FreeBSD Security + Firewall set up

Julian Rawcliffe julian.rawcliffe at ntlworld.com
Wed Nov 27 23:16:48 GMT 2002


On Wednesday 27 November 2002 12:10, Dimitris wrote:
> For example, my sshd reports:
> SSH-1.99-OpenSSH_3.4p1 FreeBSD-20020702
...snip...
> I consider this a security risk. I take all precautions not to advertise
> the operating system that i'm using, and sshd just plainly does the
> opposite :(
>
In the /etc/ssh/sshd_config there is the following setting:
#VersionAddendum FreeBSD-20020629

> Idealy, it shouldn't even report the version number (3.4p1) just in case
Look at the configuration optins for the banner to be displayed. It is very
simple to put up a 'bog off' message to any visitors, or indeed, to display
nothing when a connection is made.

Jules




More information about the Ukfreebsd mailing list