Question

Wordpress one-click installation: wp-admin suddenly 403 Apache Forbidden

I have had a one-click Wordpress droplet running for about a year without issue. Overnight something has gone wrong and I cannot access wp-admin anymore.

The front end and non admin accounts work fine https://3d.plus/

However, anything in the admin areas I get:

Forbidden You don’t have permission to access this resource.

Apache/2.4.41 (Ubuntu) Server at 3d.plus Port 443

.htaccess

I have tried removing the .htaccess file, this does not help and wordpress generates a new one instantly on website load.

plugins

I disabled all plugins by changing the plugins folder name, the site looks awful but no change to access

plugins & .htaccess

I also disabled all plugins and then removed the .htaccess file incase a specific plugin was writing a problematic rule, still no luck

Apache Logs

If I access the error log after trying to access the admin area I get:

[access_compat:error] [pid 1332] [client MYIPADDRESS] AH01797: client denied by server configuration: /var/www/html/wp-admin/index.php

I also then, following some research, used this command to ensure file/folder ownership

sudo chown -R www-data:www-data /var/www/html/wp-admin

Spam Users

The only other thing that did happen last night which was unusual is that I got 3 spam account registrations on the website. All using 1 minute email type services and resetting their password almost instantly but nothing else.

I’d like to think this is coincidence but worth noting. I use google 2FA on admin login for added security and have not observed any other issues that would make me suspicious. My admin account is still able to login on the front end as normal too.

So following all of this I am running out of ideas and places to turn. Any help or suggestions would be greatly appreciated.


Submit an answer

This textbox defaults to using Markdown to format your answer.

You can type !ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!

Sign In or Sign Up to Answer