On Fri, Jun 08, 2001 at 17:37 -0500, JW wrote:
By default apache shows it's "name and number" on 404 pages (probably others too):
Apache/1.3.14 Server at asdf.com Port 80
I'd like to get rid of that. What's the proper way to remove that? I'd like to have it just give the webmaster@ email address without divulging any info
Dumb question: What does it buy you? That's called toying with banners and falls into the security by obscurity category. If you change banners, there's still the possibility of fingerprinting a service. If you believe in this to work for you, make sure you change the HTTP/1.x response headers, too. BTW: you did have a look at the server's configuration file, didn't you? Because the settings are in there and are very well documented ... If you think about it again, there's absolutely no benefit in such actions. Hiding the version doesn't make the builtin and configured bugs disappear. When kids don't know what version of a service is running, they simply try nudging with all the tools they have available. Many of them aren't even able to tell one OS from another. It's been funny to me in the beginning and has become boring by now to see them running Apache and IIS exploits plus all the Windows specific stuff against a publicfile server (which definitely only runs on UNIX flavours). And there have been numerous discussions about "don't believe in banners, try for all the bugs since some admins think they can fool you this easily". The baseline is: As soon as you provide a service on the net you will get probed and nudged. Make sure you use decent software and configure it correctly. Everything else is fooling yourself if you believe it's a solution and not just a hack. virtually yours 82D1 9B9C 01DC 4FB4 D7B4 61BE 3F49 4F77 72DE DA76 Gerhard Sittig true | mail -s "get gpg key" Gerhard.Sittig@gmx.net -- If you don't understand or are scared by any of the above ask your parents or an adult to help you.