Hi Joshua, What I am trying to do is prevent getting hacked by an HTTP PUT command. I want to disable it since for some reason it _is_ on and I _did not_ enable it. It was on apparently because I am the one who installed RH ES linux 3.0 on the system back in October. I did nothing special though, so something had to be enabled automatically.... Any ideas? I just want the system to only accept HTTP GET commands. So, is your Limit section example below what I want to do then? Warron French Sr. Network Engineer Xtria, LLC -----Original Message----- From: Joshua Slive [mailto:jslive@xxxxxxxxx] Sent: Tuesday, March 01, 2005 1:42 PM To: users@xxxxxxxxxxxxxxxx Subject: Re: [users@httpd] HTTP PUT On Tue, 1 Mar 2005 11:32:26 -0500, Warron French <wfrench@xxxxxxxxx> wrote: > > Does anyone know how to disable the HTTP PUT command in Apache? > > I need to do this for security reasons. The question doesn't make a lot of sense, since PUT is not enabled by default to start with. You need some kind of a script to handle PUT requests. You can, of course, use <Limit PUT> Order allow,deny Deny from all </Limit> But that is not generally advisable unless you understand exactly how it fits into your entire access framework. Joshua. --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|