Apache configuration can be the most frustrating things, especially for those of us who don’t do it everyday. The one mistake I constantly make is allowing Apache to serve up content from a document root. Nine times out of ten I forget to add the Directory settings. For example, once you configure a DocumentRoot don’t forget to configure security.
<Directory "C:/www/my/document/root"> Options Indexes FollowSymLinks AllowOverride None Order allow,deny Allow from all </Directory>