Forum Discussion

Nimbostratus

Aug 09, 2014

AlertLogic Vulnerability : "" Web Server Allows cross-Site Tracing"" : Suggestion Needed

Hi Team, Keeping in mind that GET and POST methods are used to request information from a web server, but as the HTTP protocol allows several others including HEAD, PUT, DELETE, TRACE, OPTIONS, ...

Historic F5 Account

Aug 10, 2014

Parveez:

This will not do anything to any request where the Method is included in the datagroup.

If you capture the requests on the browser side using Fiddler or HTTPwatch or similar tools, you will be able to tell if there are any other HTTP Methods you may want to allow.

HTH.

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)