PCI Audits often reveal TRACE & TRACK as issues that must be handled before the website can be considered PCI compliant. If you are running apache 2.x, the following directives will disable TRACE & TRACK functionality. This change needs to be made in /etc/httpd/conf/httpd.conf:ServerTokens OSTraceEnable OFF The Mod_rewrite directives below need to be added to all paragraphs in […]