Mercurial > hg > nginx

diff src/http/ngx_http_request.c @ 1151:b1ebd03de948

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
disable TRACE method
author Igor Sysoev <igor@sysoev.ru>
date Fri, 30 Mar 2007 18:59:26 +0000
parents 03f1133f24e8
children 6e2216ad2c87
line wrap: on
line diff
--- a/src/http/ngx_http_request.c
+++ b/src/http/ngx_http_request.c
@@ -1267,6 +1267,13 @@ ngx_http_process_request_header(ngx_http
         return NGX_ERROR;
     }
 
+    if (r->method & (NGX_HTTP_TRACE)) {
+        ngx_log_error(NGX_LOG_INFO, r->connection->log, 0,
+                      "client sent TRACE method");
+        ngx_http_finalize_request(r, NGX_HTTP_NOT_ALLOWED);
+        return NGX_ERROR;
+    }
+
     if (r->headers_in.transfer_encoding
         && ngx_strstr(r->headers_in.transfer_encoding->value.data, "chunked"))
     {