• Our team is looking to connect with folks who use email services provided by Plesk, or a premium service. If you'd like to be part of the discovery process and share your experiences, we invite you to complete this short screening survey. If your responses match the persona we are looking for, you'll receive a link to schedule a call at your convenience. We look forward to hearing from you!
  • The BIND DNS server has already been deprecated and removed from Plesk for Windows.
    If a Plesk for Windows server is still using BIND, the upgrade to Plesk Obsidian 18.0.70 will be unavailable until the administrator switches the DNS server to Microsoft DNS. We strongly recommend transitioning to Microsoft DNS within the next 6 weeks, before the Plesk 18.0.70 release.
  • The Horde component is removed from Plesk Installer. We recommend switching to another webmail software supported in Plesk.

Issue 403 Forbiden on Code Editor

N

nuffsaid

New Pleskian
Hi Pleskians

I',m having a small problem with a domain on my Plesk , when I try to access the code editor to edit a file I get the following

You don't have permission to access /smb/file-manager/code-editor on this server.

Even if the file permissions are correct I get the error.
 
How are you accessing Plesk over the URL only or with the Port 8443?
What ModSecurity rule set are you using?
Do you see any error in the mod security logs for this file?

I suspect is from the Web Aplication Firewall if yes there should be something like:
Code: 
-2b325438-H--
Message: Access denied with code 403 (phase 1). Matched phrase ".htaccess" at REQUEST_URI. [file "/etc/httpd/conf/modsecurity.d/rules/comodo_free/02_Global_Generic.conf
"] [line "122"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"]
Apache-Error: [file "apache2_util.c"] [line 271] [level 3] [client 91.204.25.4] ModSecurity: Access denied with code 403 (phase 1). Matched phrase ".htaccess" at REQUEST_URI. [file "/etc/httpd/conf/modsecurity.d/rules/comodo_free/02_Global_Generic.conf"] [line "122"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "example.com"] [uri "/smb/file-manager/code-editor"] [unique_id "Xd1MLH00XkBH58UKr4PRfwAAAM8"]
Action: Intercepted (phase 1)
Stopwatch: 1574784044582068 1216 (- - -)
Stopwatch2: 1574784044582068 1216; combined=637, p1=524, p2=0, p3=0, p4=0, p5=112, sr=279, sw=1, l=0, gc=0
Producer: ModSecurity for Apache/2.9.3 (http://www.modsecurity.org/); CWAF_Apache.
Server: Apache
Engine-Mode: "ENABLED"


--2b325438-Z--

In my example you would need to add the ID 210492 to the exclusions of modsec:
support.plesk.com

 How to disable ModSecurity rule by its ID, tag or regular expression in Plesk?

Applicable to: Plesk for Linux Question How to disable ModSecurity rule by its ID, tag or regular expression in Plesk? Answer Log into Plesk Go to Tools & Settings > Web Application Fire...
support.plesk.com support.plesk.com

Should you not find anything in modsec log, check also the panel.log for more information on the error.
 
I am still having this problem right now, and cannot seem to find a solution. All of the dozen or so Drupal sites on the server are fine, but Dashboard access to all 6 Wordpress sites is being blocked.
 
William Finck said:
I am still having this problem right now, and cannot seem to find a solution. All of the dozen or so Drupal sites on the server are fine, but Dashboard access to all 6 Wordpress sites is being blocked.
Click to expand...
With no logs or anything, no one will be able to say anything additionally
 
You must log in or register to reply here.

Similar threads

teldrive
Issue "get " request on my web works on Ubuntu 18.04.6 LTS but not in Ubuntu 22.04.5 LTS
Replies
1
Views
516
Vladimir C.
V
T
Question I have been seeing this error in the log for a while.
Replies
3
Views
790
TheBeatBali
T
T
Issue Server Error 403-Forbidden You do not have permission to access this document.
Replies
6
Views
998
Francesc Benavent
F
C
Question Cannot restore fully Wordpress Website
Replies
5
Views
386
Colonel36
C
enerspace
Resolved Clicking on Backup triggers the error: Warning: Permission denied.
Replies
14
Views
592
alvarezcruz
alvarezcruz
Back
Top