On 16.12.2017 21:25, Daniel Shahaf wrote: > Eric Johnson wrote on Sat, Dec 16, 2017 at 07:05:52 -0800: >> Hiding that information slows the drive-by attackers down, > Hiding that information is a pretty clear signal that "I think I'm an > interesting target", though. Everyone who's serious about security knows > that the right answer is to configure httpd to put an IIS banner in the > "Server:" header :°)
ROFL! If I were an attacker, that'd definitely put me off my lunch. :)
