Language Selection

English French German Italian Portuguese Spanish

Hiding Software Versions - A Step Forward to a Secure Server

Filed under
HowTos

Hiding Software Versions - A Step Forward to a Secure Server
By drendeah

Most of you may not notice, or may not care, about the software versions that get revealed by the running services on your server. By default almost all services reveal some information to the clients that use them. Among this information is the version of the software that is being run. It has always been best practice, not to reveal more than it is needed. Why reveal the version of the service when nobody needs to know it? By letting these details be seen, you don't get anything else, but an extra chance for crackers to break into your server.

Let's suppose that you have an old software running, and it's configured to show it's version. For a cracker who scans the internet periodically it will be very easy to hack into your server if he already has some knowledge about your server. You will help him narrow his attempts only to those related to your software version.

So, by hiding the software version you make life harder for hackers/crackers. Of course you should, at all times, keep your system up to date, but in case you forget or something happens and you are unable to do so, why not take extra care and give as little information as possible to the outside world.

I will now show you how to change this default behavior for some popular software on Ubuntu 8.04.1 Server.

Read the full article at:
http://www.linuxsecurityforum.org/f5/hiding-software-versions-a-step-forward-to-a-t179.html

More in Tux Machines

Eclipse Luna for Fedora 20

If you are a Fedora Eclipse user, then you're probably saddened since the release of Eclipse Luna (4.4) because you are still using Eclipse Kepler (4.3) on Fedora 20. Well, be saddened no longer because Eclipse Luna is now available for Fedora 20 as a software collection! A software collection is simply a set of RPMs whose contents are isolated from the rest of your system such that they do not modify, overwrite or otherwise conflict with anything in the main Fedora repositories. This allows you install multiple versions of a software stack side-by-side, without them interfering with one another. More can be read about this mechanism on the software collections website. The Eclipse Luna software collection lives in a separate yum repository, which must be configured by clicking on this link to install the release package. Read more

Patch By Patch, LLVM Clang Gets Better At Building The Linux Kernel

With each kernel revision, LLVM Clang gets closer to being able to build the mainline Linux kernel. There's now just a few dozen patches outstanding for LLVMLinux to be a mainline success. Behan Webster gave his usual talk at LinuxCon in Chicago this week about the state of LLVMLinux -- building the Linux kernel with Clang rather than GCC. There's been many Phoronix articles about the topic so there isn't too much more to share beyond that many developers want to use Clang to compile the Linux kernel to lead to better code portability of the kernel, faster compilation times of Clang, potential performance differences, LLVM and Clang are more liberally licensed, and there's a host of other development extras with Clang. Read more

Today in Techrights

Wayland and Weston 1.6 alpha snapshot (1.5.91)

release plan continues as follows: - two weeks to let the alpha version stabilize, and only merge small features along with bug fixes - RC1 release on September 5th, Friday - bugfixing - RC2 release on September 12th, Friday - hopefully no more bugfixing much - 1.6.0 release on September 19th, Friday - at some point later master branch opens again for all new things. Read more