Re: Preventing OS Detection

["Naren" <naren () pactech net>]

If you use an application level proxy firewall, they are pretty good at
hiding the actual OS of the web server ..

my S$ 0.02

Naren
----- Original Message -----
From: "Hagen, Eric" <ehagen () DenverNewspaperAgency com>
To: "Paul Kurczaba" <paul () myipis com>; <security-basics () securityfocus com>
Sent: Tuesday, February 24, 2004 3:14 AM
Subject: RE: Preventing OS Detection


> To clarify, there are some rudimentary TCP/IP settings available in this
> key:
>
> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters
>
> But they are unlikely to be able to change the OS Fingerprint as seen by
> NMap, Netcraft, etc.
>
> Eric
>
>
> -----Original Message-----
> From: Paul Kurczaba [mailto:paul () myipis com]
> Sent: Friday, February 20, 2004 3:30 PM
> To: security-basics () securityfocus com
> Subject: Preventing OS Detection
>
>
> If I go to http://uptime.netcraft.com and enter my website, Netcraft will
> display my web servers OS, determined from the TCP/IP packet. Is there a
way
> in the windows registry to prevent Netcraft (or anyone else) from
> identifying my OS? On the page http://www.webhostgear.com/36,1.html in
> paragraph titled "Netcraft is Watching", it briefly describes that
registry
> changes can be made. Can someone please give me some specific registry
> changes to prevent others from identifying my web servers OS?
>
> Thanks,
> Paul Kurczaba

Attachment: InterScan_Disclaimer.txt
Description:

---------------------------------------------------------------------------
----------------------------------------------------------------------------