Uploaded image for project: 'Zeppelin'
  1. Zeppelin
  2. ZEPPELIN-2461

Masking Jetty Server version with User-configurable parameter

Attach filesAttach ScreenshotVotersWatch issueWatchersCreate sub-taskLinkCloneUpdate Comment AuthorReplace String in CommentUpdate Comment VisibilityDelete Comments
    XMLWordPrintableJSON

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: Minor
    • Resolution: Fixed
    • Affects Version/s: 0.7.0
    • Fix Version/s: 0.7.3, 0.8.0
    • Component/s: Core
    • Labels:
    • Environment:

      All

      Description

      Security conscious organisations does not want to reveal the Application Server name and version to prevent Script-kiddies from finding the information easily when fingerprinting the Application. The exact version number can tell an Attacker if the current Application Server is patched for or vulnerable to certain publicly known CVE associated to it.

        Attachments

          Activity

            People

            • Assignee:
              kpandey Krishna Pandey
              Reporter:
              kpandey Krishna Pandey

              Dates

              • Created:
                Updated:
                Resolved:

                Issue deployment