Automate Recon and scanning process with Vidoc. All security teams in one place
By kannthu
The Apache License File module is a test case used in the Vidoc platform to detect misconfigurations related to the Apache license file. It targets websites or applications that use the Apache license and checks if the license file is properly configured.
This module has a severity level of low, indicating that the misconfiguration detected by this module may have minimal impact on the security of the website or application.
The misconfiguration detected by this module may expose sensitive information present in the Apache license file. This information can include details about the license, copyright owner, and other related information.
The Apache License File module works by sending an HTTP GET request to the /.licenserc.yaml
path of the target website or application. It then applies matching conditions to determine if the license file is properly configured.
The matching conditions used by this module are:
- The response body must contain the words header:, license:, and copyright-owner:. - The HTTP response status code must be 200.If both matching conditions are met, the module reports a misconfiguration related to the Apache license file.
For more information about the Apache License, please visit the Apache License website.