|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Paul Hart (hart
orem.verio.net)Date: Fri Jul 06 2001 - 18:29:54 CDT
On Fri, 6 Jul 2001, Laurence Berland wrote:
> As much as it's not all that good in terms of security, changing version
> strings will keep the kiddies from ever bothering, which is good just
> because it stops them from filling your logs quite as much...
You sure about that? I know of many web servers on a UNIX systems that
fully advertise their Apache-on-UNIX banner messages and still receive
numerous attempts to break in using exploits for Microsoft's IIS. That's
not to mention the repeated attempts to break in to FreeBSD or Solaris
machines using a exploit for LPRng on Linux, either.
Removing or falsifying version strings may fool some rational attackers,
but it seems many kiddies will ram the exploit against ANY machine that's
listening on port 80 regardless of the operating system it's running or
what the banner messages say.
Paul Hart
-- Paul Robert Hart hartJul ner lbh ernqvat guvf?
To Unsubscribe: send mail to majordomo
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]