Page 1 of 1

403 - Forbidden

Posted: Sat Apr 03, 2021 5:32 pm
by 9 of Spades
Hi,

when accessing this website over HTTP (directly typing the URL into the browser) you get an "403 - Forbidden" message from nginx.
If you explicitly enable HTTPS by typing it in the URL everything works as expected.

Code: Select all

$ curl pokerth.net
<html>
<head><title>403 Forbidden</title></head>
<body>
<center><h1>403 Forbidden</h1></center>
<hr><center>nginx/1.19.9</center>
</body>
</html>

$ curl https://pokerth.net
<html dir="ltr" lang="en-gb">
<head>
<meta charset="utf-8" />

<meta http-equiv="X-UA-Compatible" content="IE=edge">
<meta name="viewport" content="width=device-width, initial-scale=1" />

<title>PokerTH - Index page</title>
[...]
The fact, that this website only accepts encrypted traffic is admirable, but this is a server misconfiguration. There should be a redirect to the secure URL on port 80.

Regards
🂩

Re: 403 - Forbidden

Posted: Sat Apr 03, 2021 5:36 pm
by sp0ck
Thx for comment. It's a combination of cloudflare strict ssl - and a few exceptions for html only. A bit tricky.

I will check the 403 stuff.