rpm version-release in Version strings of OpenSSH, Apache etc?
Nils O. Selåsdal
nos at utel.no
Fri Sep 26 13:07:39 UTC 2003
On Fri, 2003-09-26 at 11:30, Pekka Savola wrote:
> Hi,
>
> Would it make sense to add the rpm version-release strings in the OpenSSH,
> Apache, etc. banners, e.g. like..:
>
> SSH-1.99-OpenSSH_3.5p1 3.5p1-11
>
> instead of just:
>
> SSH-1.99-OpenSSH_3.5p1
>
> .. this should be rather straightforward for the build process.
>
> The gain would be that if you e.g. perform security scans in your network
> you could identify whether a patched version has been installed in the
> systems in question..
And so could an attacker.
Making sure your network is up2date is probably best resolved at some higher
management level.
More information about the devel
mailing list