Solved

Detect OS name and version from external

Posted on 2009-04-15
5
316 Views
Last Modified: 2013-12-27
Is there a way to detect the OS name and version before login to the system? If it does, is there way to prevent it?
0
Comment
Question by:gs_kanata
  • 3
  • 2
5 Comments
 
LVL 22

Accepted Solution

by:
blu earned 400 total points
ID: 24149735
Depends. It used to be obvious, but for security reasons it has systematically been made less so. It used to be that many network services had banners that included the OS type and rev. Then those banners became configurable. Then they
stopped having the type and rev info at all. Nowadays, I don't think there is any banner that will tell you much in an obvious manner by default.

However, there have been great strides made in system "fingerprinting", i.e. identifying a system type and rev via remotely visible system behavior. The nmap program, for instance can do this automatically.

Once in a while bug are fixed to further obscure the fingerprints and make it ever harder. But it is a doomed quest, not worth the resources. Sure, you might not want to make it obvious, but you get diminishing returns. Consider what you are trying to hide and why.
0
 
LVL 61

Assisted Solution

by:gheist
gheist earned 100 total points
ID: 24150352
Login prompt for telnet is in /etc/issue.net
You can run some TCP fingerprinting on client
Also SNMP is of help.
Just keep it all in legitimate borders.
0
 
LVL 22

Expert Comment

by:blu
ID: 24150880
>Login prompt for telnet is in /etc/issue.net

Not on Solaris it isn't
0
 
LVL 61

Expert Comment

by:gheist
ID: 24150928
By POSIX it is..
0
 
LVL 22

Expert Comment

by:blu
ID: 24151168
Really? I just did a full search at the opengroup.org website, and there are no hits on /etc/issue.net. But that is moot, since the one of the zones for this question is Solaris, and Solaris doesn't use /etc/issue.net.
0

Featured Post

What Is Threat Intelligence?

Threat intelligence is often discussed, but rarely understood. Starting with a precise definition, along with clear business goals, is essential.

Join & Write a Comment

This tech tip describes how to install the Solaris Operating System from a tape backup that was created using the Solaris flash archive utility. I have used this procedure on the Solaris 8 and 9 OS, and it shoudl also work well on the Solaris 10 rel…
Introduction Regular patching is part of a system administrator's tasks. However, many patches require that the system be in single-user mode before they can be installed. A cluster patch in particular can take quite a while to apply if the machine…
Learn several ways to interact with files and get file information from the bash shell. ls lists the contents of a directory: Using the -a flag displays hidden files: Using the -l flag formats the output in a long list: The file command gives us mor…
Learn how to get help with Linux/Unix bash shell commands. Use help to read help documents for built in bash shell commands.: Use man to interface with the online reference manuals for shell commands.: Use man to search man pages for unknown command…

760 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

21 Experts available now in Live!

Get 1:1 Help Now