Ive been trying to utilize a tag to disable PUT and Remove calls from being performed through our Apache server and also have been not successful.
Apache Version: 2.2
I'm presently adding something similar to this to within my httpd.conf file:
<Directory /> Options none AllowOverride none Order deny,allow Deny from all <Limit PUT DELETE TRACE> Order deny,allow Deny from all </Limit> </Directory>
But I've been not able to obtain a effective restart on Apache although this line is incorporated in the file. Now, I understand hardly any about Apache and ive been attempting to follow along in a few of the Apache paperwork Ive found but happen to be not successful.
Without my changes this portion of the httpd.conf appears like this:
<Directory /> Options FollowSymLinks AllowOverride None Order deny,allow Deny from all </Directory>
Any help could be appreciated. Thanks
<Directory /usr/apache/www/myserver.com/htdocs> ...bunch of useful stuff <Limit PUT DELETE> Require user terribleUnguessableUsername235452309875wesaef </Limit> </Directory>
Based on Apache paperwork available at a web link I don't have sufficient repetition to incorporate, you can't restrict TRACE utilizing a Limit directive.
If you cannot restart Apache, you will see a line within the error log suggesting what the issue is.
Nevertheless, I believe a
limit isn't permitted in the
directory, but I am unsure.
Observe that TRACE can't be limited.