How to Disable TRACE Method on Apache

Problems with the Windows version of XAMPP, questions, comments, and anything related.

How to Disable TRACE Method on Apache

Postby doctorli » 31. January 2007 03:05

The Vulnerability Scanner Software said:
HTTP TRACE method is enabled on this web server. In the presence of other cross-domain vulnerabilities in web browsers, sensitive header information could be read from any domains that support the HTTP TRACE method.

The impact of this vulnerability
Attackers may abuse HTTP TRACE functionality to gain access to information in HTTP headers such as cookies and authentication data.

But who knows how to Disable TRACE Method ?
Posts: 4
Joined: 25. July 2005 19:01

Postby Wiedmann » 31. January 2007 03:30

AF Moderator
Posts: 17106
Joined: 01. February 2004 12:38
Location: Stuttgart / Germany

Return to XAMPP for Windows

Who is online

Users browsing this forum: No registered users and 81 guests