[Samba] disabling version number
Richard Sharpe
rsharpe at richardsharpe.com
Sat Apr 26 19:43:38 GMT 2003
On Sat, 26 Apr 2003, Christopher R. Hertel wrote:
> Florian Effenberger wrote:
> >
> > Why not just add an option to the config file, so everyone can decide by
> > himself? :)
>
> Here's my situation...
>
> I work at a large University. We have on the order of 45K nodes. I am not
> responsible for the management of all of the nodes on campus (praise the
> omnipotent bananafish) but I am responsible for asisting the Security Team
> and one of their jobs is to scan for systems that are not properly patched.
> I, and they, would dearly love to have a sure-fire way to figure out which
> versions of Samba people on campus are running. Something that operates at
> the NBT layer and is, therefore, not subject to SMB authentication would be
> optimal.
Hmmm, you would have to probe for nmbd and smbd, and, of course, people
might just change the sigs returned to fool you :-) As in, a root kit
might.
Regards
-----
Richard Sharpe, rsharpe[at]ns.aus.com, rsharpe[at]samba.org,
sharpe[at]ethereal.com, http://www.richardsharpe.com
More information about the samba-technical
mailing list