[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Microsoft-IIS/6.0 serves up Debian... WTF!

On Sunday 08 June 2008 14:04:14 Jim Popovitch wrote:
> On Sun, Jun 8, 2008 at 7:02 AM, Nico Golde <debian-security+ml@ngolde.de> 
wrote:
> > Yep this is lighttpd and it's mod_status.
>
> OK (if true), I still question the need for posing as IIS, and
> therefore I question the mirror operator's
> intent/reasons/capabilities/interests/.... as well as security
> capabilites.   Are they playing around by posing as IIS.  Is it meant
> to deflect interest in a Linux box being on their network?  What is
> the reason behind masquerading as something they aren't?
>
> If they want to do this, fine.  But should they continue to be in
> rotation for ftp.us.debian.org?

You're never studied system security methods and tactics very much, have 
you? :-)


> The reason is this:  *if* they are using "security by obscurity", then
> that raises the bigger question of their security knowledge and
> capabilities.   That would be enough for me to remove them from
> distributing software to others from my domain (ftp.us.debian.org).


And some would question yours :-)

	JW
Reply to: