Date: Mon, 17 Feb 2020 11:02:55 -0600 From: Valeri Galtsev <galtsev@kicp.uchicago.edu> To: =?utf-8?Q?=C3=96zg=C3=BCr_Kazancci?= <ozgur@kazancci.com> Cc: David Mehler <dave.mehler@gmail.com>, freebsd-questions <freebsd-questions@freebsd.org>, owner-freebsd-questions@freebsd.org Subject: Re: tightening sshd, removing server identification banner Message-ID: <0E539BE9-C479-4374-8568-5FDA5A910F3C@kicp.uchicago.edu> In-Reply-To: <036b6d54c51d5d7ae9934415b60369f8@kazancci.com> References: <CAPORhP4JmTB-Cf04Mgtae9EnHCRPe=5LHs_xtbZE%2BAPoP6pVbg@mail.gmail.com> <036b6d54c51d5d7ae9934415b60369f8@kazancci.com>
next in thread | previous in thread | raw e-mail | index | archive | help
> On Feb 17, 2020, at 10:58 AM, Özgür Kazancci <ozgur@kazancci.com> wrote: > > Hello David, > > If you're sure you uncommented these lines, > #VersionAddendum none > #Banner none > As far as I know, uncommenting lines in sshd_config is unnecessary. These are put there as commented lines to indicate defaults which sshd was build with, so they are already in effect. That is why good practice is when changing something to keep commented line as it is, and add next to it yours not commented different setting. Valeri > and restarted the sshd, then there is no much else left -imho-. A complete removal of SSHD banner (if that's what you're trying to do) requires a manual edit of OpenSSH(d) files&complete complication of it from scratch. > > Best, > Özgür. > > > > > On 17/02/2020 19:53, David Mehler wrote: >> Hello, >> I'm running FreeBSD 12.0. I'm atempting to tighten up my sshd >> configuration. I've got things where I want them, except for the >> connecting banner. I'm using sshaudit.com to test things and this is >> what it's saying for the banner setting: >> Banner:SSH-2.0-OpenSSH_7.8 FreeBSD-20180909 >> I would rather this be set to nothing or at most very minimal. Google >> and the sshd_config man page reveals the Banner and VersionAdendum >> options. I've set both to none. >> PrintMotd no >> #PrintLastLog yes >> #VersionAddendum none >> #Banner none >> Can anyone tell me how to get the results I am looking for? >> Thanks. >> Dave. >> _______________________________________________ >> freebsd-questions@freebsd.org mailing list >> https://lists.freebsd.org/mailman/listinfo/freebsd-questions >> To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org" > _______________________________________________ > freebsd-questions@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org" ++++++++++++++++++++++++++++++++++++++++ Valeri Galtsev Sr System Administrator Department of Astronomy and Astrophysics Kavli Institute for Cosmological Physics University of Chicago Phone: 773-702-4247 ++++++++++++++++++++++++++++++++++++++++
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?0E539BE9-C479-4374-8568-5FDA5A910F3C>