Disclaimer: This information is posted as-is and the content should be referenced at your own risk
Special thanks to H_Patel for authoring this article!
This article describes the steps to disable the HTTP trace option in the WAF module as it is by default enabled in the UTM. The steps below are needed if there is an issue with PCI compliance which affects Vulnerability CVE-2004-2320 and CVE-2007-3008.
Using the above steps, you should be able to disable the HTTP trace in the Reverse proxy module of Sophos UTM. You can always Open a Support Case to contact Sophos Technical Support if you need any assistance.
Have a suggestion for a new video? Please visit our User Assistance forum on the Community to share your idea! https://community.sophos.com/community-chat/f/user-assistance-feedback
Thanks, Jaydeep. Seeing this, I would prefer to make the change via a single command:
cc reverse_proxy trace_enabled 0
Cheers - BobPS Please have the author of the KB article add an exit to the cc commands.
Thanks. That's a really good suggestion. I will start working on it.