hi...in what situation?
iam a graduate student at Texas A&M University. Before getting the webserver global our university firewall does some wierd sort of security scanning. In the result they wanted me to disable PUT and DELETE methods. I have seen one configuration file mentioning that the PUT and DELETE methods are by default disabled. But our security scan program detects the methods being enabled. I dont understand how i can disable the methods. If i cant, i could never get my webserver up with our university regulations.
Well I know how you can disable the methods for a specific Web Application...
You declare a <security-constraint> in your deployment descriptor (web.xml) with the
<http-method> element inside your
but not for a server
Hope this helps