im not sure is grsec related, but...
can I spoof/mask/deny os fingerprinting? everyone can detect my os and kernel.
security question
3 posts
• Page 1 of 1
security question
by btnet » Fri Nov 27, 2009 12:05 pm
- btnet
- Posts: 21
- Joined: Tue Jan 29, 2008 12:59 pm
Re: security question
by specs » Sat Nov 28, 2009 4:17 am
Have you tried fingerprinting your pc?
Most of the fingerprinting tools (kiddie level) gather all information the several services give at the most common ports. But that is not grsec-related, it is basic system management.
I assume you don't mean protecting against fingerprinting by people who are logged in.
Perhaps you could tell when you see the kernelversion displayed?
Most of the fingerprinting tools (kiddie level) gather all information the several services give at the most common ports. But that is not grsec-related, it is basic system management.
I assume you don't mean protecting against fingerprinting by people who are logged in.
Perhaps you could tell when you see the kernelversion displayed?
- specs
- Posts: 190
- Joined: Sun Mar 26, 2006 7:00 am
Re: security question
by wishi » Mon Dec 21, 2009 7:45 pm
There're ways to set obscure defauls like different TTLs or something to make (Nmap) OS fingerprinting harder. However the sophistication of the tools, speaking of p0f or active fingerprinting like in Nmap and other scanners, is not kiddy-level. I don't see many reasons in general to hide system's OSes. First of all you will not be able to archive that in a way that really hides your (potentially) vulnerable entry-points. But furthermore you waste a hell lot of time better used to patch that stuff ;).
- wishi
- Posts: 5
- Joined: Mon Dec 21, 2009 3:13 pm
3 posts
• Page 1 of 1