Web Server Signature and the Etag is directly related to the installed NetVault Version.
Please ignore this vulnerability message you might encounter with Nessus, OpenVAS or similar security scanners.
Background Information:
Testing Parameters:
NetVault Version: 10.0.1.38
IP Address of the underlying OS: 10.10.236.209
NV Web Services are configured to use Default TCP Port 8443
Self Signed Certificate
List PID and IPs related to Port 8443
netstat -ano | findstr 8443
TCP 0.0.0.0:8443 0.0.0.0:0 LISTENING 4388
tasklist | findstr 4388
nvwsrequesthandler.exe 4388 Services 0 6,660 K
##################################################
Retrieving the HTTP Header from the NetVault Webservices:
C:\Program Files (x86)\GnuWin32\bin>wget -S --no-check-certificate https://10.10.236.209:8443
SYSTEM_WGETRC = c:/progra~1/wget/etc/wgetrc
syswgetrc = C:\Program Files (x86)\GnuWin32/etc/wgetrc
--2015-03-31 14:40:34-- https://10.10.236.209:8443/
Connecting to 10.10.236.209:8443... connected.
WARNING: cannot verify 10.10.236.209's certificate, issued by `/C=EX/ST=State/L=City/O=Compmany/OU=Department/CN=localhost':
Self-signed certificate encountered.
WARNING: certificate common name `localhost' doesn't match requested host name `10.10.236.209'.
HTTP request sent, awaiting response...
HTTP/1.1 200 OK
Date:Tue, 31 Mar 2015 13:40:35 GMT
Server:10.0.1.38
Connection:Keep-Alive
Keep-Alive:timeout=20
Content-Length:3594
Content-Type:text/html;charset=utf-8
Etag:10.0.1.38
Cache-control:max-age=31556952
Length: 3594 (3.5K) [text/html]
Saving to: `index.html'
Server:10.0.1.38
Etag:10.0.1.38
The IP Address of the NetVault Server is not disclosed in the HTTP Header.
http://www.gnu.org/
http://gnuwin32.sourceforge.net/packages/wget.htm