Re: cloaking the web server signature
From: sharky (sharky_at_nospam.com)
Date: Mon, 5 May 2003 07:44:47 -0700
Thanks, Keith, good info.
Do you know where I can change the OS that's sent in the HTTP reply?
Can you recommend a decent fingerprinting tool I can use to check my work?
Thanks for your time.
"Keith W. McCammon" <email@example.com> wrote in message
> > Does anyone know how to hide what type of web server I'm running? I
> > out you can manually change the service name (ie; display "Apache"
> > of "IIS 5.0") in URLScan, but is there a registry key where you can
> > the web server header to display "Solaris" or something else as the OS?
> The HTTP server header is a single value--if the OS is included in the
> server response, then it can be changed/removed in the same place. And,
> what it's worth, sending a deceptive OS in the header won't typically do
> much good anyway. There are a number of trivial ways to reliably
> fingerprint an OS, and most experienced folks will go straight for these,
> opposed to relying on easily crafted information.