From owner-freebsd-security Fri Mar 15 22:48: 8 2002 Delivered-To: freebsd-security@freebsd.org Received: from clink.schulte.org (clink.schulte.org [209.134.156.193]) by hub.freebsd.org (Postfix) with ESMTP id 8F21537B400 for ; Fri, 15 Mar 2002 22:48:04 -0800 (PST) Received: from tarmap.nospam.schulte.org (tarmap.schulte.org [209.134.156.198]) by clink.schulte.org (Postfix) with ESMTP id BD26D243BF; Sat, 16 Mar 2002 00:48:01 -0600 (CST) Message-Id: <5.1.0.14.0.20020316004252.0504be40@pop3s.schulte.org> X-Sender: (Unverified) X-Mailer: QUALCOMM Windows Eudora Version 5.1 Date: Sat, 16 Mar 2002 00:47:57 -0600 To: "alexus" , "Garrett Wollman" From: Christopher Schulte Subject: Re: openssh Cc: In-Reply-To: <001701c1cc93$ba83e770$0100a8c0@alexus> References: <5.1.0.14.0.20020315153913.061b8ea8@pop3s.schulte.org> <005a01c1cc79$307ea5c0$0100a8c0@alexus> <200203152353.g2FNrmt99923@khavrinen.lcs.mit.edu> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org At 09:38 PM 3/15/2002 -0500, alexus wrote: >the only reason i wanted it to be removed is due to when scaners scan my box >they saying that my box is vulnerable due to it runs 2.9.x instead of latest >3.1.x, and sine i run -STABLE i'm pretty much sure that there is no >vulnerabilty there. I promise that you will be probed no matter what the banner version says. If you don't like this, firewall the port off from the public network. That will stop the probes. As was already spoken of, the banner is part of the client/server protocol handshake, you'd be better off leaving it well alone. -- Christopher Schulte http://www.schulte.org/ Do not un-munge my @nospam.schulte.org email address. This address is valid. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message