Odtnhj

Question

I have downloaded and installed XAMPP 1.8.1 for Windows on Windows 7 Ultimate. I have set up XAMPP to run together with IIS as per these instructions

All good so far, my PHP sites run locally and everything except phpMyAdmin is available from the XAMPP menu.

However when I try to access phpMyAdmin I get this error:

Access forbidden!

New XAMPP security concept:

Access to the requested directory is only available from the local
network.

This setting can be configured in the file "httpd-xampp.conf".

I've found several answers via Google and some on this site. However, so far, none of the solutions I've tried have resolved the issue.

Here is my httpd-xampp.conf file:

#
# XAMPP settings
#

<IfModule env_module>
 SetEnv MIBDIRS "C:/xampp/php/extras/mibs"
 SetEnv MYSQL_HOME "\xampp\mysql\bin"
 SetEnv OPENSSL_CONF "C:/xampp/apache/bin/openssl.cnf"
 SetEnv PHP_PEAR_SYSCONF_DIR "\xampp\php"
 SetEnv PHPRC "\xampp\php"
 SetEnv TMP "\xampp\tmp"
</IfModule>

#
# PHP-Module setup
#
LoadFile "C:/xampp/php/php5ts.dll"
LoadModule php5_module "C:/xampp/php/php5apache2_4.dll"

<FilesMatch ".php$">
 SetHandler application/x-httpd-php
</FilesMatch>
<FilesMatch ".phps$">
 SetHandler application/x-httpd-php-source
</FilesMatch>

#
# PHP-CGI setup
#
#<FilesMatch ".php$">
# SetHandler application/x-httpd-php-cgi
#</FilesMatch>
#<IfModule actions_module>
# Action application/x-httpd-php-cgi "/php-cgi/php-cgi.exe"
#</IfModule>


<IfModule php5_module>
 PHPINIDir "C:/xampp/php"
</IfModule>

<IfModule mime_module>
 AddType text/html .php .phps
</IfModule>

ScriptAlias /php-cgi/ "C:/xampp/php/"
<Directory "C:/xampp/php">
 AllowOverride None
 Options None
 Require all denied
 <Files "php-cgi.exe">
 Require all granted
 </Files>
</Directory>

<Directory "C:/xampp/cgi-bin">
 <FilesMatch ".php$">
 SetHandler cgi-script
 </FilesMatch>
 <FilesMatch ".phps$">
 SetHandler None
 </FilesMatch>
</Directory>

<Directory "C:/xampp/htdocs/xampp">
 <IfModule php5_module>
 <Files "status.php">
 php_admin_flag safe_mode off
 </Files>
 </IfModule>
 AllowOverride AuthConfig
</Directory>

<IfModule alias_module>
 Alias /security "C:/xampp/security/htdocs/"
 <Directory "C:/xampp/security/htdocs">
 <IfModule php5_module>
 <Files "xamppsecurity.php">
 php_admin_flag safe_mode off
 </Files>
 </IfModule>
 AllowOverride AuthConfig
 Require all granted
 </Directory>

 Alias /licenses "C:/xampp/licenses/"
 <Directory "C:/xampp/licenses">
 Options +Indexes
 <IfModule autoindex_color_module>
 DirectoryIndexTextColor "#000000"
 DirectoryIndexBGColor "#f8e8a0"
 DirectoryIndexLinkColor "#bb3902"
 DirectoryIndexVLinkColor "#bb3902"
 DirectoryIndexALinkColor "#bb3902"
 </IfModule>
 Require all granted
 </Directory>

 Alias /phpmyadmin "C:/xampp/phpMyAdmin/"
 <Directory "C:/xampp/phpMyAdmin">
 AllowOverride AuthConfig Limit
 Order allow,deny
 Allow from all
 Require all granted
 </Directory>

 Alias /webalizer "C:/xampp/webalizer/"
 <Directory "C:/xampp/webalizer">
 <IfModule php5_module>
 <Files "webalizer.php">
 php_admin_flag safe_mode off
 </Files>
 </IfModule>
 AllowOverride AuthConfig
 Require all granted
 </Directory>
</IfModule>

#
# New XAMPP security concept
#
<LocationMatch "^/(?i:(?:xampp|security|licenses|phpmyadmin|webalizer|server-status|server-info))">
 Order deny,allow
 Allow from all
 Require all granted

 ErrorDocument 403 /error/XAMPP_FORBIDDEN.html.var
</LocationMatch>

Does anyone have any idea as to what I'm missing?

Messerchtmitt LongbowMesserchtmitt Longbow 74152 · Accepted Answer · 2015-02-23 03:28:29Z

74

All you have to do is to edit the httpd-xampp.conf

from Require local to Require all granted in the LocationMatch tag.

That's it!

answered Feb 23 '15 at 3:28

Messerchtmitt Longbow

74152

this works for me (on closed system) - no idea what the security implications are for anyone else :-/

– jcansell
May 22 '15 at 0:29

2

You may also need to comment out: Deny from all and add: Allow from all under the LocationMatch tag

– shasi kanth
Feb 18 '16 at 15:26

3

You should STOP/RESTART Apache after updates

– Ams Naser
Nov 30 '16 at 22:40

This does not work for me. I made the change and now I can access phpmyadmin but not webalizer.

– lonstar
Jan 27 '17 at 15:10

1

This doesn't work for current XAMPP, instead, when you add virtual host, just add Require all granted, below is an example of mine, you don't need all of it httpd-ssl.conf <VirtualHost *:443> DocumentRoot "full-path" ServerName ie.test1 ServerAlias ie.test1 ServerAdmin a@d.com SSLEngine On SSLCertificateFile "full-path.cert" SSLCertificateKeyFile "full-path.key" ErrorLog "full-path/error.log" TransferLog "full-path/access.log" <Directory "full-path"> Options All Require all granted </Directory> </VirtualHost>

– isaacewing
May 18 '17 at 19:09

|
show 1 more comment

score 17 · Accepted Answer · 2017-11-15 06:01:15Z

In New Xampp

All you have to do is to edit the file:

C:xamppapacheconfextrahttpd-xampp.conf

and go to Directory tag as below:

<Directory "C:/xampp/phpMyAdmin">

and then change

Require local

To

Require all granted

in the Directory tag.

Restart the Xampp. That's it!

Thanks @TheMohanAhuja it works. Anyone can also add "Require ip X.X.X.X" line below "Require local" in the same httpd-xampp.conf file, if you want to allow a specific IP address PC in your local network. — Jul 23 '18 at 12:14
This helped me. Stop/Start Apache in the control panel only after the change. — Aug 10 '18 at 17:23

Gunnar BernsteinGunnar Bernstein 3,51012840 · Accepted Answer · 2015-03-14 03:29:50Z

Require all granted seemed a bit to far for me. Looking at the documentation I used: Require ip 192.168 to allow all internal access.

<LocationMatch "^/(?i:(?:xampp|security|licenses|phpmyadmin|webalizer|server-status|server-info))">
 Require local
 Require ip 192.168
 ErrorDocument 403 /error/XAMPP_FORBIDDEN.html.var
</LocationMatch>

garatugaratu 295212 · Accepted Answer · 2014-09-29 13:13:49Z

 <LocationMatch "^/(?i:(?:xampp|security|licenses|phpmyadmin|webalizer|server-status|server-info))">

 Require all granted
 ErrorDocument 403 /error/XAMPP_FORBIDDEN.html.var
</LocationMatch>

Good luck!!!!

Sanyam JainSanyam Jain 9913 · Accepted Answer · 2014-12-10 16:51:54Z

You will have to edit 2 files - 1. httpd-vhosts.conf & 2. httpd-xampp.conf

NOTE : Make sure u backup files ( httpd-xampp.conf ) and (
httpd-vhosts.conf ) , Both Files are located in
Drive:xamppapacheconfextra

Open httpd-vhosts.conf file and in the bottom of the file change it

<VirtualHost *:80>
DocumentRoot “E:/xampp/htdocs/”
ServerName localhost
<Directory E:/xampp/htdocs/>.
Require all granted 
</Directory>
</VirtualHost>

Here E:/xampp is my project workspace, you can change it as per your settings

and Second Change is on httpd-xampp.conf file and in the bottom of the file change it

#
# New XAMPP security concept
#
<LocationMatch “^/(?i:(?:xampp|security|licenses|phpmyadmin|webalizer|server-status|server-info))”>
Order deny,allow
Allow from all
Allow from ::1 127.0.0.0/8
ErrorDocument 403 /error/XAMPP_FORBIDDEN.html.var
</LocationMatch>

Pacerier 44k50213517 · Accepted Answer · 2014-10-17 05:39:28Z

Try to reinstall new version of XAMPP. Find "<Directory "C:/xampp/php">" and then change to something like this

<Directory "C:/xampp/php">
 AllowOverride AuthConfig Limit
 Order allow,deny
 Allow from all
 Require all granted
</Directory>

G O'RillaG O'Rilla 23835 · Accepted Answer · 2014-10-10 07:56:31Z

Comment out the line Require local in httpd-xampp.conf.

Restart Apache.

Worked for me connecting my mobile phone to my test web-site on my PC.
No idea of the security implications.

Zuben45Zuben45 312 · Accepted Answer · 2016-04-22 11:15:39Z

just remove:

Alias /phpmyadmin "C:/xampp2/phpMyAdmin/"
<Directory "C:/xampp2/phpMyAdmin">
 AllowOverride AuthConfig
 Require all granted
</Directory>

and remove phpmyadmin from:

<LocationMatch "^/(?i:(?:xampp|security|licenses|phpmyadmin|server-status|server-info))">

SARSAR 89011231 · Accepted Answer · 2017-01-02 06:33:51Z

Some of the Answers are correct, but in case of working with new xampp or with some one not working other answers try this:

just go to the xampp folder:

xampp/apache/conf/extra/httpd-xampp.conf

and if you are trying to access from local ip in your network so change,

 Alias /phpmyadmin "C:/xampp/phpMyAdmin/"
 <Directory "C:/xampp/phpMyAdmin">
 AllowOverride AuthConfig
 Require local
 ErrorDocument 403 /error/XAMPP_FORBIDDEN.html.var
 </Directory>

Change to :

 Alias /phpmyadmin "C:/xampp/phpMyAdmin/"
 <Directory "C:/xampp/phpMyAdmin">
 AllowOverride AuthConfig
 Require all granted
 ErrorDocument 403 /error/XAMPP_FORBIDDEN.html.var
 </Directory>

Note: this is just for text, for the security of the xampp has some search....

score 2 · Accepted Answer · 2018-01-23 15:06:27Z

To access the requested directory other than local network, you need to change the XAMPP security concept
configured in the file "httpd-xampp.conf".

File location xamppapacheconfextrahttpd-xampp.conf

Require Directive Selects which authenticated users can access a resource

Syntax « Require entity-name [entity-name] ...

From « XAMPP security concept allows only local environment - Require local

<LocationMatch "^/(?i:(?:xampp|security|licenses|phpmyadmin|webalizer|server-status|server-info))">
 Require local
 ErrorDocument 403 /error/XAMPP_FORBIDDEN.html.var
</LocationMatch>

To « XAMPP security concept allows any environment - Require all granted

<LocationMatch "^/(?i:(?:xampp|security|licenses|phpmyadmin|webalizer|server-status|server-info))">
 Require all granted
 ErrorDocument 403 /error/XAMPP_FORBIDDEN.html.var
</LocationMatch>

Access forbidden! message from HTML Page.

enter image description here

Allow Directive Controls which hosts can access an area of the server

Syntax « Allow from all|host|env=[!]env-variable [host|env=[!]env-variable] ...

Allowing only local environment. Using any of the below specified url's.

http://localhost/phpmyadmin/

http://127.0.0.1/phpmyadmin/

<LocationMatch "^/(?i:(?:xampp|security|licenses|phpmyadmin|webalizer|server-status|server-info))">
 Order deny,allow
 Deny from all
 Allow from ::1 127.0.0.0/8 

 ErrorDocument 403 /error/XAMPP_FORBIDDEN.html.var
</LocationMatch>

Allowing only to specified IPv4, IPv6 address spaces.

Link-local addresses for IPv4 are defined in the address block 169.254.0.0/16 in CIDR notation. In IPv6, they are assigned the address block fe80::/10

A unique local address (ULA) is an IPv6 address in the block fc00::/7

<LocationMatch "^/(?i:(?:xampp|security|licenses|phpmyadmin|webalizer|server-status|server-info))">
 Order deny,allow
 Deny from all
 Allow from ::1 127.0.0.0/8 
 fc00::/7 10.0.0.0/8 172.16.0.0/12 192.168.0.0/16 
 fe80::/10 169.254.0.0/16

 ErrorDocument 403 /error/XAMPP_FORBIDDEN.html.var
</LocationMatch>

Allowing for any network address. Allow from all

<LocationMatch "^/(?i:(?:xampp|security|licenses|phpmyadmin|webalizer|server-status|server-info))">
 Order deny,allow
 Allow from all

 ErrorDocument 403 /error/XAMPP_FORBIDDEN.html.var
</LocationMatch>

404 - XAMPP Control Panel: Unable to start Apache HTTP server.

URL: http://localhost/xampp/index.php

Error « 
 Not Found
 HTTP Error 404. The requested resource is not found.

Required default Apache HTTP server port 80 is actually used by other Service.

You need to find the service running with port 80 and stop the service, then start the Apache HTTP server.

Use Netstat to displays active TCP connections, ports on which the computer is listening.

 C:Usersyashwanth.m>netstat -ano

 Active Connections

 Proto Local Address Foreign Address State PID
 TCP 0.0.0.0:80 0.0.0.0:0 LISTENING 2920
 TCP 0.0.0.0:135 0.0.0.0:0 LISTENING 1124

 TCP 127.0.0.1:5354 0.0.0.0:0 LISTENING 3340

 TCP [::]:80 [::]:0 LISTENING 2920

C:Usersyashwanth.m>netstat -ano |findstr 2920
 TCP 0.0.0.0:80 0.0.0.0:0 LISTENING 2920
 TCP 0.0.0.0:443 0.0.0.0:0 LISTENING 2920
 TCP [::]:80 [::]:0 LISTENING 2920
 TCP [::]:443 [::]:0 LISTENING 2920

C:Usersyashwanth.m>taskkill /pid 2920 /F
 SUCCESS: The process with PID 2920 has been terminated.

Change listening port from main Apache HTTP server configuration file D:xamppapacheconfhttpd.conf. Ex: 81. From Listen 80 To Listen 81, the access URL will be http://localhost:81/xampp/index.php.
```
# Change this to Listen on specific IP addresses as shown below to 
# prevent Apache from glomming onto all bound IP addresses.
#
#Listen 0.0.0.0:80
#Listen [::]:80
Listen 80
```

For more information related to httpd and virtual host on XAMPP

Dzianis Yafimau 1,39711629 · Accepted Answer · 2016-02-11 08:56:44Z

In your xampppathapacheconfextra open file httpd-xampp.conf and find the below tag:

<LocationMatch "^/(?i:(?:xampp|licenses|phpmyadmin|webalizer|server-status|server-info))">
Order deny,allow
Deny from all
Allow from ::1 127.0.0.0/8 
ErrorDocument 403 /error/HTTP_XAMPP_FORBIDDEN.html.var

and add Allow from all after Allow from ::1 127.0.0.0/8 line

Restart xampp, and you are done.

Hristiyan DodovHristiyan Dodov 1,74211325 · Accepted Answer · 2017-06-26 08:24:57Z

A reason for this could be Skype as well! If you use the default XAMPP settings, they both would run on the same port (80). You can:

Turn off Skype

Change the XAMPP port

site80443site80443 5116 · Accepted Answer · 2016-03-10 07:26:40Z

If you're using a newer XAMPP (for example for PHP 5.6, 7) which is built with "Bitnami" installer and it includes Apache 2.4.x then this applies:

https://httpd.apache.org/docs/2.4/upgrading.html#run-time

2.2 configuration:

Order allow,deny
Allow from all

2.4 configuration:

Require all granted

This also applies to VirtualHost sections, if you have any custom virtualhost definitions.

JItendraJItendra 12 · Accepted Answer · 2016-04-13 06:44:46Z

Ubuntu (Linux)

:- $ sudo gedit /opt/lampp/etc/extra/httpd-xampp.conf

 Comment "Deny from all" in the following section,

Change file

# New XAMPP security concept
# <LocationMatch "^/(?i:(?:xampp|security|licenses|phpmyadmin|webalizer|server-status|server-info))">
 Order deny,allow

 #Deny from all
 #Require local
 Allow from ::1 127.0.0.0/8 
 fc00::/7 10.0.0.0/8 172.16.0.0/12 192.168.0.0/16 
 fe80::/10 169.254.0.0/16

 ErrorDocument 403 /error/XAMPP_FORBIDDEN.html.var

FredFred 21435 · Accepted Answer · 2016-04-19 12:35:06Z

For many it's a permission issue, but for me it turns out the error was brought about by a mistake in the form I was trying to submit. To be specific i had accidentally put ">" sign after the value of "action". So I would suggest you take a second look at your code

tyegah123tyegah123 112311 · Accepted Answer · 2017-04-04 07:39:54Z

I tried everything but nothing worked. So I just used : chmod -R 777 to htdocs. At least it's only in my local.

Ram PukarRam Pukar 50638 · Accepted Answer · 2018-05-25 00:40:38Z

G:xamppapacheconfextrahttpd-vhosts.conf

#start block
NameVirtualHost *:80

<VirtualHost *:80>
 ServerName localhost
 #change your directory name
 DocumentRoot "G:xampphtdocs"
</VirtualHost>

#Your vertual Host
<VirtualHost *:80>
 DocumentRoot "G:/xampp/htdocs/dev2018/guessbook"
 ServerName dev.foreign-recruitment
 <Directory "G:/xampp/htdocs/dev2018/guessbook/">

 </Directory>
</VirtualHost>
#end block

Hammad KhanHammad Khan 9,0391287110 · Accepted Answer · 2018-11-13 17:08:03Z

This could be because of wrong configuration, esp if your other sites are working fine.

<VirtualHost cmsdemo.git:88>
 DocumentRoot "C:/Projects/rwp/"
 ServerName cmsdemo.git
 <Directory C:/Projects/cmsdemo/>
 Require all granted 
 AllowOverride All
 </Directory>
</VirtualHost>

Notice in DocumentRoot I am specifying one folder and in Directory, I am specifying another hence 403 Error. This fixed my problem.

Messerchtmitt LongbowMesserchtmitt Longbow 74152 · Accepted Answer · 2015-02-23 03:28:29Z

74

All you have to do is to edit the httpd-xampp.conf

from Require local to Require all granted in the LocationMatch tag.

That's it!

answered Feb 23 '15 at 3:28

Messerchtmitt Longbow

74152

this works for me (on closed system) - no idea what the security implications are for anyone else :-/

– jcansell
May 22 '15 at 0:29

2

You may also need to comment out: Deny from all and add: Allow from all under the LocationMatch tag

– shasi kanth
Feb 18 '16 at 15:26

3

You should STOP/RESTART Apache after updates

– Ams Naser
Nov 30 '16 at 22:40

This does not work for me. I made the change and now I can access phpmyadmin but not webalizer.

– lonstar
Jan 27 '17 at 15:10

1

This doesn't work for current XAMPP, instead, when you add virtual host, just add Require all granted, below is an example of mine, you don't need all of it httpd-ssl.conf <VirtualHost *:443> DocumentRoot "full-path" ServerName ie.test1 ServerAlias ie.test1 ServerAdmin a@d.com SSLEngine On SSLCertificateFile "full-path.cert" SSLCertificateKeyFile "full-path.key" ErrorLog "full-path/error.log" TransferLog "full-path/access.log" <Directory "full-path"> Options All Require all granted </Directory> </VirtualHost>

– isaacewing
May 18 '17 at 19:09

|
show 1 more comment

score 17 · Accepted Answer · 2017-11-15 06:01:15Z

In New Xampp

All you have to do is to edit the file:

C:xamppapacheconfextrahttpd-xampp.conf

and go to Directory tag as below:

<Directory "C:/xampp/phpMyAdmin">

and then change

Require local

To

Require all granted

in the Directory tag.

Restart the Xampp. That's it!

Thanks @TheMohanAhuja it works. Anyone can also add "Require ip X.X.X.X" line below "Require local" in the same httpd-xampp.conf file, if you want to allow a specific IP address PC in your local network. — Jul 23 '18 at 12:14
This helped me. Stop/Start Apache in the control panel only after the change. — Aug 10 '18 at 17:23

Gunnar BernsteinGunnar Bernstein 3,51012840 · Accepted Answer · 2015-03-14 03:29:50Z

Require all granted seemed a bit to far for me. Looking at the documentation I used: Require ip 192.168 to allow all internal access.

<LocationMatch "^/(?i:(?:xampp|security|licenses|phpmyadmin|webalizer|server-status|server-info))">
 Require local
 Require ip 192.168
 ErrorDocument 403 /error/XAMPP_FORBIDDEN.html.var
</LocationMatch>

garatugaratu 295212 · Accepted Answer · 2014-09-29 13:13:49Z

 <LocationMatch "^/(?i:(?:xampp|security|licenses|phpmyadmin|webalizer|server-status|server-info))">

 Require all granted
 ErrorDocument 403 /error/XAMPP_FORBIDDEN.html.var
</LocationMatch>

Good luck!!!!

Sanyam JainSanyam Jain 9913 · Accepted Answer · 2014-12-10 16:51:54Z

You will have to edit 2 files - 1. httpd-vhosts.conf & 2. httpd-xampp.conf

NOTE : Make sure u backup files ( httpd-xampp.conf ) and (
httpd-vhosts.conf ) , Both Files are located in
Drive:xamppapacheconfextra

Open httpd-vhosts.conf file and in the bottom of the file change it

<VirtualHost *:80>
DocumentRoot “E:/xampp/htdocs/”
ServerName localhost
<Directory E:/xampp/htdocs/>.
Require all granted 
</Directory>
</VirtualHost>

Here E:/xampp is my project workspace, you can change it as per your settings

and Second Change is on httpd-xampp.conf file and in the bottom of the file change it

#
# New XAMPP security concept
#
<LocationMatch “^/(?i:(?:xampp|security|licenses|phpmyadmin|webalizer|server-status|server-info))”>
Order deny,allow
Allow from all
Allow from ::1 127.0.0.0/8
ErrorDocument 403 /error/XAMPP_FORBIDDEN.html.var
</LocationMatch>

Pacerier 44k50213517 · Accepted Answer · 2014-10-17 05:39:28Z

Try to reinstall new version of XAMPP. Find "<Directory "C:/xampp/php">" and then change to something like this

<Directory "C:/xampp/php">
 AllowOverride AuthConfig Limit
 Order allow,deny
 Allow from all
 Require all granted
</Directory>

G O'RillaG O'Rilla 23835 · Accepted Answer · 2014-10-10 07:56:31Z

Comment out the line Require local in httpd-xampp.conf.

Restart Apache.

Worked for me connecting my mobile phone to my test web-site on my PC.
No idea of the security implications.

Zuben45Zuben45 312 · Accepted Answer · 2016-04-22 11:15:39Z

just remove:

Alias /phpmyadmin "C:/xampp2/phpMyAdmin/"
<Directory "C:/xampp2/phpMyAdmin">
 AllowOverride AuthConfig
 Require all granted
</Directory>

and remove phpmyadmin from:

<LocationMatch "^/(?i:(?:xampp|security|licenses|phpmyadmin|server-status|server-info))">

SARSAR 89011231 · Accepted Answer · 2017-01-02 06:33:51Z

Some of the Answers are correct, but in case of working with new xampp or with some one not working other answers try this:

just go to the xampp folder:

xampp/apache/conf/extra/httpd-xampp.conf

and if you are trying to access from local ip in your network so change,

 Alias /phpmyadmin "C:/xampp/phpMyAdmin/"
 <Directory "C:/xampp/phpMyAdmin">
 AllowOverride AuthConfig
 Require local
 ErrorDocument 403 /error/XAMPP_FORBIDDEN.html.var
 </Directory>

Change to :

 Alias /phpmyadmin "C:/xampp/phpMyAdmin/"
 <Directory "C:/xampp/phpMyAdmin">
 AllowOverride AuthConfig
 Require all granted
 ErrorDocument 403 /error/XAMPP_FORBIDDEN.html.var
 </Directory>

Note: this is just for text, for the security of the xampp has some search....

score 2 · Accepted Answer · 2018-01-23 15:06:27Z

To access the requested directory other than local network, you need to change the XAMPP security concept
configured in the file "httpd-xampp.conf".

File location xamppapacheconfextrahttpd-xampp.conf

Require Directive Selects which authenticated users can access a resource

Syntax « Require entity-name [entity-name] ...

From « XAMPP security concept allows only local environment - Require local

<LocationMatch "^/(?i:(?:xampp|security|licenses|phpmyadmin|webalizer|server-status|server-info))">
 Require local
 ErrorDocument 403 /error/XAMPP_FORBIDDEN.html.var
</LocationMatch>

To « XAMPP security concept allows any environment - Require all granted

<LocationMatch "^/(?i:(?:xampp|security|licenses|phpmyadmin|webalizer|server-status|server-info))">
 Require all granted
 ErrorDocument 403 /error/XAMPP_FORBIDDEN.html.var
</LocationMatch>

Access forbidden! message from HTML Page.

enter image description here

Allow Directive Controls which hosts can access an area of the server

Syntax « Allow from all|host|env=[!]env-variable [host|env=[!]env-variable] ...

Allowing only local environment. Using any of the below specified url's.

http://localhost/phpmyadmin/

http://127.0.0.1/phpmyadmin/

<LocationMatch "^/(?i:(?:xampp|security|licenses|phpmyadmin|webalizer|server-status|server-info))">
 Order deny,allow
 Deny from all
 Allow from ::1 127.0.0.0/8 

 ErrorDocument 403 /error/XAMPP_FORBIDDEN.html.var
</LocationMatch>

Allowing only to specified IPv4, IPv6 address spaces.

Link-local addresses for IPv4 are defined in the address block 169.254.0.0/16 in CIDR notation. In IPv6, they are assigned the address block fe80::/10

A unique local address (ULA) is an IPv6 address in the block fc00::/7

<LocationMatch "^/(?i:(?:xampp|security|licenses|phpmyadmin|webalizer|server-status|server-info))">
 Order deny,allow
 Deny from all
 Allow from ::1 127.0.0.0/8 
 fc00::/7 10.0.0.0/8 172.16.0.0/12 192.168.0.0/16 
 fe80::/10 169.254.0.0/16

 ErrorDocument 403 /error/XAMPP_FORBIDDEN.html.var
</LocationMatch>

Allowing for any network address. Allow from all

<LocationMatch "^/(?i:(?:xampp|security|licenses|phpmyadmin|webalizer|server-status|server-info))">
 Order deny,allow
 Allow from all

 ErrorDocument 403 /error/XAMPP_FORBIDDEN.html.var
</LocationMatch>

404 - XAMPP Control Panel: Unable to start Apache HTTP server.

URL: http://localhost/xampp/index.php

Error « 
 Not Found
 HTTP Error 404. The requested resource is not found.

Required default Apache HTTP server port 80 is actually used by other Service.

You need to find the service running with port 80 and stop the service, then start the Apache HTTP server.

Use Netstat to displays active TCP connections, ports on which the computer is listening.

 C:Usersyashwanth.m>netstat -ano

 Active Connections

 Proto Local Address Foreign Address State PID
 TCP 0.0.0.0:80 0.0.0.0:0 LISTENING 2920
 TCP 0.0.0.0:135 0.0.0.0:0 LISTENING 1124

 TCP 127.0.0.1:5354 0.0.0.0:0 LISTENING 3340

 TCP [::]:80 [::]:0 LISTENING 2920

C:Usersyashwanth.m>netstat -ano |findstr 2920
 TCP 0.0.0.0:80 0.0.0.0:0 LISTENING 2920
 TCP 0.0.0.0:443 0.0.0.0:0 LISTENING 2920
 TCP [::]:80 [::]:0 LISTENING 2920
 TCP [::]:443 [::]:0 LISTENING 2920

C:Usersyashwanth.m>taskkill /pid 2920 /F
 SUCCESS: The process with PID 2920 has been terminated.

Change listening port from main Apache HTTP server configuration file D:xamppapacheconfhttpd.conf. Ex: 81. From Listen 80 To Listen 81, the access URL will be http://localhost:81/xampp/index.php.
```
# Change this to Listen on specific IP addresses as shown below to 
# prevent Apache from glomming onto all bound IP addresses.
#
#Listen 0.0.0.0:80
#Listen [::]:80
Listen 80
```

For more information related to httpd and virtual host on XAMPP

Dzianis Yafimau 1,39711629 · Accepted Answer · 2016-02-11 08:56:44Z

In your xampppathapacheconfextra open file httpd-xampp.conf and find the below tag:

<LocationMatch "^/(?i:(?:xampp|licenses|phpmyadmin|webalizer|server-status|server-info))">
Order deny,allow
Deny from all
Allow from ::1 127.0.0.0/8 
ErrorDocument 403 /error/HTTP_XAMPP_FORBIDDEN.html.var

and add Allow from all after Allow from ::1 127.0.0.0/8 line

Restart xampp, and you are done.

Hristiyan DodovHristiyan Dodov 1,74211325 · Accepted Answer · 2017-06-26 08:24:57Z

A reason for this could be Skype as well! If you use the default XAMPP settings, they both would run on the same port (80). You can:

Turn off Skype

Change the XAMPP port

site80443site80443 5116 · Accepted Answer · 2016-03-10 07:26:40Z

If you're using a newer XAMPP (for example for PHP 5.6, 7) which is built with "Bitnami" installer and it includes Apache 2.4.x then this applies:

https://httpd.apache.org/docs/2.4/upgrading.html#run-time

2.2 configuration:

Order allow,deny
Allow from all

2.4 configuration:

Require all granted

This also applies to VirtualHost sections, if you have any custom virtualhost definitions.

JItendraJItendra 12 · Accepted Answer · 2016-04-13 06:44:46Z

Ubuntu (Linux)

:- $ sudo gedit /opt/lampp/etc/extra/httpd-xampp.conf

 Comment "Deny from all" in the following section,

Change file

# New XAMPP security concept
# <LocationMatch "^/(?i:(?:xampp|security|licenses|phpmyadmin|webalizer|server-status|server-info))">
 Order deny,allow

 #Deny from all
 #Require local
 Allow from ::1 127.0.0.0/8 
 fc00::/7 10.0.0.0/8 172.16.0.0/12 192.168.0.0/16 
 fe80::/10 169.254.0.0/16

 ErrorDocument 403 /error/XAMPP_FORBIDDEN.html.var

FredFred 21435 · Accepted Answer · 2016-04-19 12:35:06Z

For many it's a permission issue, but for me it turns out the error was brought about by a mistake in the form I was trying to submit. To be specific i had accidentally put ">" sign after the value of "action". So I would suggest you take a second look at your code

tyegah123tyegah123 112311 · Accepted Answer · 2017-04-04 07:39:54Z

I tried everything but nothing worked. So I just used : chmod -R 777 to htdocs. At least it's only in my local.

Ram PukarRam Pukar 50638 · Accepted Answer · 2018-05-25 00:40:38Z

G:xamppapacheconfextrahttpd-vhosts.conf

#start block
NameVirtualHost *:80

<VirtualHost *:80>
 ServerName localhost
 #change your directory name
 DocumentRoot "G:xampphtdocs"
</VirtualHost>

#Your vertual Host
<VirtualHost *:80>
 DocumentRoot "G:/xampp/htdocs/dev2018/guessbook"
 ServerName dev.foreign-recruitment
 <Directory "G:/xampp/htdocs/dev2018/guessbook/">

 </Directory>
</VirtualHost>
#end block

Hammad KhanHammad Khan 9,0391287110 · Accepted Answer · 2018-11-13 17:08:03Z

This could be because of wrong configuration, esp if your other sites are working fine.

<VirtualHost cmsdemo.git:88>
 DocumentRoot "C:/Projects/rwp/"
 ServerName cmsdemo.git
 <Directory C:/Projects/cmsdemo/>
 Require all granted 
 AllowOverride All
 </Directory>
</VirtualHost>

Notice in DocumentRoot I am specifying one folder and in Directory, I am specifying another hence 403 Error. This fixed my problem.

搜尋此網誌

Odtnhj

New xampp security concept: Access Forbidden Error 403 - Windows 7 - phpMyAdmin

18 Answers
18

18 Answers
18

18 Answers
18

這個網誌中的熱門文章

Barbados

How to read a connectionString WITH PROVIDER in .NET Core?

Node.js Script on GitHub Pages or Amazon S3

New xampp security concept: Access Forbidden Error 403 - Windows 7 - phpMyAdmin

18 Answers 18

18 Answers 18

18 Answers 18

這個網誌中的熱門文章

Barbados

How to read a connectionString WITH PROVIDER in .NET Core?

Node.js Script on GitHub Pages or Amazon S3

18 Answers
18

18 Answers
18

18 Answers
18