Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

IIS server version hiding

Posted on 2013-11-26
2
404 Views
Last Modified: 2013-12-01
Hi,
I have a web application published by using IIS on a web server.
This application can be accessed with a user and password.
Can someone who doesn't have password see IIS version which this applicaiton running on?
And how do I hide this version information?
Thank you
0
Comment
Question by:certuran
2 Comments
 
LVL 58

Accepted Solution

by:
Gary earned 250 total points
ID: 39679378
Yes they can but you can override it.
Download http://www.microsoft.com/en-us/download/details.aspx?displaylang=en&id=5728
Open up %WinDir%\System32\inetsrv\urlscan\UrlScan.ini
Search for RemoveServerHeader and set the value to 1 or look for AlternateServerName and set it to whatever you want it to say instead of IIS...

And for other headers
http://www.troyhunt.com/2012/02/shhh-dont-let-your-response-headers.html
0
 

Author Closing Comment

by:certuran
ID: 39687871
I could hide IIS version with this suggestion. Thank you very much.
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Welcome to my series of short tips on migrations. Whilst based on Microsoft migrations the same principles can be applied to any type of migration. My first tip Migration Tip #1 – Source Server Health can be found listed in my profile here: http:…
Welcome to my series of short tips on migrations. Whilst based on Microsoft migrations the same principles can be applied to any type of migration. My first tip Migration Tip #1 – Source Server Health can be found here: http://www.experts-exchang…
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…
I've attached the XLSM Excel spreadsheet I used in the video and also text files containing the macros used below. https://filedb.experts-exchange.com/incoming/2017/03_w12/1151775/Permutations.txt https://filedb.experts-exchange.com/incoming/201…

808 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question