關於弱點Host header attack

Yvonne
單位掃出此弱點,我參考以下網址文章做了設定,但還是無法通過此弱點測試
想請問各位先進是否有方法可以教授?

IIS 繫結綁定SERVER NAME(URL)
https://security.stackexchange.com/questions/54572/iis-host-header-attacks
https://blog.miniasp.com/post/2010/02/10/The-SetHostName-and-alternateHostName-in-IIS6-IIS7
https://heh3.github.io/windows/2017/08/01/e4-bb-8ehttp-e5-93-8d-e5-ba-94-e4-b8-ad-e5-88-a0-e9-99-a4iis-e6-9c-8d-e5-8a-a1-e5-99-a8-e7-9a-84ip-e5-9c-b0-e5-9d-80.html
------------
單位掃描圖1


單位掃描圖2


我主機設定
[img]https://imagizer.imageshack.com/img923/1656/VDiEeS.png[img]

[img]https://imagizer.imageshack.com/img922/631/FuF5OM.jpg[img]

[img]https://imagizer.imageshack.com/img923/849/36IQGZ.jpg[img]
Yvonne
我主機設定



回到頂部