1. Home
  2. Forums Index
  3. Server Side / Apache Web Server 2:15 pm May 2, 2026

Forum Moderators: phranque

Message Too Old, No Replies

PUT DELETE enabled by default?

         

frist44

4:08 pm on Feb 5, 2009 (gmt 0)

10+ Year Member



I have read that these methods aren't enabled unless you load mod_dav, is this true?

We have a simple web server hosting up PHP, and just want to make sure those commands can not be run.

thanks.

jdMorgan

6:11 pm on Feb 5, 2009 (gmt 0)

WebmasterWorld Senior Member 10+ Year Member



This is determined by your hosting company's "default" server configuration.

Without DAV, those HTTP methods may not actually *do* anything, but you might want to restrict them anyway. See the Deny directive in Apache mod_access and the <Limit> container described in the Apache core documentation.

Jim

frist44

8:55 pm on Feb 5, 2009 (gmt 0)

10+ Year Member



We host our own machines. I have added the Limit directive, so I guess that should protect it worst case right?

jdMorgan

9:19 pm on Feb 5, 2009 (gmt 0)

WebmasterWorld Senior Member 10+ Year Member



<Limit> isn't a directive, it's a qualifier container. I can't answer your question without seeing the code.

Jim

 

Join The Conversation

Moderators and Top Contributors

Hot Threads This Week

  1. Home
  2. Forums Index
  3. Server Side / Apache Web Server 2:15 pm May 2, 2026