Security Basics mailing list archives
RE: Honeypot Server
From: <m.farid.shawara () gmail com>
Date: Fri, 18 Jan 2008 11:37:10 +0200
Thanks for all of you ... When I said Alerting I meant that I should be able to sense the attack when it happens. Another question : If I am an attacker - is there anyway to fingerprint it and know that it's not a server and it's a just a honeypot ... My problem is that depending on the already known versions of the honeypots and honeynets software - the attackers will always be able to identify them and thus avoid doing any activities on them ... Thanks ,,, -----Original Message----- From: pinowudi [mailto:pinowudi () gmail com] Sent: Friday, January 18, 2008 4:44 AM To: m.farid.shawara () gmail com Subject: Re: Honeypot Server honeypots are not for alerting. they are for researching the unknown. Look to snort or a nids for your requirements. m.farid.shawara () gmail com wrote:
Dear All : Can you advise what is the best honeypot server available Open-source or commercial - it doesn't matter as long as it will be easy
to
administrate and easy to monitor and alerted ... Mohamed Farid ...
Current thread:
- Honeypot Server m.farid.shawara (Jan 17)
- Re: Honeypot Server Gleb Paharenko (Jan 17)
- RE: Honeypot Server Brett Kennedy (Jan 17)
- RE: Honeypot Server Timmothy Lester (Jan 17)
- Message not available
- RE: Honeypot Server m.farid.shawara (Jan 18)
- RE: Honeypot Server Timmothy Lester (Jan 18)
- Logging Krzyston, Randy (Jan 18)
- RE: Logging Robert D. Holtz - Lists (Jan 18)
- RE: Logging Scott Williamson (Jan 18)
- RE: Logging Lee Hilt (Jan 18)
- RE: Logging Petter Bruland (Jan 19)
- Re: Logging infolookup (Jan 19)
- RE: Logging Bugtraq (Jan 21)
- Re: Logging securek9 (Jan 21)
- Re: Logging infolookup (Jan 21)
- RE: Honeypot Server m.farid.shawara (Jan 18)
- Re: Honeypot Server Gleb Paharenko (Jan 17)