WampServer
Apache, PHP, MySQL
on Windows
Error message Forbiden 403
Posted by:
coopdj
(---.maine.res.rr.com)
Date: April 06, 2013 11:50PM
Installed WampServer 2.2. Tray icon Green. Click on Localhost and get web page saying Forbiden 403. Web page title tab said "localhost".
Error msg: [error] [client ::1] client denied by server configuration: C:/wamp/www/
The "testmysql.php" file in C:/wamp/www/ has a variable $link, checking "hostname", "dbuser" and "dbpassword". How do those variables get the correct values on an install?
My 'hosts' file has two entries:
127.0.0.1 localhost &
::1 localhost
No other program is known to be using port 80.
If MySQL is listing on port 3306 and Apache is listing on 80, how do they talk?
Thanks for the help
Doug
Error msg: [error] [client ::1] client denied by server configuration: C:/wamp/www/
The "testmysql.php" file in C:/wamp/www/ has a variable $link, checking "hostname", "dbuser" and "dbpassword". How do those variables get the correct values on an install?
My 'hosts' file has two entries:
127.0.0.1 localhost &
::1 localhost
No other program is known to be using port 80.
If MySQL is listing on port 3306 and Apache is listing on 80, how do they talk?
Thanks for the help
Doug
Re: Error message Forbiden 403
Posted by:
RiggsFolly
(---.as13285.net)
Date: April 07, 2013 12:09AM
RE: How do they talk, dont worry they just do.
RE: 403, this is your problem and solution
Right, Windows as of Windows7 comes with the ability to use the IPV4 network address range and the IPV6 network address range and by default they are both turned on.
However, Wamp's security as of now ( Feb 2013 ) is only configured to expect the IPV4 address range, but the Apache that is delivered with WAMPServer is aware of both the IPV4 and IPV6 address ranges and is happy to use either or in fact both.
I am not sure how Windows/Browsers decide which range to use but it appears to be fairly arbitrary, so you can get either.
This is the route of your problem.
There are 2 ways you can go to solve this small anomily. You can either ignore the IPV6 address range or change the security to include the IPV6 address range.
+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
KEEP COPIES OF ALL FILES CHANGED SO YOU CAN EASILY UNDO THESE CHANGES IF THEY DO NOT WORK FOR YOU
In fact copy c:\wamp to a backup location and then you can just replace
the whole folder if you have problems with your changes.
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Option 1 is easier to do.
==============================================================
Option 1:
Ignore the IPV6 address range.
Use the wamp menus to edit these files where possible.
edit httpd.conf
change Listen 80 TO Listen 0.0.0.0:80
The 0.0.0.0 part tells Apache to only listen on IPV4 addresses.
edit c:\windows\system32\drivers\etc\hosts
If it exists, remove or comment out (comment is a # in colum 1) the line containing the IPV6 address for localhost >::1 localhost
(This makes the domain 'localhost' disappear from the IPV6 network, its existance is not hard coded anywhere it has to be mentioned in the hosts file to make it exists)
Make sure you have a line in the hosts file like this >127.0.0.1 localhost
(This makes the domain 'localhost' exists on the IPV4 network)
Wamps security should now work after a reboot. And
============================================================
Option 2:
Add the IPV6 address range to wamps security.
Again always use the wamp menus to edit these files where possible.
!!!! Make sure WAMP is set to 'Offline' before starting this part.
Now this is the dangerous bit!!!!! You must get these next 2 edits right. The text between the double quotes in C:\wamp\scripts\onlineOffline.php must match exactly that used in the httpd.conf file, so a copy and paste would be recommended. If you get this wrong the Online/Offline process will not work.
edit httpd.conf
Change
# onlineoffline tag - don't remove
Order Deny,Allow
Deny from all
Allow from 127.0.0.1
TO
# onlineoffline tag - don't remove
Order Deny,Allow
Deny from all
Allow from 127.0.0.1 ::1
Note we have added the ::1 IPV6 localhost address to the security, make sure there is a space between 127.0.0.1 and ::1.
Edit C:\wamp\scripts\onlineOffline.php
Change
$offlineText = "# onlineoffline tag - don't remove
Order Deny,Allow
Deny from all
Allow from 127.0.0.1";
TO
$offlineText = "# onlineoffline tag - don't remove
Order Deny,Allow
Deny from all
Allow from 127.0.0.1 ::1";
This makes sure that the Online/Offline process still works in WampServer. Make sure that this exactly matches your change above made to httpd.conf
Now edit each of the files
C:\wamp\alias\phpmyadmin.conf
C:\wamp\alias\sqlbuddy.conf
C:\wamp\alias\webgrind.conf
were ever you see >127.0.0.1 change it to >127.0.0.1 ::1
Ignore the lines that start with a #, as these are comment lines
This tells Wamp that whichever ip address from either address range you get for the domain localhost, is allowed to access the apache server.
Now whichever address range windows/browser picks for you when you use the
edit c:\windows\system32\drivers\etc\hosts
In Windows8 you will probably see both domains in the file, but this is not guaranteed. When you are finished it should look like this.
127.0.0.1 localhost
::1 localhost
This makes the domain localhost appear on both the IPV4 and IPV6 address ranges.
When you get as far as accessing MySQL you will see that the 'root' user is configured so that it can be accesses from localhost and 127.0.0.1 and ::1 so that is all ready to go and needs no changes.
If you decide to change the password for the 'root' userid in mysql, make sure you use the same password for all the instances of root that exist in mysql. A complete MySQL userid is associated with a location, so it is not the same userid when you login from root@127.0.0.1 as when you login from root@::1. This is why there are 3 'root' userids in the default MySQL userid configiration.
RE: 403, this is your problem and solution
Right, Windows as of Windows7 comes with the ability to use the IPV4 network address range and the IPV6 network address range and by default they are both turned on.
IPV4 addresses look like this: 123.321.10.234 IPV6 addresses look like this: 2001:0db8:85a3:0042:1000:8a2e:0370:7334 The IPV4 address for localhost is 127.0.0.1 The IPV6 address for localhost is ::1 See [en.wikipedia.org] [en.wikipedia.org] [en.wikipedia.org]
However, Wamp's security as of now ( Feb 2013 ) is only configured to expect the IPV4 address range, but the Apache that is delivered with WAMPServer is aware of both the IPV4 and IPV6 address ranges and is happy to use either or in fact both.
I am not sure how Windows/Browsers decide which range to use but it appears to be fairly arbitrary, so you can get either.
This is the route of your problem.
There are 2 ways you can go to solve this small anomily. You can either ignore the IPV6 address range or change the security to include the IPV6 address range.
+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
KEEP COPIES OF ALL FILES CHANGED SO YOU CAN EASILY UNDO THESE CHANGES IF THEY DO NOT WORK FOR YOU
In fact copy c:\wamp to a backup location and then you can just replace
the whole folder if you have problems with your changes.
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Option 1 is easier to do.
==============================================================
Option 1:
Ignore the IPV6 address range.
Use the wamp menus to edit these files where possible.
edit httpd.conf
change Listen 80 TO Listen 0.0.0.0:80
The 0.0.0.0 part tells Apache to only listen on IPV4 addresses.
edit c:\windows\system32\drivers\etc\hosts
If it exists, remove or comment out (comment is a # in colum 1) the line containing the IPV6 address for localhost >::1 localhost
(This makes the domain 'localhost' disappear from the IPV6 network, its existance is not hard coded anywhere it has to be mentioned in the hosts file to make it exists)
Make sure you have a line in the hosts file like this >127.0.0.1 localhost
(This makes the domain 'localhost' exists on the IPV4 network)
Wamps security should now work after a reboot. And
http://localhostshould now get you to wamps Apache installation. The exisiting security should also now work for phpMyAdmin,WebGrind and SQLBuddy
============================================================
Option 2:
Add the IPV6 address range to wamps security.
Again always use the wamp menus to edit these files where possible.
!!!! Make sure WAMP is set to 'Offline' before starting this part.
Now this is the dangerous bit!!!!! You must get these next 2 edits right. The text between the double quotes in C:\wamp\scripts\onlineOffline.php must match exactly that used in the httpd.conf file, so a copy and paste would be recommended. If you get this wrong the Online/Offline process will not work.
edit httpd.conf
Change
# onlineoffline tag - don't remove
Order Deny,Allow
Deny from all
Allow from 127.0.0.1
TO
# onlineoffline tag - don't remove
Order Deny,Allow
Deny from all
Allow from 127.0.0.1 ::1
Note we have added the ::1 IPV6 localhost address to the security, make sure there is a space between 127.0.0.1 and ::1.
Edit C:\wamp\scripts\onlineOffline.php
Change
$offlineText = "# onlineoffline tag - don't remove
Order Deny,Allow
Deny from all
Allow from 127.0.0.1";
TO
$offlineText = "# onlineoffline tag - don't remove
Order Deny,Allow
Deny from all
Allow from 127.0.0.1 ::1";
This makes sure that the Online/Offline process still works in WampServer. Make sure that this exactly matches your change above made to httpd.conf
Now edit each of the files
C:\wamp\alias\phpmyadmin.conf
C:\wamp\alias\sqlbuddy.conf
C:\wamp\alias\webgrind.conf
were ever you see >127.0.0.1 change it to >127.0.0.1 ::1
Ignore the lines that start with a #, as these are comment lines
This tells Wamp that whichever ip address from either address range you get for the domain localhost, is allowed to access the apache server.
Now whichever address range windows/browser picks for you when you use the
http://localhostdomain the security will allow you in.
edit c:\windows\system32\drivers\etc\hosts
In Windows8 you will probably see both domains in the file, but this is not guaranteed. When you are finished it should look like this.
127.0.0.1 localhost
::1 localhost
This makes the domain localhost appear on both the IPV4 and IPV6 address ranges.
When you get as far as accessing MySQL you will see that the 'root' user is configured so that it can be accesses from localhost and 127.0.0.1 and ::1 so that is all ready to go and needs no changes.
If you decide to change the password for the 'root' userid in mysql, make sure you use the same password for all the instances of root that exist in mysql. A complete MySQL userid is associated with a location, so it is not the same userid when you login from root@127.0.0.1 as when you login from root@::1. This is why there are 3 'root' userids in the default MySQL userid configiration.
Sorry, only registered users may post in this forum.
