Re: ssh(d) identification string in portable (clarification)

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

 

On Tue, Aug 9, 2016 at 7:21 AM, Daniel Kahn Gillmor
<dkg@xxxxxxxxxxxxxxxxx> wrote:
[...]
> That seems like a pretty clear intent.  (and fwiw, i think it's the
> right thing to do)

There is the VersionAddendum sshd_config option however it prepends a
space.  Perhaps it shouldn't, and anything that actually wants the
space can supply that itself (ie 'VersionAddendum p2' vs
'VersionAddendum
" someotherstring"').

IMO a security tool taking the over-the-wire banner as the
authoritative test about whether a problem does or does not exist
isn't wise.

-- 
Darren Tucker (dtucker at zip.com.au)
GPG key 11EAA6FA / A86E 3E07 5B19 5880 E860  37F4 9357 ECEF 11EA A6FA (new)
    Good judgement comes with experience. Unfortunately, the experience
usually comes from bad judgement.
_______________________________________________
openssh-unix-dev mailing list
openssh-unix-dev@xxxxxxxxxxx
https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev
[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

[Index of Archives]     [Linux ARM Kernel]     [Linux ARM]     [Linux Omap]     [Fedora ARM]     [IETF Annouce]     [Security]     [Bugtraq]     [Linux]     [Linux OMAP]     [Linux MIPS]     [ECOS]     [Asterisk Internet PBX]     [Linux API]

  Powered by Linux