Detect OS name and version from external

Is there a way to detect the OS name and version before login to the system? If it does, is there way to prevent it?
gs_kanataAsked:
Who is Participating?
 
Brian UtterbackConnect With a Mentor Principle Software EngineerCommented:
Depends. It used to be obvious, but for security reasons it has systematically been made less so. It used to be that many network services had banners that included the OS type and rev. Then those banners became configurable. Then they
stopped having the type and rev info at all. Nowadays, I don't think there is any banner that will tell you much in an obvious manner by default.

However, there have been great strides made in system "fingerprinting", i.e. identifying a system type and rev via remotely visible system behavior. The nmap program, for instance can do this automatically.

Once in a while bug are fixed to further obscure the fingerprints and make it ever harder. But it is a doomed quest, not worth the resources. Sure, you might not want to make it obvious, but you get diminishing returns. Consider what you are trying to hide and why.
0
 
gheistConnect With a Mentor Commented:
Login prompt for telnet is in /etc/issue.net
You can run some TCP fingerprinting on client
Also SNMP is of help.
Just keep it all in legitimate borders.
0
 
Brian UtterbackPrinciple Software EngineerCommented:
>Login prompt for telnet is in /etc/issue.net

Not on Solaris it isn't
0
 
gheistCommented:
By POSIX it is..
0
 
Brian UtterbackPrinciple Software EngineerCommented:
Really? I just did a full search at the opengroup.org website, and there are no hits on /etc/issue.net. But that is moot, since the one of the zones for this question is Solaris, and Solaris doesn't use /etc/issue.net.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.