'.cnf' File Detection

info Nessus Network Monitor Plugin ID 4662

Synopsis

The remote web server is hosting .cnf files.

Description

The remote web server is hosting .cnf files.
Distributing such files over the web can be done, but the webmaster should make sure that they do not contain confidential data. '.cnf' files are typically configuration files that may contain information regarding application version, physical path and more.

Solution

Ensure that confidential data is not present within the '.cnf' file. Note: NNM only reports on the first occurence of this item on a web server. Parse your entire web source for similar occurrences.

Plugin Details

Severity: Info

ID: 4662

Family: Data Leakage

Published: 9/15/2008

Updated: 1/16/2019