Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

403 Forbidden Error


Guest

Recommended Posts

Posted

Our site has been working fine up until today. Now whenever someone tries to go to one of the pages within the HTTPS part of the site the get the following:

 

Forbidden

You don't have permission to access /website-page on this server.

 

Obviously this is quite a critical problem as no one get login into their account, order products etc and our hosting people say all seems fine their end.

 

Has anyone else had this problem or have any ideas on what to do?

 

Your help will be greatly appreciated. The site is www.Marquees2buy.com

Posted

Do you know or could you get the exact URL the customer is trying to access? Most of the time when you get these kind of errors with SSL is they are trying to call up restricted pages within the checkout procedure or must be logged on.

Search the forum and contributions before posting. If that doesn't work, keep looking, then post. The forum is for seeking help and advice NOT for someone to do your work for you. Try to do something on your on, if you are going to run a shop then learn how it works.

Posted
Do you know or could you get the exact URL the customer is trying to access? Most of the time when you get these kind of errors with SSL is they are trying to call up restricted pages within the checkout procedure or must be logged on.

 

What are the permissions set on the login page? Are they back to 644?

Posted
Our site has been working fine up until today. Now whenever someone tries to go to one of the pages within the HTTPS part of the site the get the following:

 

Forbidden

You don't have permission to access /website-page on this server.

 

Obviously this is quite a critical problem as no one get login into their account, order products etc and our hosting people say all seems fine their end.

 

Has anyone else had this problem or have any ideas on what to do?

 

Your help will be greatly appreciated. The site is www.Marquees2buy.com

 

Looks like you're using the shared cert from your host?

 

http://www.Marquees2buy.com

https://webfb1.secure-secure.co.uk/marquees...ut_shipping.php

 

Just going to what should be the front of your store via https returns the same error

https://webfb1.secure-secure.co.uk/marquees2buy.com/

 

Give them a quick call and ask them exactly what their setup is. Some hosts have particular ways of doing things you'll never know if you don't ask :)

 

Hope that's helpful,

Iggy

Everything's funny but nothing's a joke...

Posted

The problem seems to be as soon as a customer hits a page that uses https, so this could account page, checkout page etc.

 

I have already contacted and still in discussions with my hosts but they seem to think that all is okay at their end.

 

What should the permissions be set to and on what pages/folders? This couldn't be done by someone hacking the system could it?

Posted
The problem seems to be as soon as a customer hits a page that uses https, so this could account page, checkout page etc.

 

I have already contacted and still in discussions with my hosts but they seem to think that all is okay at their end.

 

What should the permissions be set to and on what pages/folders? This couldn't be done by someone hacking the system could it?

 

Not likely to be a hack.

 

Do you have to maintain two webspaces to use their cert? For instance, this is the kind of error you would get if there are no files in a directory the webserver isn't allowed to list files in as well.

 

On the flip side, if it's a permissions issue, set it as loose as possible (777) then ratchet the perms back until you find where it breaks.

 

That's the hard way. Your host "should" just be able to tell you.

 

Iggy

Everything's funny but nothing's a joke...

Posted
Not likely to be a hack.

 

Do you have to maintain two webspaces to use their cert? For instance, this is the kind of error you would get if there are no files in a directory the webserver isn't allowed to list files in as well.

 

On the flip side, if it's a permissions issue, set it as loose as possible (777) then ratchet the perms back until you find where it breaks.

 

That's the hard way. Your host "should" just be able to tell you.

 

Iggy

 

The only website we have on their hosting that uses https is this so guess it isn't that... I will check the permissions I guess while I am waiting for the hosting folks to get back to me. Assume I will need to do this on the main files such as index.php etc?

Posted

Very nice site BTW, cleanly laid out.

 

I would think it sounds like something on the server side regardless what your host says. If you haven't made any changes in code then I wouldn't see why it would start acting like this. You could try the above out and/or trying not making the pages secure. You know if they connect while not secure then it's probably an issue within the host.

Search the forum and contributions before posting. If that doesn't work, keep looking, then post. The forum is for seeking help and advice NOT for someone to do your work for you. Try to do something on your on, if you are going to run a shop then learn how it works.

Posted
The only website we have on their hosting that uses https is this so guess it isn't that... I will check the permissions I guess while I am waiting for the hosting folks to get back to me. Assume I will need to do this on the main files such as index.php etc?

 

You could throw an index.html in there just to test. Then zap the folder and the index and see what you get.

 

What are the perms on them now, BTW?

 

Iggy

Everything's funny but nothing's a joke...

Posted

The permissions on the pages at the mo are set to 755.

Posted

Try backing up your .htaccess file that is in your secure server and then delete it and see if that pages are viewable than. BACKUP FIRST

Posted
Try backing up your .htaccess file that is in your secure server and then delete it and see if that pages are viewable than. BACKUP FIRST

 

Unfortunately I don't have access to the secured server, this was all sorted by the host. I can access the .htaccess files on my hosting but none of these have anyhting to do with the secure side of it... I think anyway :blush:

 

Guess I'm just going to have to wait for my hosting folks to get back to me and hopefully sort the problem then.

Posted

Just an update on this. I have removed the use of HTTPS for now and the site works fine so I guess it can only be a problem with permissions set by the hosts of my secure server.

 

I shall get back on to them today.

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...