180

Lemmy.world is exposing the NGINX version (lemmy.world)

submitted 1 year ago by filister@lemmy.world to c/general@lemmy.world

19 comments fedilink hide all child comments

I am not sure if this is the right sub, but yesterday I was having some issues with login with my user and was getting 403 error if I am not wrong and noticed that the NGINX version is exposed, which is a bad practice.

So if someone from the admins of Lemmy.world see this message, maybe they can change the NGINX config and hide the version flag by setting "server_tokens off;".

you are viewing a single comment's thread
view the rest of the comments

[-] half@lemmy.world 21 points 1 year ago

My pet theory is that NGINX was designed by a pen-tester who realized that all they needed to do to make the majority of SMBs expose their web servers to the internet was outperform Apache

this post was submitted on 18 Jul 2023

180 points (100.0% liked)

General Discussion

11948 readers

2 users here now

Welcome to Lemmy.World General!

This is a community for general discussion where you can get your bearings in the fediverse. Discuss topics & ask questions that don't seem to fit in any other community, or don't have an active community yet.

🪆 About Lemmy World

🧭 Finding Communities

Feel free to ask here or over in: !lemmy411@lemmy.ca!

Also keep an eye on:

For more involved tools to find communities to join: check out Lemmyverse and Feddit Lemmy Community Browser!

💬 Additional Discussion Focused Communities:

!actual_discussion@lemmy.ca - Note this is for more serious discussions.
!casualconversation@lemm.ee - The opposite of the above, for more laidback chat!
!letstalkaboutgames@feddit.uk - Into video games? Here's a place to discuss them!
!movies@lemm.ee - Watched a movie and wanna talk to others about it? Here's a place to do so!

Rules

Remember, Lemmy World rules also apply here.

0. See: Rules for Users.

No bigotry: including racism, sexism, homophobia, transphobia, or xenophobia.
Be respectful. Everyone should feel welcome here.
Be thoughtful and helpful: even with ‘silly’ questions. The world won’t be made better by dismissive comments to others on Lemmy.
Link posts should include some context/opinion in the body text when the title is unaltered, or be titled to encourage discussion.
Posts concerning other instances' activity/decisions are better suited to !fediverse@lemmy.world or !lemmydrama@lemmy.world communities.
No Ads/Spamming.
No NSFW content.

founded 1 year ago

MODERATORS

Jessica@lemmy.world

ElectroVagrant@lemmy.world

fubo@lemmy.world