[SLUG] disabling http TRACE with squid or apache

From: Levi Bard (levi@bard.sytes.net)
Date: Thu Aug 14 2003 - 10:31:28 EDT

Next message: Ian Blenke: "Re: [SLUG] Digital Rights Management (DRM) in the Linux kernel!?!"
Previous message: Robin 'Roblimo' Miller: "Re: [SLUG] Digital Rights Management (DRM) in the Linux kernel!?!"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Sorry, I've lost the original thread.

-- Squid

TRACE can be disabled by adding the following lines to squid.conf

acl TRACE method TRACE http_access deny TRACE

The first line should be added where all other acls are defined. The second line before allowing normal traffic. Do not forget to restart squid.

Apache

Optionally add if not active already

LoadModule rewrite_module modules/mod_rewrite.so RewriteEngine On

To disable TRACE add before the first server (but after the module is loaded and activated):

RewriteCond %{REQUEST_METHOD} TRACE [NC] RewriteRule / [F,L]

Do not forget to restart apache. --

Source: http://jkf.dyns.cx/

Levi ----------------------------------------------------------------------- This list is provided as an unmoderated internet service by Networked Knowledge Systems (NKS). Views and opinions expressed in messages posted are those of the author and do not necessarily reflect the official policy or position of NKS or any of its employees.

Next message: Ian Blenke: "Re: [SLUG] Digital Rights Management (DRM) in the Linux kernel!?!"
Previous message: Robin 'Roblimo' Miller: "Re: [SLUG] Digital Rights Management (DRM) in the Linux kernel!?!"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.3 : Fri Aug 01 2014 - 16:59:45 EDT