On 20/10/2014 07:46, Maxim Dounin wrote:
I always wonder why people think that hiding versions improves
security.
http://en.wikipedia.org/wiki/Security_through_obscurity
Usually this is done as a preventive measure against 0days if you're not
around to fix stuff for instance. automated scanners will scan for a
certain version. If it's not available, you have a time buffer when you
can patch your stuff, without popping on automated scanners.
_______________________________________________
nginx mailing list
[email protected]
http://mailman.nginx.org/mailman/listinfo/nginx
