Jump to content

Apache HTTP Proxy 2.4.54.25 - How to disable TRACE/TRACK?

dNama

By dNama
in Remote Management

 Share
Go to solution Solved by Podrska2NORT,

Recommended Posts

dNama

dNama 0

Posted
Posted

Hello,

it is possible to disable TRACE/TRACK in Apache HTTP Proxy that is used by ESET for caching downloads and updates?

Thanks.

Link to comment
Share on other sites
  • ESET Insiders
  • Solution
Podrska2NORT

Podrska2NORT 5

Posted
  • ESET Insiders
  • Solution
Posted

As Marcos wrote earlier:
 

When it comes to HTTP Debugging Methods (TRACE/TRACK) Enabled
See https://httpd.apache.org/docs/2.4/mod/core.html#traceenable
"Despite claims to the contrary, enabling the TRACE method does not expose any security vulnerability in Apache HTTPd. The TRACE method is defined by the HTTP/1.1 specification and implementations are expected to support it."

 

Customers can enable/disable them in the configuration using syntax

TraceEnable [on|off|extended]...

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...