Language Selection

English French German Italian Portuguese Spanish

Hiding Software Versions - A Step Forward to a Secure Server

Filed under
HowTos

Hiding Software Versions - A Step Forward to a Secure Server
By drendeah

Most of you may not notice, or may not care, about the software versions that get revealed by the running services on your server. By default almost all services reveal some information to the clients that use them. Among this information is the version of the software that is being run. It has always been best practice, not to reveal more than it is needed. Why reveal the version of the service when nobody needs to know it? By letting these details be seen, you don't get anything else, but an extra chance for crackers to break into your server.

Let's suppose that you have an old software running, and it's configured to show it's version. For a cracker who scans the internet periodically it will be very easy to hack into your server if he already has some knowledge about your server. You will help him narrow his attempts only to those related to your software version.

So, by hiding the software version you make life harder for hackers/crackers. Of course you should, at all times, keep your system up to date, but in case you forget or something happens and you are unable to do so, why not take extra care and give as little information as possible to the outside world.

I will now show you how to change this default behavior for some popular software on Ubuntu 8.04.1 Server.

Read the full article at:
http://www.linuxsecurityforum.org/f5/hiding-software-versions-a-step-forward-to-a-t179.html

More in Tux Machines

Open-Source Radeon 2D Performance Is Better With Ubuntu 14.10

While we're most often looking at the OpenGL 3D performance of the Linux graphics drivers, in the tests currently being done of Ubuntu 14.04 LTS vs. Ubuntu 14.10 are also a number of 2D graphics benchmarks. In the article today are our 2D benchmarks between Ubuntu 14.04.1 and Ubuntu 14.10 for various AMD Radeon graphics cards and it shows off significant performance improvements. Read more

Today in Techrights

Today's articles: Links outline:

KDE With Theoretical Client-Side Decorations, Windows 10 Influence

KDE contributor and graphics designer Ken Vermette has penned an interesting series of KDE "What if..." articles where he talks about (and has some visual mock-ups) about what KDE might look like with client-side decorations along and separately if KDE were to use Windows 10 design components. Read more Also: What if… Plasma Used Launchers from Other Systems & Enviornments? (Part 1) What if… KDE Used Windows 10 Design Components?

Pondering FOSS foundations

In the case of the Document Foundation, the LibreOffice project needed an independent, solid and meritocratic entity dedicated to support it. In other terms, the OpenOffice.org community wanted to be its own boss and stop relying on corporate – or even third party – good will. If you attend the Community Track on the 31st you will be able to learn more about the Document Foundation and the other entities, but my message here is that while there is no silver bullet in these matters, forcing a community be hosted or to bend to a software vendor never works. It bends if it wants to; it goes whereever it wishes to go. In the case of the Document Foundation, independence and community rule prevailed over convenience; today the results do not need to be proven anymore. But it does not mean we hold the truth more than anybody else: we just ensured the community was in charge. Read more