service version disclosure
Ed Marshall
esm at logic.net
Mon Jan 9 17:03:14 UTC 2012
No, I most certainly did not write the quoted statement.
(My contribution has solely been suggesting that they get upstream on board; or, failing that, find a convincing argument for the Fedora package maintainer to diverge from upstream.)
--
Ed Marshall <esm at logic.net>
http://esm.logic.net/
On Jan 9, 2012, at 8:03 AM, Przemek Klosowski <przemek.klosowski at nist.gov> wrote:
> On 01/09/2012 09:08 AM, Matthew Garrett wrote:
>> On Mon, Jan 09, 2012 at 02:42:10AM +0100, Reindl Harald wrote:
>>
>>> no, maybe you should read AND try to understand
>>
>> This kind of behaviour isn't acceptable within the project. Treat your
>> fellow community members with respect. You're expected to follow the
>> Fedora Code of Conduct
>> (http://fedoraproject.org/wiki/Community_working_group/Code_of_Conduct)
>> while using project resources.
>>
>
> For the record, it was Ed Marshall <esm at logic.net> who wrote the quoted sentence. In any case, I join Matthew in asking everyone to stay excellent, and keep the discussion on topic and friendly in tone.
>
> Regarding the merits of hiding the SSH version, in my opinion it's counterproductive: the scanners might as well say "Oh, lookee here, they're hiding the SSH version, presumably because they don't patch, so let's try all the exploits".
>
> If you do insist, how about
>
> perl -i.bak -pe 's/OpenSSH_5.8/ClosedSSH_1/g' /usr/bin/sshd
>
> Disclaimer: untested, fragile, contents may settle, do not iron while wearing clothes.
> --
> devel mailing list
> devel at lists.fedoraproject.org
> https://admin.fedoraproject.org/mailman/listinfo/devel
More information about the devel
mailing list