[nycphp-talk] PHP Form Validation
csnyder
chsnyder at gmail.com
Mon Sep 5 13:52:04 EDT 2005
On 9/5/05, Chris Shiflett <shiflett at php.net> wrote:
> A little bit of obscurity has a little bit of value, but
> it's not worth "hiding" the fact that so many people use Apache and PHP.
Yep. Turning off the product signatures is important if you want to
hide version information from your clients or your boss, and it might
protect you from casual scans via Google.
But there's nothing to stop an attacking 'bot from discovering the
version levels on its own, by trying known vulnerabilities.
More information about the talk
mailing list