Apache TraceEnable on
tarvid at ls.net
Wed Aug 4 13:34:01 UTC 2010
+ Allowed HTTP Methods: GET, HEAD, POST, OPTIONS, TRACE
+ OSVDB-877: HTTP TRACE method is active, suggesting the host is vulnerable
Include /etc/apache2/conf.d/ which has
security.dpkg-dist which has
but TRACE is on
and why should OPTIONS be on too?
Rev. Jim Tarvid, PCA
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the ubuntu-server