[Bug 2971] New: Prevent OpenSSH from advertising its version number
Jochen Bern
Jochen.Bern at binect.de
Wed Feb 20 21:59:19 AEDT 2019
On 02/20/2019 07:51 AM, Mark D. Baushke wrote:
> There are too just many cases where both OpenSSH interoperating with
> itself as well as other SSH implementations have needed this version
> number to properly deal with bugs in the code via negitations.
FWIW, and without dismissing the possibility of fingerprinting a server
in other ways, the fact that clients that *can* pass authentication have
a need to know the server's version number (and vice versa) does not
necessarily imply that that information needs to be passed in the
*public* part of the protocol ...
Regards,
--
Jochen Bern
Systemingenieur
www.binect.de
www.facebook.de/binect
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4278 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://lists.mindrot.org/pipermail/openssh-unix-dev/attachments/20190220/7407b087/attachment-0001.p7s>
More information about the openssh-unix-dev
mailing list