Honeypots mailing list archives

Planning question

From: <Piotr.Linke () nokia com>
Date: Tue, 3 Jun 2003 14:52:45 +0200

Hi all!

I'm going to set up a honeynet with few operating systems (Unix, Solaris, 2000, Redhat) and two types of IDSes - Snort 
and RealSecure. How can I prevent an intruder from attacking other hosts from my honeypots after compromising them? 
Should I set some ACLs on router or firewall?

Please advise,

Piotr.

Current thread:

Planning question Piotr.Linke (Jun 03)
- Re: Planning question Rodney Green (Jun 03)
- Re: Planning question Richard Stevens (Jun 03)
- Re: Planning question Davide Del Vecchio (Jun 03)
- <Possible follow-ups>
- Re: Planning question Garrett Sinfield (Jun 03)