Security Basics mailing list archives

Re: OpenSSH 4.3 Banner Masking

From: Terra Frost <terrafrost () gmail com>
Date: Wed, 27 Feb 2008 20:02:47 -0600

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

my_bit_bucket () yahoo com wrote:
| Is there a way to mask the banner displayed by OpenSSH 4.3 connecting
to the service by SSH?  For example, my test system displays
"SSH-2.0-OpenSSH_4.3" when I "telnet [hostname] 22".

The banner is required per the protocol (RFC 4253).  To quote:

~   When the connection has been established, both sides MUST send an
~   identification string.  This identification string MUST be

~      SSH-protoversion-softwareversion SP comments CR LF
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFHxhZHhzLeabOflWcRAqMWAJ4hxSsU/U0s3vCvZ7QBjZ3JgSHYYwCfeF53
PTlNZGMlzmEYH6t3v2NAfs4=
=MfCr
-----END PGP SIGNATURE-----

Current thread:

OpenSSH 4.3 Banner Masking my_bit_bucket (Feb 27)
- Re: OpenSSH 4.3 Banner Masking Jeronimo Zucco (Feb 28)
- Re: OpenSSH 4.3 Banner Masking Dedi Dwianto (Feb 28)
- Re: OpenSSH 4.3 Banner Masking Nikhil Wagholikar (Feb 28)
- Re: OpenSSH 4.3 Banner Masking Terra Frost (Feb 28)
- Re: OpenSSH 4.3 Banner Masking 0x90 (Feb 28)