On 16 Sep 2008, at 02:44, Hugh E Cruickshank wrote:
Right now if someone were to attempt to access these subdirectories (i.e. http://www.example.com/cgi-bin) they would receive a 403 Forbidden error message. Unfortunately this is not quite acceptable to the IBM Rational AppScan utility which recommends that a 404 Not found error should be issued.
I suspect you're misreading your AppScan. It's warning about potentially
exposing your filesystem information. But there's nothing secret about a directory containing a web-facing application! Having said that, rtfm ErrorDocument for one way to do what you ask, if it's for some ignorant PHB's box-ticking exercise. -- Nick Kew --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|