Home PC Games Linux Windows Database Network Programming Server Mobile  
           
  Home \ Linux \ Camouflage Nginx Web server version to prevent invasion     - How to configure chroot environment in Ubuntu 14.04 (Linux)

- Hadoop 2.0 Detailed Configuration Tutorial (Server)

- Use this one-time password via SSH secure login Linux (Programming)

- CentOS6.7 text installation system (Linux)

- CentOS 6.5 install Maven and Nexus warehouse agent (Server)

- Dell R710 server disk recovery database one case (record) (Server)

- YUM install desktop environment in CentOS (Linux)

- Offline (local) Yum source structures (Linux)

- Linux script to copy the folder to all folders with the same name (Linux)

- Ubuntu and Archlinux install Notepadqq 0.50.2 (Linux)

- Android Studio quick overview of Gradle (Programming)

- Oracle capability i / o (stress test database server i / o performance) (Database)

- Ubuntu 14.10 / Linux Mint 17.1 Win10 compiler install rdesktop 1.8.3 Remote Desktop connection (Linux)

- How to use the character in C ++ without pressing the Enter key to enter the Show (Programming)

- Retro terminal in Linux (Linux)

- Tor Browser: under Linux for anonymous Web browsing ultimate browser (Linux)

- How to use Monit to deploy a server to monitor the system (Server)

- HBase Application Development Review and Summary of Series (Database)

- cp: omitting directory error solutions under Linux (Linux)

- 20 open source / commercial Linux server management control panel (Server)

 
         
  Camouflage Nginx Web server version to prevent invasion
     
  Add Date : 2018-11-21      
         
         
         
  In order to prevent hackers to scan web server information corresponding to the web server through the information to find the corresponding version of the loopholes, and thus the web server intrusion, nginx Although powerful, but also the software, the software may be vulnerable, for example nginx- 0.6.32 version, by default may lead to server errors any type of file to parse PHP manner, such as Trojan upload a jpg format to the forum site, through loopholes parsed into a phpshell, thereby obtaining permissions intrusion server, this will cause serious security problems, so that hackers can capture the nginx server support php. If the storm drain nginx version and the version and security vulnerabilities so your web server is certainly at stake.

Directed to nginx server, you can modify the source code in the header on nginx description below to nginx-1.2.0 version, for example.

[Root @ www nginx-1.2.0] # cd src / core /
[Root @ www core] # vim nginx.h ------- edit nginx.h file
/ *
* Copyright (C) Igor Sysoev
* Copyright (C) Nginx, Inc.
* /
#ifndef _NGINX_H_INCLUDED_
#define _NGINX_H_INCLUDED_
#define nginx_version 1002000
#define NGINX_VERSION "2.2.2" // default to 1.2.0
#define NGINX_VER "Apache /" NGINX_VERSION // default Nginx
#define NGINX_VAR "NGINX"
#define NGX_OLDPID_EXT ".oldbin"
#endif / * _NGINX_H_INCLUDED_ * /
Then compiled normally complete the installation.

Test results

Use nmap scan host

Get http request information using curl

Or visit a URL that does not exist can also see the effect

You can see whether or request for information on the website http packets with nmap scan host access requests using curl or even a nonexistent url displays web server using Apache2.2.2 version, thus hiding our real web server version That nginx-1.2.0 version, to protect the security of web servers.
     
         
         
         
  More:      
 
- build Android environment on Ubuntu 12.04 (Server)
- Linux performance monitoring and common commands Introduction (Linux)
- After installing minimize RHEL / CentOS 7 need to do some things (Linux)
- Struts2 configure a static resource files without Struts processing (regular match) (Programming)
- To control based on IP address routing policy under Linux (Linux)
- Linux System Getting Started Tutorial: permission to permanently modify the USB device in Linux (Linux)
- Copy files between two Linux hosts (Linux)
- How to configure MariaDB replication in CentOS Linux (Database)
- Normal start Lazarus 1.0.8 under Ubuntu (Linux)
- Getting Started with Linux system to learn: how to configure a static IP address for CentOS7 (Linux)
- Linux settings Java_home (Linux)
- How to install Nginx on FreeBSD 10.2 as an Apache reverse proxy (Server)
- Linux virtual machines to solve end MySQL database can not remote access (Database)
- Use Elasticsearch + Logstash + Kibana set up centralized log Practice Analysis Platform (Server)
- CMake Quick Start Tutorial (Linux)
- RedHat Linux 6 desktop installation (Linux)
- Configuring automatic mail GAMIT under CentOS system (Linux)
- Java multi-threaded shared communications variables (Programming)
- Android start automatically and add and delete a desktop shortcut (Programming)
- MySQL password on those things you should know (Database)
     
           
     
  CopyRight 2002-2022 newfreesoft.com, All Rights Reserved.