ HTTP_AUTHORIZATION=$0

    IncludeOptional /home/tweky/conf/web/minios.ro/apache2.ssl.conf_*
    IncludeOptional /etc/apache2/conf.d/*.inc
</VirtualHost>or paste code here

i have .htacces files

# deny directory listing, enable symbolic links
Options -Indexes +FollowSymlinks

AddType video/mp4 .mp4
AddType video/webm .webm
AddType video/ogg .ogv
AddType image/jpeg .jpeg
AddType image/jpeg .jpg
AddType image/png .png
AddType image/gif .gif
AddType audio/mpeg .mp3
AddType application/pdf .pdf

# block some bots
SetEnvIfNoCase User-Agent "Abonti|aggregator|AhrefsBot|asterias|BDCbot|BLEXBot|BuiltBotTough|Bullseye|BunnySlippers|ca\-crawler|CCBot|Cegbfeieh|CheeseBot|CherryPicker|CopyRightCheck|cosmos|Crescent|discobot|DittoSpyder|DotBot|Download Ninja|EasouSpider|EmailCollector|EmailSiphon|EmailWolf|EroCrawler|Exabot|ExtractorPro|Fasterfox|FeedBooster|Foobot|Genieo|grub\-client|Harvest|hloader|httplib|HTTrack|humanlinks|ieautodiscovery|InfoNaviRobot|IstellaBot|Java/1\.|JennyBot|k2spider|Kenjin Spider|Keyword Density/0\.9|larbin|LexiBot|libWeb|libwww|LinkextractorPro|linko|LinkScan/8\.1a Unix|LinkWalker|LNSpiderguy|lwp\-trivial|magpie|Mata Hari|MaxPointCrawler|MegaIndex|Microsoft URL Control|MIIxpc|Mippin|Missigua Locator|Mister PiX|MJ12bot|moget|MSIECrawler|NetAnts|NICErsPRO|Niki\-Bot|NPBot|Nutch|Offline Explorer|Openfind|panscient\.com|PHP/5\.\{|ProPowerBot/2\.14|ProWebWalker|Python\-urllib|QueryN Metasearch|RepoMonkey|SemrushBot|SISTRIX|sitecheck\.Internetseer\.com|SiteSnagger|SnapPreviewBot|Sogou|SpankBot|spanner|spbot|Spinn3r|suzuran|Szukacz/1\.4|Teleport|Telesoft|The Intraformant|TheNomad|TightTwatBot|Titan|toCrawl/UrlDispatcher|True_Robot|turingos|TurnitinBot|UbiCrawler|UnisterBot|URLy Warning|VCI|WBSearchBot|Web Downloader/6\.9|Web Image Collector|WebAuto|WebBandit|WebCopier|WebEnhancer|WebmasterWorldForumBot|WebReaper|WebSauger|Website Quester|Webster Pro|WebStripper|WebZip|Wotbox|wsr\-agent|WWW\-Collector\-E|Xenu|Zao|Zeus|ZyBORG|coccoc|Incutio|lmspider|memoryBot|SemrushBot|serf|Unknown|uptime files" bad_bot
SetEnvIfNoCase User-Agent "Aboundex|80legs|360Spider|^Java|^Cogentbot|^Alexibot|^asterias|^attach|^BackDoorBot|^BackWeb|Bandit|^BatchFTP|^Bigfoot|^Black.Hole|^BlackWidow|^BlowFish|^BotALot|Buddy|^BuiltBotTough|^Bullseye|^BunnySlippers|^Cegbfeieh|^CheeseBot|^CherryPicker|^ChinaClaw|Collector|Copier|^CopyRightCheck|^cosmos|^Crescent|^Custo|^AIBOT|^DISCo|^DIIbot|^DittoSpyder|^Download\ Demon|^Download\ Devil|^Download\ Wonder|^dragonfly|^Drip|^eCatch|^EasyDL|^ebingbong|^EirGrabber|^EmailCollector|^EmailSiphon|^EmailWolf|^EroCrawler|^Exabot|^Express\ WebPictures|Extractor|^EyeNetIE|^Foobot|^flunky|^FrontPage|^Go-Ahead-Got-It|^gotit|^GrabNet|^Grafula|^Harvest|^hloader|^HMView|^HTTrack|^humanlinks|^IlseBot|^Image\ Stripper|^Image\ Sucker|Indy\ Library|^InfoNaviRobot|^InfoTekies|^Intelliseek|^InterGET|^Internet\ Ninja|^Iria|^Jakarta|^JennyBot|^JetCar|^JOC|^JustView|^Jyxobot|^Kenjin.Spider|^Keyword.Density|^larbin|^LexiBot|^lftp|^libWeb/clsHTTP|^likse|^LinkextractorPro|^LinkScan/8.1a.Unix|^LNSpiderguy|^LinkWalker|^lwp-trivial|^LWP::Simple|^Magnet|^Mag-Net|^MarkWatch|^Mass\ Downloader|^Mata.Hari|^Memo|^Microsoft.URL|^Microsoft\ URL\ Control|^MIDown\ tool|^MIIxpc|^Mirror|^Missigua\ Locator|^Mister\ PiX|^moget|^Mozilla/3.Mozilla/2.01|^Mozilla.*NEWT|^NAMEPROTECT|^Navroad|^NearSite|^NetAnts|^Netcraft|^NetMechanic|^NetSpider|^Net\ Vampire|^NetZIP|^NextGenSearchBot|^NG|^NICErsPRO|^niki-bot|^NimbleCrawler|^Ninja|^NPbot|^Octopus|^Offline\ Explorer|^Offline\ Navigator|^Openfind|^OutfoxBot|^PageGrabber|^Papa\ Foto|^pavuk|^pcBrowser|^PHP\ version\ tracker|^Pockey|^ProPowerBot/2.14|^ProWebWalker|^psbot|^Pump|^QueryN.Metasearch|^RealDownload|Reaper|Recorder|^ReGet|^RepoMonkey|^RMA|Siphon|^SiteSnagger|^SlySearch|^SmartDownload|^Snake|^Snapbot|^Snoopy|^sogou|^SpaceBison|^SpankBot|^spanner|^Sqworm|Stripper|Sucker|^SuperBot|^SuperHTTP|^Surfbot|^suzuran|^Szukacz/1.4|^tAkeOut|^Teleport|^Telesoft|^TurnitinBot/1.5|^The.Intraformant|^TheNomad|^TightTwatBot|^Titan|^True_Robot|^turingos|^TurnitinBot|^URLy.Warning|^Vacuum|^VCI|^VoidEYE|^Web\ Image\ Collector|^Web\ Sucker|^WebAuto|^WebBandit|^Webclipping.com|^WebCopier|^WebEMailExtrac.*|^WebEnhancer|^WebFetch|^WebGo\ IS|^Web.Image.Collector|^WebLeacher|^WebmasterWorldForumBot|^WebReaper|^WebSauger|^Website\ eXtractor|^Website\ Quester|^Webster|^WebStripper|^WebWhacker|^WebZIP|Whacker|^Widow|^WISENutbot|^WWWOFFLE|^WWW-Collector-E|^Xaldon|^Xenu|^Zeus|ZmEu|^Zyborg|Acunetix|FHscan|Baiduspider|Yandex" bad_bot
Deny from env=bad_bot

# protect .htaccess
<Files .htaccess>
Require all granted
</Files>
# protect script files, template file, log files
<Files ~ "^(.*)\.(inc|inc\.php|s?p?html|cgi|pl|py|asp|aspx|sh|cin|tpl|tplb|log)$">
Require all granted
</Files>
<FilesMatch ".(ico|pdf|flv|jpg|jpeg|png|gif|js|css|swf|woff|webp)$">
    Header set Cache-Control "max-age=84600, public"
</FilesMatch>

<IfModule mod_deflate.c>
# Compress HTML, CSS, JavaScript, Text, XML and fonts
AddOutputFilterByType DEFLATE application/javascript
AddOutputFilterByType DEFLATE application/rss+xml
AddOutputFilterByType DEFLATE application/vnd.ms-fontobject
AddOutputFilterByType DEFLATE application/x-font
AddOutputFilterByType DEFLATE application/x-font-opentype
AddOutputFilterByType DEFLATE application/x-font-otf
AddOutputFilterByType DEFLATE application/x-font-truetype
AddOutputFilterByType DEFLATE application/x-font-ttf
AddOutputFilterByType DEFLATE application/x-javascript
AddOutputFilterByType DEFLATE application/xhtml+xml
AddOutputFilterByType DEFLATE application/xml
AddOutputFilterByType DEFLATE font/opentype
AddOutputFilterByType DEFLATE font/otf
AddOutputFilterByType DEFLATE font/ttf
AddOutputFilterByType DEFLATE image/svg+xml
AddOutputFilterByType DEFLATE image/x-icon
AddOutputFilterByType DEFLATE text/css
AddOutputFilterByType DEFLATE text/html
AddOutputFilterByType DEFLATE text/javascript
AddOutputFilterByType DEFLATE text/plain
AddOutputFilterByType DEFLATE text/xml

# Remove browser bugs (only needed for really old browsers)
BrowserMatch ^Mozilla/4 gzip-only-text/html
BrowserMatch ^Mozilla/4\.0[678] no-gzip
BrowserMatch \bMSIE !no-gzip !gzip-only-text/html
Header append Vary User-Agent
</IfModule>

## EXPIRES CACHING ##
<IfModule mod_expires.c>
ExpiresActive On
ExpiresByType image/jpg "access 1 week"
ExpiresByType image/jpeg "access 1 week"
ExpiresByType image/gif "access 1 week"
ExpiresByType image/png "access 1 week"
ExpiresByType text/css "access 1 week"
ExpiresByType text/html "access 1 week"
ExpiresByType application/pdf "access 1 month"
ExpiresByType text/x-javascript "access 1 week"
ExpiresByType application/x-shockwave-flash "access 1 month"
ExpiresByType image/x-icon "access 1 month"
ExpiresDefault "access 1 month"
</IfModule>
## EXPIRES CACHING ##

<IfModule mod_headers.c>
    Header set Connection keep-alive
    <filesmatch "\.(ico|flv|gif|swf|eot|woff|otf|ttf|svg)$">
        Header set Cache-Control "max-age=604800, public"
    </filesmatch>
    <filesmatch "\.(jpg|jpeg|png)$">
        Header set Cache-Control "max-age=604800, public"
    </filesmatch>
    # css and js should use private for proxy caching https://developers.google.com/speed/docs/best-practices/caching#LeverageProxyCaching
    <filesmatch "\.(css|js)$">
        Header set Cache-Control "max-age=604800, private"
    </filesmatch>
    #<filesMatch "\.(x?html?|php)$">
    #    Header set Cache-Control "max-age=600, private, must-revalidate"
    #</filesMatch>
</IfModule>

ErrorDocument 404 https://%{HTTP_HOST}/error
ErrorDocument 403 https://%{HTTP_HOST}/error

# begin rewrite rules
RewriteEngine On
# redirect non-www to www
# RewriteCond %{HTTP_HOST} ^your-domain.com [NC]
# RewriteRule ^(.*)$ https://www.your-domain.com/$1 [L,R=301]

# old home redirect
RewriteRule ^(.*)home$ https://%{HTTP_HOST} [R=301,L]
# general rewrite rules
RewriteRule ^shorts/([^/]*)$ f_modules/m_frontend/m_file/shorts.php?s=$1&g=1 [L]
RewriteRule ^([viadbl])/([^/]*)/([^/]*)&p=([^/]*)$ f_modules/m_frontend/m_file/view.php?$1=$2&p=$4&g=1 [L]
RewriteRule ^([viadbl])/([^/]*)/([^/]*)&rs=([^/]*)$ f_modules/m_frontend/m_file/view.php?$1=$2&rs=$4&g=1 [L]
RewriteRule ^([viadbl])/([^/]*)/([^/]*)$ f_modules/m_frontend/m_file/view.php?$1=$2&g=1 [L]
RewriteRule ^broadcasts/([^/]*)$ f_modules/m_frontend/m_file/browse.php?t=live&c=$1 [L]
RewriteRule ^videos/([^/]*)$ f_modules/m_frontend/m_file/browse.php?t=video&c=$1 [L]
RewriteRule ^pictures/([^/]*)$ f_modules/m_frontend/m_file/browse.php?t=image&c=$1 [L]
RewriteRule ^music/([^/]*)$ f_modules/m_frontend/m_file/browse.php?t=audio&c=$1 [L]
RewriteRule ^documents/([^/]*)$ f_modules/m_frontend/m_file/browse.php?t=document&c=$1 [L]
RewriteRule ^blogs/([^/]*)$ f_modules/m_frontend/m_file/browse.php?t=blog&c=$1 [L]
RewriteRule ^channels/([^/]*)$ f_modules/m_frontend/m_acct/channels.php?t=channel&c=$1 [L]
RewriteRule ^syncdf$ f_modules/m_frontend/m_acct/sync_df.php [L]
RewriteRule ^publish$ f_modules/m_frontend/m_live/auth.php [L]
RewriteRule ^publish_done$ f_modules/m_frontend/m_live/done.php [L]
RewriteRule ^previews/default.mp4$ f_data/data_userfiles/user_media/default.mp4 [L]
RewriteRule ^previews/s/([^/]*)/([^/]*).mp4$ f_data/data_userfiles/user_media/$1/s/$2.mp4 [L]
RewriteRule ^previews/([^/]*)/([^/]*).mp4$ f_data/data_userfiles/user_media/$1/v/$2.mp4 [L]

# passing all requests through parser.php
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule .* parser.php [L,QSA]

I don’t have time to check the configuration files, also, I don’t use Apache, but you have different configurations depending on whether you connect using HTTP or HTTPS. Is your script trying to connect over HTTP instead of HTTPS?

Error when using HTTP:

❯ curl -IkL http://minios.ro/index.php
HTTP/1.1 302 Found
Server: nginx
Date: Sun, 27 Apr 2025 19:09:49 GMT
Content-Type: text/html; charset=iso-8859-1
Connection: keep-alive
Location: https://minios.ro/error

HTTP/2 404 
server: nginx
date: Sun, 27 Apr 2025 19:09:49 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
vary: User-Agent

It works when using HTTPS:

❯ curl -IkL https://minios.ro/index.php
HTTP/2 200 
server: nginx
date: Sun, 27 Apr 2025 19:09:53 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: VSK=7md5j6g2k4nv9djud52jq84kf6; path=/
vary: User-Agent

Can someone help me? I’m paying.

(post deleted by author)

I don’t see any issues.

It probally doesn’t need:
ScriptAlias /cgi-bin/ /home/tweky/web/minios.ro/cgi-bin/ as I assume it doesn’t need cgi…

I can’t create an account, or if I go into the admin panel, if I click on certain functions, the white page appears and those errors are in the error log. I installed it once before 1 or 2 months ago but I haven’t experienced anything like this now. I don’t know what’s wrong.

Strange I see feel free to send me a DM.