Nginx Security Hardening and Rules
Stefanita Rares Dumitrescu
katmai at keptprivate.com
Mon Oct 20 17:24:27 UTC 2014
On 20/10/2014 07:46, Maxim Dounin wrote:
> I always wonder why people think that hiding versions improves
> security.
>
> http://en.wikipedia.org/wiki/Security_through_obscurity
>
>
Usually this is done as a preventive measure against 0days if you're not
around to fix stuff for instance. automated scanners will scan for a
certain version. If it's not available, you have a time buffer when you
can patch your stuff, without popping on automated scanners.
More information about the nginx
mailing list