From owner-freebsd-security Thu Apr 26 7:54:55 2001 Delivered-To: freebsd-security@freebsd.org Received: from khavrinen.lcs.mit.edu (khavrinen.lcs.mit.edu [18.24.4.193]) by hub.freebsd.org (Postfix) with ESMTP id 3753637B423 for ; Thu, 26 Apr 2001 07:54:52 -0700 (PDT) (envelope-from wollman@khavrinen.lcs.mit.edu) Received: (from wollman@localhost) by khavrinen.lcs.mit.edu (8.9.3/8.9.3) id KAA21751; Thu, 26 Apr 2001 10:54:35 -0400 (EDT) (envelope-from wollman) Date: Thu, 26 Apr 2001 10:54:35 -0400 (EDT) From: Garrett Wollman Message-Id: <200104261454.KAA21751@khavrinen.lcs.mit.edu> To: ignacio Cc: "freebsd-security@FreeBSD.ORG" Subject: User-Agent In-Reply-To: <3AE7F976.D6F3CAC2@infovia.com.ar> References: <3AE7F976.D6F3CAC2@infovia.com.ar> Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org < said: > 2) How can I hide that info. Use a proxy such as squid. I run two proxies: one that completely anonymizes the headers, and one that doesn't. (The former is vastly more popular.) The anonymizing proxy is configured to supply: User-Agent: ANONYM/1.0 (ITS; KL-10) (something of an in-joke). It used to be configured not to supply any User-Agent header, but then I ran into a broken Web site (I think IMDB) which absolutely insisted on getting one, so I made something up for its benefit. If you do this, you will run into many Web sites which (in violation of standards) use the User-Agent header to determine which content to serve to you -- or, as happens more often, which content to refuse to serve to you. For this reason, it's probably safest to pretend that you are running IE5 on Win98. What this has to do with security I have no idea, so please move follow-ups to a more appropriate mailing-list. -GAWollman To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message