Web Server Audit - please don't laugh after reading

This is part of the report by an external auditor after conducting security audit on a web server :

"In the vulnerability scan result, the Audit Team observed that some unused files exist in the web server www.abc.com. The files may disclose system information to the public. Although there are no sensitive information in the files, it is recommended to control access to files and information. The unnecessary files are :

1. www.abc.com/robots.txt
2. www.abc.com/favicon.ico "

Oh God ! If you want to laugh, I will not stop you.

No comments: