Hi Paul, Those files you talking about is created during boot by "/etc/rc.d/rc.local" file. If you want to have these files static you can either remark the lines where they are created, or as I preffere is to have them created as I wish. All I did was to change the content writing so it would fit my environment. And further on, this file(s) is only used when you accept a telnet session from NET or Serial interface. It includes all the welcome information text that you will get on a newly opened session. AFAIK /etc/issue is used when loggon is made from the console and /etc/issue.net is used when you comming in from a telnet session over the network. (Correct me if I am wrong.) But AFAIK these files is not an issue for any security flaws. /Michael On Mon, 08 Apr 2002 11:50:02 +1000 "Paul Stepowski" <stepowski@hotmail.com> wrote: > > Hi, > > I have a question regarding the use of the /etc/issue* files in Mandrake > 8.1. I've only recently started looking into Mandrake (I'm a Redhat fan) and > I've been playing with various configs trying to make my box more secure. > > I want to comment out the contents of my /etc/issue and /etc/issue.net > files so that the OS/Version is not displayed to users who ssh to my box. > I've commented out the files, but when I reboot, the files are overwritten > back to their original state so that the login prompt still shows the > OS/Version info. What settings can I change to stop this? > > Thanks in advance for your help, > Paul > > > > _________________________________________________________________ > Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp. > > ------------------------------------------------------------------------ > To unsubscribe email security-discuss-request@linuxsecurity.com > with "unsubscribe" in the subject of the message. > > -- Michael Andersson AJM Datakonsult AB Tel: +46-8 761 03 20 -- Fax: +46-8 761 03 21 -- Cell: +46-70 695 36 00 http://www.ajm-data.com ------------------------------------------------------------------------ To unsubscribe email security-discuss-request@linuxsecurity.com with "unsubscribe" in the subject of the message.
