Home page logo

pen-test logo Penetration Testing mailing list archives

Re: http TRACE option
From: "Florencio Cano" <florencio.cano () gmail com>
Date: Tue, 22 Jan 2008 13:51:58 +0100

what is the issue if TRACE option is enabled in web servers ?

Here you have info about it:

"XST Strikes Back", Amit Klein, BugTraq posting, January
25th, 2006

"Cross Site Tracing", Jeremiah Grossman, WhiteHat Security
whitepaper, January 20th, 2003

This list is sponsored by: Cenzic

Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]