Security doubts for http_methods

Q

qba82

Verified User
Joined
Jun 26, 2018
Messages
65
Hi,
what do You think, is it safe to do it?

Code: 
cd /usr/local/directadmin/custombuild
./build set http_methods GET:HEAD:POST:PROPFIND:OPTIONS:PUT:DELETE:MKCOL:COPY:MOVE:REPORT
./build rewrite_confs

I want allow my users to use cloud apps like nextcloud, is it safe that I enable it globally?
 
Last edited:
Yes it should be safe, as the new internal default on new DirectAdmin installs is to allow all methods. If you want to allow all (wich now is internal default on new installs), then just edit options.conf and change it to be:

Code: 
http_methods=ALL
 
You must log in or register to reply here.
Back
Top