geektechnica.com — One of the many ways an attacker plots their attack is by gaining as much information they can get about the server software and more specifically which version of the package they are running. Some of these packages may have very well known exploits in the wild which can be used to compromise the server.
Jul 6, 2009 View in Crawl 4
merrebornJul 7, 2009
Wow. Total non-story.Here's the summary for anyone who wants to save themselves 30 seconds scanning the article: Install mod_security and set the SecServerSignature directive.Meanwhile, if you want to actually want to learn something useful, bone up on mod_security itself:<a class="user" href="http://www.modsecurity.org/documentation/modsecurity-apache/1.9.3/html-multipage/06-special_features.html">http://www.modsecurity.org/documentation/modsecuri ...</a>
aero347Jul 7, 2009
You. f**king. Idiot.
worldgrooveJul 7, 2009
Doesn't stop anyone but beginner-script-kiddies. No real hacker was stopped because the Server Header was incorrect/missing. On linux, try running nmap -T4 -A \<IPADDRESS\> ....and there are certain common webservers so a hacker just needs to guess it. And, check out metasploit.com.
codes02Jul 7, 2009
Wait.... so instead of fixing bugs we should hide clues that they exist?Some how I think that would be a bad idea.
aero347Jul 7, 2009
Johan Marcus has lost his mind. Billy Mayes cannot rest in peace while someone as dumb as you uses that many capital letters. You've offended me and you've Billy, it's only a question of who gets to you first.
johnnysoftwareJul 12, 2009
Okay, how many undisclosed security-related bugs exist in Internet Information Server right now?It's already hidden from the public. Customers and users in the large don't know what they are. Hackers know. Hackers do not only use vulnerabilities - especially only ones the manufacturer has announced or patched.Many of them are also out there looking for them. Even non-technical users are going to find vulnerabilities by accident from time to time. They are just not computer literate at a low-enough level to recognize them.So, I can see where there is a temptation to hide information about the server you are running, especially if it is already being heavily exploited. However, you do that enugh and hackers are just going to brute fcrce the hacks in, trying one after another - and continuing to do so until one sticks to the wall. Then, move to the next server.If you live in a glass house, covering up the street number next to your door is not going to make the problems go away.