On Tue, Jan 13, 2004 at 09:35:15AM -0500, Jim Jagielski wrote: > > Without a doubt. Look at how many exploits grep on not only > the "name" of the server but also the version. > So it is ok to be vulnerable - as long as it isn't obvious? I must say that I don't buy that argument - it will just lull admins to sleep, making them postpone security updates.
For those who want to identify specific servers, there's always the option of adding a ServerHeader. Not to mention that it might hurt the netcraft stats too ;) vh Mads Toftum -- `Darn it, who spiked my coffee with water?!' - lwall
