Apache Rewrite Security Question
Hello all.
I'm using Nessus to scan our apache installation for vulns and consistently get a warning about our mod_rewrite rules allowing trace/track debugging.
The rewrite rule suggested is:
RewriteRule .* - [F]
This is what we use:
RewriteRule ^/(.*)$ - [F]
Does this not perform the same function?
Thanks in advance...
|