Hi Naeil,
Thanks for looking! It would be good if you could report this
issue to [email protected]. Canonical manage the servers and there are a
few Ubuntu flavours likely using exactly the same setup.
Thanks
Tim
On 09/03/14 06:39, Naeil Zoùeidi wrote:
Hey all ,
I'm a new Member on Ubuntu GNOME group , my name's Naeîl
Zoueidi from TUNISIA , I write this mail to discuss about some
failles on the official website
actually, I'm an ethical hacker and for this, I totally
checked the whole website if it contains some vulnerability or
not .. Fortunately, the website is really secure :D
but there's only one little bug that could be used by
attackers to make an educated guess about the application
environment and any inherited weaknesses that may come with
it.
banner: Server: Apache/2.2.22 (Ubuntu)
request:
banner:
X-Powered-By: PHP/5.3.10-1ubuntu3.10
request:
solution: It is recommended to prevent the application from
disclosing its type and version.
Best
Regards
Naeîl Zoueidi
An Ubuntu-tn Member
& FOSS Supporter
"I am what I am because of
who we all are" - The Ubuntu Philosophy
|
--
Ubuntu-GNOME mailing list
[email protected]
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/ubuntu-gnome
