Re: Detecting the sendmail version w/o using the connection banner

From: Paul Johnston (paulat_private)
Date: Thu Mar 06 2003 - 04:31:25 PST

Next message: Nicolas Gregoire: "Re: Detecting the sendmail version w/o using the connection banner"

Previous message: George A. Theall: "Re: Detecting the sendmail version w/o using the connection banner"
In reply to: George A. Theall: "Re: Detecting the sendmail version w/o using the connection banner"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi,

 >While this is a good additional step, it too can fail - it's possible to
 >edit sendmail's helpfile and disable help entirely.
 >
Yes, true. BTW, I found that if you remove the helpfile altogether then
sendmail stills leaks its version number, but if you make the helpfile
an empty file then it doesn't.

There's a similar issue with FTP - as well as the banner, software may
leak its version through the SYST command.

Paul

-- 
Paul Johnston
Internet Security Specialist
Westpoint Limited
Albion Wharf, 19 Albion Street,
Manchester, M1 5LN
England
Tel: +44 (0)161 237 1028
Fax: +44 (0)161 237 1031
email: paulat_private
web: www.westpoint.ltd.uk

Next message: Nicolas Gregoire: "Re: Detecting the sendmail version w/o using the connection banner"
Previous message: George A. Theall: "Re: Detecting the sendmail version w/o using the connection banner"
In reply to: George A. Theall: "Re: Detecting the sendmail version w/o using the connection banner"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Thu Mar 06 2003 - 04:31:42 PST