cking the version of OpenSSL
Randy Turner wrote:
> I would probably consider the publishing of the openssl version on the web
> server announcment message as a security issue.
And some of us would laugh in your general direction ;-)
Exploiters don't need to know, they can just persist
Randy Turner wrote:
> I would probably consider the publishing of the openssl version on the web
> server announcment message as a security issue.
And some of us would laugh in your general direction ;-)
Exploiters don't need to know, they can just persist till they find
a known exploit.
___
version of OpenSSL
Hello,
> Does anyone know how to externally check what version of OpenSSL is
> running a server? I mean without connecting to the server via the
> shell but perhaps by a browser and checking the headers?
If we are talking about HTTP servers then sometimes this
informati
Hello,
> Does anyone know how to externally check what version of OpenSSL is
> running a server? I mean without connecting to the server via the
> shell but perhaps by a browser and checking the headers?
If we are talking about HTTP servers then sometimes this
information MAY be available in Serve
Does anyone know how to externally check what version of
OpenSSL is running a server? I mean without connecting to the server via
the shell but perhaps by a browser and checking the headers?
Mark T. Pearson
Assistant Manager of Web
Administration
UFT Welfare Fund
52 Broadway, 8th Flo
Does anyone know how to externally check what version of
OpenSSL is running a server? I mean without connecting to the server via the
shell but perhaps by a browser and checking the headers?
Mark T. Pearson
Assistant Manager of Web
Administration
UFT Welfare Fund
52 Broadway, 8th Flo
