hi,
is there any way to hide uptime of systems in an ASA-5520's DMZ?
from outside i see (e.g.)
(blablabla)
Uptime 0.020 days (since Mon May 14 13:38:49 2007) TCP Sequence Prediction: Class=truly random Difficulty=9999999 (Good luck!) IPID Sequence Generation: All zeros
Nmap finished: 1 IP address (1 host up) scanned in 61.469 seconds Raw packets sent: 3429 (153.492KB) | Rcvd: 30 (1680B)
thanks,
timo
The only way to read the uptime is via snmp, so configure your snmp parameters (and change your snmp community while you are at it.)
i don't want to read my internal uptime (which i in fact do via snmp), but i want to hide it.
i'd like to prevent nmap et al. to fingerprint our system's uptime. for my OpenBSD babies this is no problem, but those GNU/Linux boxen are bare naked. can ASA hide their uptime? pf can...
regards,
timo
Cabling-Design.com Forums website is not affiliated with any of the manufacturers or service providers discussed here. All logos and trade names are the property of their respective owners.