Debian testing (jessie/sid)
# apachectl -t -D DUMP_MODULES | grep -E "(access|authz)"
access_compat_module (shared)
authz_core_module (shared)
authz_host_module (shared)
authz_user_module (shared)
# dpkg -l | grep apache2
ii apache2 2.4.6-3 amd64 Apache HTTP Server
ii apache2-bin 2.4.6-3 amd64 Apache HTTP Server (binary files and modules)
ii apache2-data 2.4.6-3 all Apache HTTP Server (common files)
ii apache2-utils 2.4.6-3 amd64 Apache HTTP Server (utility programs for web servers)
ii libapache2-mod-auth-kerb 5.4-2.1 amd64 apache2 module for Kerberos authentication
rc libapache2-mod-dnssd 0.6-3.1 amd64 Zeroconf support for Apache 2 via avahi
ii libapache2-mod-php5 5.5.5+dfsg-1 amd64 server-side, HTML-embedded scripting language (Apache 2 module)
Vhost:
<VirtualHost *:80>
ServerName test
ServerAlias test.local
DocumentRoot /srv/test/www
RewriteEngine On
<Directory /srv/test/www>
RewriteEngine On
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule !\.(pdf|js|ico|gif|jpg|png|css|rar|zip|tar\.gz)$ index.php [L]
Options -Indexes +FollowSymLinks
AllowOverride None
Order allow,deny
allow from all
</Directory>
</VirtualHost>
Getting
403 Forbidden
Access log:
test:80 127.0.0.1 - - [08/Nov/2013:16:33:12 +0100] "GET /order/ HTTP/1.1" 403 503 "
http://test.local/" "Mozilla/5.0 (X11; Linux x86_64; rv:24.0) Gecko/20100101 Firefox/24.0"
No entry in the error log.
When I add an 2.4 line Require all granted it works as expected.