Welcome! Log In Create A New Profile

Re: Nginx Security Hardening and Rules

Forum List Message List New Topic Print View

Maxim Dounin

October 20, 2014 02:24PM

Hello!

On Mon, Oct 20, 2014 at 07:24:27PM +0200, Stefanita Rares Dumitrescu wrote:

>
> On 20/10/2014 07:46, Maxim Dounin wrote:
> >I always wonder why people think that hiding versions improves
> >security.
> >
> >http://en.wikipedia.org/wiki/Security_through_obscurity
> >
> >
> Usually this is done as a preventive measure against 0days if you're not
> around to fix stuff for instance. automated scanners will scan for a certain
> version. If it's not available, you have a time buffer when you can patch
> your stuff, without popping on automated scanners.

Assuming that you'll have a time buffer is a catch. You won't.
And the worst thing is that your own automated scanners won't be
able to notify you about known problems if there are any.

--
Maxim Dounin
http://nginx.org/

_______________________________________________
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx

Reply Quote

RSS

Subject	Author	Posted
Nginx Security Hardening and Rules	c0nw0nk	October 18, 2014 10:51PM
Re: Nginx Security Hardening and Rules	c0nw0nk	October 18, 2014 11:21PM
Re: Nginx Security Hardening and Rules	mex	October 19, 2014 11:00AM
Re: Nginx Security Hardening and Rules	c0nw0nk	October 19, 2014 12:14PM
Re: Nginx Security Hardening and Rules	mex	October 19, 2014 12:57PM
Re: Nginx Security Hardening and Rules	itpp2012	October 19, 2014 01:31PM
Re: Nginx Security Hardening and Rules	c0nw0nk	October 19, 2014 01:47PM
Re: Nginx Security Hardening and Rules	sarahnovotny	October 19, 2014 12:22PM
Re: Nginx Security Hardening and Rules	Maxim Dounin	October 20, 2014 01:48AM
Re: Nginx Security Hardening and Rules	c0nw0nk	October 20, 2014 09:37AM
Re: Nginx Security Hardening and Rules	c0nw0nk	October 20, 2014 09:42AM
Re: Nginx Security Hardening and Rules	Maxim Dounin	October 20, 2014 09:46AM
Re: Nginx Security Hardening and Rules	Stefanita Rares Dumitrescu	October 20, 2014 01:26PM
Re: Nginx Security Hardening and Rules	mex	October 20, 2014 02:13PM
Re: Nginx Security Hardening and Rules	Maxim Dounin	October 20, 2014 02:24PM
Re: Nginx Security Hardening and Rules	c0nw0nk	October 21, 2014 09:16AM
Re: Nginx Security Hardening and Rules	itpp2012	October 21, 2014 10:47AM
Re: Nginx Security Hardening and Rules	c0nw0nk	October 21, 2014 02:01PM
Re: Nginx Security Hardening and Rules	c0nw0nk	October 23, 2014 11:43AM

Sorry, only registered users may post in this forum.

Click here to login

Online Users

Guests: 203

Record Number of Users: 8 on April 13, 2023

Record Number of Guests: 500 on July 15, 2024