Date: Sat, 16 Mar 2002 00:47:57 -0600 From: Christopher Schulte <schulte+freebsd@nospam.schulte.org> To: "alexus" <ml@db.nexgen.com>, "Garrett Wollman" <wollman@lcs.mit.edu> Cc: <freebsd-security@FreeBSD.ORG> Subject: Re: openssh Message-ID: <5.1.0.14.0.20020316004252.0504be40@pop3s.schulte.org> In-Reply-To: <001701c1cc93$ba83e770$0100a8c0@alexus> References: <OFB285D2C2.309E2F56-ON87256B7D.0074468F@tsainc.com> <5.1.0.14.0.20020315153913.061b8ea8@pop3s.schulte.org> <005a01c1cc79$307ea5c0$0100a8c0@alexus> <200203152353.g2FNrmt99923@khavrinen.lcs.mit.edu>
next in thread | previous in thread | raw e-mail | index | archive | help
At 09:38 PM 3/15/2002 -0500, alexus wrote: >the only reason i wanted it to be removed is due to when scaners scan my box >they saying that my box is vulnerable due to it runs 2.9.x instead of latest >3.1.x, and sine i run -STABLE i'm pretty much sure that there is no >vulnerabilty there. I promise that you will be probed no matter what the banner version says. If you don't like this, firewall the port off from the public network. That will stop the probes. As was already spoken of, the banner is part of the client/server protocol handshake, you'd be better off leaving it well alone. -- Christopher Schulte http://www.schulte.org/ Do not un-munge my @nospam.schulte.org email address. This address is valid. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?5.1.0.14.0.20020316004252.0504be40>