Results 1 to 8 of 8

Thread: hiding out the openssh varsion

  1. #1

    hiding out the openssh varsion

    Hi
    I tried to hide the openssh version nd somehow succeeded.The file version.h has two macros which are to be changed for hiding my version info.But this only hides version information from being revealed when i telnet on port 22.However if i run ssh -V ,it gives me again the correct version of openssh which i m trying to hide out.Kindly help me know the file where this has been picking up from
    Regards
    Love Wadhwa
    redhat Certified engg.

  2. #2

    got the solution

    Hi
    I m sorry.I got the solution to the above asked problem of mine.If someone needs solution he/she is most welcome.
    Thanx
    Regards
    Love Wadhwa

  3. #3
    Can you post the solution, in case someone needs it in the future?
    My crime is that of curiosity. My crime is that of judging people by what they say and think, not what they look like. My crime is that of outsmarting you, something that you will never forgive.

  4. #4

    solution for hiding openssh version

    Hi
    by changing the version.h file and then running ssh -V it doesnot show ssh version but shows ssl version.To hide this out open the ssh.c file and search for
    case 'V' and then make changes at the two macros being passed in it.
    The two macros are SSH_RELEASE, SSLeay_version(SSLEAY_VERSION).delete it out and enter the information which u want to display in inverted commas.
    Simply thats it.
    Thanx
    Regards
    Love Wadhwa

  5. #5
    Thanks!
    My crime is that of curiosity. My crime is that of judging people by what they say and think, not what they look like. My crime is that of outsmarting you, something that you will never forgive.

  6. #6
    Moderator
    Good Guru
    Compunuts's Avatar
    Join Date
    May 2001
    Location
    California
    Posts
    3,935
    Depending on your distro, how would that affect your upgrade path? I mean, if your distro like Ubuntu don't know which version they have, how will it able to upgrade to the next secure version if you current version is known to be insecure (that happened a few years ago) via APT or YUM for FC. Is that mean you will have to manually update your SSH/SSL all the time?
    LinuxVillage - The truely community run Linux/Floss forum !

    No IT BS !!

  7. #7
    I would expect the package manager of the distro to have a record of the installed packages, separate from the application files themselves.
    My crime is that of curiosity. My crime is that of judging people by what they say and think, not what they look like. My crime is that of outsmarting you, something that you will never forgive.

  8. #8
    Moderator
    Good Guru
    Schotty's Avatar
    Join Date
    Jul 2001
    Location
    Milwaukee, WI
    Posts
    5,760
    That is the point of package managers, as trickster stated. If the PM doesnt do that it is quite useless. The package should contain revision, including patchlevel. Since the binaries could get corrupted, the PM is to handle a DB containing the installed version and what files are included, and what dependencies are present for the binary(s).

Similar Threads

  1. OpenSSH
    By beezlebubsbum in forum Linux - General Topics
    Replies: 7
    Last Post: 11-20-2004, 03:03 AM
  2. OpenSSH 3.5 Released
    By Aaron_Adams in forum Linux - Software, Applications & Programming
    Replies: 0
    Last Post: 10-16-2002, 01:54 PM
  3. OpenSSH 3.3
    By Aaron_Adams in forum Linux - Software, Applications & Programming
    Replies: 9
    Last Post: 06-27-2002, 04:26 AM
  4. openssh for rh 6.2
    By elovkoff in forum Linux - General Topics
    Replies: 4
    Last Post: 06-19-2002, 01:24 PM
  5. stealth p2p hiding in kazaa
    By in forum General Chat
    Replies: 0
    Last Post: 04-02-2002, 04:20 PM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •