Tag

httpd.conf Archives | Activo

Security Tip: Disable the HTTP TRACE method in Apache

Ron Peled 10:57 am

Security Tip: Disable the HTTP TRACE method in Apache

By | Magento, Web Development

If you are running a multi-million dollar eCommerce site you may want to make sure that the HTTP TRACE method is disabled. By default this method is enabled in Apache, and if enabled it allows for Cross Site Tracing Issue and potentially giving the option to a hacker to steal your cookie information from a specific website so later they can impose as you.

Read More