Today, I was scanning a web server with nikto. System admins have really a great creativity to find nice server tags 🙂
# telnet www.xxxx.be 80 Trying xx.xx.xx.xx... Connected to www.xxxx.be. Escape character is '^]'. HEAD / HTTP/1.1 Host: www.xxxx.be HTTP/1.1 200 OK Date: Tue, 12 Dec 2006 14:34:44 GMT Server: SAGA Megadrive Web Server Last-Modified: Thu, 12 Oct 2006 11:47:03 GMT ETag: "8867-315-452e2b37" Accept-Ranges: bytes Content-Length: 789 Content-Type: text/html Connection closed by foreign host. #
Unfortunately, this one was badly configured to hide its identity:
# telnet www.xxxx.be 80 Trying xx.xx.xx.xx... Connected to www.xxxx.be. Escape character is '^]'. GET /foo 403 Forbidden You don't have permission to access /foo on this server. Additionally, a 404 Not Found error was encountered while trying to use an ErrorDocument to handle the request. Apache/1.3.34 Server at localhost Port 80 Connection closed by foreign host. #