Using Nikto to better secure servers, and understanding output
Im getting these output for the server I am testing against.
- Nikto v2.1.4
---------------------------------------------------------------------------
+ Target IP:
+ Target Hostname:
+ Target Port: 80
+ Using Encoding:
+ Start Time:
---------------------------------------------------------------------------
+ Server: Apache
+ No CGI Directories found (use '-C all' to force check all possible dirs)
+ ETag header found on server, inode: 923575, size: 29, mtime:
0x4e4e14249db6a
+ Default account found for 'phpMyAdmin Setup' at /phpmyadmin/setup (ID
'', PW '0000'). Deutsche Telekomm T-Sinus 130 DSL.
+ 6456 items checked: 0 error(s) and 2 item(s) reported on remote host
+ End Time:
---------------------------------------------------------------------------
+ 1 host(s) tested
A couple that concern me here are these two, how do I address these?
Server: Apache
ETag header found on server
I'm surprised by this being so open by default. Would probably never have
noticed it.
Default account found for 'phpMyAdmin Setup' at /phpmyadmin/setup (ID '',
PW '0000'). Deutsche Telekomm T-Sinus 130 DSL.
No comments:
Post a Comment