LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 06-25-2002, 09:41 AM   #1
ifm
Member
 
Registered: Jun 2002
Location: USA
Distribution: RH7.3 & YDL2.1
Posts: 124

Rep: Reputation: 15
Hiding Port Details?


When I port scan a server of ours, it returns name,type,version of two ports I really would not like it too (the ftp deamon, and ssh deamon).

Anyway to make a port NOT return anything else besides the TYPE that it is responding? You know, eliminate the display of all the versioning and whatnot... no need to let potential hackers KNOW what version or type of software you are using!

=)
 
Old 06-25-2002, 11:52 AM   #2
neo77777
LQ Addict
 
Registered: Dec 2001
Location: Brooklyn, NY
Distribution: *NIX
Posts: 3,704

Rep: Reputation: 56
Potential hackers will figure out anyways, did you scan with nmap? I believe if you edit /etc/services file you can fool the scriptkiddies of knowing what services are running on what port.
 
Old 06-25-2002, 12:12 PM   #3
ifm
Member
 
Registered: Jun 2002
Location: USA
Distribution: RH7.3 & YDL2.1
Posts: 124

Original Poster
Rep: Reputation: 15
Heh... script kiddies... yeeeesssshhh...

No, the /etc/services file doesnt contain the Name, Version, Running instance of particular programs on ports... at least nothing in the file looks like what I am getting back from a simple scan of tcp ports. (the udp ports yeild no information other than the port name).

Ah well... shot in the dark. Its probably handled by each program somehow, and those two programs have no settings to "turn it off".

No biggie... I have taken as many steps I humanly know to 'prevent' breaches... but nothing is perfectly secure unless you simply unplug your machine
 
Old 06-25-2002, 03:33 PM   #4
unSpawn
Moderator
 
Registered: May 2001
Posts: 29,415
Blog Entries: 55

Rep: Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600
Usually it's in the daemons source as something like a "define version yadayadayada", btw, it's useless to try to un-banner sshd as it's needed in determining which server the client talks to.
 
Old 06-27-2002, 04:19 AM   #5
wanvadder
LQ Newbie
 
Registered: Jul 2001
Location: Malaysia
Distribution: Redhat, NetBSD, OpenBSD
Posts: 4

Rep: Reputation: 0
maybe portsentry will help u much
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
A partition is hiding... jsheffie SUSE / openSUSE 2 04-25-2005 12:30 PM
hardware details noir911 *BSD 5 08-05-2004 02:23 PM
Getting a Process Details grub Programming 4 05-28-2003 04:02 AM
Details of Port53 saravanan1979 Linux - Networking 2 05-16-2002 05:35 AM
Hiding tmiles Linux - Security 4 08-10-2001 08:17 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 06:33 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration