users@glassfish.java.net

disable HTTP TRACE

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

From: Josh Daynard <josh_at_sun.com>
Date: Mon, 10 Nov 2008 11:23:33 -0500

Hello,

I'm sure this has been asked and answered before, but I can't find
anything in our internal mailfinder so I apologize in advance.

I'm at a customer who is deploying glassfish and their security folks
have alerted on the fact that the HTTP TRACE method is enabled. How
would I go about disabling this method, or is there a good reason that
I can provide for it not being a security risk?

Thanks,
Josh

This message: [ Message body ]
Next message: glassfish_at_javadesktop.org: "Re: How does an explicit EntityManager.lock() call prevent dirty reads in JPA"
Previous message: glassfish_at_javadesktop.org: "How to change web service listening address"
Next in thread: Jeanfrancois Arcand: "Re: disable HTTP TRACE"
Reply: Jeanfrancois Arcand: "Re: disable HTTP TRACE"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]