DaemonForums  

Go Back   DaemonForums > OpenBSD > OpenBSD Security

OpenBSD Security Functionally paranoid!

Reply
 
Thread Tools Display Modes
  #1   (View Single Post)  
Old 7th May 2020
CiotBSD CiotBSD is offline
c107:b5d::
 
Join Date: Jun 2019
Location: Under /
Posts: 175
Default relayd: disable adress ip in return error ?

Hi,

When you set the option block to block path, url or queries, you can add the protocol return error. If condition matches, HTTP send a message error before close the connection, as:

Code:
Forbidden
Forbidden
Stop scanning!
OpenBSD relayd at 192.168.***.3 port 80
HTML code:
Code:
<!DOCTYPE html>
<html>
<head>
<title>403 Forbidden</title>
<style type="text/css"><!--
body { background: silver; color: black; text-align:center } hr {border:0; background-color:silver; color:silver; height:1px; width:30%; margin-top:50px;} em { color: #900; }
--></style>
</head>
<body>
<h1>Forbidden</h1>
<div id='m'>Forbidden</div>
<div id='l'><em>Stop scanning</em>!</div>
<hr><address>OpenBSD relayd at 192.168.***.3 port 80</address>
</body>
</html>
Someone knows a tip to not displaying the address IP, or port?



---

- https://man.openbsd.org/relayd.conf#block
- https://man.openbsd.org/relayd.conf#return
__________________
GPG:Fingerprint ed25519 : 072A 4DA2 8AFD 868D 74CF 9EA2 B85E 9ADA C377 5E8E
GPG:Fingerprint rsa4096 : 4E0D 4AF7 77F5 0FAE A35D 5B62 D0FF 7361 59BF 1733
Reply With Quote
  #2   (View Single Post)  
Old 7th May 2020
CiotBSD CiotBSD is offline
c107:b5d::
 
Join Date: Jun 2019
Location: Under /
Posts: 175
Default

OK, after discussion with solene@, an OpenBSD developer, it seems not possible because it's hard-coding, and not expected!

__________________
GPG:Fingerprint ed25519 : 072A 4DA2 8AFD 868D 74CF 9EA2 B85E 9ADA C377 5E8E
GPG:Fingerprint rsa4096 : 4E0D 4AF7 77F5 0FAE A35D 5B62 D0FF 7361 59BF 1733
Reply With Quote
Reply

Tags
address, error, relayd

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
relayd gpatrick OpenBSD General 0 8th May 2012 10:10 PM
relayd gpatrick OpenBSD General 1 16th January 2010 12:19 AM
return of the -stable ports tree ocicat OpenBSD Packages and Ports 3 24th October 2009 04:11 AM
relayd (and hoststated) give syntax error for 'check script' gwl OpenBSD Security 2 2nd May 2008 04:53 PM


All times are GMT. The time now is 08:54 PM.


Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2024, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick