[linux] zakazanie zobrazovania verzie ssh

[Andrej Hosna]

On Friday 04 April 2003 15:11, Marek Simon wrote:
> > Takato "security by obscurity" odradi len script-kiddies.
> > Realne je to skoro nanic.
>
> 80-90 % pokusov robia prave oni a rozne skenery ktore spustia.
> Takze taketo nieco nie je uplne nanic.
> Aj ked vhodnejsie sa mi zda hodit sshd na iny vysoky a nezvycajny port.
> Je to jednoduchsie a rychlejsie ako prekompilovavat zdrojaky...
>
> > Ovela lepsie je upgradnut sshd :-).
>
> to je bez debaty
> xmodo

[root na osiris openssh-3.6p1]# grep -n "SSH_VERSION" *
grep: autom4te-2.53.cache: Is a directory
grep: contrib: Is a directory
grep: openbsd-compat: Is a directory
grep: regress: Is a directory
grep: scard: Is a directory
ssh.c:361:                          SSH_VERSION,
sshconnect.c:447:           SSH_VERSION);
sshd.c:371:     snprintf(buf, sizeof buf, "SSH-%d.%d-%.100s\n", major, minor, 
SSH_VERSION);
sshd.c:777:     fprintf(stderr, "sshd version %s\n", SSH_VERSION);
sshd.c:978:     debug("sshd version %.100s", SSH_VERSION);
version.h:3:#define SSH_VERSION "OpenSSH_3.6p1
[root na osiris openssh-3.6p1]#
eeee... dufam ze je to jasne...
vi version.h; make; make install; 

alebo ked si lenivy tak
hexedit /usr/sbin/sshd
TAB
/
OpenSSH_3.6
najde text
zmen tak ako potrebujes celkovo vsak menej znakov ako strlen("OpenSSH_3.6p1")
ak by si xcel kratsi zakonci \00 (nulou).
F2 
dovidenia

--
Andrej HOSNA (Andrej.Hosna na iblsoft.com) 
IBL Software Engineering, http://www.iblsoft.com 
Stare Zahrady 35, 82105 Bratislava, Slovakia 
Tel: +421-2-43427449, fax: +421-2-43427214