From: Joe Orton Date: Thu, 30 Jun 2016 07:24:15 +0000 (+0000) Subject: Update transformations. X-Git-Tag: 2.4.23~9 X-Git-Url: https://granicus.if.org/sourcecode?a=commitdiff_plain;h=c82d63ace89b2ee56052a41747a6144a4703ffbf;p=apache Update transformations. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1750753 13f79535-47bb-0310-9956-ffa450edef68 --- diff --git a/docs/manual/mod/core.html.en b/docs/manual/mod/core.html.en index c579210848..ae769061a5 100644 --- a/docs/manual/mod/core.html.en +++ b/docs/manual/mod/core.html.en @@ -4437,16 +4437,18 @@ certain events before failing a request

Finally, for testing and diagnostic purposes only, request bodies may be allowed using the non-compliant TraceEnable extended directive. The core (as an origin server) will - restrict the request body to 64k (plus 8k for chunk headers if + restrict the request body to 64Kb (plus 8Kb for chunk headers if Transfer-Encoding: chunked is used). The core will reflect the full headers and all chunk headers with the response - body. As a proxy server, the request body is not restricted to 64k.

+ body. As a proxy server, the request body is not restricted to 64Kb.

Note

-

Despite claims to the contrary, TRACE is not - a security vulnerability, and there is no viable reason for - it to be disabled. Doing so necessarily makes your server - noncompliant.

+ +

Despite claims to the contrary, enabling the TRACE + method does not expose any security vulnerability in Apache httpd. + The TRACE method is defined by the HTTP/1.1 + specification and implementations are expected to support it.

+
diff --git a/docs/manual/mod/core.xml.de b/docs/manual/mod/core.xml.de index d81d57ddc0..758585ace6 100644 --- a/docs/manual/mod/core.xml.de +++ b/docs/manual/mod/core.xml.de @@ -1,7 +1,7 @@ - + + + diff --git a/docs/manual/mod/core.xml.ja b/docs/manual/mod/core.xml.ja index b2a33001b5..eb1743a4d5 100644 --- a/docs/manual/mod/core.xml.ja +++ b/docs/manual/mod/core.xml.ja @@ -1,7 +1,7 @@ - + +