Security doubts for http_methods

qba82

Verified User
Joined
Jun 26, 2018
Messages
43
Hi,
what do You think, is it safe to do it?

Code:
cd /usr/local/directadmin/custombuild
./build set http_methods GET:HEAD:POST:PROPFIND:OPTIONS:PUT:DELETE:MKCOL:COPY:MOVE:REPORT
./build rewrite_confs
I want allow my users to use cloud apps like nextcloud, is it safe that I enable it globally?
 
Last edited:

ditto

Verified User
Joined
Apr 27, 2009
Messages
2,464
Yes it should be safe, as the new internal default on new DirectAdmin installs is to allow all methods. If you want to allow all (wich now is internal default on new installs), then just edit options.conf and change it to be:

Code:
http_methods=ALL
 
Top