Subject: Re: Preventative security features?
To: Martin Husemann <firstname.lastname@example.org>
From: Steven M. Bellovin <email@example.com>
Date: 11/11/2004 08:44:59
In message <20041111133815.GF6553@drowsy.duskware.de>, Martin Husemann writes:
>On Thu, Nov 11, 2004 at 11:41:06PM +1100, Dmitri Nikulin wrote:
>> At the very least, the ability to run nmap against a NetBSD machine and
>> have it be completely unknown, even with plenty of open and closed ports
>I don't see the security benefit of this. I prefer script kiddis noticing
>NetBSD, sighing loud, and giving up ;-)
>P.S.: the nmap 3.55 I had lying around has not been able to guess the OS on an
>NetBSD machine I pointed it at.
Indeed. I just pointed nmap 3.70 at a 2.0rc4 machine and was told
Running: NetBSD, Microsoft Windows 95/98/ME|NT/2K/XP
OS details: NetBSD 1.6ZD, Microsoft Windows NT 3.51 SP5, NT 4.0 or 95/98/98SE
I mean, it's rather slanderous, calling NetBSD a version of Windows...
--Steve Bellovin, http://www.research.att.com/~smb