Roundcube permissions

I have after long last upgraded my last and most critical server to deb 11. All 8 of them went flawlessly and the critical one was riddled with issues. So much for Murphys law!! Roundcube failed to work on the ground of lack of permissions. It says "You don't have permission to access this resource" when trying to access it from the web. I have deleted all previous configurations and reinstalled it several times yet to no avail. Same with php 7.4 and also followed your suggestions on upgrade to deb 11. Anyone knows wth is going on?

 

Do these servers run ISPConfig?

Where was this suggestion?
When you access the webmail URL, does the "you don't have permission ..." appear right away so you do not see the Roundcube page at all? Or is it shown afterwards when you try to do something in roundcube?
What shows command

Code:

systemctl --state=failed

How was the upgrade to Deb 11 done? Did you follow the Debian upgrade instructions? Is roundcube installed with apt install roundcube?

 

this is the initial page not showing at all.

the output of the command is as follows:
UNIT LOAD ACTIVE SUB DESCRIPTION
● proftpd.service masked failed failed proftpd.service

LOAD = Reflects whether the unit definition was properly loaded.
ACTIVE = The high-level unit activation state, i.e. generalization of SUB.
SUB = The low-level unit activation state, values depend on unit type.
1 loaded units listed.

 

1. The upgrade to deb 11 was done meticulously step by step as is meant to be.
2. Roundcube was installed using your perfect server steps again meticulously.
3. DOnt know where this proftp came from, i never used it.

 

have fixed the proftp issue and now there are no units listed under the state failed command.
Logs mentions something of a misconfiguration in /var/lib/roundcube. Odd !

 

So you do not want to reveal what exactly the logs are saying?

 

Of course I do. It is the only thing mentioned in the apache error log for roundcube just "misconfiguration of in /var/lib/roundcube"

 

exact log message is "AH01630: client denied by server configuration: /var/lib/roundcube"

 

i forgot to answer that the server is running ispconfig

 

Now you say server is running ISPConfig. My sympathy for you took a dive.
Anyway, my guess is upgrade from whatever to Debian 11 did not update roundcube configuration to correspond to Debian 11. Show in CODE tags contents of file /etc/roundcube/apache.conf . Maybe you have not run ispconfig_update.sh --force and let it do reconfigure services?

 

i have run the ispcionfig force update twice actually and taken the rest of the steps indicated on your website, yet no results

 

Alias /roundcube /var/lib/roundcube

Alias /webmail /var/lib/roundcube
<Directory /var/lib/roundcube/public_html/>

Options +FollowSymLinks

# This is needed to parse /var/lib/roundcube/.htaccess. See its

# content before setting AllowOverride to None.

AllowOverride All

<IfVersion >= 2.3>

Require all granted

</IfVersion>

<IfVersion < 2.3>

Order allow,deny

Allow from all

</IfVersion>

</Directory>



# Protecting basic directories (not needed when the document root is

# /var/lib/roundcube/public_html):

<Directory /var/lib/roundcube/config>

Options -FollowSymLinks

AllowOverride None

</Directory>



<Directory /var/lib/roundcube/temp>

Options -FollowSymLinks

AllowOverride None

<IfVersion >= 2.3>

Require all denied

</IfVersion>

<IfVersion < 2.3>

Order allow,deny

Deny from all

</IfVersion>

</Directory>



<Directory /var/lib/roundcube/logs>

Options -FollowSymLinks

AllowOverride None

<IfVersion >= 2.3>

Require all denied

</IfVersion>

<IfVersion < 2.3>

Order allow,deny

Deny from all

</IfVersion>

</Directory>

 

That is not in CODE tags.
The require all granted -line is there for roundcube, so that is not the problem.
Since you now run ISPConfig, do this:
https://forum.howtoforge.com/threads/please-read-before-posting.58408/

 

attached also

 

thanks for the code tip I was wondering how to do it. Yes I check that permissions there too. Anything else I could try?

 

When you are given an answer with two sentences you seem to read only one of them. Please pay more attention, it is frustrating trying to help you.
You have not done what I asked for in #14, read the article and post the common_issues -report.
But I'm just back from sauna, I relax now and am not going to read this forum.

 

All the installations are a clone of your perfect server directions. So it was a debian package as per your instructions.

 

Code:

Alias /roundcube /var/lib/roundcube
Alias /webmail /var/lib/roundcube

<Directory /var/lib/roundcube/public_html/>
  Options +FollowSymLinks
  # This is needed to parse /var/lib/roundcube/.htaccess. See its
  # content before setting AllowOverride to None.
  AllowOverride All
 <IfVersion >= 2.3>
    Require all granted
  </IfVersion>
  <IfVersion < 2.3>
    Order allow,deny
    Allow from all
  </IfVersion>
</Directory>

# Protecting basic directories (not needed when the document root is
# /var/lib/roundcube/public_html):
<Directory /var/lib/roundcube/config>
  Options -FollowSymLinks
  AllowOverride None
</Directory>

<Directory /var/lib/roundcube/temp>
  Options -FollowSymLinks
  AllowOverride None
  <IfVersion >= 2.3>
    Require all denied
  </IfVersion>
  <IfVersion < 2.3>
    Order allow,deny
    Deny from all
  </IfVersion>
</Directory>

<Directory /var/lib/roundcube/logs>
  Options -FollowSymLinks
  AllowOverride None
  <IfVersion >= 2.3>
    Require all denied
  </IfVersion>
  <IfVersion < 2.3>
    Order allow,deny
Deny from all
  </IfVersion>
</Directory>