Re: Banner Grabbing
- From: "Jamie Riden" <jamie.riden@xxxxxxxxx>
- Date: Fri, 22 Dec 2006 17:16:34 +1300
On 22/12/06, Michael J Condon <mjc001@xxxxxxxxx> wrote:
What steps can be used to prevent "OS Banner Grabbing" by the client? Also,
what is the best method or "attack" to get to a banner on MS and non MS
Operating Systems?
[resend, bounced due to nonsubscribed address]
Banner grabbing: 'telnet victim.example.com <port>' will often get you
a banner. My favourite is 'nmap -sV victim.example.com' which will do
all the work for you.
To prevent banner grabbing, you can alter or hide banners for various
services, but since many exploits are automated and a lot of people
launch attacks blindly, I don't see this as a must-do item. There are
other ways of identifying services other than reading the welcome
banner, and it won't help you if your service is actually vulnerable.
cheers,
Jamie
--
Jamie Riden, CISSP / jamesr@xxxxxxxxxx / jamie.riden@xxxxxxxxx
NZ Honeynet project - http://www.nz-honeynet.org/
- References:
- Re: RE: PCI Compliance (Vulnerability Scans)
- From: 09sparky
- Re: PCI Compliance (Vulnerability Scans)
- From: David M. Zendzian
- Re: PCI Compliance (Vulnerability Scans)
- From: Vivek Chudgar
- Re: PCI Compliance (Vulnerability Scans)
- From: David M. Zendzian
- Re: PCI Compliance (Vulnerability Scans)
- From: bf
- Banner Grabbing
- From: Michael J Condon
- Re: RE: PCI Compliance (Vulnerability Scans)
- Prev by Date: RE: Port 1443
- Next by Date: Re: Port 1443
- Previous by thread: Banner Grabbing
- Next by thread: Re: Banner Grabbing
- Index(es):
Relevant Pages
|
