#2691: Trac shouldn't announce version number
--------------------------+-------------------------------------------------
Reporter: [EMAIL PROTECTED] | Owner: jonas
Type: defect | Status: new
Priority: high | Milestone:
Component: general | Version: 0.9.3
Severity: major | Keywords: security
--------------------------+-------------------------------------------------
Trac's 'about' page shows the version number, which is a security problem.
It allows attackers to find victims easily using a search engine like
google.
Google lists 193 track 0.9.2 installations at the moment which are
vulnerable.
--
Ticket URL: <http://projects.edgewall.com/trac/ticket/2691>
The Trac Project <http://trac.edgewall.com/>
_______________________________________________
Trac-Tickets mailing list
[email protected]
http://lists.edgewall.com/mailman/listinfo/trac-tickets
