Date: Mon, 17 Feb 2020 11:02:55 -0600 From: Valeri Galtsev <galtsev@kicp.uchicago.edu> To: =?utf-8?Q?=C3=96zg=C3=BCr_Kazancci?= <ozgur@kazancci.com> Cc: David Mehler <dave.mehler@gmail.com>, freebsd-questions <freebsd-questions@freebsd.org>, owner-freebsd-questions@freebsd.org Subject: Re: tightening sshd, removing server identification banner Message-ID: <0E539BE9-C479-4374-8568-5FDA5A910F3C@kicp.uchicago.edu> In-Reply-To: <036b6d54c51d5d7ae9934415b60369f8@kazancci.com> References: <CAPORhP4JmTB-Cf04Mgtae9EnHCRPe=5LHs_xtbZE%2BAPoP6pVbg@mail.gmail.com> <036b6d54c51d5d7ae9934415b60369f8@kazancci.com>
next in thread | previous in thread | raw e-mail | index | archive | help
> On Feb 17, 2020, at 10:58 AM, =C3=96zg=C3=BCr Kazancci = <ozgur@kazancci.com> wrote: >=20 > Hello David, >=20 > If you're sure you uncommented these lines, > #VersionAddendum none > #Banner none >=20 As far as I know, uncommenting lines in sshd_config is unnecessary. = These are put there as commented lines to indicate defaults which sshd = was build with, so they are already in effect. That is why good practice = is when changing something to keep commented line as it is, and add next = to it yours not commented different setting. Valeri > and restarted the sshd, then there is no much else left -imho-. A = complete removal of SSHD banner (if that's what you're trying to do) = requires a manual edit of OpenSSH(d) files&complete complication of it = from scratch. >=20 > Best, > =C3=96zg=C3=BCr. >=20 >=20 >=20 >=20 > On 17/02/2020 19:53, David Mehler wrote: >> Hello, >> I'm running FreeBSD 12.0. I'm atempting to tighten up my sshd >> configuration. I've got things where I want them, except for the >> connecting banner. I'm using sshaudit.com to test things and this is >> what it's saying for the banner setting: >> Banner:SSH-2.0-OpenSSH_7.8 FreeBSD-20180909 >> I would rather this be set to nothing or at most very minimal. Google >> and the sshd_config man page reveals the Banner and VersionAdendum >> options. I've set both to none. >> PrintMotd no >> #PrintLastLog yes >> #VersionAddendum none >> #Banner none >> Can anyone tell me how to get the results I am looking for? >> Thanks. >> Dave. >> _______________________________________________ >> freebsd-questions@freebsd.org mailing list >> https://lists.freebsd.org/mailman/listinfo/freebsd-questions >> To unsubscribe, send any mail to = "freebsd-questions-unsubscribe@freebsd.org" > _______________________________________________ > freebsd-questions@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to = "freebsd-questions-unsubscribe@freebsd.org" ++++++++++++++++++++++++++++++++++++++++ Valeri Galtsev Sr System Administrator Department of Astronomy and Astrophysics Kavli Institute for Cosmological Physics University of Chicago Phone: 773-702-4247 ++++++++++++++++++++++++++++++++++++++++
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?0E539BE9-C479-4374-8568-5FDA5A910F3C>