Will preventing POST requests stop the spread of a remote access trojan?
Solution 1:
This might stop some specific backdoors that only accept POST requests. But it will not stop backdoors in general.
A backdoor might accept parameters via GET request, e.g. bad.php?command=somecommand. Or it might execute commands sent via a custom HTTP Header.