This is my first time using the "Ask a Related Question" function, so just to be thorough, this is the question I'm following up on: http://www.experts-exchange.com/Software/Server_Software/Web_Servers/Microsoft_IIS/Q_24906199.html?sfQueryTermInfo=1+10+30+address+header+http+ip+it+leak+privat+server+through+web
I'm having the exact same problem as described in this post: PCI compliance scan returned a fail with the error: "This web server leaks a private IP address through its HTTP headers."
My first challenge is that I have 3 servers at this IP, and the company doing the scan can't tell me which server is the problem. However, since this is an IIS problem, and only 2 servers use IIS, that narrows it down. Also, since the error is identified as being with port 80, and default website on one server is on port 80, and on the other server, the default website is a different port, I'm going to assume it's the server with the default website on port 80.
I'm hoping JerrytheGreat's solution
C:\Inetpub\AdminScripts> cscript.exe adsutil.vbs set w3svc/1/SetHostName mail.mydomain.com
will take care of the problem, but what I'm not clear on is how he determined that the site identifier was 1. In a related post, it gave the same command, and specified that where JerrytheGreat has a 1 is where you put the site identifier. But how do I know what the site identifier is? (I didn't set up IIS - I know very little about it.)
My deadline for this is Tuesday Aug 31st, so it's definitely urgent.
Thanks for your help.