Penetration Testing mailing list archives
Re: http TRACE option
From: "Gleb Paharenko" <gpaharenko () gmail com>
Date: Fri, 18 Jan 2008 21:32:59 +0200
Hi. Here is a good link: http://www.cgisecurity.com/whitehat-mirror/WhitePaper_screen.pdf 2008/1/17, pentestr <pentestr () gmail com>:
Hi, what is the issue if TRACE option is enabled in web servers ? Nessus results always display it as warning. any idea... Thanks in advance. Rgds. P.T. ------------------------------------------------------------------------ This list is sponsored by: Cenzic Need to secure your web apps NOW? Cenzic finds more, "real" vulnerabilities fast. Click to try it, buy it or download a solution FREE today! http://www.cenzic.com/downloads ------------------------------------------------------------------------
-- Best regards. Gleb Pakharenko. http://gpaharenko.livejournal.com ------------------------------------------------------------------------ This list is sponsored by: Cenzic Need to secure your web apps NOW? Cenzic finds more, "real" vulnerabilities fast. Click to try it, buy it or download a solution FREE today! http://www.cenzic.com/downloads ------------------------------------------------------------------------
Current thread:
- http TRACE option pentestr (Jan 18)
- Re: http TRACE option jeffrey rivero (Jan 22)
- Re: http TRACE option Tim (Jan 22)
- Re: http TRACE option Florencio Cano (Jan 22)
- Re: http TRACE option Campbell Murray (Jan 22)
- Re: http TRACE option Chris McNab (Jan 22)
- RE: http TRACE option Maxime Ducharme (Jan 22)
- Re: http TRACE option Gleb Paharenko (Jan 22)
- Re: http TRACE option Alexander Bondarenko (Jan 22)
- Re: http TRACE option José M. Palazón Romero (Jan 22)
- Re: http TRACE option rajat swarup (Jan 22)
- RE: http TRACE option benoni.martin (Jan 22)
- Re: http TRACE option Bipin Upadhyay (Jan 22)
- Re: http TRACE option Trancer (Jan 22)