Hello.
I was setup Hotspot service on Mikrotik router and redirect http traffic for specified resource via Mikrotik Web Proxy. It’s very similar to Wallet Garden functional, but via embedded proxy. On the proxy I permit only main page of resource.
Now if I start capture traffic via Wireshark and goes from main page of resource to it’s another page, I get proxy error page in browser. In Wireshark this error page contained in 403 forbidden http reply (see attached screenshot). And we can see, that Server is Mikrotik HttpProxy.
VULNERABILITY: Hotspot is untrusted environment and we want hide our network infrastructure from Hotspot authorized and unauthorized customers, so they must don’t know what equipment we use.
I think, there is must be possible to customize Server string or hide it by wish.
