Solved: Removal hostname information from Gaia Web UI

AntonMakarychev · ‎2023-03-29

Hi, Checkmates!

I would like to share with you one tip I found out when I was trying to resolve audit findings.

One of audit findings was that there shouldn't be hostname exposed when Gaia portal page is loaded.

I haven't found any Check Point article regarding that so made my own investigation.

Using Browser developers tools I found out that the file login.js is loading during the page opening.

After that I logged in to the gateway and found the location of the file is /web/htdocs2/js/

And the section which is responsible for hostname displaying:

Instruction how to disable hostname from Check Point Gaia Web UI:

Connect to the gateway
Go to path /web/htdocs2/js/
Backup the login.js file as below

cp login.js login.js_bkp

4. Edit the login.js file using Vi editor

5. Remove the below lines related to hostname

{

xtype: 'displayfield',

id: 'hostname_caption_id',

//cls: 'webui_version_hbox',

value: hostname,

hidden: false,

hideLabel: true,

listeners: {

beforerender: function(){

if (this.value == "") {

this.hidden=true;

}

else {

this.hidden=false;

}

6. Save the file.

7. Restart the httpd2 process on the gateway using below commands:

tell pm httpd2

tell pm httpd2 t

Hope this helps! Thank you!

Update:

You can change the setting also through Web UI settings:

If this checkbox is disabled but you still have hostname shown just enable and then disable it again.

AntonMakarychev · ‎2023-03-29

Actually I found this setting in the portal:

It was disabled by default but hostname was shown.

After I enabled/disabled it once again the hostname disappeared.

View solution in original post

the_rock · ‎2023-03-29

Thanks for sharing!

Best,
Andy
"Have a great day and if its not, change it"

G_W_Albrecht · ‎2023-03-29

Do you understand what is hidden here ?

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist

the_rock · ‎2023-03-29

Lets let @AntonMakarychev confirm, but I believe he may be referring to below:

Best,
Andy
"Have a great day and if its not, change it"

AntonMakarychev · ‎2023-03-29

I attached the screenshot, the hostname is exposed in the login page. Here it doesn't make sense to hide anything as an intruder needs to know credentials to get to this page.

G_W_Albrecht · ‎2023-03-29

He talks about something shown before login.

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist

G_W_Albrecht · ‎2023-03-29

You wrote: One of audit findings was that there shouldn't be hostname exposed when Gaia portal page is loaded.

Can you show in a screenshot what you mean ? I never see a hostname for my GWs, only IPs !

Also, why deleting lines at all ? Usually you just comment them out and leave a note there when and why you did that...

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist

AntonMakarychev · ‎2023-03-29

That's hostname that will be hidden. As a potential intruder will be able to load this page and get information about naming convention in the organisation.

G_W_Albrecht · ‎2023-03-29

I have defined a GW hostname but never had anything at that spot !

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist

the_rock · ‎2023-03-29

Me neither, checked 5 devices 🙂

Best,
Andy
"Have a great day and if its not, change it"

AntonMakarychev · ‎2023-03-29

Actually I found this setting in the portal:

It was disabled by default but hostname was shown.

After I enabled/disabled it once again the hostname disappeared.

the_rock · ‎2023-03-29

100% correct...I found one appliance in my lab where it shows and that setting is the reason 👍

Best,
Andy
"Have a great day and if its not, change it"

AntonMakarychev · ‎2023-03-29

But anyway it is good to know how you can customise the login page.

the_rock · ‎2023-03-29

Best,
Andy
"Have a great day and if its not, change it"

AntonMakarychev · ‎2023-03-29

Regarding deletion, yes you can comment this section - the result will be the same.

Are you a member of CheckMates?

Removal hostname information from Gaia Web UI