Re: hiding IIS 6.0 signatures
- From: "Ken Schaefer" <kenREMOVE@xxxxxxxxxxxxxxxxxxxx>
- Date: Tue, 15 Jan 2008 23:41:06 +1100
Hiding an "IIS" signature is merely "security through obscurity".
An exploit that compromises IIS will work regardless of whether your server exhibits IIS behaviour or not.
And frameworks like metasploit mean that an attacker can hurl thousands of automated exploits at your server, disregarding what it is (or attempts to disguise it) in a few seconds. Obscurity = good. But it's not real security.
Cheers
Ken
"tony" <tony@xxxxxxx> wrote in message news:%23Wh1D8zVIHA.4740@xxxxxxxxxxxxxxxxxxxxxxx
we currently have linux proxies in front of IIS. i want to remove the proxies and expose the IIS servers.
any downside or comments on this setup?
"Bernard Cheah [MVP]" <qbernard@xxxxxxxxxxxxxxxxxxx> wrote in message news:u7$KXtzVIHA.536@xxxxxxxxxxxxxxxxxxxxxxxYou can try urlscan from ms.com
Hiding the banner won't protect the server from being attacks.
So make sure the box is patch, you have proper firewall etc in place.
--
Regards,
Bernard Cheah
http://www.iis.net/
http://msmvps.com/blogs/bernard/
"tony" <tony@xxxxxxx> wrote in message news:OPs5VJzVIHA.5508@xxxxxxxxxxxxxxxxxxxxxxxHow do i hide IIS 6 signatures from a scan or netcraft?
.
- References:
- hiding IIS 6.0 signatures
- From: tony
- Re: hiding IIS 6.0 signatures
- From: Bernard Cheah [MVP]
- Re: hiding IIS 6.0 signatures
- From: tony
- hiding IIS 6.0 signatures
- Prev by Date: Re: Issue Digital Cert for NetBIOS name
- Next by Date: Re: Guest account with write and script execute access - how dangerous
- Previous by thread: Re: hiding IIS 6.0 signatures
- Next by thread: Re: Issue Digital Cert for NetBIOS name
- Index(es):
Relevant Pages
|
|
