• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 453
  • Last Modified:

An Internal IP address or hostname can be obtained through information gathering techniques. This allows intruders to obtain a better understanding of your internal network

An Internal IP address or hostname can be obtained through information gathering techniques. This allows intruders to obtain a better understanding of your internal network
0
Brijeshk9
Asked:
Brijeshk9
  • 5
  • 4
  • 3
5 Solutions
 
Brijeshk9Author Commented:
How to remove this kind of Vulnerabilities......?
0
 
Brijeshk9Author Commented:
now its urgent for me, please suggest for apache running on Unix...?
0
 
fosiul01Commented:
I am from linux background, not unix , but can you sent me the link from where you got this information ??

is that any security review ??
0
What is SQL Server and how does it work?

The purpose of this paper is to provide you background on SQL Server. It’s your self-study guide for learning fundamentals. It includes both the history of SQL and its technical basics. Concepts and definitions will form the solid foundation of your future DBA expertise.

 
Brijeshk9Author Commented:
we have a setup to scan all the Vulnerabilities in our Environment ,and I have shared one of the website Vulnerabilities (which we got after scanning our websites/servers)-now I have solution for IIS, but dont have any idea about Apache running on Unix/Linux...!
will really appreciate if you can help me on it.
0
 
fosiul01Commented:
omm about apache .. i have read couple of books, but i realy dont understand what you meant, because by deault apache is secure ..

if you installed latest security patch of apache ( what ever version you using) , you would not have to worry to much ..

but if you can explain to me little bit what step you took to fix you IIs, then i could of compare that problem with apache ..

0
 
gheistCommented:
You can set any hostname in httpd.conf
Best if it matches one obtained from reverse dns lookup of public IP address.
Look inside the file - no rocket science in there.
0
 
Brijeshk9Author Commented:
ok,let me try to be more explicit on it:
Problem is: i dont want my ip do be discolsed in any header when i browse for my website.
Symptoms:When you use static HTML pages (for example, Default.htm), a Content-Location header is added to the response. the Content-Location references the IP address of the server instead of the Fully Qualified Domain Name (FQDN) or Hostname.
This header may expose internal IP addresses that are typically hidden or masked behind a Network Address Translation (NAT) Firewall or a proxy server

and here is the evidence \Example for this problem i am facing

HEAD / HTTP/1.0

HTTP/1.1 200 OK
Date: Wed, 11 Mar 2009 08:04:34 GMT
Server: Oracle-Application-Server-10g/10.1.2.2.0 Oracle-HTTP-Server
Content-Location: index.html.en
Vary: negotiate,accept-language
TCN: choice
Last-Modified: Tue, 06 Mar 2007 18:22:27 GMT
ETag: "33f4d5-4d11-45edb163;45edb163"
Accept-Ranges: bytes
Content-Length: 19729
Content-Type: text/html
Content-Language: en
Expires: Wed, 11 Mar 2009 08:04:34 GMT
Connection: close
did you get it now...!
0
 
gheistCommented:
I do not see any intranet reference here. It is plain mistinterpretation by automated scanner.

ServerTokens ProductOnly

will hopefully remove Oracle version 10.1.2.2 which your dumb outsourced scan misrepresents as intranet address. Hiding version is good for security against automated scanners.
0
 
fosiul01Commented:
so you are worreid about this tag ??
ETag: "33f4d5-4d11-45edb163;45edb163"  
0
 
fosiul01Commented:
but you said apache or IIs, here apache or IIs is nothign to with this

we use NAT TO hide our internal network address, if you use nat ,other site will see your public ip , not Internal Ip
0
 
gheistCommented:
ETag is GUID, it has nothing to do with internet or intranet, do not panic, no private parts exposed to world.
ETag improves efficiency of HTTP protocol, by serving as unique ID so that browser fetches only changed pages, You can disable it, but I will not help you break your server.
0
 
Brijeshk9Author Commented:
Thanks..!
0

Featured Post

Upgrade your Question Security!

Add Premium security features to your question to ensure its privacy or anonymity. Learn more about your ability to control Question Security today.

  • 5
  • 4
  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now