I have installed wamp on windows 8 and received above error whenever I go to localhost or phpmyadmin. After much searching I found many answers which includes modifying the httpd.conf to <code>Allow from All</code> etc. This link shows such a common answer with further information. My problem is that many have argued that it gives permission to all users to access phpMyAdmin and it is insecure and vulnerable etc. I want to create perfectly secure WAMP server and is it OK if I do this? Can someone please provide me with some reference or information?

1. first of all Port 80(or what ever you are using) and 443 must be allow for both TCP and UDP packets. To do this, create 2 inbound rules for TPC and UDP on Windows Firewall for port 80 and 443. (or you can disable your whole firewall for testing but permanent solution if allow inbound rule) 2. <h3>If you are using WAMPServer 3 See bottom of answer</h3> <h3>For WAMPServer versions <= 2.5</h3> You need to change the security setting on Apache to allow access from anywhere else, so edit your <code>httpd.conf</code> file. Change this section from : <pre class="prettyprint"><code># onlineoffline tag - don't remove Order Deny,Allow Deny from all Allow from 127.0.0.1 Allow from ::1 Allow from localhost </code></pre> To : <pre class="prettyprint"><code># onlineoffline tag - don't remove Order Allow,Deny Allow from all </code></pre> if "Allow from all" line not work for your then use "Require all granted" then it will work for you. <h3>WAMPServer 3 has a different method</h3> In version 3 and > of WAMPServer there is a Virtual Hosts pre defined for <code>localhost</code> so dont amend the <code>httpd.conf</code> file at all, leave it as you found it. Using the menus, edit the <code>httpd-vhosts.conf</code> file. <img src="https://i.stack.imgur.com/mW5je.jpg" alt="enter image description here"> It should look like this : <pre class="prettyprint"><code><VirtualHost *:80> ServerName localhost DocumentRoot D:/wamp/www <Directory "D:/wamp/www/"> Options +Indexes +FollowSymLinks +MultiViews AllowOverride All Require local </Directory> </VirtualHost> </code></pre> Amend it to <pre class="prettyprint"><code><VirtualHost *:80> ServerName localhost DocumentRoot D:/wamp/www <Directory "D:/wamp/www/"> Options +Indexes +FollowSymLinks +MultiViews AllowOverride All Require all granted </Directory> </VirtualHost> </code></pre> Note:if you are running wamp for other than port 80 then VirtualHost will be like VirtualHost *:86.(86 or port whatever you are using) instead of VirtualHost *:80 3. Dont forget to restart All Services of Wamp or Apache after making this change

By default wamp sets the following as the default for any directory not explicitly declared: <pre class="prettyprint"><code><Directory /> AllowOverride none Require all denied </Directory> </code></pre> For me, if I comment out the line that says <code>Require all denied</code> I started having access to the directory in question. I don't recommend this. Instead in the directory directive I included <code>Require local</code> as below: <pre class="prettyprint"><code><Directory "C:/GitHub/head_count/"> AllowOverride All Allow from all Require local </Directory> </code></pre> NOTE: I was still getting permission denied when I only had <code>Allow from all</code>. Adding <code>Require local</code> helped for me.

Adding <code>Allow from All</code> didn't worked for me. Then I tried this and it worked. <blockquote> OS: Windows 8.1 Wamp : 2.5 </blockquote> I added this in the file C:\wamp\bin\apache\apache2.4.9\conf\extra\httpd-vhosts.conf <pre class="prettyprint"><code><VirtualHost *:80> ServerAdmin localhost@localhost.com DocumentRoot "c:/wamp/www/" ServerName localhost ServerAlias localhost ErrorLog "logs/localhost-error.log" CustomLog "logs/localhost-access.log" common </VirtualHost> </code></pre>

Forbidden: You don't have permission to access / on this server, WAMP Error

Tags:

apache

windows-8

phpmyadmin

wamp

wampserver

I have installed wamp on windows 8 and received above error whenever I go to localhost or phpmyadmin. After much searching I found many answers which includes modifying the httpd.conf to Allow from All etc. This link shows such a common answer with further information.

My problem is that many have argued that it gives permission to all users to access phpMyAdmin and it is insecure and vulnerable etc. I want to create perfectly secure WAMP server and is it OK if I do this?

Can someone please provide me with some reference or information?

387

asked Oct 15 '13 09:10

JRulz

4 Answers

first of all Port 80(or what ever you are using) and 443 must be allow for both TCP and UDP packets. To do this, create 2 inbound rules for TPC and UDP on Windows Firewall for port 80 and 443. (or you can disable your whole firewall for testing but permanent solution if allow inbound rule)

If you are using WAMPServer 3 See bottom of answer

For WAMPServer versions <= 2.5

You need to change the security setting on Apache to allow access from anywhere else, so edit your httpd.conf file.

Change this section from :

#   onlineoffline tag - don't remove
     Order Deny,Allow
     Deny from all
     Allow from 127.0.0.1
     Allow from ::1
     Allow from localhost

To :

#   onlineoffline tag - don't remove
    Order Allow,Deny
      Allow from all

if "Allow from all" line not work for your then use "Require all granted" then it will work for you.

WAMPServer 3 has a different method

In version 3 and > of WAMPServer there is a Virtual Hosts pre defined for localhost so dont amend the httpd.conf file at all, leave it as you found it.

Using the menus, edit the httpd-vhosts.conf file.

enter image description here

It should look like this :

<VirtualHost *:80>
    ServerName localhost
    DocumentRoot D:/wamp/www
    <Directory  "D:/wamp/www/">
        Options +Indexes +FollowSymLinks +MultiViews
        AllowOverride All
        Require local
    </Directory>
</VirtualHost>

Amend it to

<VirtualHost *:80>
    ServerName localhost
    DocumentRoot D:/wamp/www
    <Directory  "D:/wamp/www/">
        Options +Indexes +FollowSymLinks +MultiViews
        AllowOverride All
        Require all granted
    </Directory>
</VirtualHost>

Note:if you are running wamp for other than port 80 then VirtualHost will be like VirtualHost *:86.(86 or port whatever you are using) instead of VirtualHost *:80

3. Dont forget to restart All Services of Wamp or Apache after making this change

131

answered Oct 20 '22 00:10

Hassan Saeed

I find the best (and least frustrating) path is to start with Allow from All, then, when you know it will work that way, scale it back to the more secure Allow from 127.0.0.1 or Allow from ::1 (localhost).

As long as your firewall is configured properly, Allow from all shouldn't cause any problems, but it is better to only allow from localhost if you don't need other computers to be able to access your site.

Don't forget to restart Apache whenever you make changes to httpd.conf. They will not take effect until the next start.

Hopefully this is enough to get you started, there is lots of documentation available online.

answered Oct 20 '22 00:10

Sarah Kemp

By default wamp sets the following as the default for any directory not explicitly declared:

<Directory />
    AllowOverride none
    Require all denied
</Directory>

For me, if I comment out the line that says Require all denied I started having access to the directory in question. I don't recommend this.

Instead in the directory directive I included Require local as below:

<Directory "C:/GitHub/head_count/">
    AllowOverride All
    Allow from all
    Require local
</Directory>

NOTE: I was still getting permission denied when I only had Allow from all. Adding Require local helped for me.

answered Oct 19 '22 22:10

ajon

Adding Allow from All didn't worked for me. Then I tried this and it worked.

OS: Windows 8.1
Wamp : 2.5

I added this in the file C:\wamp\bin\apache\apache2.4.9\conf\extra\httpd-vhosts.conf

<VirtualHost *:80>
    ServerAdmin [email protected]
    DocumentRoot "c:/wamp/www/"
    ServerName localhost
    ServerAlias localhost
    ErrorLog "logs/localhost-error.log"
    CustomLog "logs/localhost-access.log" common
</VirtualHost>