sfw/fix
403 high

403 Forbidden

A 403 means the server understood the request but refuses to authorize it. Usually permissions or a security rule.

What you see

HTTP 403 — Forbidden
You don’t have permission to access this resource.

What’s actually happening

The server found the page but is deliberately blocking access. It’s an authorization problem, not a missing page. When it hits your whole site, it’s usually file permissions, an index file issue, or a security rule gone wrong.

Common causes

  • Incorrect file or folder permissions (e.g. 000 or 700 instead of 644/755)
  • A missing index.html / index.php in a directory with listing disabled
  • A security plugin, WAF, or .htaccess deny rule blocking the request
  • An IP or country block catching legitimate visitors

How to fix it

  1. Reset file permissionsFolders should be 755, files 644. Wrong permissions are the #1 cause. Fix them via SFTP or your host’s file manager.
  2. Check for a missing index fileIf a directory has no index file and directory listing is off, you get a 403. Add the index file or a redirect.
  3. Audit .htaccess and security rulesA stray "Deny from all" or an over-eager WAF/security-plugin rule blocks legitimate traffic. Temporarily disable to isolate, then whitelist correctly.
Related errors

404 Not Found

high

A 404 means the page the visitor requested doesn’t exist at that URL. Here’s why it happens and how to fix it for good.

500 Internal Server Error

critical

A 500 is the server’s way of saying "something broke on my end." Generic by design — here’s how to find the real cause.

502 Bad Gateway

critical

A 502 means one server got an invalid response from another upstream server. The fix depends on which link in the chain failed.

503 Service Unavailable

critical

A 503 says the server is temporarily unable to handle the request — usually overload or maintenance. Here’s how to clear it.