RE: plugging old IIS FTP holes

Has anyone been successful in removing the "Microsoft FTP Service" part of the banner? Or does anyone know of a way to do this?

Thanks

Stu

-----Original Message-----
From: Lee Evans [mailto:lee@vital.co.uk] Sent: 21 July 2003 15:11
To: 'Douglas Schlenker'; focus-ms@securityfocus.com Subject: RE: plugging old IIS FTP holes

Note the nessus information:

" *** Warning : we could not verify this vulnerability.

• Nessus solely relied on the banner of this server"

The patch in question is superseeded by / included in SP3. You don't need to
apply the separate patch, you are already protected against the vulnerability.

If you want to stop nessus reporting this, use the Internet Services Manager
to change the banner of the FTP service.

Do you need help?

In addition to our free technical library, Pantek provides professional IT services to companies who utilize Open Source software: Learn more about Pantek's Technical Support offerings Place an order for 24/7/365 Technical Support here Learn more about Pantek, who we are, and what we do Chat with a Live Operator Related securityfocus.com Links bugtraq certification focus-bsd focus-ids focus-ih focus-linux focus-ms focus-sun focus-unix-other focus-virus forensics incidents libnet linux-secnews ms-secnews pen-test secpapers secprog sectools secureshell security-basics securityjobs sf-news vuln-dev webappsec Request more information about Pantek

Regards
Lee

-- 
Lee Evans
http://www.leevans.org
> -----Original Message-----




------------------------------------------------------------------------
-----
------------------------------------------------------------------------
------



-----------------------------------------------------------------------------
------------------------------------------------------------------------------