Re: Stop SSHD from reporting distro and version?!

To: DebianUser List <debian-user@lists.debian.org>
Subject: Re: Stop SSHD from reporting distro and version?!
From: Greg Folkert <greg@gregfolkert.net>
Date: Tue, 17 Feb 2004 11:05:20 -0500
Message-id: <[🔎] 1077032971.28714.40.camel@king.gregfolkert.net>
Reply-to: greg@gregfolkert.net
In-reply-to: <[🔎] 20040217003653.3d54739e.kjkrum@comcast.net>
References: <[🔎] 20040217003653.3d54739e.kjkrum@comcast.net>

On Tue, 2004-02-17 at 00:36, Kevin Krumwiede wrote:
> When I telnet to port 22 on my 3.0r2 server, I see this:
> 
> SSH-2.0-OpenSSH_3.4p1 Debian 1:3.4p1-1.woody.3
> 
> Isn't that considered sensitive information?  Why advertise it so
> blatantly?  Can I turn this banner off?

I consider it fun... when someone actually looks at my banners...

It's called misdirection. I'd change the banner to read something
Impossible... or something extremely vulnerable.

-- 
greg@gregfolkert.net
REMEMBER ED CURRY! http://www.iwethey.org/ed_curry

Novell's Directory Services is a competitive product to Microsoft's
Active Directory in much the same way that the Saturn V is a competitive
product to those dinky little model rockets that kids light off down at
the playfield. -- Thane Walkup

Attachment: signature.asc
Description: This is a digitally signed message part

Reply to:

References:
- Stop SSHD from reporting distro and version?!
  - From: Kevin Krumwiede <kjkrum@comcast.net>

Prev by Date: Re: Debian Support policy
Next by Date: Using Debian X windows
Previous by thread: Re: Stop SSHD from reporting distro and version?!
Next by thread: Debian Sarge MIMEDefang with Exim
Index(es):
- Date
- Thread