ヘッダのServerフィールドの偽装

ヘッダのServerフィールドの偽装

アーカイブを解凍後、下記を変更

vi include/ap_release.h

/*
#define AP_SERVER_BASEVENDOR "Apache Software Foundation"
define AP_SERVER_BASEPRODUCT "Apache"
#define AP_SERVER_MAJORVERSION "2"
#define AP_SERVER_MINORVERSION "0"
#define AP_SERVER_PATCHLEVEL "50"
*/
#define AP_SERVER_BASEVENDOR "Hoge Software Foundation"
#define AP_SERVER_BASEPRODUCT "Hoge"
#define AP_SERVER_MAJORVERSION "1"
#define AP_SERVER_MINORVERSION "0"
#define AP_SERVER_PATCHLEVEL "0"

テスト

telnet cubic9.com 80

HEAD / HTTP/1.0

レスポンス

HTTP/1.1 200 OK
Date: Sat, 21 Aug 2004 04:12:03 GMT
Server: Hoge
Cache-control: no-cache
Pragma: no-cache
Connection: close
Content-Type: text/html; charset=EUC-JP