Honeypots mailing list archives

Re: Honeypot Article

From: "Roland Venter" <RolandV () cits co nz>
Date: Thu, 16 Jan 2003 09:36:03 +1300

The author places some significance in the password: xeocage123

"The password he used to create his "local" account tells us a lot about our attacker, as we will see later in this 
paper. "

but does not mention it later in the paper, am I missing something?

All I can think is that the uploaded / patched version of SSH is hard coded to use this password...


________________________________________
Roland Venter
www.secwiz.com 
________________________________________

Current thread:

Re: Honeypot article, (continued)
- Re: Honeypot article Ing. Bernardo Lopez (Jan 15)
- Re: Honeypot article R. Anthony Kolstee (Jan 24)
  - Re: Honeypot article Jon (Jan 25)
  - Complete Honeynet zeal0t (Jan 25)
    - Re: Complete Honeynet rewt (Jan 25)
    - Re: Complete Honeynet Valdis . Kletnieks (Jan 26)
- RE: Honeypot article Keith Bruss (Jan 15)
  - RE: Honeypot article Spikeman (Jan 15)
    - RE: Honeypot article Grégoire Welraeds (Jan 15)
    - RE: Honeypot article Tom McLaughlin (Jan 16)
- Re: Honeypot Article Roland Venter (Jan 15)
- RE: Honeypot article Bosschert, B. (is-ks) (Jan 16)
  - RE: Honeypot article Valter Santos (Jan 16)