If you want to make your TeamCity, Confuence or JIRA instance accessible from outside of your LAN, you should remove all version signatures so that no attacker can easily lookup for existing exploits.
- TeamCity: Open <TeamCity installation dir>/webapps/ROOT/WEB-INF/tags/version.tag and remove the full content from this file. You must restart the TeamCity service afterwards.
- Confluence: Open <Confluence installation dir>/confluence/decorators/includes/footer-content.vm and remove the line
<li class=”print-only”>$action.getText(‘printed.by.atlassian.confluence’,[“$generalUtil.versionNumber”])</li>Restart of Confluence service/instance is required. - JIRA: Open <JIRA installation dir>/atlassian-jira/WEB-INF/classes/templates/plugins/footer/footer.vm and remove the line
<span id=”footer-build-information”>(v${build.version}#${build.currentBuildNumber}${commitId}${partnerName})</span>
Restart of JIRA service/instance is required.
0 Comments