Honeypots mailing list archives

RE: fake services

From: "Gonzalez, Albert" <albert.gonzalez () eds com>
Date: Mon, 27 Jan 2003 10:38:10 -0500

You might want to check out BigEye it can emulate services and give you the
ability
to log on, show you some fake files(ie: FTP) and some other neat stuff....

http://setuid.violating.us/
http://www.violating.us/projects/bigeye

Alberto Gonzalez
EDS - Global Security Operations Center
Security and Privacy Professional Servics



-----Original Message-----
From: honey grp [mailto:honeypict () yahoo co in]
Sent: Sunday, January 26, 2003 2:00 AM
To: honeypots () securityfocus com; provos () citi umich edu
Subject: fake services


hi,
   We are a project group of five working on
honeypots. We have studied many honeypots till now. So
far we have observed that most of the honeypots do not
proper login to fake services. They just show the
banner i.e. the Welcome screen for ftp and telnet ,
ask for login and password and say "Denied access".
Why don't they give a fake service like showing some
fake files or so??? 
   Is it that if the hacker gets the access he can
easily compromise the honeypot..... Plz let us know if
any honeypot allows the hacker to login properly and
give him the access.

regards

________________________________________________________________________
Missed your favourite TV serial last night? Try the new, Yahoo! TV.
       visit http://in.tv.yahoo.com

Current thread:

fake services honey grp (Jan 26)
- Re: fake services sunzi (Jan 26)
- Re: fake services m m (Jan 28)
- <Possible follow-ups>
- RE: fake services Gonzalez, Albert (Jan 27)
  - Re: fake services Luis Wong (Jan 27)