home > security > www > apache-directory-access

Apache Directory Access

25 | 23 Jun 2014

TraceEnable off, will disable the TRACE http request method.

To block PUT,DELETE, and OPTIONS simpley don't grant access to these methods in the first place. If you don't use it, don't grant access to it.

Example config

<Directory /path/to/web>
    AllowOveride all
    <Limit GET,POST>
        Default Allow,Deny
        Allow from all

Using this config will only allow for the specified methods.

Post a Comment