iis security: IIS Version and Interanl IP being Revealed -- iis security

Re: IIS Version and Interanl IP being Revealed

DoktorWho
3/29/2006 8:39:01 AM

Thanks I will try that.

[quoted text, click to view]

Re: IIS Version and Interanl IP being Revealed

Funkadyleik Spynwhanker
3/29/2006 8:51:35 AM

[quoted text, click to view]

For IIS 5, you could control the version via URLscan. So maybe take a look
in whatever that interface was migrated to with version 6.

Re: IIS Version and Interanl IP being Revealed

David Wang [Msft]
3/29/2006 1:41:31 PM

http://blogs.msdn.com/david.wang/archive/2006/03/29/Silly_Security_Scans.aspx

--
//David
IIS
http://blogs.msdn.com/David.Wang
This posting is provided "AS IS" with no warranties, and confers no rights.
//

[quoted text, click to view]

Re: IIS Version and Interanl IP being Revealed

David Wang [Msft]
3/29/2006 7:13:37 PM

http://blogs.msdn.com/david.wang/archive/2006/03/29/Silly_Security_Scans.aspx

There is no way to control the Server: header. URLScan makes a reasonable
attempt but will not set/remove it in all cases. And we are fine with that
because this is not a security issue, per the rationale from the blog entry.

--
//David
IIS
http://blogs.msdn.com/David.Wang
This posting is provided "AS IS" with no warranties, and confers no rights.
//

[quoted text, click to view]

Re: IIS Version and Interanl IP being Revealed

Funkadyleik Spynwhanker
3/30/2006 10:01:11 AM

Hey, that's a great rant.

Going in my bookmarks.

[quoted text, click to view]

Got something to say? Click here to post a reply to this thread.

Don't see what you're looking for? Try a search.

View other messages in the iis security group.