On 21 Mar 2012, at 12:39, Reindl Harald wrote: > 1 out of a million servers needs TRACE enabled > > it was ALWAYS a good idea to disable ANYTHING by default what is not really > needed and this principle will stay
inetd normally ships with echo not running, but kernels usually ship with ICMP enabled. I think TRACE is more like ICMP echo than tcp/7 echo. If a distribution wants to ship a default configuration that disables TRACE, isn't that enough? The issue is naïve / lazy server admins, and almost all of those will install httpd from a distribution. -- Tim Bannister – [email protected]
smime.p7s
Description: S/MIME cryptographic signature
