|
security
newsgroups
|
|||||||||||||||||||||||
|
|||||||||||||||||||||||
http trace methodI had a security audit, and following was found:
"http trace method enabled" Could somebody explain to me how to remediate this and what consequences if any i might have. Thank you. You on IIS 5 ? by default IIS 6.0 - trace is disabled.
For IIS 5 or etc. Get urlscan to block it. -- Show quoteHide quoteRegards, Bernard Cheah http://www.iis.net/ http://www.iis-resources.com/ http://msmvps.com/blogs/bernard/ "AG" <A*@discussions.microsoft.com> wrote in message news:D20B4051-1A96-4EA6-B75B-BB11DC411997@microsoft.com... >I had a security audit, and following was found: > "http trace method enabled" > Could somebody explain to me how to remediate this and what consequences > if > any i might have. Thank you. 
Other interesting topics
Is posting from http to https secure?
Web site can't be browsed when logging out from IISv6.0 Server Multiple websites in one IIS with Integrated Windows Authentication SSLv3 with certificate issued by Intermediate certificae authority Cannot get logon prompted on web page on one machine Problem with Impersonation / Delegation How do you get rid of IIS Anonymous Event Logs? Create Virtual Directory from DMZ to LAN firefox 1.5 & iis6.0 Password protecting a single page on IIS |
|||||||||||||||||||||||
