From owner-freebsd-security  Fri Mar 15 15:29: 6 2002
Delivered-To: freebsd-security@freebsd.org
Received: from db.nexgen.com (db.nexgen.com [66.92.98.149])
	by hub.freebsd.org (Postfix) with SMTP id E2E9437B405
	for <freebsd-security@FreeBSD.ORG>; Fri, 15 Mar 2002 15:29:00 -0800 (PST)
Received: (qmail 87354 invoked from network); 15 Mar 2002 23:31:33 -0000
Received: from localhost.nexgen.com (HELO alexus) (root@127.0.0.1)
  by localhost.nexgen.com with SMTP; 15 Mar 2002 23:31:33 -0000
Message-ID: <005a01c1cc79$307ea5c0$0100a8c0@alexus>
From: "alexus" <ml@db.nexgen.com>
To: <vokeyc@aciworldwide.com>,
	"Christopher Schulte" <schulte+freebsd@nospam.schulte.org>
Cc: <freebsd-security@FreeBSD.ORG>,
	<owner-freebsd-security@FreeBSD.ORG>
References: <OFB285D2C2.309E2F56-ON87256B7D.0074468F@tsainc.com> <5.1.0.14.0.20020315153913.061b8ea8@pop3s.schulte.org>
Subject: Re: openssh
Date: Fri, 15 Mar 2002 18:29:01 -0500
MIME-Version: 1.0
Content-Type: text/plain;
	charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2600.0000
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-security.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-security>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-security>
X-Loop: FreeBSD.org

I understand that changing banner won't increase any security, i'm asking if
it's possible to remove it at all, I do not want for this banner to be
appear at all, period.

----- Original Message -----
From: "Christopher Schulte" <schulte+freebsd@nospam.schulte.org>
To: "alexus" <ml@db.nexgen.com>; <vokeyc@aciworldwide.com>
Cc: <freebsd-security@FreeBSD.ORG>; <owner-freebsd-security@FreeBSD.ORG>
Sent: Friday, March 15, 2002 4:41 PM
Subject: Re: openssh


> At 04:34 PM 3/15/2002 -0500, alexus wrote:
> >however most of the scaners they just look at the versions and they
> >automaticly assume that this server can be exploited just for reaosn i
run
> >ssh 2.9.x
>
> And quite a few scanner will probe you no matter what banner is displayed.
>
> Changing the banner will not increase your security.  Keeping up to date,
> using a packet filter, and having an IDS/backup will.
>
> --
> Christopher Schulte
> http://www.schulte.org/
> Do not un-munge my @nospam.schulte.org
> email address.  This address is valid.
>
>


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message