Code: Alles auswählen
telnet myhost 22
..
Connected to myhost.
Escape character is '^]'.
SSH-2.0-OpenSSH_3.8.1p1 Debian-8.sarge.4
..
Abschalten der Versionsanzeige beim sshd
Abschalten der Versionsanzeige beim sshd
Leider habe ich es nicht herausgefunden wie ich die Versionanzeige des OpenSSH Servers abschalten kann. Kennt jemand die entsprechende Einstellung?
eagle
"I love deadlines. I love the whooshing sound they make as they fly by." -- Douglas Adams
-
feltel
- Webmaster
- Beiträge: 10452
- Registriert: 20.12.2001 13:08:23
- Lizenz eigener Beiträge: MIT Lizenz
- Wohnort: Leipzig, Germany
-
Kontaktdaten:
Das geht imho nur durch neucompilieren des sshd, was aber nicht empfehlenswert, da sich anhand des Versionsstrings Client und Server "abstimmen". Dieser Check ist Teil des SSH-Protokolls. Fehlt die Versionsangabe kanns sein das garnix mehr geht.
debianforum.de unterstützen? Hier! | debianforum.de Verhaltensregeln | Bitte keine Supportanfragen per PM
Ich habe länger zum Suchen benötigt, aber jetzt wo ich es gefunden habe möchte ich es auch los werden, obwohl feltl schon die Antwort gegeben hat.
http://www.ietf.org/proceedings/04mar/I-D/draft-ietf-secsh-transport-17.txt hat geschrieben: 4.2 Protocol Version Exchange
When the connection has been established, both sides MUST send an
identification string of the form "SSH-protoversion-softwareversion
comments", followed by carriage return and newline characters (ASCII
13 and 10, respectively). Both sides MUST be able to process
identification strings without carriage return character. No null
character is sent. The maximum length of the string is 255
characters, including the carriage return and newline.
The part of the identification string preceding carriage return and
newline is used in the Diffie-Hellman key exchange (see Section
Section 7).
The server MAY send other lines of data before sending the version
string. Each line SHOULD be terminated by a carriage return and
newline. Such lines MUST NOT begin with "SSH-", and SHOULD be
encoded in ISO-10646 UTF-8 [RFC2279] (language is not specified).
Clients MUST be able to process such lines; they MAY be silently
ignored, or MAY be displayed to the client user; if they are
displayed, control character filtering discussed in [SSH-ARCH] SHOULD
be used. The primary use of this feature is to allow TCP-wrappers to
display an error message before disconnecting.
Version strings MUST consist of printable US-ASCII characters, not
including whitespaces or a minus sign (-). The version string is
primarily used to trigger compatibility extensions and to indicate
the capabilities of an implementation. The comment string should
contain additional information that might be useful in solving user
problems.
The protocol version described in this document is 2.0.
Key exchange will begin immediately after sending this identifier.
All packets following the identification string SHALL use the binary
packet protocol, to be described below.