Banner Grabbing:
Banner grabbing (or reconnaissance) is a technique used by hackers and security teams to gain information about a computer system on a network and services running on its open ports. A banner is a text displayed by a host server containing details like software type and version running in a system or server. So this involves getting software banner information, such as name, version, etc. and discovers insecure and vulnerable applications for compromise and exploitation.
Solution:
To prevent Banner Grabbing you need to restrict access to certain services. Typically there are 3 response headers which can be restricted or removed for security reasons.
They are;
- X-Powered-By: Undertow/1
- X-Powered-By: JSP/2.3
- Server: WildFly/11
- Server: awselb/2.0
To restrict the headers in Smarten, go to standalone.xml file (/smarten/wildfly/standalone/configuration/standalone.xml) and comment the below lines.
<filter-ref name="server-header"/>
<filter-ref name="x-powered-by-header"/>
This can help harden the security of the application.
Please refer to Application Security Implementation Manual to learn more.
Note: This article is based on Smarten Version 5.0. This may or may not be relevant to the Smarten version you may be using.
Tags: Banner Grabbing, Reconnaissance, Hackers, Security Teams, Network, Open Ports, Host Server, Software Version, Insecure Applications, Vulnerable Applications, Compromise, Exploitation, Response Headers, X-Powered-By, Undertow, JSP, Server Header, wildfly, AWS ELB, Smarten, standalone.xml, Server Security, Hardening, Security configuration, Application Security, Security Manual,
Was this article helpful?
That’s Great!
Thank you for your feedback
Sorry! We couldn't be helpful
Thank you for your feedback
Feedback sent
We appreciate your effort and will try to fix the article