diff options
author | Thien-Thi Nguyen <ttn@gnuvola.org> | 2021-08-11 07:19:46 -0400 |
---|---|---|
committer | Thien-Thi Nguyen <ttn@gnuvola.org> | 2021-08-11 07:19:46 -0400 |
commit | c9d5fdc5c70091c88134536435553bb5a0f3743f (patch) | |
tree | 83bc113f1cb9673919dcddb945696cd67e7a7b13 /taler-merchant-manual.rst | |
parent | 64ae10dec8673c8b41f18be36ec8043a130b7c66 (diff) | |
download | docs-c9d5fdc5c70091c88134536435553bb5a0f3743f.tar.gz docs-c9d5fdc5c70091c88134536435553bb5a0f3743f.tar.bz2 docs-c9d5fdc5c70091c88134536435553bb5a0f3743f.zip |
replace apache FIXME w/ config frag + blurb
https://docs.trafficserver.apache.org/en/latest/admin-guide/plugins/header_rewrite.en.html
Diffstat (limited to 'taler-merchant-manual.rst')
-rw-r--r-- | taler-merchant-manual.rst | 9 |
1 files changed, 8 insertions, 1 deletions
diff --git a/taler-merchant-manual.rst b/taler-merchant-manual.rst index 4a2cc014..b1700321 100644 --- a/taler-merchant-manual.rst +++ b/taler-merchant-manual.rst @@ -959,7 +959,14 @@ Note that the above again assumes your domain name is ``example.com`` and that you have TLS configured. Note that you must add the ``https`` header unless your site is not available via TLS. -FIXME: What about 40[34] swizzling? (#6944) +For higher security (by leaking less information), you can add to the configuration: + +.. code-block:: apacheconf + + cond %{STATUS} =404 + set-status 403 + +This remaps all 404 response codes (Unavailable) to 403 (Forbidden). The above configuration(s) are both incomplete. You must still additionally set up access control! |