Monday, February 22, 2010


One morning I was webbrowsing:
ret@ret-laptop:~$ telnet 80
Trying some.ip.address...
Connected to
Escape character is '^]'.
GET /32452tr534tfgr4 HTTP/1.1

HTTP/1.1 404 Not Found
Date: Mon, 22 Feb 2010 12:07:12 GMT
Server: NOYB
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=iso-8859-1
...404 and so on.
WTF? No shame:
# Server masking is optional
#fake server banner - NOYB used - no one needs to know what we are using
SecServerSignature "NOYB"
Hey, NOYB yourself, fucker! You know I'm OK with you bragging about how secure you are and everything, but what makes you think you can abuse protocol like that? It doesn't hurt to be polite, you know! Is it so hard to come up with something decent like "hidden"? So much for user interface. Kids these days...
Anyway, here's the rest of the reply:
Apache/1.3.34 Server at Port 80


Later edit: oddly enough there actually is a which obviously has nothing to do with this post, please substitute in the text above :P

No comments: