[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] Hide version of Apache, PHP, OpenSSL,.... to world

Subject: Re: [cobalt-users] Hide version of Apache, PHP, OpenSSL,.... to world
From: "Brian Curtis" <admin@xxxxxxxxxxx>
Date: Wed Dec 20 06:27:00 2000
Organization: Pomfret Computer Technologies
List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>

(Response within original reply.)

> I was wondering if that might be the problem...netcraft caching
info....and
> I was all prepared to give long winded examples of all I've done so
> far....*grin..but suffice it to say....even telnetting to the server shows
> it's "telling" on itself to much. I know this stuff isn't really important
> or of an urgent nature, but my curiosity is up so I thank Brian and others
> for taking the time. Any more ideas? All I really wish to do is take
Cobalt
> out of the output, but maybe they've placed that info somewhere in their
> modifications of Redhat and we can't remove it?
>
> ***with Minimal in the ServerTokens and no port 80
> [myid myid]$ telnet gw-crest2.fdt.net
> Trying 209.212.134.22...
> Connected to gw-crest2.fdt.net.
> Escape character is '^]'.
>
> Cobalt Linux release 4.0 (Fargo)
> Kernel 2.0.34 on a mips
> login:
> telnet> q
> Connection closed.

This is completely seperate from what's reported by Apache.  This
information is stored in /etc/issue.net and is re-written every time you
reboot by your /etc/rc.d/rc.local script.

I will provide instructions on how to change this, but keep in mind I take
no responsibility if Cobalt claims your warranty is void due to this
modification.

In you /etc/rc.d/rc.local script, find something that looks like:

  echo "Cobalt ..." >> /etc/issue
  echo "Kernel $(uname -r) on a $(uname -m)" >> /etc/issue
  cp -f /etc/issue /etc/issue.net

(I'm going by one of our RHL boxes, so your echo statement above might look
a little bit different.)

Comment out the two [echo "Cobalt ..."] & [echo "Kernel ..."] lines, and
replace with something like:

  echo "Authentication required:" >> /etc/issue
  echo >> /etc/issue

This will provide a login prompt from telnet that looks like:

---
Trying 1.2.3.4...
Connected to domain.com (1.2.3.4).
Escape character is '^]'.

Authentication required:

login:
---

You can change the "Authentication required:" text to whatever you desire.
This modifies the startup scripts to change the login upon reboot.  To make
this take effect immediately, from the shell:

  $ echo > /etc/issue
  $ echo "Authentication required:" >> /etc/issue
  $ echo >> /etc/issue
  $ cp -f /etc/issue /etc/issue.net

Wath your angle brackets and modify accordingly to your login statement of
desire.


> ****with Minimal in the ServerTokens and port 80
> HTTP/1.1 302 Found
> Date: Wed, 20 Dec 2000 00:05:25 GMT
> Server: Apache/1.3.3 Cobalt  (Red Hat/Linux)

This *is* the correct output for "ServerTokens Minimal".  It's not showing
any DSOs or static modules compiled into your Apache binary.  Unfortunately,
this is the best you can do with Apache 1.3.3.  If/when Cobalt releases a
1.3.12 upgrade, you can use "ServerTokens Prod" which will only report
"Server: Apache".

--
Brian Curtis

References:
- [cobalt-users] Hide version of Apache, PHP, OpenSSL,.... to world
  - From: R.Batalla
- Re: [cobalt-users] Hide version of Apache, PHP, OpenSSL,.... to world
  - From: Diana Brake
- Re: [cobalt-users] Hide version of Apache, PHP, OpenSSL,.... to world
  - From: Diana Brake

Prev by Date: Re: [cobalt-users] Here's the ultimate .htaccess tutorial for the Raq 4.
Next by Date: Re: [cobalt-users] Backup Question
Previous by thread: Re: [cobalt-users] Hide version of Apache, PHP, OpenSSL,.... to world
Next by thread: Re: [cobalt-users] Hide version of Apache, PHP, OpenSSL,.... to world

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index