Disabling TCP timestamps

The OS fingerprinting probe examines the remote server's implementation of TCP timestamps. Timestamps provide the attacker with a means to guess the operating system of the target.

For z/OS®, TCP timestamps can be disabled by executing the following steps:

Find the TCP configuration data set, named as Profile.TCPIP or similar.
Edit the TCP configuration data set by appending NOTCPTIMESTAMP in the line TCPCONFIG.
Using a user with CONTROL access, run VARY TCPIP,SYNTAXCHECK, tcpConfigurationDatasetName to validate the syntax of the configuration file.
Using a user with CONTROL access, run VARY TCPIP,,OBEYFILE, tcpConfigurationDatasetName to apply the changes.

For more information, see:

Security considerations for the VARY command
Understanding the VARY TCPIP,,SYNTAXCHECK command
Understanding the TCPCONFIG statement