Re: Microsoft-IIS/6.0 serves up Debian... WTF!
On Sunday 08 June 2008 14:04:14 Jim Popovitch wrote:
> On Sun, Jun 8, 2008 at 7:02 AM, Nico Golde <debian-security+ml@ngolde.de>
wrote:
> > Yep this is lighttpd and it's mod_status.
>
> OK (if true), I still question the need for posing as IIS, and
> therefore I question the mirror operator's
> intent/reasons/capabilities/interests/.... as well as security
> capabilites. Are they playing around by posing as IIS. Is it meant
> to deflect interest in a Linux box being on their network? What is
> the reason behind masquerading as something they aren't?
>
> If they want to do this, fine. But should they continue to be in
> rotation for ftp.us.debian.org?
You're never studied system security methods and tactics very much, have
you? :-)
> The reason is this: *if* they are using "security by obscurity", then
> that raises the bigger question of their security knowledge and
> capabilities. That would be enough for me to remove them from
> distributing software to others from my domain (ftp.us.debian.org).
And some would question yours :-)
JW
Reply to: