Re: ssh problems with {master,va}.debian.org???

To: debian-devel@lists.debian.org
Subject: Re: ssh problems with {master,va}.debian.org???
From: Robert Bihlmeyer <robbe@orcus.priv.at>
Date: 25 May 2000 12:51:13 +0200
Message-id: <[🔎] 87wvkidhsu.fsf@hoss.orcus.priv.at>
In-reply-to: Michael Stone's message of "Wed, 24 May 2000 13:30:14 -0400"
References: <[🔎] 20000517135244.D1121@glitch.snoozer.net> <[🔎] 200005171909.OAA31214@core.federated.com> <[🔎] 20000521173603.A11403@pimlott.ne.mediaone.net> <[🔎] 20000523113829.B10650@scowler.net> <[🔎] 20000524122658.A5100@pimlott.ne.mediaone.net> <[🔎] 20000524133014.F14169@justice.loyola.edu>

Michael Stone <mstone@debian.org> writes:

> You may want to make it more difficult for someone to get *any* info
> about your ssh. If you enable access from only certain hosts via
> wrappers, you won't be advertising your ssh version and protocol number,
> and would be making it harder to launch an attack on the daemon.

For master, this is probably irrelevant. The ssh version running is
probably in the last 3 versions that were in the debian archive, no?
Having ssh open also allows scanning for usernames, which is also not
a big concern on master.

I don't think PARANOID gains much here.

-- 
Robbe

Reply to:

Follow-Ups:
- Re: ssh problems with {master,va}.debian.org???
  - From: Michael Stone <mstone@debian.org>
- Re: ssh problems with {master,va}.debian.org???
  - From: Torsten Landschoff <t.landschoff@gmx.net>

References:
- ssh problems with {master,va}.debian.org???
  - From: "Gregory T. Norris" <adric@debian.org>
- Re: ssh problems with {master,va}.debian.org???
  - From: Jim Studt <jim@federated.com>
- Re: ssh problems with {master,va}.debian.org???
  - From: Andrew Pimlott <andrew@pimlott.ne.mediaone.net>
- Re: ssh problems with {master,va}.debian.org???
  - From: Clint Adams <schizo@debian.org>
- Re: ssh problems with {master,va}.debian.org???
  - From: Andrew Pimlott <andrew@pimlott.ne.mediaone.net>
- Re: ssh problems with {master,va}.debian.org???
  - From: Michael Stone <mstone@debian.org>

Prev by Date: Re: CD images and US export laws
Next by Date: Re: ITP: sn, amiwm, flashplayer
Previous by thread: Re: ssh problems with {master,va}.debian.org???
Next by thread: Re: ssh problems with {master,va}.debian.org???
Index(es):
- Date
- Thread