SecurityFocus

Block OS Detection Aug 31 2007 10:14AM
Attari Attari (c70n3 yahoo co in) (4 replies)

Re: Block OS Detection Sep 05 2007 08:00AM
John Brazel (johnbrazel gmail com) (1 replies)

RE: Block OS Detection Sep 05 2007 12:09PM
Arafat M. Bique (arafat bique bci co mz) (2 replies)

Re: Block OS Detection Jan 25 2008 05:42PM
Ivan Arce (ivan arce coresecurity com) (1 replies)

Re: Block OS Detection Jan 25 2008 11:54PM
Danny Fullerton (dfullerton mantor org) (1 replies)

Re: Block OS Detection Feb 02 2008 01:12AM
Ivan Arce (ivan arce coresecurity com)

Re: Block OS Detection Sep 05 2007 12:46PM
vtlists wyae de

Re: Block OS Detection Sep 02 2007 09:32PM
sami seclist (sg seclists gmail com)

Re: Block OS Detection Sep 02 2007 02:19AM
Dotzero (dotzero gmail com)

Re: Block OS Detection Sep 01 2007 08:08AM
Gadi Evron (ge linuxbox org) (2 replies)

RE: Block OS Detection Sep 02 2007 07:02PM
Ofer Shezaf (OferS Breach com) (2 replies)

RE: Block OS Detection Sep 02 2007 09:07PM
Gadi Evron (ge linuxbox org)

RE: Block OS Detection Sep 02 2007 09:03PM
Gadi Evron (ge linuxbox org) (1 replies)

On Sun, 2 Sep 2007, Ofer Shezaf wrote:
> Reverse proxy? So at least for web servers you have a simple solution.
> You might be able to reverse proxy few other protocols.
>
> ~ Ofer Shezaf

Overwriting values is not going to stop many of the different detection
methods. As mentioned - just one thingie.

Me? I just change banners.

>
>> -----Original Message-----
>> From: listbounce (at) securityfocus (dot) com [email concealed]
>> [mailto:listbounce (at) securityfocus (dot) com [email concealed]] On Behalf Of Gadi Evron
>> Sent: Saturday, September 01, 2007 11:08 AM
>> To: Attari Attari
>> Cc: pen-test (at) securityfocus (dot) com [email concealed]; pen-test-return-
>> 1078485025 (at) securityfocus (dot) com [email concealed]
>> Subject: Re: Block OS Detection
>>
>> Not everything is good, but you can overwrite different packet values
>> using.. a firewall for example.
>>
>> Just one thingie.
>>
>>
>> On Fri, 31 Aug 2007, Attari Attari wrote:
>>
>>> Hello All:
>>>
>>> Is there a PRACTICAL solution from PRODUCTION
>>> environments that can be used to block OS detection
>>> from tools like NMAP? I googled and read some notes
>>> but couldn't find a real world solution to blocking
>>> Windows & Linux OS detection.
>>>
>>> I'm quite sure I'll get the right inputs here.
>>>
>>> Thank you.
>>>
>>> Attari
>>>
>>>
>>> Unlimited freedom, unlimited storage. Get it now, on
>> http://help.yahoo.com/l/in/yahoo/mail/yahoomail/tools/tools-08.html/
>>>
>>>
> ---------------------------------------------------------------------
>> ---
>>> This list is sponsored by: Cenzic
>>>
>>> Need to secure your web apps NOW?
>>> Cenzic finds more, "real" vulnerabilities fast.
>>> Click to try it, buy it or download a solution FREE today!
>>>
>>> http://www.cenzic.com/downloads
>>>
> ---------------------------------------------------------------------
>> ---
>>>
>>
>>
> -----------------------------------------------------------------------
>> -
>> This list is sponsored by: Cenzic
>>
>> Need to secure your web apps NOW?
>> Cenzic finds more, "real" vulnerabilities fast.
>> Click to try it, buy it or download a solution FREE today!
>>
>> http://www.cenzic.com/downloads
>>
> -----------------------------------------------------------------------
>> -
>
>

------------------------------------------------------------------------

This list is sponsored by: Cenzic

Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!

http://www.cenzic.com/downloads
------------------------------------------------------------------------

[ reply ]

RE: Block OS Detection Sep 04 2007 06:45PM
Philippe Bogaerts (xxradar radarhack com)

Re: Block OS Detection Sep 01 2007 01:12PM
Jonathan Yu (jonathan i yu gmail com)