Re: Microsoft-IIS/6.0 serves up Debian... WTF!

To: "Simon Valiquette" <v.simon@ieee.org>
Cc: debian-security@lists.debian.org
Subject: Re: Microsoft-IIS/6.0 serves up Debian... WTF!
From: "Jim Popovitch" <yahoo@jimpop.com>
Date: Sun, 8 Jun 2008 18:39:33 -0400
Message-id: <[🔎] 7ff145960806081539r3308fca4w4dbea994f5c756e7@mail.gmail.com>
In-reply-to: <[🔎] 484C4F91.8080607@ieee.org>
References: <[🔎] 7ff145960806072229h7522605eqcd6636304dfa2513@mail.gmail.com> <[🔎] 47922.127.0.0.1.1212905124.squirrel@www.bayau.com> <[🔎] a5b8a4fc0806080027h2e348242nfda896faeb5fd28e@mail.gmail.com> <[🔎] 20080608103150.07fba9aa@f1fc> <[🔎] 20080608110207.GC5801@ngolde.de> <[🔎] 7ff145960806081204u7b260c6y143533acc8d959d5@mail.gmail.com> <[🔎] 484C4F91.8080607@ieee.org>

On Sun, Jun 8, 2008 at 5:30 PM, Simon Valiquette <v.simon@ieee.org> wrote:
> Jim Popovitch un jour écrivit:
>>
>> If they want to do this, fine.  But should they continue to be in
>> rotation for ftp.us.debian.org?
>
>  Personnaly, I would have chosen to impersonate another web server than
> IIS, but except for that I see no problem with what they have done.
>
>
>  I don't see why you want them to be removed from ftp.us.debian.org,
> except that you don't like to see them lying about the server application
> and version they use, which is something done by a lot of people on
> production systems that directly face the Internet.

The reason is this:  *if* they are using "security by obscurity", then
that raises the bigger question of their security knowledge and
capabilities.   That would be enough for me to remove them from
distributing software to others from my domain (ftp.us.debian.org).

-Jim P.

Reply to:

Follow-Ups:
- Re: Microsoft-IIS/6.0 serves up Debian... WTF!
  - From: Jacob Appelbaum <jacob@appelbaum.net>

References:
- Microsoft-IIS/6.0 serves up Debian... WTF!
  - From: "Jim Popovitch" <yahoo@jimpop.com>
- Re: Microsoft-IIS/6.0 serves up Debian... WTF!
  - From: jeffry@bayau.com
- Re: Microsoft-IIS/6.0 serves up Debian... WTF!
  - From: "JD. Brown" <brownstixzz@gmail.com>
- Re: Microsoft-IIS/6.0 serves up Debian... WTF!
  - From: Henri Salo <fgeek@fgeek.fi>
- Re: Microsoft-IIS/6.0 serves up Debian... WTF!
  - From: Nico Golde <debian-security+ml@ngolde.de>
- Re: Microsoft-IIS/6.0 serves up Debian... WTF!
  - From: "Jim Popovitch" <yahoo@jimpop.com>
- Re: Microsoft-IIS/6.0 serves up Debian... WTF!
  - From: Simon Valiquette <v.simon@ieee.org>

Prev by Date: Re: Microsoft-IIS/6.0 serves up Debian... WTF!
Next by Date: Re: Microsoft-IIS/6.0 serves up Debian... WTF!
Previous by thread: Re: Microsoft-IIS/6.0 serves up Debian... WTF!
Next by thread: Re: Microsoft-IIS/6.0 serves up Debian... WTF!
Index(es):
- Date
- Thread