subject:"OT Re\: Restrict http methods"

Re: OT Re: Restrict http methods

2010-05-15 Thread Pid

On 15/05/2010 12:25, André Warnier wrote: > Pid wrote: >> On 14/05/2010 19:43, André Warnier wrote: >>> Mark Thomas wrote: >>> ... >>> TRACE & PUT could be tested safely but it is hard to test DELETE without causing some damage if it is permitted. >>> Well, you could DELETE http

Re: OT Re: Restrict http methods

2010-05-15 Thread André Warnier

Pid wrote: On 14/05/2010 19:43, André Warnier wrote: Mark Thomas wrote: ... TRACE & PUT could be tested safely but it is hard to test DELETE without causing some damage if it is permitted. Well, you could DELETE http://localhost/some-highly-unlikely-url and check if you get a 404, couldn't y

OT Re: Restrict http methods

2010-05-15 Thread Pid

On 14/05/2010 19:43, André Warnier wrote: > Mark Thomas wrote: > ... > >> >> TRACE & PUT could be tested safely but it is hard to test DELETE without >> causing some damage if it is permitted. >> > Well, you could DELETE http://localhost/some-highly-unlikely-url > and check if you get a 404, could