Webserver Reveals Internal IP Address (Audit Finding)

Posted by Community Admin on 04-Aug-2018 20:20

Webserver Reveals Internal IP Address (Audit Finding)

Sitefinity - Bugs & Issues

All Replies

Posted by Community Admin on 24-Feb-2011 00:00

We recently had a Security Audit performed and one of the findings was that our Sitefinity Webserver Reveals Internal IP Addresses.

There is a Microsoft Document that describes this finding and suggest 2 ways to change IIS's behavior so it instead sends the FQDN.

We wanted to make sure that implementing these changes would not affect the Sitefinity product.

http://support.microsoft.com/kb/834141

Thanks,

Posted by Community Admin on 25-Feb-2011 00:00

Hello Darryl ,

I checked the  KB, but it is all related to the IIS settings and host configurations, so I do not think that this will have some impact with Sitefinity as application. Note that the license for Sitefinity is valid for one domain name and if there are host name changes you might get a trial message. After the modifications you are going to make the host header should be the same. You can also re deploy the application after the fix you are going to apply.

Greetings,
Ivan Dimitrov
the Telerik team

Vote for the 7 Telerik products at the 2011 Great Indian Developer Awards!

This thread is closed