This option will reset the home page of this site. Restoring any closed widgets or categories.

Reset
Home  »  Disable the TRACE and TRACK For More Security

Disable the TRACE and TRACK For More Security

Tagged with:     

An attacker may manipulate the TRACE and TRACK methods to intercept your visitors’ sensitive data. The solution, of course, is disable these methods on your webserver.This is a security vulnerability found in Apache servers.So to disable this just add the below lines.You can add this httpd.conf or .htaccess

How to disable the TRACE and TRACK methods

To disable TRACE and TRACK HTTP methods on your Apache-powered webserver, add the following directives to either your main configuration file or root HTAccess file:

RewriteEngine on
RewriteCond %{REQUEST_METHOD} ^(TRACE|TRACK)
RewriteRule .* - [F]

These directives disable the TRACE and TRACK methods via the following process:

  • RewriteEngine on — enables Apache’s rewrite module (this directive is not required if already present in your htaccess file)
  • RewriteCond %{REQUEST_METHOD} ^(TRACE|TRACK) — targets all TRACE and TRACK request methods for the following rule
  • RewriteRule .* - [F] — return a 403 Forbidden error response for all matched conditions (i.e., all TRACE and TRACK methods)
VN:F [1.5.7_846]
Rating: 0.0/10 (0 votes cast)
VN:F [1.5.7_846]
Rating: 0 (from 0 votes)
Share and Enjoy:
  • Digg
  • Sphinn
  • del.icio.us
  • Facebook
  • Mixx
  • Google
  • De.lirio.us
  • Xerpi

Related posts:

  1. mod_security the Apache Module, The Apache Firewall blocking your website?
  2. Url rewriting examples using .htaccess
  3. Adding apache handlers in cpanel
  4. Speed up wordpress using .htaccess part 2
  5. Fix the problem in getting 500 Internal Server Error In Localhost Due To .htaccess
  6. Adding Handlers Directly In httpd.conf Of Apache
  7. Disable submit button on form submit

Tagged with:     

Leave a Reply

Spam Protected