Re: Someone scanned my ssh daemon

To: debian-security@lists.debian.org
Subject: Re: Someone scanned my ssh daemon
From: "TiM" <tim@muppetz.com>
Date: Mon, 16 Jun 2003 15:20:56 +1200 (NZST)
Message-id: <[🔎] 1904.10.200.3.117.1055733656.squirrel@muffin.tsnz.net>
In-reply-to: <[🔎] 20030616023824.GA8813@bilmuh.ege.edu.tr>
References: <[🔎] 20030616023824.GA8813@bilmuh.ege.edu.tr>

I don't like the fact it has to give away I'm running Debian.

For example:

My Slackware box:
tim@muffin:~> telnet xxxxx.tsnz.net 22
Trying 203.97.131.xxx...
Connected to xxxxx.tsnz.net.
Escape character is '^]'.
SSH-1.99-OpenSSH_3.6.1p1

My Debian box:
Connection closed by foreign host.
tim@muffin:~> telnet xxxxxx.com 22
Trying 203.167.224.xxxx...
Connected to xxxxxx.com.
Escape character is '^]'.
SSH-2.0-OpenSSH_3.4p1 Debian 1:3.4p1-1

You're right, it doesn't really matter too much, a box should be secure.

But if the kiddies only have an exploit that works only on Debian woody,
they're going to know to target my box.
Make them work for their information :)

Tim

Reply to:

Follow-Ups:
- Re: Someone scanned my ssh daemon
  - From: David B Harris <david@eelf.ddts.net>
- Re: Someone scanned my ssh daemon
  - From: Halil Demirezen <halild@bilmuh.ege.edu.tr>

References:
- Re: Someone scanned my ssh daemon
  - From: Halil Demirezen <halild@bilmuh.ege.edu.tr>

Prev by Date: Re: Someone scanned my ssh daemon
Next by Date: Re: Someone scanned my ssh daemon
Previous by thread: Re: Someone scanned my ssh daemon
Next by thread: Re: Someone scanned my ssh daemon
Index(es):
- Date
- Thread