Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Web Server Allows Password Auto-Completion
Special Forums Cybersecurity Web Server Allows Password Auto-Completion Post 302724065 by saurabh84g on Wednesday 31st of October 2012 07:17:31 AM
Old 10-31-2012
Web Server Allows Password Auto-Completion
Hi,

After running 'nessus' tool to find the Vulnerability in server

OS - RHEL 5

we got "
Web Server Allows Password Auto-Completion (PCI-DSS variant)"

link for description provided by tools - report



Nessus Plugins | Tenable Network Security


I have checked - Their is only default installation is done and only apache and mysql database is running.


After checking the desc - we need to set Auto- Completion to OFF" in Apache somewhere but i am not able to find where to do.......


we have an audit to be schedules before that have to fix this
 

4 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

Web Server - uploading Frontpage web - will there be problems??

hiya All, New to this Web site stuff. Will be installing Fedora's latest O/S (including Apache) - onto a spare PC Then... Gulp... setting up a Web server. Designing a Web site using WINDOWS FRONT PAGE 2002: * Simply easiest/quickiest way to knock up a basic site. * There won't be... (6 Replies)
Discussion started by: marty 600
6 Replies

2. Shell Programming and Scripting

File name auto completion not working in KSH.Please help

Hi All, I am using SunOS 5.8 verison with KSH shell. My problem is I am not getting auto completion of file name on pressing of TAB or ESC key. While pressing ESC key , '^[' is getting printed . TAB is printing doin nothin but jus printing tab. What should I do to get auto completion of... (3 Replies)
Discussion started by: Sooraj_Linux
3 Replies

3. Shell Programming and Scripting

Auto completion of file name in KSH.

Hi All, I am using SunOS 5.8 verison with KSH shell. My problem is I am not getting auto completion of file name on pressing of TAB or ESC key. While pressing ESC key , '^[' is getting printed . TAB is printing doin nothin but jus printing tab. What should I do to get auto completion of... (2 Replies)
Discussion started by: Sooraj_Linux
2 Replies

4. Shell Programming and Scripting

Auto Script to Access external Server via SFTP using Password and Key

Hello All, I am stuck! I have access to an external server via SFTP. In order to access the external server I was given a specific port, password, and a ppk. I would to create a script on my server end that can I can setup as a corn job, that will connect to the external server and... (1 Reply)
Discussion started by: kingr008
1 Replies

LEARN ABOUT HPUX

emsweb

emsweb(1M)																emsweb(1M)

NAME

       emsweb - starts the HP-UX Event Monitoring Service tool (a Web interface)

SYNOPSIS

       [ ] [ ]

DESCRIPTION

       The HP-UX Event Monitoring Service tool ( ) is used to monitor resource instances and manages requests created on these instances.

       The  HP-UX  Event  Monitoring Service tool provides both Web-based and terminal user interface. The Web-based interface is launched through
       the HP System Management Homepage.

       Superuser privileges are required to access the HP-UX Event Monitoring Service tool. A user who does  not  have	superuser  privileges  has
       read-only access to the requests area in the HP-UX Event Monitoring Service tool and cannot modify requests.

       An  attempt  will be made to connect to a Mozilla/Netscape Web browser running on the X server defined by the DISPLAY environment variable.
       If a running Mozilla/Netscape client is found, it will be used, otherwise a new Mozilla/Netscape session will be initiated. This will  only
       happen  if  the	Mozilla/Netscape process is running in the same system as that referenced by the DISPLAY variable, unless the -F option is
       used.

       Note: By default, the HP-UX Event Monitoring Service tool (emsweb) invokes the Mozilla Web browser.  If	you  want  to  support	any  other
       browser (Netscape), set the $BROWSER environment variable as shown below:

       The terminal user interface is invoked if any of the following conditions are true:

	      o  The command is invoked with the option.

	      o  The environment variable is not set.

       The Web-based interface is launched if all the following conditions are true:

	      o  The command is invoked with option.

	      o  The environment variable is set.

	      o  The command is available on the system.

       If the Web-based interface cannot be launched, invokes the terminal user interface.

   Options
       recognizes the following options:

	      Forces a client browser to be used in less secure ways.

			The  option  forces the client browser to be used or started, even when the X-traffic between the X-server and the Mozilla
			browser is not secure.

			Use this option only when you are sure the network traffic between the host where Mozilla is running and the host  in  the
			DISPLAY variable is secure.

			If cannot start the Web browser, the terminal interface is started.

			When the HP-UX Event Monitoring Service Web interface is invoked by SAM, the option is used.

	      If a privileged user (root) executes the
			command  with  the  option,  a	temporary login bypass key is generated. The bypass key enables the user to access the Web
			interface without having to provide login information again.

			When the HP-UX Event Monitoring Service Web interface is invoked by SAM, the option is used.

	      Opens the terminal interface for managing requests created to monitor resource instances regardless of the current setting of the
			environment variable.

       You can also start the HP-UX Event Monitoring Service tool using one of the following methods:

	      o  Invoke and select the Event Monitoring Service (character mode) functional area to launch the terminal  user  interface  and  the
		 Event Monitoring Service (Web-based Interface) to launch the Web-based tool

	      o  Invoke the HP-UX Event Monitoring Service tool Web interface by typing the URL in the address bar of your browser, where hostname
		 is the name of the server

	      o  Launch the HP-UX Systems Insight Manager on the server and select the Event Monitoring Service tool from the Configure  ->  HP-UX
		 Configuration menu

Online Help
       After the HP-UX Event Monitoring Service tool is started, the online help provides details on how to use the tool.

RETURN VALUES

       Upon completion, emsweb returns one of the following values:

	      o  0    Successful

	      o  1    An error occurred

AUTHOR

       was developed by Hewlett-Packard.

SEE ALSO

       emscli(1M), resls(1), resdata(1)

																	emsweb(1M)
All times are GMT -4. The time now is 08:42 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy