Mailing List Archive
Support open source code!
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [tlug] Honeypots
- To: tlug@example.com
- Subject: Re: [tlug] Honeypots
- From: Uva Coder <uvacoder@example.com>
- Date: Thu, 7 Mar 2002 18:21:00 +0900
- Content-disposition: inline
- Content-type: text/plain; charset=us-ascii
- In-reply-to: <13507881ED4DD511B24F00508BB287BF01C7CD42@example.com>; from mancy.raymond@example.com on Thu, Mar 07, 2002 at 10:07:14AM +0800
- References: <13507881ED4DD511B24F00508BB287BF01C7CD42@example.com>
- User-agent: Mutt/1.2.5i
On Thu, Mar 07, 2002 at 10:07:14AM +0800, Mancy, Raymond wrote: > I was wondering if anybody has made one of these before? What OS are you > running and what services? I know that there are arguments for and against > them, but it seems like an interesting idea nonetheless. Thats if you have > the time and the resources.... The honeypots that I've dealt with were running on WinNT with basic services such as IIS, Exchange, pop3 and DNS. The machine at work which monitored the honeypots was a Linux box running a proprietary network IDS program. Activity logs from the screening router, firewall, IDS machine and honeypots were compiled, analyzed, compared, archived and then sent to a third party site for further analysis. On a lighter note, it could be argued that our previous TLUG server "Nozomi" was a honeypot. :) -- Uva
- References:
- [tlug] Honeypots
- From: Mancy, Raymond
- [tlug] Honeypots
- Prev by Date: Re: [tlug] Honeypots
- Next by Date: Re: [tlug] Kmail Notification
- Previous by thread: Re: [tlug] Honeypots
- Next by thread: RE: [tlug] Honeypots
- Index(es):
| Home Page | Mailing List | Linux and Japan | TLUG Members | Links |