We have hired a security company to perform a penetration test. One of the tests they performed reported a risk. Here is the test parameters:
The Pentest company executed:
ncat --ssl (our static IP) 443
GET / HTTP/1.1
HOST:(our static IP)
The response given by our firewall was:
HTTP/1.1 417 Expectation Failed
Date: Tue, 15 May 2012 18:58:45 GMT
Content-Type: text/html; charset=iso-8859-1
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<title>417 Expectation Failed</title>
The expectation given in the Expect request-header
field could not be met by this server.<p>
The client sent<pre>
but we only allow the 100-continue expectation.
What I am wondering is what I must do to change the response by our Firewall so that the security tester does not believe that we are vulnerable to cross site scripting.
Our firewall is:
Firmware: Fortigate-60 2.50,build171,031215
Any suggestions would be appreciated. Thanks.