-----Original Message----- From: Host Master [mailto:tech@codefoundry.com] Sent: Wednesday, March 06, 2002 9:29 PM To: suse-security@suse.com Subject: Re: [suse-security] Apache version
[snipped]
Why ?
Thats a bit like asking an army why they camoflague their tanks if practice shows the enemy will blanket bomb an area using an aerial attack.
Funny analogy. If your troops were dug in deep enough, you wouldn´t need the camouflage.
Script kiddies when they get in tend to just deface your site and say hi to their mates. Serious attacks come from those planning to steal corporate information who wont announce their exploits, and they typically carefully plan their attacks by carefully assessing their enemy and what they are up against. Camoflauge, while not adding security per se, is a useful tool against these. More useful would be to miss lead them by setting the headers to say somthing credible like....
[snipped MS header] Sure. However, the task of enumerating a system, header forged or not are trivial. The patient and skilled attacker will see through this imediately.
I believe there´s other ways of getting Apache to reveal it´s version too, so this wont work.
should probably read: "...so this wont work all the time". The camoflague will work all the time.
True /Yarrel