Re: IIS Version and Interanl IP being Revealed
- From: "David Wang [Msft]" <someone@xxxxxxxxxxxxxxxxxxxx>
- Date: Wed, 29 Mar 2006 19:13:37 -0800
http://blogs.msdn.com/david.wang/archive/2006/03/29/Silly_Security_Scans.aspx
There is no way to control the Server: header. URLScan makes a reasonable
attempt but will not set/remove it in all cases. And we are fine with that
because this is not a security issue, per the rationale from the blog entry.
--
//David
IIS
http://blogs.msdn.com/David.Wang
This posting is provided "AS IS" with no warranties, and confers no rights.
//
"DoktorWho" <DoktorWho@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:9780DC83-3923-4385-93A5-AD81B0AFEF36@xxxxxxxxxxxxxxxx
Thanks I will try that.
"Funkadyleik Spynwhanker" wrote:
"DoktorWho" <DoktorWho@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:DD36D2B3-9ECB-41A1-90EA-8644A6377093@xxxxxxxxxxxxxxxx
During a recent security scan of our IIS 6 box, it was shown that the
II
Version, 6 in this case, and the Internal IP address of the box were
being
shown externally.
Why would this be and how can I fix this.
The box is natted behind a firewall.
For IIS 5, you could control the version via URLscan. So maybe take a
look
in whatever that interface was migrated to with version 6.
.
- References:
- Re: IIS Version and Interanl IP being Revealed
- From: Funkadyleik Spynwhanker
- Re: IIS Version and Interanl IP being Revealed
- Prev by Date: Re: IIS Version and Interanl IP being Revealed
- Next by Date: Re: Website unable to download *.exe's
- Previous by thread: Re: IIS Version and Interanl IP being Revealed
- Next by thread: Re: IIS Version and Interanl IP being Revealed
- Index(es):
Relevant Pages
|
