From b8f83bb211e53337f38332f6527a6569d0b51710 Mon Sep 17 00:00:00 2001
From: Thomas Zilio <Dasc3er@users.noreply.github.com>
Date: Thu, 21 Jun 2018 12:49:09 +0200
Subject: [PATCH] Disabilitato HTTP TRACE

---
 .htaccess | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/.htaccess b/.htaccess
index dc74cd1d6..866f9691b 100644
--- a/.htaccess
+++ b/.htaccess
@@ -58,6 +58,10 @@
     RewriteRule ^node_modules/ - [F,L]
     RewriteRule ^vendor/ - [F,L]
 
+    # Disable HTTP TRACE
+    RewriteCond %{REQUEST_METHOD} ^TRACE
+    RewriteRule .* - [F]
+
     # Prevent hacks
 	# proc/self/environ? no way!
 	RewriteCond %{QUERY_STRING} proc/self/environ [OR]