System Identification
It is well known that by giving out information about the software you use, you make intruders’ work easier. When you connect by telnet or FTP, the OS name and version are communicated by default to the connecting party. This is absolutely unnecessary. Fortunately, Solaris 8 includes a way to disable this behavior. Just create two files, /etc/default/ftpd and /etc/default/telnetd, and add the following line:
BANNER=" "
This line instructs FTP and telnet servers not to show the name and version of the operating system you are running. If you are using sendmail, you should take the same approach. Remove $j from SmtpGreetingMessage in /etc/mail/sendmail.cf. See Chapter 10, “Securing Network Services,” for more information ...
Get Solaris 8 Security now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
