AH01276 "Cannot serve directory" when opening Admin > "System Admin"

richardg · April 4, 2023, 7:49am

Good day. Can I safely disregard this error log entry that is caused by opening Admin > “System Admin”

[Tue Apr 04 15:38:52.288286 2023] [autoindex:error] [pid 33924] [client <SERVER_IP_ADDRESS>:60362] AH01276: Cannot serve directory <GIBBON_PATH>/uploads/: No matching DirectoryIndex (index.html,index.cgi,index.pl,index.php,index.xhtml,index.htm) found, and server-generated directory index forbidden by Options directive

These are the last three lines of <GIBBON_PATH>/config.php:
ini_set(‘max_file_uploads’, ‘80’);
ini_set(‘error_reporting’, E_ALL & ~E_DEPRECATED);
?>

sandra · April 13, 2023, 6:46am

Hi Richard, good question. Short answer, yes you can disregard this error, it’s actually a sign that your security settings are nice and high. Long answer: In a recent version we added an extra security check to System Admin to help detect if the uploads folder is accidentally web-viewable (as this can be a security issue if someone can browse that folder from the web). To make this check, the server is attempting to access the uploads folder, and ideally should be refused by the web server. This refusal can happen in a few different ways depending on the server and it’s setup, so since you’re seeing the directory index forbidden this means you have things configured properly in your vhosts.

richardg · April 18, 2023, 5:11am

Thank you @sandra