Limits the require directive to those verbs - what about the others? Sent from my BlackBerry® wireless device -----Original Message----- From: "Danie Qian" <daniel@xxxxxxxxxxxxxxxx> Date: Fri, 25 Apr 2008 15:53:59 To:<users@xxxxxxxxxxxxxxxx> Subject: Re: .htaccess for script aliased directories ----- Original Message ----- From: "Joshua Slive" <joshua@xxxxxxxx> To: <users@xxxxxxxxxxxxxxxx>; "Danie Qian" <daniel@xxxxxxxxxxxxxxxx> Sent: Friday, April 25, 2008 3:39 PM Subject: Re: .htaccess for script aliased directories > On Fri, Apr 25, 2008 at 3:32 PM, Danie Qian <daniel@xxxxxxxxxxxxxxxx> > wrote: > >> <Limit GET POST> >> require valid-user >> </Limit> > > Remove the <Limit GET POST> and </Limit> lines. They are dangerous. See: > http://httpd.apache.org/docs/2.2/mod/core.html#limit > > Joshua. > >From the above link I cant find anything dangerous except for the fact that it limits requests to GET,POST methods, about which my users never complained. Or, did I miss out anything here? --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|