[users@httpd] Error 403 with POST but not GET

Wed, 10 Jun 2009 03:36:08 -0700 

Hi,
I have some perl CGI scripts in my cgi-bin. The setup was working perfectly on my old server. I've now moved the scripts to a replacement server. 


The new server responds when I send a GET request to the script, but 
throws an error 403 Forbidden if I send a POST request to the script.



Nothing shows up in the error log, and the the access log shows the 
following lines. Is it significant that my username (jg4461) doesn't 
show up in the POST request?



x.x.x.x - jg4461 [09/Jun/2009:07:18:32 +0100] "GET 
/cgi-bin/registerMAC.pl?ticket=ST-39049938-KDf1eIxd5gH0dodU8KzX 
HTTP/1.1" 200 4792
x.x.x.x - - [09/Jun/2009:07:19:40 +0100] "POST /cgi-bin/registerMAC.pl 
HTTP/1.1" 403 313


I've also done a packet capture and can't see anything unusual.


I've been through httpd.conf and there are no <limit> declarations. I'm 
running the default config file that comes with CentOS 5, with a virtual 
server added to host these scripts (below). I haven't added any 
declarations I didn't understand.


<VirtualHost x.x.x.x:80>
   ServerAdmin wireless-ad...@bristol.ac.uk
   DocumentRoot /var/www/html/
   ServerName xxxxxxx.bris.ac.uk
   ServerAlias xxxxxxx.bristol.ac.uk
   ErrorLog logs/error_log
   CustomLog logs/access_log common
   ScriptAlias /cgi-bin/ "/var/www/cgi-bin/"
   <Directory /var/www/cgi-bin>
    AllowOverride All
   </Directory>
</VirtualHost>

There is also an .htaccess file in cgi-bin to provide CAS authentication:

<Files *.pl>
 Authtype CAS
 require valid-user
</Files>


The CAS authentication works properly. I'm authenticated successfully, 
and when access the scripts using GET, they work normally.



I've had a colleague go over the problem with me (including httpd.conf) 
and he can't see a reason for it. I've read the FAQ and eventually 
decided to post here. I hope someone can shed some light on this!


Thanks,
Jonathan

----------------------------
Jonathan Gazeley
Systems Support Specialist
ResNet | Wireless & VPN Team
Information Services
University of Bristol
----------------------------


---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
  "   from the digest: users-digest-unsubscr...@httpd.apache.org
For additional commands, e-mail: users-h...@httpd.apache.org























					Reply via email to