Any information a cracker can obtain about your system is too much
information. An often overlooked security issue is the exposure of a Web
serverOs identity via its HTTP header. Broadcasting this data makes it
easier for a potential intruder to complete their first hacking task --
identifying your operating system and Web server -- so don't let them know
what you are running. By obscuring the Web server's identity, you can trick
hackers to attempt mistargeted exploits, making it easier for intrusion
detection systems and firewalls to accomplish their missions and foil the
hack. ServerMask 2.0 obscures the identity of a Windows Web server by
removing the most obvious signs that you are running IIS.
ServerMask 2.0 removes or modifies unnecessary response data. The software
provides control over what Server header data, if any, is visible in HTTP
responses. Session cookie masking, a unique feature not available in any
other software, permits the customization of any type of session cookie
(including the Windows-specific ASP session cookie). ServerMask 2.0 can
emulate the Apache Web serverOs HTTP header order and disable Microsoft
WebDav with one click to suppress its multiple identifiable headers. It
also removes the Windows-specific Public header from HTTP responses, a
relic of HTTP 1.0 seldom used today, and converts the Windows SMTP banner
to any message. When combined with these security recommendations and other
server tools like PageXchanger and CustomError, ServerMask 2.0 provides the
anonymization component of your total security strategy. ServerMask is a
fast, robust IIS module that can be installed and configured in less than 2
minutes. So make your site more secure by downloading and installing
ServerMask today!
Download File Size:613.92 KB
|
