Comment posted Disable Apache HTTP TRACE method to improve Apache security by .
Recent comments by
Tags: Disable Apache HTTP TRACE method to improve Apache security
…
Thursday, 25th April 2024
☩ Walking in Light with Christ – Faith, Computing, Diary
Free Software GNU Linux, FreeBSD, Unix, Windows, Mac OS – Hacks, Goodies, Tips and Tricks and the True Meaning of Life
-
Daily Bible quote
If ye then be risen with Christ, seek those things which are above,
where Christ sitteth on the right hand of God.
-- Colossians 3:1GET ARTICLE UPDATES
-
-
-
Useful blog? Help it:
-
More helpful Articles
- PeaZip good Windows and Linux free software alternative to non-free WinRar and WinZip archiver tools
- Mass substitute Wordpress site Old domain URL to new URL in MySQL (MariaDB) database after website migration
- How to install adobe acroread on Debian Squeeze
- Keygenjukebox – an online radio consisting only of keygen soundtracks music
- How to Update / Change payment Credit Card information in Godaddy
- flowplayer
- How to make 27 inch monitor to work on 2560×1440 with Virtualbox Linux
- Add Google Search Bar to Epiphany
- IBM TSM dsmc console client use for listing configured backups, checking set scheduled backups and backup and restore operations howto
- Why does Orthodox Christian priests and monks wears long beards and why Roman Catholics does not
- ArchAngels day 8 of November, the day of All Angels and Archangels – Who are the ArchAngels and why we should venerate them?
- Windows add / delete services command sc.exe create/delete – Create or Delete services
- How to enable Newsletter support to Wordpress based website or blog with Newsletter or E-mail Newsletter plugin
- Fixing picture non display in Windows Explorer Thumbnails preview
Links to Other Places
- My ShellScripts
- Pc Freak Solutions – Web hosting, Dedicated Servers Offshore, VPS hosting, Website Creation and SEO
- Cheap Remote System Administration
- Play Cool FreeBSD ASCII games
- Pc-Freak Security
- My Personal Twitter like Buddypress on Theology and Politics
- Българска Православна Библия
- Пророчествата на нашите Православни Светии
- Древни Църковно Славянски Книги
- Всичко за Всеки – Блог
- The Largest Holy Orthodox Christian Icons Collection on the Internet
- Pc-Freak Homepage
- Electronic Frontier Foundation – Defending your rights in the digital world
- gnu.org
- exploit-db.com
- Linux Weekly News
- Online Computer Museum
-
Recent Posts
- Improve haproxy logging with custom log-format for better readiability
- How to RIP audio CD and convert to MP3 format on Linux
- Dormition of Saint Methodius excerpt from the Biography letter on Saint Methodius from Saint Clement of Ohrid
- Second Sunday of Great Lent Saint Gregory Palamas – Hesychasm as a mean of Theosis (Union of of God and Man through Deification) and the Orthodox Christian Teaching of God’s Energies
- A Biography of one big Heart + His Holiness Patriarch Neophyte (Neofit) head of Bulgarian Orthodox Church
- DNS Monitoring: Check and Alert if DNS nameserver resolver of Linux machine is not properly resolving shell script. Monitor if /etc/resolv.conf DNS runs Okay
- How to count number of ESTABLISHED state TCP connections to a Windows server
- Big Church Scandal in the Bulgarian Orthodox Church the developments on how the Church basic law Establishment document is illegally broken and hope and action for truth to be restored
Ads
Categories
- AIX (5)
- Anti-Malware Tools (3)
- Apache (1)
- Arcade Games (2)
- Backups (3)
- Bash Scripting (8)
- Bluetooth (5)
- Business Management (60)
- CentOS (8)
- Christianity (277)
- Cloud services (9)
- Clusters (2)
- Company onboarding basics (5)
- Computer Security (120)
- Conspiracy theories (11)
- Curious Facts (191)
- Cygwin (1)
- Debian (5)
- dhcpd (1)
- DNS (1)
- Docker (1)
- Economy (7)
- Educational (59)
- Email clients (3)
- Entertainment (166)
- Everyday Life (694)
- Exim (5)
- File Convert Tools (10)
- Firefox (7)
- Firewall (1)
- Flash Player (2)
- Free Software Graphical Environments (3)
- Free Software Social Networks (1)
- FreeBSD (123)
- Freedom Endangered (3)
- Games (2)
- Games Linux (38)
- Gnome (22)
- Hacks (11)
- Haproxy (12)
- Hardware (1)
- History (1)
- IBM AIX UNIX (3)
- IIS (6)
- Internet Explorer (2)
- IRC (1)
- Java (9)
- Joomla (25)
- Keepalived (1)
- LDAP (1)
- Linux (759)
- Linux and FreeBSD Desktop (358)
- Linux Audio & Video (88)
- Linux Backup tools (11)
- Linux on Laptops (11)
- Linux Package Management (9)
- Mac OS X (21)
- Marketing (1)
- Migration (3)
- Mobile Phone Apps & Games (39)
- Monitoring (35)
- Movie Reviews (55)
- MySQL (51)
- Networking (34)
- News (14)
- NFS (1)
- Nginx (9)
- OS Update (2)
- Outlook (5)
- Performance Tuning (13)
- PHP (8)
- Politics (2)
- PosgreSQL (2)
- Postfix (12)
- Postgresql (1)
- Programming (48)
- Psychology (9)
- Qmail (43)
- Rant (11)
- Remote System Administration (37)
- Samba (1)
- Security (7)
- Self Healing (6)
- Sendmail (4)
- SEO (32)
- Skype on Linux (16)
- Storage (3)
- SuSE Linux (3)
- System Administration (963)
- System Optimization (5)
- Tomcat (4)
- Trainings and Exams (2)
- Travel (1)
- Uncategorized (10)
- Various (775)
- Video Streaming (2)
- vim editor (2)
- Virtual Machines (30)
- VNC (1)
- Web and CMS (271)
- Weblogic (1)
- Windows (188)
- Wine – Windows Emulation (3)
- Wordpress (52)
- Zabbix (19)
About Myself
Recent Comments
- admin on Big Church Scandal in the Bulgarian Orthodox Church the developments on how the Church basic law Establishment document is illegally broken and hope and action for truth to be restored
- devs Env on How to install GNOME 2 desktop environment on Xubuntu / Substitute Xubuntu’s XFCE desktop manager with GNOME
- admin on A Biography of one big Heart + His Holiness Patriarch Neophyte (Neofit) head of Bulgarian Orthodox Church
- admin on A Biography of one big Heart + His Holiness Patriarch Neophyte (Neofit) head of Bulgarian Orthodox Church
- admin on Christ is Risen Eastern Orthodox Resurrection Paschal Greeting in Different Languages
Tags
Auto check com command configure Debian Desktop download Draft end file freebsd Gnome gnu linux host How to information Install Linux linux? make nbsp necessery number package password place quot reason root script servers software something system text time tool type Ubuntu use var Windows work wwwTop Post Views
- DOOM 1, DOOM 2, DOOM 3 game wad files for download / Playing Doom on Debian Linux via FreeDoom open source doom engine - 351,114 views
- IQ world rank by country and which are the smartest nations - 70,701 views
- Some of the most important Symbols for Orthodox Christians in The Eastern Orthodox Church – Symbols in the Eastern Orthodox Christian Faith (Eastern Orthodox Symbolism) and Christian Symbolism in the ... - 47,733 views
- Howto Remove (delist) your mail server IP from Hotmail, Live.com and MSN mail server blacklist - 44,227 views
- Resolving “nf_conntrack: table full, dropping packet.” flood message in dmesg Linux kernel log - 37,255 views
- How to change / reset lost or forgot TightVNC administrator password - 30,373 views
- How to connect to WiFi network using console or terminal on GNU / Linux - 24,114 views
- Installing the phpbb forum on Debian (Squeeze/Sid) Linux - 22,085 views
- Restoring sudden disappeared (deleted) Android Phone Contacts and Data on ZTE, Samsung, LG and Huawei mobile phones - 19,722 views
- How to download books from Books Google with Google Book Download stand alone program and Greasemonkey with Google Books Downloader script - 15,927 views
-
blogtopsites
☩ Walking in Light with Christ – Faith, Computing, Diary 2006-2020 Powered by:
Pc Freak Solutions and Comments (RSS).
Verbatim copying and distribution of this entire article is permitted in any medium, provided this notice is preserved.
Copyright (C) 2020 by Georgi Georgiev - Website Privacy Policy
Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.2.3) Gecko/20100401 Firefox/3.6.3 (.NET CLR 3.5.30729)
In method #1, the rewrite rules will not work if they are put into the .htaccess file. They must go into httpd.conf.
View CommentView CommentMozilla/5.0 (X11; U; Linux x86_64; en-US; rv:1.9.0.14) Gecko/2009091008 Iceweasel/3.0.14 (Debian-3.0.14-1)
Thanks for the note Chad!
View CommentView CommentStill, are you sure that the rewrite engine is enabled for the directory where you try to put the rewrite rules?
It could be also due to difference in Apache version or Linux distrubution. Which versions are you using?
Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.2.3) Gecko/20100401 Firefox/3.6.3 (.NET CLR 3.5.30729)
I definitely have the rewrite engine enabled, because the same rule works for the TRACK request method. I admit that it could be the version of Apache or the OS, but it’s from my hosting company, and I don’t have access to that information.
While researching this, I’ve found many accounts of people who implemented the .htaccess rules and found that they didn’t work. I also found several instances where people “in the know” said that the rewrite directives had to go into httpd.conf and that it wouldn’t work in .htaccess.
View CommentView CommentMozilla/5.0 (X11; U; Linux x86_64; en-US; rv:1.9.0.14) Gecko/2009091008 Iceweasel/3.0.14 (Debian-3.0.14-1)
I see. OK it’s nice you share, this issue. Hopefully someone else would benefit from it.
Thanks for your comments.
Will see you around !
Best
View CommentView CommentMozilla/5.0 (X11; U; Linux x86_64; en-US; rv:1.9.0.14) Gecko/2009091008 Iceweasel/3.0.14 (Debian-3.0.14-1)
By the way I just checked your website. There is pretty cool stuff on it. That Christian Band Servant is quite interesting. I’m glad you’re a Christian too 🙂 You can check my blog christian section if you haven’t checked it yet.
View CommentView CommentMozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.1.6) Gecko/20100203 Iceweasel/3.5.8 (like Firefox/3.5.8)
On Debian/Lenny there is a file /etc/apache2/conf.d/security that has:
# Allow TRACE method
#
# Set to “extended” to also reflect the request body (only for testing and
# diagnostic purposes).
#
# Set to one of: On | Off | extended
#
#TraceEnable Off
TraceEnable On
You can simple uncomment the option you want.
View CommentView CommentMozilla/5.0 (X11; U; Linux x86_64; en-us) AppleWebKit/531.2+ (KHTML, like Gecko) Safari/531.2+ Debian/squeeze/sid () Epiphany/2.29.92
That’s a good tip thanks a bunch!
View CommentView CommentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.16) Gecko/20110319 Firefox/3.6.16
Insertion of the rewrite rule in the .htaccess file worked for me. However, it only seemed to work for the http connection. The trace is still working on the https connection.
How to disable it for both?
I am using this site to test: http://web-sniffer.net/
View CommentView CommentMozilla/5.0 (X11; U; Linux x86_64; en-us) AppleWebKit/531.2+ (KHTML, like Gecko) Version/5.0 Safari/531.2+ Debian/squeeze (2.30.6-1) Epiphany/2.30.6
Check if the mod_rewrite is enabled for https? Also does the https access recognize mod rewrite rules you place in .htaccess?
View CommentView CommentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.16) Gecko/20110319 Firefox/3.6.16
I don’t have access to the httpd.conf file. It’s a shared hosting setup so I can only modify .htaccess
I inserted this code into .htaccess:
RewriteEngine on
RewriteCond %{REQUEST_METHOD} ^(TRACE|TRACK)
RewriteRule .* – [F]
I then went to this site to test:
http://web-sniffer.net/
An http request gave the desired “405 Method Not Allowed” response. An https request did not.
So, I’m stumped. Is there some way in the .htaccess to explicitly spell out rewrite conditions for https requests? Is that what is needed?
View CommentView CommentMozilla/5.0 (X11; U; Linux x86_64; en-us) AppleWebKit/531.2+ (KHTML, like Gecko) Version/5.0 Safari/531.2+ Debian/squeeze (2.30.6-1) Epiphany/2.30.6
Maybe your shared hosting provider has somehow disabled the use of .htaccess rules for the https?
View CommentView CommentCan you contact them and ask them if there are some restrictions, this might be a possible cause?
Mozilla/5.0 (Windows; U; Windows NT 5.1; es-AR; rv:1.9.0.4) Gecko/2008102920 Firefox/3.0.4
Brillante Angelegenheit. Ich finde es fabelhaft, was ihr alles Aufbaut. Ihr habt einen Fan mehr
View CommentView Comment