i thougght it be a secure system.. can u throw some light on security holes in linux and how a good sys admin or a good programmer avoid these holes and make secure apps any URL or idea would be useful regards tarun ----- Original Message ----- From: "Suresh Ramasubramanian" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Monday, October 28, 2002 10:28 AM Subject: Re: [LIH] Re: telnet prompt off
> > ----- Original Message ----- > > From: "Suresh Ramasubramanian" <[EMAIL PROTECTED]> > > and even then there are about a dozen different ways to find the OS and > > the release ... > > [If you are going to use outlook express, please, please, download and > use OE-Quotefix - http://www.jump.to/oe-quotefix - or the quoting starts > to look really ugly] > > On Mon, 2002-10-28 at 10:09, tarundeep wrote: > > like what sort of ways?? > > suresh@tinlc [667] ~$ cat /etc/redhat-release > Red Hat Linux release 7.3 (Valhalla) > > for starters. Then you can get a pretty good idea from this. > > suresh@tinlc [668] ~$ uname -a > Linux tinlc.outblaze.com 2.4.18-17.7.x #1 Tue Oct 8 13:33:14 EDT 2002 > i686 unknown > > Definitive test - > > suresh@tinlc [679] ~$ rpm -qi redhat-release > Name : redhat-release Relocations: (not > relocateable) > Version : 7.3 Vendor: Red Hat, Inc. > Release : 1 Build Date: Thu 18 Apr 2002 > 11:49:31 PM HKT > Install date: Tue 15 Oct 2002 01:40:11 AM HKT Build Host: > stripples.devel.redhat.com > Group : System Environment/Base Source RPM: > redhat-release-7.3-1.src.rpm > Size : 618877 License: GPL > Packager : Red Hat, Inc. <http://bugzilla.redhat.com/bugzilla> > Summary : The Red Hat Linux release file. > Description : > The redhat-release package identifies the release of Red Hat Linux. > > This is for redhat. Other distributions have similar mechanisms. > > What you are trying is called "security by obscurity" - and a pitiful > attempt at that. > > Remember - "security by obscurity is no security at all" > > If your students or anybody wants to break into your machine, redhat 7.2 > - which you use, I think - has dozens of security holes they can take > their pick from. Regardless of whether or not you hide the OS version. > > -suresh > > > > ------------------------------------------------------- > This SF.net email is sponsored by: ApacheCon, November 18-21 in > Las Vegas (supported by COMDEX), the only Apache event to be > fully supported by the ASF. http://www.apachecon.com > _______________________________________________ > linux-india-help mailing list > [EMAIL PROTECTED] > https://lists.sourceforge.net/lists/listinfo/linux-india-help > ------------------------------------------------------- This SF.net email is sponsored by: ApacheCon, November 18-21 in Las Vegas (supported by COMDEX), the only Apache event to be fully supported by the ASF. http://www.apachecon.com _______________________________________________ linux-india-help mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/linux-india-help
