Re: fake services

["Luis Wong" <lwong () librosyarte com mx>]

sourceforge.net/projects/single-honeypot

try with this , emulate many services , ask for login pass and bind a shell.

----- Original Message -----
From: "Gonzalez, Albert" <albert.gonzalez () eds com>
To: <honeypots () securityfocus com>
Sent: Monday, January 27, 2003 9:38 AM
Subject: RE: fake services


> You might want to check out BigEye it can emulate services and give you
the
> ability
> to log on, show you some fake files(ie: FTP) and some other neat stuff....
>
> http://setuid.violating.us/
> http://www.violating.us/projects/bigeye
>
> Alberto Gonzalez
> EDS - Global Security Operations Center
> Security and Privacy Professional Servics
>
>
>
> -----Original Message-----
> From: honey grp [mailto:honeypict () yahoo co in]
> Sent: Sunday, January 26, 2003 2:00 AM
> To: honeypots () securityfocus com; provos () citi umich edu
> Subject: fake services
>
>
> hi,
>    We are a project group of five working on
> honeypots. We have studied many honeypots till now. So
> far we have observed that most of the honeypots do not
> proper login to fake services. They just show the
> banner i.e. the Welcome screen for ftp and telnet ,
> ask for login and password and say "Denied access".
> Why don't they give a fake service like showing some
> fake files or so???
>    Is it that if the hacker gets the access he can
> easily compromise the honeypot..... Plz let us know if
> any honeypot allows the hacker to login properly and
> give him the access.
>
> regards
>
> ________________________________________________________________________
> Missed your favourite TV serial last night? Try the new, Yahoo! TV.
>        visit http://in.tv.yahoo.com