-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256
On 20/6/19 11:45 pm, Reco wrote: > Hi. > > On Thu, Jun 20, 2019 at 11:26:08PM +1000, Andrew McGlashan wrote: >> Is there a way to provide version of "4.92" easily or some other >> text to stop the likelihood of outsiders trying to pound on and >> exploit the server? Even though they won't be able to do >> successfully due to up to date patch status. > > # rgrep banner /etc/exim4/ > /etc/exim4/conf.d/main/02_exim4-config_options:# smtp_banner = > $smtp_active_hostname ESMTP Exim $version_number $tod_full > /etc/exim4/exim4.conf.template:# smtp_banner = > $smtp_active_hostname ESMTP Exim $version_number $tod_full > > Replace v$version_number with 4.92 or set "smtp_banner" to whatever > you like. Thank you, I've changed the banner for now.... let's hope that lessens the problem. Besides the servers that I look after, it would help if others did the same so as to lessen any "scare" campaigns based on false data from Shodan. Obviously many less servers are really vulnerable than the figures are currently suggesting. Kind Regards AndrewM -----BEGIN PGP SIGNATURE----- iHUEAREIAB0WIQTJAoMHtC6YydLfjUOoFmvLt+/i+wUCXQvTBwAKCRCoFmvLt+/i +5i6AQDTFMANdum/LJEdlO/YoWbU6Yq+/Fl72OGnWUdkI84riQD/V+QZV21/8cKw Of9Ob0jKTdTBRPb6ys65dnuwjljH4lQ= =yTQa -----END PGP SIGNATURE-----
