RE: [Exim] disabling banner information

Top Page
Delete this message
Reply to this message
Author: Boyle Owen
Date:  
To: exim-users
Subject: RE: [Exim] disabling banner information
>-----Original Message-----
>From: Sherona Hoosen [mailto:sherona@cns.wits.ac.za]
>
>We are running exim 4.10 on Solaris 2.8.
>
>At the moment if we telnet to port 25 on the server we get the
>following banner.
>220 mail3.wits.ac.za ESMTP Exim 4.10 Wed, 08 Oct 2003 09:25:19 -0200
>
>Is ther anyway we could disable this for security purposes.


Do this if it makes you feel better, but obscuring the name and version
of your MTA will not improve your security. It is a fact that hackers do
not check the name/version of applications before launching an attack,
rather, they simply blast all listening servers. The proof of this is in
the millions of code red/nimbda hits that apache servers are subjected
to, despite the fact that these can only exploit a IIS server.

Secondly, and more importantly, if you are running a vulnerable server
(not up-to-date) then you WILL get hacked, even if you obscure or lie
about your server signature.

The only real security comes from using a robust and secure application
and keeping it and the OS up to the latest patch level.

Obscuring your server signature is as much use as rubbing off the
brand-name on a padlock.

Rgds,
Owen Boyle
Disclaimer: Any disclaimer attached to this message may be ignored.
>
>Thanks
>cheers
>sherona
>--
>
>
>--
>
>## List details at
>http://www.exim.org/mailman/listinfo/exim-users Exim details
>at http://www.exim.org/ ##
>
>

Diese E-mail ist eine private und persönliche Kommunikation. Sie hat
keinen Bezug zur Börsen- bzw. Geschäftstätigkeit der SWX Swiss Exchange.
This e-mail is of a private and personal nature. It is not related to
the exchange or business activities of the SWX Swiss Exchange. Le
présent e-mail est un message privé et personnel, sans rapport avec
l'activité boursière de la SWX Swiss Exchange.

This message is for the named person's use only. It may contain
confidential, proprietary or legally privileged information. No
confidentiality or privilege is waived or lost by any mistransmission.
If you receive this message in error, please notify the sender urgently
and then immediately delete the message and any copies of it from your
system. Please also immediately destroy any hardcopies of the message.
You must not, directly or indirectly, use, disclose, distribute, print,
or copy any part of this message if you are not the intended recipient.
The sender's company reserves the right to monitor all e-mail
communications through their networks. Any views expressed in this
message are those of the individual sender, except where the message
states otherwise and the sender is authorised to state them to be the
views of the sender's company.