Hacker News new | past | comments | ask | show | jobs | submit login

there is an "ubuntu" user on most of my systems. I hope you find this information useful.



I know you're being facetious but, yes, I would find that information useful. Now I've just IDed the distribution I'm targeting.


This is usually in the OpenSSH version string anyway, e.g. "OpenSSH 6.7p1 Debian 5+deb8u4 (protocol 2.0)". Guess what distro that server is running?


I believe only Debian does that, out of vanity (I presume).


https://salsa.debian.org/ssh-team/openssh/raw/master/debian/...

Subject: Include the Debian version in our identification

This makes it easier to audit networks for versions patched against security vulnerabilities. It has little detrimental effect, as attackers will generally just try attacks rather than bothering to scan for vulnerable-looking version strings. (However, see debian-banner.patch.)


A disappointing number of servers happily give away this information in their http response headers. For those that don't, `nmap -O` will sometimes do the trick.


nmap's OS detection won't normally tell you the distribution, only the OS (and maybe kernel version).




Join us for AI Startup School this June 16-17 in San Francisco!

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: