|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: bdoctor
ps-ax.comDate: Mon Jul 02 2001 - 23:28:24 CDT
I probably took the wrong way on this, but the diff shows what I did. It shows as
"Unknown".
diff -u -r ./src/include/httpd.h /home/bdoctor/apache_1.3.20/src/include/httpd.h
--- ./src/include/httpd.h Tue May 15 09:58:46 2001
+++ /home/bdoctor/apache_1.3.20/src/include/httpd.h Thu Jun 14 11:53:31 2001
-433,11 +433,16
#define SERVER_BASEVENDOR "Apache Group"
#define SERVER_BASEPRODUCT "Apache"
#define SERVER_BASEREVISION "1.3.20"
-#define SERVER_BASEVERSION SERVER_BASEPRODUCT "/" SERVER_BASEREVISION
+/* #define SERVER_BASEVERSION SERVER_BASEPRODUCT "/" SERVER_BASEREVISION */
+#define SERVER_BASEVERSION "Unknown"
+
+/* #define SERVER_PRODUCT SERVER_BASEPRODUCT */
+#define SERVER_PRODUCT "Unknown"
+/* #define SERVER_REVISION SERVER_BASEREVISION */
+#define SERVER_REVISION "Unknown"
+/* #define SERVER_VERSION SERVER_PRODUCT "/" SERVER_REVISION */
+#define SERVER_VERSION "Unknown"
-#define SERVER_PRODUCT SERVER_BASEPRODUCT
-#define SERVER_REVISION SERVER_BASEREVISION
-#define SERVER_VERSION SERVER_PRODUCT "/" SERVER_REVISION
enum server_token_type {
SrvTk_MIN, /* eg: Apache/1.3.0 */
SrvTk_OS, /* eg: Apache/1.3.0 (UNIX) */
-457,7 +462,8
#define SERVER_PROTOCOL "HTTP/1.1"
#ifndef SERVER_SUPPORT
-#define SERVER_SUPPORT "http://www.apache.org/"
+/* #define SERVER_SUPPORT "http://www.apache.org/" */
+#define SERVER_SUPPORT "Unknown"
#endif
#define DECLINED -1 /* Module declines to handle */
diff -u -r ./src/main/http_core.c /home/bdoctor/apache_1.3.20/src/main/http_core
.c
--- ./src/main/http_core.c Fri Mar 9 03:10:25 2001
+++ /home/bdoctor/apache_1.3.20/src/main/http_core.c Thu Jun 14 11:55:49 2001
-2728,7 +2728,7
ap_server_tokens = SrvTk_MIN;
}
else if (!strcasecmp(arg, "Full")) {
- ap_server_tokens = SrvTk_FULL;
+ ap_server_tokens = SrvTk_MIN;
}
else if (!strcasecmp(arg, "Prod") || !strcasecmp(arg, "ProductOnly")) {
ap_server_tokens = SrvTk_PRODUCT_ONLY;
diff -u -r ./src/main/http_main.c /home/bdoctor/apache_1.3.20/src/main/http_main
.c
--- ./src/main/http_main.c Thu Apr 12 11:49:26 2001
+++ /home/bdoctor/apache_1.3.20/src/main/http_main.c Thu Jun 14 11:57:19 2001
-375,7 +375,7
static int version_locked = 0;
/* Global, alas, so http_core can talk to us */
-enum server_token_type ap_server_tokens = SrvTk_FULL;
+enum server_token_type ap_server_tokens = SrvTk_MIN;
/*
* This routine is called when the pconf pool is vacuumed. It resets the
-385,7 +385,7
static void reset_version(void *dummy)
{
version_locked = 0;
- ap_server_tokens = SrvTk_FULL;
+ ap_server_tokens = SrvTk_MIN;
server_version = NULL;
}
-----------------------------------------
-brad
[Charset iso-8859-1 unsupported, filtering to ASCII...]
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Hi,
>
> I am just embarking on a security project where I have been asked to
> harden three Apache webservers. To start with I would like to modify
> banner information for Apache.
>
>
> Any ideas on how I would active this ?
>
>
> Thanks in advance.
>
> Regards,
>
> Alex Balayan
> Regional Security Consultant
> NetTasking Inc.
> 371 Beach Road
> #13-05 KeyPoint Tower
> Singapore 199597
> Ph: (+65) 396 0110
> Fax: (+65) 396 0502
> Mobile: (+65) 9675 8613
> Email: alex.balayannettasking.com
> Http: www.nettasking.com
> "Delivering Business Availability"
>
>
> -----BEGIN PGP SIGNATURE-----
> Version: PGPfreeware 7.0.3 for non-commercial use <http://www.pgp.com>
>
> iQA/AwUBO2jJGPLEmhiSVv5+EQLTPACg3OH4WtYaam9pdVR9qE7jxSG7SIwAoNyE
> A8MlCIitdxPfDgEVViOgoP1O
> =cix8
> -----END PGP SIGNATURE-----
>
>
[Attachment, skipping...]
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]