Solved

Snoop servlet detected

Posted on 2009-05-13
6
1,334 Views
Last Modified: 2013-11-24
Is anyone familiar with Snoop servlet and how to remove them?

our network was scanned to ensure it was PCI compliant and also to make sure there were no vulnerabilities in our network. One of the vulnerabilities found after the scan was snoop servlet and they said the Snoopservlet was a utility which provided information about requests to web application.
the action they recommended us to take is " remove all demo and debug code from production web servers so that no unintended functionaliyt is not exposed to external user"
I am Not sure how to locate the deo code o debug code.

it we as detected on my webserver which hosts websites that are accessible to our customers.
i am trying to remove this but to no avail. i have scanned my server with all kinds of antispyware and anti virus.

From my research online  it is usually part of tomcat 3.1 but it i am not running Tomcat on that server. I have also read that it can be part of java programs.

I am not sure as to how to locate this snoop servlet code. our websites were programmed using cold fusion like 8 years ago. right now everyone is not sure how to fix it since the original programmer is not accessible.
0
Comment
Question by:cchibonga
  • 4
  • 2
6 Comments
 
LVL 92

Expert Comment

by:objects
ID: 24380145
what servlet container is running on the box?
(if none is running then there is no problem)

also do a file search for *.class and *.jar files

0
 

Author Comment

by:cchibonga
ID: 24381455
how do i know what servlet container is being used?
0
 

Author Comment

by:cchibonga
ID: 24381463
i did  a search for .jar and .class extensions and it came up with a bunch of files how do i know which one has the snoop servlet?
0
3 Use Cases for Connected Systems

Our Dev teams are like yours. They’re continually cranking out code for new features/bugs fixes, testing, deploying, testing some more, responding to production monitoring events and more. It’s complex. So, we thought you’d like to see what’s working for us.

 
LVL 92

Expert Comment

by:objects
ID: 24381472
check the process list

post list the list of jars/files you found and I'll check it for you.

0
 

Author Comment

by:cchibonga
ID: 24381555
here are the screen shot with the .jar files.

when you talk about the process list you mean services.msc right ?
jar-files.doc
0
 

Accepted Solution

by:
cchibonga earned 0 total points
ID: 24441796
I am closing ths question.
thank you for your effort.

We ended up appealing the PCI results as being false positive and they accepted the appeal.
0

Featured Post

Master Your Team's Linux and Cloud Stack

Come see why top tech companies like Mailchimp and Media Temple use Linux Academy to build their employee training programs.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
nextBoolean(double p) for Random class 3 40
Oracle SQL syntax check  without executing 6 57
Android development question 2 38
sql import cannot be resolved jsp 3 24
If you're not part of the solution, you're part of the problem.   Tips on how to secure IoT devices, even the dumbest ones, so they can't be used as part of a DDoS botnet.  Use PRTG Network Monitor as one of the building blocks, to detect unusual…
One of the biggest threats facing all high-value targets are APT's.  These threats include sophisticated tactics that "often starts with mapping human organization and collecting intelligence on employees, who are nowadays a weaker link than network…
Viewers learn about the third conditional statement “else if” and use it in an example program. Then additional information about conditional statements is provided, covering the topic thoroughly. Viewers learn about the third conditional statement …
Viewers will learn about if statements in Java and their use The if statement: The condition required to create an if statement: Variations of if statements: An example using if statements:

831 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question