| View previous topic :: View next topic |
| Author |
Message |
exklusve
Apprentice
Joined: 23 Aug 2002
Posts: 270
Location: currently ~/
|
 Posted: Thu Nov 21, 2002 10:38 pm Post subject: Hiding version of Apache and OpenSSH from port scanners. |
 |
|
If I run a port scan on my Gentoo box, I can see the versions of Apache and SSH I'm running. Even the mod_ssl.
Is there a way to make Apache and SSL not show this info??
I would really like to get rid of that. Just a few things I dont want advertised on my box.
Thanks!!
_________________
eXklusve
You do know that no one gives a shit about your system spec's right? |
|
| Back to top |
|
 |
rac
Bodhisattva
Joined: 30 May 2002
Posts: 6553
Location: Japanifornia
|
| Posted: Thu Nov 21, 2002 11:32 pm Post subject: |
|
|
How about "ServerTokens prod"?
_________________
For every higher wall, there is a taller ladder |
|
| Back to top |
|
|
exklusve
Apprentice
Joined: 23 Aug 2002
Posts: 270
Location: currently ~/
|
| Posted: Thu Nov 21, 2002 11:34 pm Post subject: Hiding version of Apache and OpenSSH from port scanners. |
|
|
I'm sorry I dont follow.
_________________
eXklusve
You do know that no one gives a shit about your system spec's right? |
|
| Back to top |
|
|
exklusve
Apprentice
Joined: 23 Aug 2002
Posts: 270
Location: currently ~/
|
| Posted: Thu Nov 21, 2002 11:36 pm Post subject: Hiding version of Apache and OpenSSH from port scanners. |
|
|
oops. I know what you are talking about. i'll look it up on google.
and post any findings.
Thanx!!
_________________
eXklusve
You do know that no one gives a shit about your system spec's right? |
|
| Back to top |
|
|
rac
Bodhisattva
Joined: 30 May 2002
Posts: 6553
Location: Japanifornia
|
|
| Back to top |
|
|
exklusve
Apprentice
Joined: 23 Aug 2002
Posts: 270
Location: currently ~/
|
| Posted: Thu Nov 21, 2002 11:49 pm Post subject: Hiding version of Apache and OpenSSH from port scanners. |
|
|
I added this to my
/etc/apache/conf/apache.conf
and now theres no version for apache.
Now to just get that working on SSH 
thanx!!
_________________
eXklusve
You do know that no one gives a shit about your system spec's right? |
|
| Back to top |
|
|
purecaca
n00b
Joined: 10 Jul 2002
Posts: 10
Location: Denmark
|
| Posted: Sat Jan 04, 2003 1:38 am Post subject: openssh cant work without that info |
|
|
| openssh cant work without that information available, someone suggested a patch to remove the version info on the www.openssh.org 's maillinglist, and where told it wasnt posible |
|
| Back to top |
|
|
rtn
Guru
Joined: 15 Nov 2002
Posts: 427
|
| Posted: Mon Jan 06, 2003 6:29 am Post subject: Re: openssh cant work without that info |
|
|
| purecaca wrote: | | openssh cant work without that information available, someone suggested a patch to remove the version info on the www.openssh.org 's maillinglist, and where told it wasnt posible |
At a previous job, we examined that, and found that we could alter the
ssh version string in the source without breaking anything. It was a long
time ago, so you'd have to do your own testing but it worked just fine when
we did it a couple of years ago.
--rtn |
|
| Back to top |
|
|
|
Networking & Security
