Blocking version information

Stephane Bortzmeyer bortzmeyer at nic.fr
Mon Jun 20 15:54:11 UTC 2005


On Mon, Jun 20, 2005 at 10:04:02AM -0500,
 Barry Finkel <b19141 at achilles.ctd.anl.gov> wrote 
 a message of 26 lines which said:

> If I had a script that exploited a vulnerability

You do not even need to perform thought experiments ("If I
had..."). Just look at actual worms and viruses. As you say, they
follow the easiest path. Worms that exploit a vulnerability of
Microsoft IIS do not even check that the remote HTTP server is IIS or
Apache or else. They just try (and fill in the logs of everyone).



More information about the bind-users mailing list