Detection of Gemini server software

Stephane Bortzmeyer stephane at sources.org
Tue Jun 29 16:06:08 BST 2021

Previous message (by thread): Detection of Gemini server software
Next message (by thread): (f)eLinks, Gemini and The XML Bookmark Exchange Language (XBEL)
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, Jun 29, 2021 at 08:43:25AM -0400,
 Jason McBrayer <jmcbray at carcosa.net> wrote 
 a message of 20 lines which said:

> I know it's considered good practice not to leak any information you
> don't need to. But as you also suggest, I'm not sure if
> fingerprinting server implementations is really that sensitive
> information.

My experience with HTTP is that the vast majority of attacks are
blind, just testing various exploits without any regard to the server
software (I see a lot of IIS exploits used against my Apache server
and of course a lot of Wordpress exploits against a static site). It
makes sense (from the point of view of the attacker) since it is
faster to just try the exploit rather than finding out if the exploit
may work. Also, it avoids false positives (Debian packages
security-patched but with an old version number).

Like many simple security advices, this one is useless.

Previous message (by thread): Detection of Gemini server software
Next message (by thread): (f)eLinks, Gemini and The XML Bookmark Exchange Language (XBEL)
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Gemini mailing list