Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Unauthenticated users can see to many infromations #432

Open
1 task done
radomizer opened this issue Dec 17, 2024 · 1 comment
Open
1 task done

Unauthenticated users can see to many infromations #432

radomizer opened this issue Dec 17, 2024 · 1 comment
Labels
enhancement

Comments

@radomizer
Copy link

Version

2.5.3

Details & Steps to reproduce

An unauthenticated user can see in the footer the product name and the version.
This makes it very easy for automatic crawlers find public websites and their open exploits to gain access.
These infos should be hidden for unauthenticated users especially how relevant the product is (containing lots of login data which makes it a potential high target)

Expectation

Remove footer for unatuhenticated users.

Error & Logs

No response

Execution environment

No response

Containerization

  • Docker

Additional information

No response
@Bubka
Copy link
Owner

Bubka commented Dec 31, 2024

Hi,
I agree the version number can ease finding an exposed instance. I am a bit skeptical for the product name.
Anyway, I added the request to the backlog, will think about it.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement
Projects
2FAuth backlog
Status: Todo
Milestone
No milestone
Development

No branches or pull requests
2 participants
@Bubka @radomizer