Hi,
I have some perl CGI scripts in my cgi-bin. The setup was working
perfectly on my old server. I've now moved the scripts to a replacement
server.
The new server responds when I send a GET request to the script, but
throws an error 403 Forbidden if I send a POST request to the script.
Nothing shows up in the error log, and the the access log shows the
following lines. Is it significant that my username (jg4461) doesn't
show up in the POST request?
x.x.x.x - jg4461 [09/Jun/2009:07:18:32 +0100] "GET
/cgi-bin/registerMAC.pl?ticket=ST-39049938-KDf1eIxd5gH0dodU8KzX
HTTP/1.1" 200 4792
x.x.x.x - - [09/Jun/2009:07:19:40 +0100] "POST /cgi-bin/registerMAC.pl
HTTP/1.1" 403 313
I've also done a packet capture and can't see anything unusual.
I've been through httpd.conf and there are no <limit> declarations. I'm
running the default config file that comes with CentOS 5, with a virtual
server added to host these scripts (below). I haven't added any
declarations I didn't understand.
<VirtualHost x.x.x.x:80>
ServerAdmin wireless-ad...@bristol.ac.uk
DocumentRoot /var/www/html/
ServerName xxxxxxx.bris.ac.uk
ServerAlias xxxxxxx.bristol.ac.uk
ErrorLog logs/error_log
CustomLog logs/access_log common
ScriptAlias /cgi-bin/ "/var/www/cgi-bin/"
<Directory /var/www/cgi-bin>
AllowOverride All
</Directory>
</VirtualHost>
There is also an .htaccess file in cgi-bin to provide CAS authentication:
<Files *.pl>
Authtype CAS
require valid-user
</Files>
The CAS authentication works properly. I'm authenticated successfully,
and when access the scripts using GET, they work normally.
I've had a colleague go over the problem with me (including httpd.conf)
and he can't see a reason for it. I've read the FAQ and eventually
decided to post here. I hope someone can shed some light on this!
Thanks,
Jonathan
----------------------------
Jonathan Gazeley
Systems Support Specialist
ResNet | Wireless & VPN Team
Information Services
University of Bristol
----------------------------
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
" from the digest: users-digest-unsubscr...@httpd.apache.org
For additional commands, e-mail: users-h...@httpd.apache.org