[CentOS] After reboot of web-server accessing website shows "Forbidden", restarting httpd all is fine

Sat Nov 7 02:30:27 UTC 2015
Jobst Schmalenbach <jobst at barrett.com.au>


I am stuck with this one and I do not know where and how to search for this problem nor do I know how to fix it.

When I reboot one of our servers (CentOS 6.7, selinux target, yum fully updated) the http server loads fine (no erros) but when accessing one of the server's websites it displays "Forbidden", restarting the httpd server (command line) will give full access and all is fine.

What troubles me that a simple restart of the daemon fixes everything but it does not come up on reboot.

[Sat Nov 07 13:02:44 2015] [notice] caught SIGTERM, shutting down
[Sat Nov 07 13:02:45 2015] [notice] SELinux policy enabled; httpd running as context unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023
[Sat Nov 07 13:02:45 2015] [notice] suEXEC mechanism enabled (wrapper: /usr/sbin/suexec)
[Sat Nov 07 13:02:45 2015] [notice] Digest: generating secret for digest authentication ...
[Sat Nov 07 13:02:45 2015] [notice] Digest: done
[Sat Nov 07 13:02:45 2015] [notice] Apache/2.2.15 (Unix) PHP/5.4.45 mod_ssl/2.2.15 OpenSSL/1.0.1e-fips mod_wsgi/3.2 Python/2.6.6 mod_perl/2.0.4 Perl/v5.10.1 configured -- resuming normal operations

I started it with an strace but I cant find anything that looks suspicious ...

Putting selinux into permissive mode starts the server right from boot.
Looking at all the logs I cannot see anything.

Any ideas?


Though the pen IS mightier than the sword, the sword is mightier at any given moment.

  | |0| |   Jobst Schmalenbach, jobst at barrett.com.au, General Manager
  | | |0|   Barrett Consulting Group P/L & The Meditation Room P/L
  |0|0|0|   +61 3 9532 7677, POBox 277, Caulfield South, 3162, Australia