On Thu, 5 Sep 2002, Williams, Kevin wrote:
> > -----Original Message----- > > From: Davide Libenzi [mailto:[EMAIL PROTECTED]] > > Sent: Thursday, September 05, 2002 10:33 AM > > To: XMail mailing list > > Subject: [xmail] Re: greeting banner > > > > > > ok, we have two different scenarios here : > > Some would say three scenarios > > > > > 1) someone is explicitly attacking you ( your IP ) > > > > 2) someone is scanning open ports and trying exploits over them > > 3) some script kiddie read about a specific exploit on IRC or in a > newsgroup and is searching for a system to try it on This is case 2) actually. Why it is so difficult to understand that hiding banners doesn't help ?!? Actually, I would say that is even worse. Let's say that I'm the "script kiddie" you're talking about and I've found an exploit for XMail <= 1.8 ... and suppose that XMail is one of those smart MTA that implement the high-security feature of stealth-banner. Now I can get either : 220 I'm XMail 1.6 or : 220 stealth mode active What kind of difference should make in my mind these two responses. I tell you what ... by exlicitly saying "I'm XMail" you at least will avoid to be shot with sendmail, exim, postfix,... exploits. - Davide - To unsubscribe from this list: send the line "unsubscribe xmail" in the body of a message to [EMAIL PROTECTED] For general help: send the line "help" in the body of a message to [EMAIL PROTECTED]
