httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From parks fields <pa...@lanl.gov>
Subject [users@httpd] Http trace is still on.
Date Tue, 09 Mar 2004 19:55:30 GMT

Hello again,

I am running apache 2.0.46 on RH enterprise ws3.0. The 
security scan list Http trace as a risk and I need to turn 
it off. A member of this list said I should add the 
following to my httpd.conf file.
         RewriteCond %{REQUEST_METHOD} TRACE [NC]
         RewriteRule / [F,L]
         RewriteEngine On
         RewriteCond %{REQUEST_METHOD} ^TRACE

I did. I have rebooted the machine.
The security scan still list it as being enabled.  Attached 
is my conf file.
Since I am new at this could someone explain what I am doing 
wrong.

TIA

parks

Mime
View raw message