Hosting Provided By

Re: About web server version

From: ystar m <ystar.m(at)laposte.net>
Date: Mon Apr 28 2003 - 05:40:45 EDT

('binary' encoding is not supported, stored as-is)
In-Reply-To: <001501c30c3e$a5f21fc0$1500020a@bigdog>

>You will need to modify the source code. Unfortunately
that won't really
>fool anyone. Error messages, header formats/etc all
provide plenty of
>information. Check out Rain.Forest.Puppy's
presentation on this and his
>whisker tool available at wiretrip.net.
attacks I have seen are
>not targeted, they simply take a shotgun approach, or
if it's a worm it just
>blasts out at everyone. Much better to spend the time
and effort keeping
>Apache up to date.

What you said is true but the problem that we use an rpm version for apache.
Eliminating this information (apache version) for avoiding target attacks that can be done on a vulnerable version when the administrator has not discover this vulnerability, so this eliminates some cases or kinds of skilled attackers
Thanks for informations that you have provided Received on Mon Apr 28 11:04:57 2003

This message: [ Message body ]
Next message: Jeremiah Grossman: "Re: About web server version"
Previous message: Cyrill Osterwalder: "Re: Q: Howto - SSL Tunnel for End-to-End encryption"
In reply to Kurt Seifried: "Re: About web server version"
Next in thread: Jeremiah Grossman: "Re: About web server version"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 14:07:50 EDT