-----Original Message----- From: Michael Appeldorn [mailto:appeldorn@codixx.de] Sent: Wednesday, March 06, 2002 1:49 PM To: suse-security@suse.com; Yarrel Subject: Re: RE: RE: [suse-security] Apache version
[snipped]
Most of the the activity in your logs, including hack/exploit attempt are from scriptkiddies who couldn't care less what version your running. The just throw their cookbooks at your IP/firewall regardless.
So what about their scripts. Dont they ask the server 4 version to check certain vuln and will they fail ever if the get the wrong one.
If the server´s vulnerable, the script should theoretically work, forged header or not. If one were to fire script upon script at a server, one is bound to succeed in the end IMHO.
But anyway, just a point of view and it'snt necessary to convince me.
I know :o)
Yours Michael Appeldorn
Yarrel