From c9d5fdc5c70091c88134536435553bb5a0f3743f Mon Sep 17 00:00:00 2001
From: Thien-Thi Nguyen <ttn@gnuvola.org>
Date: Wed, 11 Aug 2021 07:19:46 -0400
Subject: replace apache FIXME w/ config frag + blurb

https://docs.trafficserver.apache.org/en/latest/admin-guide/plugins/header_rewrite.en.html
---
 taler-merchant-manual.rst | 9 ++++++++-
 1 file changed, 8 insertions(+), 1 deletion(-)

(limited to 'taler-merchant-manual.rst')

diff --git a/taler-merchant-manual.rst b/taler-merchant-manual.rst
index 4a2cc014..b1700321 100644
--- a/taler-merchant-manual.rst
+++ b/taler-merchant-manual.rst
@@ -959,7 +959,14 @@ Note that the above again assumes your domain name is ``example.com`` and that
 you have TLS configured.  Note that you must add the ``https`` header unless
 your site is not available via TLS.
 
-FIXME: What about 40[34] swizzling?  (#6944)
+For higher security (by leaking less information), you can add to the configuration:
+
+.. code-block:: apacheconf
+
+       cond %{STATUS} =404
+       set-status 403
+
+This remaps all 404 response codes (Unavailable) to 403 (Forbidden).
 
 The above configuration(s) are both incomplete. You must still additionally
 set up access control!
-- 
cgit v1.2.3