Date: Fri, 23 Jul 2004 22:53:38 -0600 From: Aaron Dalton <aaron@daltons.ca> To: Lowell Gilbert <freebsd-questions-local@be-well.ilk.org> Cc: freebsd-questions@freebsd.org Subject: Re: Hiding SSH version string Message-ID: <200407232253.38916.aaron@daltons.ca> In-Reply-To: <441xj2gqgk.fsf@be-well.ilk.org> References: <20040723120101.C832C16A4D9@hub.freebsd.org> <200407231036.54467.aaron@daltons.ca> <441xj2gqgk.fsf@be-well.ilk.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On July 23, 2004 07:10 pm, Lowell Gilbert wrote: > I don't recommend anyone actually do this, because > > a) it serves no purpose (it certainly doesn't make you any more > secure, or even discourage any attackers) > > b) The version string is a part of the protocol itself, required by > the protocol specification > > c) you will be making life harder for auditors, system > administrators, and so > > If you're really determined, though, the strings are defined in > /usr/src/crypto/openssh/version.h Thank you so much for the information! I didn't realize it was part of the protocol. It was something I had heard about but didn't understand. Thank you again for your help! -- Aaron Dalton http://aaron.daltons.ca
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200407232253.38916.aaron>