I recently began running a NetBSD 1.5.2 box as a firewall/NAT for
my cable broadband connection. I am quite pleased with functionality.
(Thanks to several in these lists who helped get me running! 8-)

I like the idea of having ftp, telnet and ssh. But is this a dangerous
thing? I used a security scan on the net: http://scan.sygatetech.com/

It clearly sees my services. What concerns me a little is that
ssh reports: SSH-1.99-OpenSSH_2.5.1 NetBSD_Secure_Shell-20010614
and ftp reports:20- 220 xxx.client.insightBB.com FTP server (NetBSD-ftpd 20010329) ready.

Which clearly indicates the version of service running. While I don't think
These services have known vulnerabilities, wouldn't it be better if
they were a bit more discreet with their introductions?

I poked around a bit in the man pages, but didn't see where to change
these messages (and I don't know if connecting clients need this
info).

Any comments appreciated...
--gene