Webserver Reveals Internal IP Address (Audit Finding)
We recently had a Security Audit performed and one of the findings was that our Sitefinity Webserver Reveals Internal IP Addresses.
There is a Microsoft Document that describes this finding and suggest 2 ways to change IIS's behavior so it instead sends the FQDN.
We wanted to make sure that implementing these changes would not affect the Sitefinity product.
http://support.microsoft.com/kb/834141
Thanks,
Hello Darryl ,
I checked the KB, but it is all related to the IIS settings and host configurations, so I do not think that this will have some impact with Sitefinity as application. Note that the license for Sitefinity is valid for one domain name and if there are host name changes you might get a trial message. After the modifications you are going to make the host header should be the same. You can also re deploy the application after the fix you are going to apply.
Greetings,
Ivan Dimitrov
the Telerik team