Hey all,
I configured a couple of mod_rewrite directives in the
main configuration file to disable the TRACE/TRACK
methods. However, these rules do not seem to make it
into the HTTPS instance; even though I put them in the
main config, and not in the virtual hosts.
# Disable/Block TRACE/TRACK requests.
RewriteEngine on
RewriteOptions inherit
RewriteLog logs/mod_rewrite.log
RewriteCond %{REQUEST_METHOD} ^(TRACE|TRACK)
RewriteRule .* - [F]
I was hoping to not have to explicitly put these rules
in the SSL's config, to keep things clean and simple.
Any suggestions ?
Thank you!
R
__________________________________________________
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the best spam protection around
http://mail.yahoo.com
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx
" from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx
For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|