Just for sake of curiosity:
Is that possible ?
I'd like to support XP Pro *only* and to ban any other Windows OS
(no 2000 server or 2003 server machines in here).
Samba works in domain mode with Ldap backend.
Cheers,
--
Michal Kurowski
perl -e '$_=q#: 13_2: 12/o{>: 8_4) (_4: 6/2^-2; 3;-2^\2: 5/7\_/\7: 12m
m::#;
y#:#\n#;s#(\D)(\d+)#$1x$2#ge;print'
> Just for sake of curiosity: > > Is that possible ? > I'd like to support XP Pro *only* and to ban any other Windows OSThere are some very advanced networking stacks which allow you to specify filtering based on TCP fingerprints. OpenBSD does, for example. I don't know if XP Home and XP Pro have different enough fingerprints to allow a reliable discrimination between them. This is a puzzling request, though. I am assuming that these unwanted hosts can change their ip#, thus evading firewall/smb.conf based access lists. It's easier to distinguish between XP versus 2000 versus 95, 98, Me, and NT4, etc. Those have rather different fingerprints. If you don't use OpenBSD, I suppose you could make use of nmap to perform a quick on-the-fly OS fingerprint and then pull up a firewall against that ip#, thus blocking the unwanted user(s). It seems to me that it'd be simpler to just allow access only from certain domains, etc. Malcolm
> -----Original Message----- > From: tms3 [mailto:tms3@fskklaw.com]> >This rumour seems to have kicked around the Internet a bit, > but do you > >have anything more than the old BSD copyright notice onftp.exe to base>it on? >Yeah...grc.com has articles on it.> >Certainly netcraft and nmap have no difficulty telling them apart. >Probably, and as for your use it may work..or not. Point is that the diffs are probably in the windoze registry. Even if Microsoft borrowed FreeBSD's code at one point, the fork was probably quite a while ago, and both the Windows and the FreeBSD stack have changed over time. Even different versions of FreeBSD have different behaviors that nmap and p0f can detect.