Am 2019-08-01 um 21:19 schrieb Mark Thomas:
On 01/08/2019 20:07, Justiniano, Tony wrote:
And that is what I was thinking, inadvertently, our scanning tool just found
the apache version during a scan and corresponded it (the apache version) with
a CVE.
Do you concur?
Sounds likely. Most low quality scanning tools only look at the version
number.
I was told the same security by obscurity nonsense by our ISEC team.
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org