Vulnerability Development mailing list archives
Re: apache and 404/404 status codes
From: mikael.olsson () ENTERNET SE (Mikael Olsson)
Date: Sat, 8 Jul 2000 05:19:22 +0200
Shelagh Pepper wrote:
At 12:26 PM 7/7/00 +0200, Slawek wrote:Hopefully Apache has an option to map all 403 result codes to 404.Error codes can be mapped as follows (in conf or .htaccess files if FileInfo override permission has been granted): ErrorDocument 404 /Lame_excuses/not_found.html ErrorDocument 403 /Lame_excuses/not_found.html
Correct me if I'm wrong, but this won't help, since if you look at the HTTP response headers, it'll still say HTTP/403 and HTTP/404, respectively. Sure, having the same HTML text will fool the casual hacker, but anyone a wee bit more knowledgeable, or simply someone using HEAD rather than GET, is sure to see the "real" HTTP response code. ngnghhh 5 am and 12 hours of IP span reconfiguration... Time for some serious "Zzzz"s... -- Mikael Olsson, EnterNet Sweden AB, Box 393, S-891 28 ÖRNSKÖLDSVIK Phone: +46 (0)660 29 92 00 Direct: +46 (0)660 29 92 05 Mobile: +46 (0)70 66 77 636 Fax: +46 (0)660 122 50 WWW: http://www.enternet.se/ E-mail: mikael.olsson () enternet se
Current thread:
- Re: Maximum Linux Security (d/l), (continued)
- Re: Maximum Linux Security (d/l) rompa (Jul 10)
- Re: Default passwords er (Jul 04)
- Re: Default passwords Ex Machina (Jul 05)
- Re: Default passwords Rodrigo Barbosa (Jul 05)
- Re: Default passwords M J (Jul 05)
- (no subject) The Incubus (Jul 05)
- (no subject) Chris A. Mattingly (Jul 05)
- (no subject) 3APA3A (Jul 06)
- (no subject) Slawek (Jul 07)
- Re: apache and 404/404 status codes Shelagh Pepper (Jul 07)
- Re: apache and 404/404 status codes Mikael Olsson (Jul 07)
- Re: apache and 404/404 status codes tgs (Jul 07)
- 3-Com LanPlex 6000 Password Removal Ben Kruger (Jul 07)
- Re: apache and 404/404 status codes Bluefish (Jul 08)
- Re: apache and 404/404 status codes Slawek (Jul 08)
- Re: apache and 404/404 status codes Vincent Zweije (Jul 08)
- Re: your mail Bluefish (Jul 07)
- Finding default passwords (fascinating, simple and fun!) Eric Knight (Jul 04)
- Default passwords using Cisco ConfigMaker Runar Jensen (Jul 05)
- Re: Default passwords using Cisco ConfigMaker Aidan O'Kelly (Jul 05)
- Re: Default passwords using Cisco ConfigMaker Runar Jensen (Jul 05)