> why care? fingerprinting is such a non-issue, and spending effort
> to avoid it is just security through obscurity.
Ignoring whether blocking NMAP scans is effective or not...
I agree that it is not good to rely on obscurity. But I don't see
anything wrong with obscuring a detail which people don't need to know.
What do you have to gain and what do you have to loose from holding
that info back? And what do you have to gain and what do you have to
loose from advertising it?
If someone wants to know what you are running, to ease their attack.
Then why not make it a little harder for them? That extra time could
help you or a process detect the random attacks and work against the
Not that there is much likelihood of a patched OpenBSD getting rooted
though. Conversely, I guess advertising OpenBSD could make them go away.