Hi Emmanuel. I did not check the docs, so I was not aware of the restriction on the TRACE method :-) Regards - Keith Oh! This is cool. I didnt realise that mod_access would work inside a Limit directive. I toyed with it for a moment before I was led astray by the examples highlighting the use of mod_auth. As per the docs the TRACE method cant be limited, other than by turning off TraceEnable So I guess I could use the LimitExcept directive and do a <LimitExcept GET POST> Order deny,allow Deny from all </LimitExcept> --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx