Uploaded image for project: 'Zeppelin'
  1. Zeppelin
  2. ZEPPELIN-2461

Masking Jetty Server version with User-configurable parameter

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: Minor
    • Resolution: Fixed
    • Affects Version/s: 0.7.0
    • Fix Version/s: 0.7.3, 0.8.0
    • Component/s: Core
    • Labels:
    • Environment:

      All

      Description

      Security conscious organisations does not want to reveal the Application Server name and version to prevent Script-kiddies from finding the information easily when fingerprinting the Application. The exact version number can tell an Attacker if the current Application Server is patched for or vulnerable to certain publicly known CVE associated to it.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                kpandey Krishna Pandey
                Reporter:
                kpandey Krishna Pandey
              • Votes:
                0 Vote for this issue
                Watchers:
                4 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: