Yesterday I noticed a new message in my messages log file, an sshd entry saying that I'd been "scanned" from an IP with SSH-1.0-SSH_Version_Mapper. Don't panic." followed by "Did not receive identification string from" an ip address.
Using google, I see that people are using scanssh and that there is no reason to panic if your openssh is up-to-date. I am running Redhat 6.2 Linux 2.2.14-5.0.14b with OpenSSH_2.9p2. I noted in another Redhat list exchange that you need to make sure that your sshd_config file contains only "Protocol 2" not the default of 2,1. I added Protocol 2 to that file and restarted ssh. I know there has been released a newer version of openssh but is my version up-to-date enough? Can someone explain to me why people use scanssh and what is going on here? What does retricting to just protocol 2 do for me? Any help sorting through this much appreciated. Gary _______________________________________________ Redhat-list mailing list [EMAIL PROTECTED] https://listman.redhat.com/mailman/listinfo/redhat-list
