[Bug 3862] New: Hide ssh(d) version

[bugzilla-daemon at mindrot.org]

https://bugzilla.mindrot.org/show_bug.cgi?id=3862

            Bug ID: 3862
           Summary: Hide ssh(d) version
           Product: Portable OpenSSH
           Version: 10.0p2
          Hardware: Other
                OS: All
            Status: NEW
          Severity: enhancement
          Priority: P5
         Component: ssh
          Assignee: unassigned-bugs at mindrot.org
          Reporter: sshdude at proton.me

In order to make fingerprinting and attacks harder it would be nice to
have an option which removes stuff like version string from the
handshake.
iirc it is sufficient that there is a "OpenSSH" string inside. But
beyond that nothing else is required.
There are some tutorials out there that do this by recompilation or
binary patching. But a native option would be more appropriate since
this seems to be a concern for quite a few users.

-- 
You are receiving this mail because:
You are watching the assignee of the bug.