Version: 13.3
Revision: 12 Build 6
Kick those “TRACE & TRACK” out of your door!
Introduction: When I was testing my “HTML decode” script, I was very disappointed. The Javascript and php script didn’t work as planned and I was forced to make a harsh decision.
But, in the end, I have to delete my new article and remove it from my database. It’s for the best and I don’t want to cause a problem to your server.
That is my concern for all readers…
Anyway, this tutorial is about disabling the “TRACE and TRACK” from your server. But, don’t worry, this script is safe to use. But, you must have “mod_rewrite” enabled. If not, please consult this problem with your provider.
According to my research, the “TRACE and TRACK” are classified as “HTTP methods,” which is used in the debugging of web server – connections.
These are normally enabled by the hosting – server. But, they are a risk to the publisher, web-designer and bankers. Nevertheless, they can also compromise the security of your server, by enabling “cross-site” scripting attacks. But, there is a chance that an attacker may manipulate the “TRACE and TRACK” methods, just to intercept your visitors’ sensitive data.
So, in order to disable this “TRACE and TRACK” security attack / vulnerability, we can use HTA script to shut-it-down for the safety of your visitors.
1.] Execute your “.htaccess” file and add these lines. After that, just delete your old HTA script and upload yor modified version.
# Disable TRACE and TRACK
RewriteEngine on
RewriteCond %{REQUEST_METHOD} ^(TRACE|TRACK)
RewriteRule .* - [F]
# End of TRACE and TRACK
2.] Empty your System caches and your temorary files with CCleaner.
The application can be download, from here: ccleaner.com.
3.] Done!
Copyrighted By Lair360
