In the Haktip Darren goes over a couple ways to identify web servers from the command line.
Wayno from pkill-9 sent this by. Two quick and dirty ways to ID a web server.
First way
curl -I www.hak5.org
Should result in
HTTP/1.1 200 OK
Date: Tue, 05 Apr 2011 01:00:09 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/
2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.2.9
Last-Modified: Tue, 05 Apr 2011 00:04:06 GMT
Accept-Ranges: bytes
Content-Length: 66982
X-Pingback: http://www.Hak5.org/xmlrpc.php
X-Powered-By: W3 Total Cache/0.9.1.3
Vary: Accept-Encoding,Cookie
Content-Type: text/html; charset=UTF-8
The second, geekier way is to do it with telnet.
telnet www.hak5.org 80
HEAD / HTTP/1.0
Want to share your tips with us? tips@hak5.org
Check out WhatWeb (http://www.morningstarsecurity.com/research/whatweb)
or in Backtrack
It would help if you used code tags in the notes instead of blockquotes.
I just checked my website with curl -l and it returned the complete source code. Is this a security problem?
Benjamin D.
curl is a nice lil unix-type app, but should be forbiden to be used to access ur webserver hosted site. “.htaccess” comes for help. this lil curl app is not the only crawler out there:( if u dont want to be hacked easy-dont use a lot self ecplainin’ comments in ur website’s source code. also there is is an opensource project called Nessus – check ur web server and website security easy
nahhh didnt work, curl-I didnt work for my site.
the vulnerabilities the guy says are for 2.2.15 are already fixed in version 2.2.15 (that’s why the 2.2.15 was released to fix the vulnerabilities that were exploitable in a previous version) deeeeedahhhdeeee