[TYPO3-dev] Security and info disclosure
Dmitry Dulepov
typo3 at accio.lv
Mon Sep 4 08:49:59 CEST 2006
Hi!
Patrick Gaumond wrote:
> At first this can look off-topic but on the other hand I think there's
> something to learn from it...
>
> http://portal.spidynamics.com/blogs/msutton/archive/2006/09/01/222.aspx
>
> (in brief, the guy simply got some Google query to find MediWiki
> unpatched versions)
>
>
> AFAIK the source code produce by default, the generator:
> <meta name="generator" content="TYPO3 4.0 CMS" />
>
> Is there any other clues that TYPO3 leaves that should be better hidden?
Did you already prevent Apache & PHP versions from being exposed through
http headers? :)
--
Dmitry Dulepov
http://typo3bloke.net/
"It is our choices, that show what we truly are,
far more than our abilities." (A.P.W.B.D.)
More information about the TYPO3-dev
mailing list