Solved

Detect OS name and version from external

Posted on 2009-04-15
5
319 Views
Last Modified: 2013-12-27
Is there a way to detect the OS name and version before login to the system? If it does, is there way to prevent it?
0
Comment
Question by:gs_kanata
  • 3
  • 2
5 Comments
 
LVL 22

Accepted Solution

by:
blu earned 400 total points
ID: 24149735
Depends. It used to be obvious, but for security reasons it has systematically been made less so. It used to be that many network services had banners that included the OS type and rev. Then those banners became configurable. Then they
stopped having the type and rev info at all. Nowadays, I don't think there is any banner that will tell you much in an obvious manner by default.

However, there have been great strides made in system "fingerprinting", i.e. identifying a system type and rev via remotely visible system behavior. The nmap program, for instance can do this automatically.

Once in a while bug are fixed to further obscure the fingerprints and make it ever harder. But it is a doomed quest, not worth the resources. Sure, you might not want to make it obvious, but you get diminishing returns. Consider what you are trying to hide and why.
0
 
LVL 62

Assisted Solution

by:gheist
gheist earned 100 total points
ID: 24150352
Login prompt for telnet is in /etc/issue.net
You can run some TCP fingerprinting on client
Also SNMP is of help.
Just keep it all in legitimate borders.
0
 
LVL 22

Expert Comment

by:blu
ID: 24150880
>Login prompt for telnet is in /etc/issue.net

Not on Solaris it isn't
0
 
LVL 62

Expert Comment

by:gheist
ID: 24150928
By POSIX it is..
0
 
LVL 22

Expert Comment

by:blu
ID: 24151168
Really? I just did a full search at the opengroup.org website, and there are no hits on /etc/issue.net. But that is moot, since the one of the zones for this question is Solaris, and Solaris doesn't use /etc/issue.net.
0

Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
llcommand 6 98
Write an app 10 70
Linux hostname change 2 83
Retreiving column names in Windows but not in Unix 11 58
This tech tip describes how to install the Solaris Operating System from a tape backup that was created using the Solaris flash archive utility. I have used this procedure on the Solaris 8 and 9 OS, and it shoudl also work well on the Solaris 10 rel…
FreeBSD on EC2 FreeBSD (https://www.freebsd.org) is a robust Unix-like operating system that has been around for many years. FreeBSD is available on Amazon EC2 through Amazon Machine Images (AMIs) provided by FreeBSD developer and security office…
Learn how to find files with the shell using the find and locate commands. Use locate to find a needle in a haystack.: With locate, check if the file still exists.: Use find to get the actual location of the file.:
This video shows how to set up a shell script to accept a positional parameter when called, pass that to a SQL script, accept the output from the statement back and then manipulate it in the Shell.

840 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question