Guest Posted June 27, 2007 Posted June 27, 2007 Our site has been working fine up until today. Now whenever someone tries to go to one of the pages within the HTTPS part of the site the get the following: Forbidden You don't have permission to access /website-page on this server. Obviously this is quite a critical problem as no one get login into their account, order products etc and our hosting people say all seems fine their end. Has anyone else had this problem or have any ideas on what to do? Your help will be greatly appreciated. The site is www.Marquees2buy.com
Silverado05 Posted June 27, 2007 Posted June 27, 2007 Do you know or could you get the exact URL the customer is trying to access? Most of the time when you get these kind of errors with SSL is they are trying to call up restricted pages within the checkout procedure or must be logged on. Search the forum and contributions before posting. If that doesn't work, keep looking, then post. The forum is for seeking help and advice NOT for someone to do your work for you. Try to do something on your on, if you are going to run a shop then learn how it works.
Guest Posted June 27, 2007 Posted June 27, 2007 Do you know or could you get the exact URL the customer is trying to access? Most of the time when you get these kind of errors with SSL is they are trying to call up restricted pages within the checkout procedure or must be logged on. What are the permissions set on the login page? Are they back to 644?
Iggy Posted June 27, 2007 Posted June 27, 2007 Our site has been working fine up until today. Now whenever someone tries to go to one of the pages within the HTTPS part of the site the get the following: Forbidden You don't have permission to access /website-page on this server. Obviously this is quite a critical problem as no one get login into their account, order products etc and our hosting people say all seems fine their end. Has anyone else had this problem or have any ideas on what to do? Your help will be greatly appreciated. The site is www.Marquees2buy.com Looks like you're using the shared cert from your host? http://www.Marquees2buy.com https://webfb1.secure-secure.co.uk/marquees...ut_shipping.php Just going to what should be the front of your store via https returns the same error https://webfb1.secure-secure.co.uk/marquees2buy.com/ Give them a quick call and ask them exactly what their setup is. Some hosts have particular ways of doing things you'll never know if you don't ask :) Hope that's helpful, Iggy Everything's funny but nothing's a joke...
Guest Posted June 27, 2007 Posted June 27, 2007 The problem seems to be as soon as a customer hits a page that uses https, so this could account page, checkout page etc. I have already contacted and still in discussions with my hosts but they seem to think that all is okay at their end. What should the permissions be set to and on what pages/folders? This couldn't be done by someone hacking the system could it?
Iggy Posted June 27, 2007 Posted June 27, 2007 The problem seems to be as soon as a customer hits a page that uses https, so this could account page, checkout page etc. I have already contacted and still in discussions with my hosts but they seem to think that all is okay at their end. What should the permissions be set to and on what pages/folders? This couldn't be done by someone hacking the system could it? Not likely to be a hack. Do you have to maintain two webspaces to use their cert? For instance, this is the kind of error you would get if there are no files in a directory the webserver isn't allowed to list files in as well. On the flip side, if it's a permissions issue, set it as loose as possible (777) then ratchet the perms back until you find where it breaks. That's the hard way. Your host "should" just be able to tell you. Iggy Everything's funny but nothing's a joke...
Guest Posted June 27, 2007 Posted June 27, 2007 Not likely to be a hack. Do you have to maintain two webspaces to use their cert? For instance, this is the kind of error you would get if there are no files in a directory the webserver isn't allowed to list files in as well. On the flip side, if it's a permissions issue, set it as loose as possible (777) then ratchet the perms back until you find where it breaks. That's the hard way. Your host "should" just be able to tell you. Iggy The only website we have on their hosting that uses https is this so guess it isn't that... I will check the permissions I guess while I am waiting for the hosting folks to get back to me. Assume I will need to do this on the main files such as index.php etc?
Silverado05 Posted June 27, 2007 Posted June 27, 2007 Very nice site BTW, cleanly laid out. I would think it sounds like something on the server side regardless what your host says. If you haven't made any changes in code then I wouldn't see why it would start acting like this. You could try the above out and/or trying not making the pages secure. You know if they connect while not secure then it's probably an issue within the host. Search the forum and contributions before posting. If that doesn't work, keep looking, then post. The forum is for seeking help and advice NOT for someone to do your work for you. Try to do something on your on, if you are going to run a shop then learn how it works.
Iggy Posted June 27, 2007 Posted June 27, 2007 The only website we have on their hosting that uses https is this so guess it isn't that... I will check the permissions I guess while I am waiting for the hosting folks to get back to me. Assume I will need to do this on the main files such as index.php etc? You could throw an index.html in there just to test. Then zap the folder and the index and see what you get. What are the perms on them now, BTW? Iggy Everything's funny but nothing's a joke...
Guest Posted June 27, 2007 Posted June 27, 2007 The permissions on the pages at the mo are set to 755.
Guest Posted June 27, 2007 Posted June 27, 2007 Try backing up your .htaccess file that is in your secure server and then delete it and see if that pages are viewable than. BACKUP FIRST
Guest Posted June 27, 2007 Posted June 27, 2007 Try backing up your .htaccess file that is in your secure server and then delete it and see if that pages are viewable than. BACKUP FIRST Unfortunately I don't have access to the secured server, this was all sorted by the host. I can access the .htaccess files on my hosting but none of these have anyhting to do with the secure side of it... I think anyway :blush: Guess I'm just going to have to wait for my hosting folks to get back to me and hopefully sort the problem then.
Guest Posted June 28, 2007 Posted June 28, 2007 Just an update on this. I have removed the use of HTTPS for now and the site works fine so I guess it can only be a problem with permissions set by the hosts of my secure server. I shall get back on to them today.
Recommended Posts
Archived
This topic is now archived and is closed to further replies.