Charles Curley wrote:
>
> How do you detect an FP web page?
>
> --
>
> -- C^2
Grab the web page
Save it in source, and filter it with demoroniser and if the
output does not equal the input, the chances that it was done
with a Microsoft Editor are quite high.
Now if you want to know if the apache on the site is running FPE,
just use one of the many exploits for FPE. If you do not crack
the site, chances are great that it isn't there or that they have
hired eEye or l0pht to lock it down. Naturally this is not
something cool to do for idle curiosity, and it is advisable to
have a fail-soft package to clean the logs and set the system to
rights if you do crack it.
Now how do you know what a site is running?
nmap or www.netcraft.com/whats can give you a clue or more.
Caution is advisable again in nmap scans because a Corel linux
will hang upon being scanned, and inadvertent DoS can occur in
HP-UX and Solaris systems from nmap scans unless you watch the
timing.
Civileme
