Test your server for vulnerabilities with Nikto
|
02-24-2006, 08:07 PM,
Post: #1
|
|||
|
|||
Test your server for vulnerabilities with Nikto
Quote:Nikto is an Open Source (GPL) web server scanner which performs comprehensive tests against web servers for multiple items, including over 3200 potentially dangerous files/CGIs, versions on over 625 servers, and version specific problems on over 230 servers. Scan items and plugins are frequently updated and can be automatically updated (if desired).http://www.cirt.net/code/nikto.shtml Just do it! |
|||
02-25-2006, 03:18 AM,
Post: #2
|
|||
|
|||
Re: Test your server for vulnerabilities with Nikto
Only do it if you have 2 dedicated servers and you want to test them. If you have a site on a shared server and run that it will affect all 500 other sites on the server and the hosting company will complain to your ISP or shut your web site down if you're running it from another shared server because port scanning is against the TOS of most hosts (and ISPs)... which won't be fun for you.
"Well, Jay was so giddy that someone named Jay was involved with this site we posted our first non-eBay listing in 3 years here at Lunarbid (we tried two items at Yahoo once upon a time, they bombed)" -Marie posting in a LunarBid thread at OTWA in 2005 wins the award for 'most moronic reason ever given for choosing a venue"
"thanks twat u must have nothing better 2 do. do u talk to all your members like that. will not be recomending your site. best way to put it is TULIPTOOLS.COM IS REALLY SHIT. DONT JOIN." -pubescent owner of rinky dink off2auction.com in 2011 |
|||
02-25-2006, 04:10 AM,
Post: #3
|
|||
|
|||
Re: Test your server for vulnerabilities with Nikto
[quote author=bargainbloodhound link=topic=2794.msg10015#msg10015 date=1140837519]
Only do it if you have 2 dedicated servers and you want to test them. If you have a site on a shared server and run that it will affect all 500 other sites on the server and the hosting company will complain to your ISP or shut your web site down if you're running it from another shared server because port scanning is against the TOS of most hosts (and ISPs)... which won't be fun for you. [/quote] Naturally, getting a free security audit from someone else is another option. http://www.acunetix.com/security%2Daudit/ |
|||
« Next Oldest | Next Newest »
|
Possibly Related Threads… | |||||
Thread | Author | Replies | Views | Last Post | |
Morons on Display at Boston University: Major Web Server Security Screwup | bargainbloodhound | 5 | 5,152 |
01-27-2012, 12:30 AM Last Post: bargainbloodhound |
|
50 Open Source Network and Server Security Tools | mandy | 0 | 2,795 |
11-11-2008, 10:30 AM Last Post: mandy |
|
Diagnosing a Hacked Linux Server | Kristijntje | 0 | 2,879 |
08-25-2007, 02:09 PM Last Post: Kristijntje |
|
Protecting your Web Server from Attacks: Why Web applications are at High Risk | mandy | 0 | 2,497 |
02-26-2007, 11:11 AM Last Post: mandy |
|
Top 5 Website Data Security Vulnerabilities | mandy | 0 | 2,426 |
09-19-2006, 10:41 AM Last Post: mandy |
|
How to improve the security of your OpenSSH server installations | mandy | 1 | 3,052 |
05-27-2006, 08:30 AM Last Post: mandy |
|
Secure Your Linux Server | regic | 0 | 2,475 |
03-25-2006, 05:52 PM Last Post: regic |
Users browsing this thread: 2 Guest(s)