Check your software. Is it vulnerable ? upgrade or patch. Set appropriate permissions, enforce active/strong security ploicy for users etc. This works! Masquarading a vulnerable or potentially vulnerable machine with forged headers is IMHO ridiculous, and a waste of time. Patch and configure properly instead.
That's all true. And to do at first.
Most of the the activity in your logs, including hack/exploit attempt are from scriptkiddies who couldn't care less what version your running. The just throw their cookbooks at your IP/firewall regardless.
So what about their scripts. Dont they ask the server 4 version to check certain vuln and will they fail ever if the get the wrong one. But anyway, just a point of view and it'snt necessary to convince me. Yours Michael Appeldorn