Nmap Announce mailing list archives
Re: OS Detection Question
From: Saint skullY the Dazed <skully () straw drpepper org>
Date: Wed, 3 May 2000 19:58:40 +0000
There are patches to do this. My question is *WHY*. Why do you want to mask your OS? It will provide you no extra protection. If someone wants to get into your machine, having the nmap -O show up with a different OS or not matching an OS is not going to fool them for long. Why not instead apply your time and effort into actually securing the box, instead of just obscuring it. Security through obscurity is not an effective security measure (For long). At the very least, close all ports you're not using, check to see if anything you are running has any known vunerabilities, and possibly even stick a firewall box between the machine and the hostile network. -skullY On Wed, May 03, 2000 at 07:21:17PM -0400, John Turner wrote:
I have searched the net looking for a definitive answer to this question but have come up dry. QUESTION: Is there a way to completely fool (or block) OS detection from scanners (like nmap, queso, etc.) using the Linux OS? What about Windoze? Any insight would be greatly appreciated. Regards, John
Current thread:
- OS Detection Question John Turner (May 03)
- Re: OS Detection Question Fyodor (May 03)
- Re: OS Detection Question Bruno Morisson (May 03)
- Re: OS Detection Question Saint skullY the Dazed (May 03)
- Re: OS Detection Question Marco Belmonte (May 04)
- Re: OS Detection Question Mr. Man (May 04)
- Re: OS Detection Question Cameron Palmer (May 05)
- Re: OS Detection Question Mr. Man (May 05)
- Re: OS Detection Question Fyodor (May 07)
- Re: Nmap vs DTK ? Nicodimus (May 11)
- Re: OS Detection Question Saint skullY the Dazed (May 04)
- Re: OS Detection Question Brian Kifiak (May 04)