[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] How to create bogus bannerring for ftp, http and sendmail

Subject: Re: [cobalt-security] How to create bogus bannerring for ftp, http and sendmail
From: "Cobalt" <cobalt@xxxxxxxxxx>
Date: Sat, 26 May 2001 10:25:25 +0200
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

> Just wondering if anyone could give me a tip on how to prevent
scanning
> software as Nessus to get to see the real version of my servers I
have
> running (ftp, www, sendmail).
>
> NESSUS recommends: "We recommend that you configure your web server
to
> return
> bogus versions, so that it makes the cracker job more difficult"
>
> The remote web server type is :
> Apache/1.3.6 (Unix) mod_perl/1.21 mod_ssl/2.2.8 OpenSSL/0.9.2b

For Apache, use 'ServerTokens Min' (w/o quotes) at bottom of file
'srm.conf' to get only 'Apache/1.3.6' if you upgrade to 1.3.12 or
up use 'ServerTokens Prod' to get only 'Apache'. Remember, you need
to do this change for admin and web server.

R.B.

Follow-Ups:
- Re: [cobalt-security] How to create bogus bannerring for ftp, http and sendmail
  - From: Gerald Waugh

References:
- [cobalt-security] How to create bogus bannerring for ftp, http and sendmail
  - From: Rob van Eijk

Prev by Date: Re: [cobalt-security] flaky DNS
Next by Date: [cobalt-security] /tmp/-v ?
Previous by thread: [cobalt-security] How to create bogus bannerring for ftp, http and sendmail
Next by thread: Re: [cobalt-security] How to create bogus bannerring for ftp, http and sendmail

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index