[Help] Unable to View Website, Forbidden

I have several existing websites (Wordpress) on a shared host that I backed up the files and databases for. I decided to start transferring one of those sites over to Linode. I followed several of the starter guides, including Hosting a Website in the Linode Library. I just finished uploading the files to:

/srv/www/facetedgames.com/public_html

The MySQL database is already set up and I have changed the wp-config.php to reflect the new database details (name, user, pass).

I was having trouble uploading the files using Filezilla from my Windows 8 machine using my new user account (not root). So I changed the public_html directory's group to the "sudo" group and reloaded Apache. I managed to up the files fine after that. My domain is registered elsewhere and I already pointed (and it should be mostly proporgated) to my Linode. Also did Reverse DNS already on the domain to the Linode.

However, now I when I go to visit my website, http://www.facetedgames.com, I get a Forbidden error. What did I do wrong? How should I go about fixing it?

7 Replies

Never mind, I managed to fix it. Did a few more Google searches until I came across this LL article: https://library.linode.com/web-servers/ … .4-upgrade">https://library.linode.com/web-servers/apache/2.2-2.4-upgrade. I did Step 2 in that guide and it seems to have fixed my Forbidden issue. Now I need to go verify and check my database and config files. Seems it's having a problem connecting to it.

Hmm, I uploaded the sql file to my user's home directory:

/home/new_user/database.sql

However when I try to execute the following:

sudo mysql -u username -p password localhost database < /home/new_user/database.sql

I get this returned in the terminal:

mysql  Ver 14.14 Distrib 5.5.37, for debian-linux-gnu (x86_64) using readline 6.3
Copyright (c) 2000, 2014, Oracle and/or its affiliates. All rights reserved.

Oracle is a registered trademark of Oracle Corporation and/or its
affiliates. Other names may be trademarks of their respective
owners.

Usage: mysql [OPTIONS] [database]
  -?, --help          Display this help and exit.
  -I, --help          Synonym for -?
  --auto-rehash       Enable automatic rehashing. One doesn't need to use
                      'rehash' to get table and field completion, but startup
                      and reconnecting may take a longer time. Disable with
                      --disable-auto-rehash.
                      (Defaults to on; use --skip-auto-rehash to disable.)
  -A, --no-auto-rehash
                      No automatic rehashing. One has to use 'rehash' to get
                      table and field completion. This gives a quicker start of
                      mysql and disables rehashing on reconnect.
  --auto-vertical-output
                      Automatically switch to vertical output mode if the
                      result is wider than the terminal width.
  -B, --batch         Don't use history file. Disable interactive behavior.
                      (Enables --silent.)
  --character-sets-dir=name
                      Directory for character set files.
  --column-type-info  Display column type information.
  -c, --comments      Preserve comments. Send comments to the server. The
                      default is --skip-comments (discard comments), enable
                      with --comments.
  -C, --compress      Use compression in server/client protocol.
  -#, --debug[=#]     This is a non-debug version. Catch this and exit.
  --debug-check       Check memory and open file usage at exit.
  -T, --debug-info    Print some debug info at exit.
  -D, --database=name Database to use.
  --default-character-set=name
                      Set the default character set.
  --delimiter=name    Delimiter to be used.
  --enable-cleartext-plugin
                      Enable/disable the clear text authentication plugin.
  -e, --execute=name  Execute command and quit. (Disables --force and history
                      file.)
  -E, --vertical      Print the output of a query (rows) vertically.
  -f, --force         Continue even if we get an SQL error.
  -G, --named-commands
                      Enable named commands. Named commands mean this program's
                      internal commands; see mysql> help . When enabled, the
                      named commands can be used from any line of the query,
                      otherwise only from the first line, before an enter.
                      Disable with --disable-named-commands. This option is
                      disabled by default.
  -i, --ignore-spaces Ignore space after function names.
  --init-command=name SQL Command to execute when connecting to MySQL server.
                      Will automatically be re-executed when reconnecting.
  --local-infile      Enable/disable LOAD DATA LOCAL INFILE.
  -b, --no-beep       Turn off beep on error.
  -h, --host=name     Connect to host.
  -H, --html          Produce HTML output.
  -X, --xml           Produce XML output.
  --line-numbers      Write line numbers for errors.
                      (Defaults to on; use --skip-line-numbers to disable.)
  -L, --skip-line-numbers
                      Don't write line number for errors.
  -n, --unbuffered    Flush buffer after each query.
  --column-names      Write column names in results.
                      (Defaults to on; use --skip-column-names to disable.)
  -N, --skip-column-names
                      Don't write column names in results.
  --sigint-ignore     Ignore SIGINT (CTRL-C).
  -o, --one-database  Ignore statements except those that occur while the
                      default database is the one named at the command line.
  --pager[=name]      Pager to use to display results. If you don't supply an
                      option, the default pager is taken from your ENV variable
                      PAGER. Valid pagers are less, more, cat [> filename],
                      etc. See interactive help (\h) also. This option does not
                      work in batch mode. Disable with --disable-pager. This
                      option is disabled by default.
  -p, --password[=name]
                      Password to use when connecting to server. If password is
                      not given it's asked from the tty.
  -P, --port=#        Port number to use for connection or 0 for default to, in
                      order of preference, my.cnf, $MYSQL_TCP_PORT,
                      /etc/services, built-in default (3306).
  --prompt=name       Set the mysql prompt to this value.
  --protocol=name     The protocol to use for connection (tcp, socket, pipe,
                      memory).
  -q, --quick         Don't cache result, print it row by row. This may slow
                      down the server if the output is suspended. Doesn't use
                      history file.
  -r, --raw           Write fields without conversion. Used with --batch.
  --reconnect         Reconnect if the connection is lost. Disable with
                      --disable-reconnect. This option is enabled by default.
                      (Defaults to on; use --skip-reconnect to disable.)
  -s, --silent        Be more silent. Print results with a tab as separator,
                      each row on new line.
  -S, --socket=name   The socket file to use for connection.
  --ssl               Enable SSL for connection (automatically enabled with
                      other flags).
  --ssl-ca=name       CA file in PEM format (check OpenSSL docs, implies
                      --ssl).
  --ssl-capath=name   CA directory (check OpenSSL docs, implies --ssl).
  --ssl-cert=name     X509 cert in PEM format (implies --ssl).
  --ssl-cipher=name   SSL cipher to use (implies --ssl).
  --ssl-key=name      X509 key in PEM format (implies --ssl).
  --ssl-verify-server-cert
                      Verify server's "Common Name" in its cert against
                      hostname used when connecting. This option is disabled by
                      default.
  -t, --table         Output in table format.
  --tee=name          Append everything into outfile. See interactive help (\h)
                      also. Does not work in batch mode. Disable with
                      --disable-tee. This option is disabled by default.
  -u, --user=name     User for login if not current user.
  -U, --safe-updates  Only allow UPDATE and DELETE that uses keys.
  -U, --i-am-a-dummy  Synonym for option --safe-updates, -U.
  -v, --verbose       Write more. (-v -v -v gives the table output format).
  -V, --version       Output version information and exit.
  -w, --wait          Wait and retry if connection is down.
  --connect-timeout=# Number of seconds before connection timeout.
  --max-allowed-packet=#
                      The maximum packet length to send to or receive from
                      server.
  --net-buffer-length=#
                      The buffer size for TCP/IP and socket communication.
  --select-limit=#    Automatic limit for SELECT when using --safe-updates.
  --max-join-size=#   Automatic limit for rows in a join when using
                      --safe-updates.
  --secure-auth       Refuse client connecting to server if it uses old
                      (pre-4.1.1) protocol.
  --server-arg=name   Send embedded server this as a parameter.
  --show-warnings     Show warnings after every statement.
  --plugin-dir=name   Directory for client-side plugins.
  --default-auth=name Default authentication client-side plugin to use.

Default options are read from the following files in the given order:
/etc/my.cnf /etc/mysql/my.cnf /usr/etc/my.cnf ~/.my.cnf
The following groups are read: mysql client
The following options may be given as the first argument:
--print-defaults        Print the program argument list and exit.
--no-defaults           Don't read default options from any option file.
--defaults-file=#       Only read default options from the given file #.
--defaults-extra-file=# Read this file after the global files are read.

Variables (--variable-name=value)
and boolean options {FALSE|TRUE}  Value (after reading options)
--------------------------------- ----------------------------------------
auto-rehash                       TRUE
auto-vertical-output              FALSE
character-sets-dir                (No default value)
column-type-info                  FALSE
comments                          FALSE
compress                          FALSE
debug-check                       FALSE
debug-info                        FALSE
database                          (No default value)
default-character-set             auto
delimiter                         ;
enable-cleartext-plugin           FALSE
vertical                          FALSE
force                             FALSE
named-commands                    FALSE
ignore-spaces                     FALSE
init-command                      (No default value)
local-infile                      FALSE
no-beep                           FALSE
host                              (No default value)
html                              FALSE
xml                               FALSE
line-numbers                      TRUE
unbuffered                        FALSE
column-names                      TRUE
sigint-ignore                     FALSE
port                              3306
prompt                            mysql>
quick                             FALSE
raw                               FALSE
reconnect                         FALSE
socket                            /var/run/mysqld/mysqld.sock
ssl                               FALSE
ssl-ca                            (No default value)
ssl-capath                        (No default value)
ssl-cert                          (No default value)
ssl-cipher                        (No default value)
ssl-key                           (No default value)
ssl-verify-server-cert            FALSE
table                             FALSE
user                              username (replaced for my safety)
safe-updates                      FALSE
i-am-a-dummy                      FALSE
connect-timeout                   0
max-allowed-packet                16777216
net-buffer-length                 16384
select-limit                      1000
max-join-size                     1000000
secure-auth                       FALSE
show-warnings                     FALSE
plugin-dir                        (No default value)
default-auth                      (No default value)

I went back to my site to see if it worked and I still get the Wordpress install script page. So I'm thinking it did not go through. How do I get this working?

Oh my gosh! Yay! I fixed it!

The Hosting a Website guide states:
> Importing a Database

If you have an existing website, you may want to import an existing database in to MySQL. It's easy, and it allows you to have an established website up and running on your Linode in a matter of minutes. Here's how to import a database in to MySQL:

Upload the database file to your Linode. See the instructions in Uploading Files.

Import the database by entering the following command. Replace username with your MySQL username, password with your MySQL password, and database_name with your own:

mysql -u username -ppassword database_name < FILE.sql

Your database will be imported in to MySQL.

I always had a point of contention with the code line above. It doesn't explain which user I'm supposed to be using. So this whole time I've been attempting to use the database user I created for that database. In actuality, I'm supposed to be using the root database user I created earlier in the guide. Not to mention there is supposed to be a space between "-p" and "password", yet another typo. :/

Anyways, here's the command again I used to reiterate, in case anyone else comes across the same problem/conundrum as I did:

mysql -u root -p database < /home/username/database.sql

I entered my password and viola! My site now works! :)

You're doing something weird now. You need to import the database with that mysql command to the user (-u option) that the web application will connect from. If your web application connects to mysql as the root user (which it apparently is) you do indeed need to use -u root instead of the user you created earlier. However this is very very very bad practice and you should absolutely not do this. You need to change your wordpress settings to read the database from the other (non-root) user.

The mysql password bit is not a typo. Either use -ppassword (so if your password is "examplePass123" you use -pexamplePass123) or use -p without a password and fill in the password prompt after pressing enter.

Oh hmm. Well my Wordpress settings is using the non-root user. Is there anything wrong with using the root mysql user to import the mysql data from the old database to the new one?

Hmm, I seem to have another problem that I haven't figured out. My site can be viewed, but when I try to login, I get asked for FTP details and see this:

Connection Information

To perform the requested action, WordPress needs to access your web server. Please enter your FTP credentials to proceed. If you do not remember your credentials, you should contact your web host.

Hostname    
FTP Username    
FTP Password    

This password will not be stored on the server.
Connection Type    Connection Type FTP    FTPS (SSL)

ERROR: There was an error connecting to the server, Please verify the settings are correct.
Connection Information

To perform the requested action, WordPress needs to access your web server. Please enter your FTP credentials to proceed. If you do not remember your credentials, you should contact your web host.

Hostname    
FTP Username    
FTP Password    

This password will not be stored on the server.
Connection Type    Connection Type FTP    FTPS (SSL)

Also, my site seems to be broken. Only the homepage is loading. Whenever I click on another page, I get a 404 Page Not Found. Something tells me this is related to the above?

What do I do to fix this?


Edit:

Screw it. I want to get this up and instead of trying to fix it a million different ways and none of them working… I'm just going to redo the site. There goes my weekend…and quite possible the following week…of free time.

I ended up dropping the database and recreating it. I chmod the site's directory so it's owned by www-data and wpgroup (user group I created). I added my non-root user to wpgroup. Seems to have solved my wp-admin log in issue. Also had to wipe the plugins folder clean as I suspect a few of the deactivated plugins was causing the other pages on my site not to load. So far I can log in fine, do updates, etc.

Wordpress gives you that message when it cannot write to itself, this is the case when the wordpress files are owned by a different owner than what PHP runs as. Security wise this is good - convenience wise it's not so good. The solution is to either run PHP as the same user that owns the wordpress files, or chmod 777, update - and then chmod back to more restrictive permissions.

For SQL, as long as Wordpress uses non-root login, it should be all good :)

The 404s depend on the error, but it's usually a rewrite issue that has to be fixed (or change the way wordpress constructs urls) - Usually for "pretty" urls you need to use some sort of rewrite.

I'm still having trouble with the file permissions and directory permissions.

I recursively set my website's dir to www-data (owner) and www-data (group).

I recursively chmod'd my website's dir and files using: sudo chmod -R 775 websitedirand_files

I added my non-root user to the www-data group using: sudo usermod -G www-data non-root-user

I can use Wordpress's update functionality and am able to add and remove plugins from the backend. I can also upload files using my non-root-user account. However, I cannot delete any uploaded files using my non-root-user.

What can I do so I can let my non-root-user delete any uploaded files while preserving the ability to user WP's update and add/remove plugins and files?

Reply

Please enter an answer
Tips:

You can mention users to notify them: @username

You can use Markdown to format your question. For more examples see the Markdown Cheatsheet.

> I’m a blockquote.

I’m a blockquote.

[I'm a link] (https://www.google.com)

I'm a link

**I am bold** I am bold

*I am italicized* I am italicized

Community Code of Conduct