VPS主机-服务器合租-独立服务器-安全设置(7)

PROPFIND

PROPPATCH

MKCOL

DELETE

PUT

COPY

MOVE

LOCK

UNLOCK

OPTIONS

SEARCH

[DenyHeaders]

;

; The following request headers alter processing of a

; request by causing the server to process the request

; as if it were intended to be a WebDAV request, instead

; of a request to retrieve a resource.

;

Translate:

If:

Lock-Token:

Transfer-Encoding:

[AllowExtensions]

;此下为允许的扩展名，但必须建立在[DenyExtensions]中扩展名加“；”的前提下，即忽略的前提下]

; Extensions listed here are commonly used on a typical IIS server.

;

; Note that these entries are effective if "UseAllowExtensions=1"

; is set in the [Options] section above.

;

.htm

.html

.txt

.jpg

.jpeg

.gif

.asp

.php

.aspx

[DenyExtensions]

;此下全部为不允许的扩展名

; Extensions listed here either run code directly on the server,

; are processed as scripts, or are static files that are

; generally not intended to be served out.

;

; Note that these entries are effective if "UseAllowExtensions=0"

; is set in the [Options] section above.

;

; Also note that ASP scripts are denied with the below

; settings. If you wish to enable ASP, remove the

; following extensions from this list:

; .asp

; .cer

; .cdx

; .asa

;

; Deny ASP requests [这里是不允许访问的扩展名，可以加“；”号去掉，然后[AllowExtensions]下添加允许]

;.asp

.cer

.cdx

;.asa

; Deny executables that could run on the server

.exe

.bat

.cmd

.com

; Deny infrequently used scripts

.htw ; Maps to webhits.dll, part of Index Server

.ida ; Maps to idq.dll, part of Index Server

.idq ; Maps to idq.dll, part of Index Server

.htr ; Maps to ism.dll, a legacy administrative tool

.idc ; Maps to httpodbc.dll, a legacy database access tool

.shtm ; Maps to ssinc.dll, for Server Side Includes

.shtml ; Maps to ssinc.dll, for Server Side Includes

.stm ; Maps to ssinc.dll, for Server Side Includes

.printer ; Maps to msw3prt.dll, for Internet Printing Services

.cer

.cdx

.mdb

; Deny various static files

.ini ; Configuration files

.log ; Log files

.pol ; Policy files

.dat ; Configuration files

[DenyUrlSequences]

.. ; Don't allow directory traversals

./ ; Don't allow trailing dot on a directory name

\ ; Don't allow backslashes in URL

: ; Don't allow alternate stream access

% ; Don't allow escaping after normalization

& ; Don't allow multiple CGI processes to run on a single request