Re: Someone scanned my ssh daemon

To: Stefan Neufeind <stefan@neufeind.net>
Cc: debian-security@lists.debian.org
Subject: Re: Someone scanned my ssh daemon
From: Tomasz Papszun <tomek@lodz.tpsa.pl>
Date: Mon, 16 Jun 2003 15:32:56 +0200
Message-id: <[🔎] 20030616133256.GD15149@lodz.tpsa.pl>
In-reply-to: <[🔎] 3EEDD399.590.10EE9E7@localhost>
References: <[🔎] 1904.10.200.3.117.1055733656.squirrel@muffin.tsnz.net> <[🔎] 3EEDD399.590.10EE9E7@localhost>

On Mon, 16 Jun 2003 at 14:26:33 +0200, Stefan Neufeind wrote:
> On 16 Jun 2003 at 7:00, Halil Demirezen wrote:
> 
> > To be brief, I don't usually come accross that there is an exploit for
> > only effective to debian boxes. Plus, There are lots of ways to learn
> > what distribution you are running on your machine. telnet xxxx.com 80
> > and do some returns and you get the info you are running apache with
> > php xxx support on debian box. 
> > 
> > This is not only ssh case.
> 
> Well, but for e.g. php I don't see why this is necessary. Anybody 
> wrote a doc on how to suppress unnecessary version-messages? I'd be 
> really interested in such things ...
> 

In apache's config:

ServerTokens ProductOnly
ServerSignature Off

-- 
 Tomasz Papszun   SysAdm @ TP S.A. Lodz, Poland  | And it's only
 tomek@lodz.tpsa.pl   http://www.lodz.tpsa.pl/   | ones and zeros.

Reply to:

Follow-Ups:
- Re: Someone scanned my ssh daemon
  - From: Mark Devin <mdevin@ozemail.com.au>

References:
- Re: Someone scanned my ssh daemon
  - From: "TiM" <tim@muppetz.com>
- Re: Someone scanned my ssh daemon
  - From: "Stefan Neufeind" <stefan@neufeind.net>

Prev by Date: Re: Someone scanned my ssh daemon
Next by Date: Re: 1/2 Price Omaha Steaks Plus 3 FREE Gifts!
Previous by thread: Re: Someone scanned my ssh daemon
Next by thread: Re: Someone scanned my ssh daemon
Index(es):
- Date
- Thread