	[x] Posted via EE Mobile
	Search, ask, and monitor your questions on the go with EE Mobile. Visit Experts Exchange from your mobile device and never be out of touch again.

04/03/2009 at 10:03AM PDT, ID: 24293035

	[x] Attachment Details

[x]

The Solution Rating System

With so many solutions, how can you tell which solutions are most likely to help you and which ones are not? To provide you with a tool to use, we rate our solutions based on various elements that most accurately determine if a solution is a quality solution. To explain what factors affect the solution rating, here are the elements we take into consideration when formulating our solution rating.

The Grade of the Solution
The Zone Rank of the Expert Providing the Solution
The Number of Author and Expert Comments
The Number of Experts Contributing
The Feedback of the Community

Your Input Matters
Because of the way the system is set up, the most important variable in this equation is you. As a member of Experts Exchange, you are able to cast your vote on the quality of the solutions in regard to how complete, accurate, helpful and easy to understand each solution is. When you provide your feedback, each rating is adjusted accordingly. So, if you see a solution that has a poor rating that you think is a good solution, let us know by rating it. As you do, the rating will be adjusted and will become more accurate for other members of our site.

If you have any suggestions that you would like to make for our rating system, please ask a question in the Suggestions Zone of Community Support.

Thank you!

6.3

How to disable the HTTP TRACE /TRACK method to remove this Website Vulnerabilities for IIS/Apache

Asked by Brijeshk9 in Microsoft IIS Web Server, Apache Web Server

The remote web server supports the TRACE and/or TRACK methods. TRACE and TRACK are HTTP methods which are used to debug web server connections. The HTTP TRACE method, as described in RFC 2516 of the HTTP 1.1 standard, is used for debugging and network analysis purposes. When enabled, a remote attacker could leverage this functionality with known cross-site scripting and other Web browser vulnerabilities, to obtain sensitive information about the Web server, including server cookies and authentication information. The attacker could then use this information to launch further attacks against the affected Web server

View the Solution FREE for 30 Days

20091028-EE-VQP-88 - Hierarchy / EE_QW_3_20080625

1. meverest 360,341
2. cj_1969 314,665
3. tedbilly 239,395
4. servoadmin 207,663
5. Mestha 192,372
6. wolfman... 159,464
7. Paranorm... 114,690
8. Jones911 100,887
9. Chris-Dent 72,772
10. demazter 71,590
11. Tray896 62,635
12. abel 46,150
13. carrzkiss 45,175
14. cs97jjm3 43,430
15. zephyr_hex 43,308
16. RubalJ 41,850
17. Dave_Dietz 39,000
18. tigermatt 38,725
19. dstewartjr 33,858
20. alanhardisty 29,700
21. MPECSInc 28,497
22. lastlostlast 27,643
23. ged325 27,500
24. DarthSonic 26,075
25. aibusines... 25,625

1. meverest 1,973,814
2. Dave_Dietz 1,618,822
3. tedbilly 664,451
4. cj_1969 445,936
5. servoadmin 290,926
6. Chris-Dent 259,654
7. humeniuk 244,493
8. Sembee 225,808
9. RubalJ 195,728
10. Mestha 192,372
11. TechSoEasy 190,974
12. dnojcd 170,736
13. wolfman... 166,742
14. harperse 155,055
15. DireOrbAnt 155,014
16. Paranorm... 154,565
17. alimu 149,731
18. AndresM 142,147
19. Tray896 122,416
20. Jones911 119,877
21. Silvers5 118,933
22. Wadski 114,220
23. tigermatt 114,101
24. zephyr_hex 103,613
25. fz2hqs 98,692

How to disable the HTTP TRACE /TRACK method to remove this Website Vulnerabilities for IIS/Apache

Asked by Brijeshk9 in Microsoft IIS Web Server, Apache Web Server

About this solution