Include the Debian version in our identification

This makes it easier to audit networks for versions patched against security vulnerabilities. It has little detrimental effect, as attackers will generally just try attacks rather than bothering to scan for vulnerable-looking version strings. (However, see debian-banner.patch.) Forwarded: not-needed Last-Update: 2013-09-14 Patch-Name: package-versioning.patch
author: Matthew Vernon <matthew@debian.org> 2014-02-09 16:10:05 +0000
committer: Colin Watson <cjwatson@debian.org> 2017-03-29 01:40:34 +0100
commit: 8f127a3c84d2eae8d1fb5529887c880c22c5cf75 (patch)
tree: 8f5b963027e10264241629dc631c60ce92496798 /sshconnect.c
parent: 315c5a460b33d076edc27a41b0e790ea73cc3b9d (diff)
1 files changed, 2 insertions, 2 deletions
diff --git a/sshconnect.c b/sshconnect.c
index 66c495f47..120f09458 100644
--- a/sshconnect.c
+++ b/sshconnect.c
@@ -526,10 +526,10 @@ send_client_banner(int connection_out, int minor1)
        /* Send our own protocol version identification. */
        if (compat20) {
                xasprintf(&client_version_string, "SSH-%d.%d-%.100s\r\n",
-                    PROTOCOL_MAJOR_2, PROTOCOL_MINOR_2, SSH_VERSION);
+                    PROTOCOL_MAJOR_2, PROTOCOL_MINOR_2, SSH_RELEASE);
        } else {
                xasprintf(&client_version_string, "SSH-%d.%d-%.100s\n",
-                    PROTOCOL_MAJOR_1, minor1, SSH_VERSION);
+                    PROTOCOL_MAJOR_1, minor1, SSH_RELEASE);
        }
        if (atomicio(vwrite, connection_out, client_version_string,
            strlen(client_version_string)) != strlen(client_version_string))
author	Matthew Vernon <matthew@debian.org>	2014-02-09 16:10:05 +0000
committer	Colin Watson <cjwatson@debian.org>	2017-03-29 01:40:34 +0100
commit	8f127a3c84d2eae8d1fb5529887c880c22c5cf75 (patch)
tree	8f5b963027e10264241629dc631c60ce92496798 /sshconnect.c
parent	315c5a460b33d076edc27a41b0e790ea73cc3b9d (diff)

diff --git a/sshconnect.c b/sshconnect.c index 66c495f47..120f09458 100644 --- a/sshconnect.c +++ b/sshconnect.c
@@ -526,10 +526,10 @@ send_client_banner(int connection_out, int minor1)
526	/* Send our own protocol version identification. */	526	/* Send our own protocol version identification. */
527	if (compat20) {	527	if (compat20) {
528	xasprintf(&client_version_string, "SSH-%d.%d-%.100s\r\n",	528	xasprintf(&client_version_string, "SSH-%d.%d-%.100s\r\n",
529	PROTOCOL_MAJOR_2, PROTOCOL_MINOR_2, SSH_VERSION);	529	PROTOCOL_MAJOR_2, PROTOCOL_MINOR_2, SSH_RELEASE);
530	} else {	530	} else {
531	xasprintf(&client_version_string, "SSH-%d.%d-%.100s\n",	531	xasprintf(&client_version_string, "SSH-%d.%d-%.100s\n",
532	PROTOCOL_MAJOR_1, minor1, SSH_VERSION);	532	PROTOCOL_MAJOR_1, minor1, SSH_RELEASE);
533	}	533	}
534	if (atomicio(vwrite, connection_out, client_version_string,	534	if (atomicio(vwrite, connection_out, client_version_string,
535	strlen(client_version_string)) != strlen(client_version_string))	535	strlen(client_version_string)) != strlen(client_version_string))