diff options
Diffstat (limited to 'taler-merchant-manual.rst')
-rw-r--r-- | taler-merchant-manual.rst | 9 |
1 files changed, 8 insertions, 1 deletions
diff --git a/taler-merchant-manual.rst b/taler-merchant-manual.rst index 4a2cc014..b1700321 100644 --- a/taler-merchant-manual.rst +++ b/taler-merchant-manual.rst @@ -959,7 +959,14 @@ Note that the above again assumes your domain name is ``example.com`` and that you have TLS configured. Note that you must add the ``https`` header unless your site is not available via TLS. -FIXME: What about 40[34] swizzling? (#6944) +For higher security (by leaking less information), you can add to the configuration: + +.. code-block:: apacheconf + + cond %{STATUS} =404 + set-status 403 + +This remaps all 404 response codes (Unavailable) to 403 (Forbidden). The above configuration(s) are both incomplete. You must still additionally set up access control! |