Last Updated: February 25, 2016
·
410
· rfsbsb

Apache: Allowing POST only when content is gzipped

#apache
#gzip
#post

Setting on Apache.

<Location /some/path>
    SetInputFilter DEFLATE
    #Set gzip var artificially to false
    SetEnvIf SetaGzipComFalse "^" gziping=0
    #If not gzip, invalidate the request
    SetEnvIf "Content-Encoding" ^((?!gzip).)*$ gziping=1
    #Defining only post as allowed method
    SetEnvIf Request_Method "POST" posting=1
    #If Gzip is enabled accept only POST otherwise doesn't accept gzip on GET method
    SetEnvIf gziping 0 !posting
    Order allow,deny
    Allow from all
    Deny from env=posting
 </Location>
#apache
#gzip
#post

Written by Rafael Silva

Say Thanks
Respond

Related protips

Create htpasswd file for nginx (without apache)

90.93K
2

Python + Django + Apache + Ubuntu

64.53K
6

Connecting to a MSSQL Server/Database With PHP on Ubuntu/Debian

62.34K
2

Have a fresh tip? Share with Coderwall community!

Post
Post a tip
Best #Apache Authors
boris
90.67K
#apache
#CSS
#Ruby
madhugb
65.2K
#apache
#JavaScript
#Open Source
shabbirh
62.09K
#apache
#Ruby
#Shell
nekwebdev
46.7K
#apache
#PHP
#Open Source
petenicholls
32.63K
#apache
#Ruby
#JavaScript
Related Tags
#apache
#gzip
#post
Sponsored by
#native_company#
#native_desc#
#native_cta#
Awesome Job
See All Jobs
Post a job for only $299
Thanks to our sponsor
Sponsored by #native_company# — Learn More
#native_title# #native_desc#
#native_cta#