Honeypots mailing list archives

FW: Need your helping defining honeypots

From: "Axel de Kimpe" <axel () dekimpe net>
Date: Sat, 17 May 2003 00:00:30 +0200

my 2 pence to the list as well.

-----Original Message-----
From: Axel de Kimpe [mailto:axel () dekimpe net] 
Sent: Friday, May 16, 2003 9:26 PM
To: 'Lance Spitzner'
Cc: KENIS LIEVEN
Subject: RE: Need your helping defining honeypots

Lance,

regarding your idea, honey needs both.

option 1 describes purpose, option 2 describes usage.  i'd say they are
mutually inclusive.

a suggestion : A honeypot is an inexpensive, completely controlled,
secure and pre-emptive security resource-environment, whose main added
value lies in it being probed, attacked, or compromised - whenever,
whatever resource and wherever, you decide. As such a honeypot is - at
its core - a resource-environment operated to monitor the use of the
available resources, by entities who are unauthorized or whom are
thought to be unauthorized by their presence in this
resource-environment.

just my 2 pence of course.

greetings,

Axel
[security-evangelist]

-----Original Message-----
From: Lance Spitzner [mailto:lance () honeynet org] 
Sent: Friday, May 16, 2003 8:24 PM
To: honeypots () securityfocus com
Subject: Need your helping defining honeypots

Recently I released a paper attempting to define honeypots. I've
received alot of great feedback on that.  Some of the feedback has been
we may be able to improve on the definition. Honeypots are extremely
flexible and can be used for many different things.  As such, I propose
two different possible definitions.  Comments/input GREATLY appreciated!

Option 1:
---------
A honeypot is a security resource who's value lies in being probed,
attacked, or compromised.

Option 2:
---------
A honeypot is a resource operated to monitor the use by entities 
who are unauthorized, or have reason to believe they are unauthorized, 
to use those resources. 

Do you have a preference for either defintion, a different defintion, or
perhaps a combination of the both?  If so, why? Let us know.

Thanks!

-- 
Lance Spitzner
http://www.tracking-hackers.com

Current thread:

Re: Need your helping defining honeypots, (continued)
- - Re: Need your helping defining honeypots Sergio Pozo Hidalgo (May 19)
- Re: Need your helping defining honeypots Diego González (May 16)
  - Re: Need your helping defining honeypots Tora (May 16)
- RE: Need your helping defining honeypots Glenn_Everhart (May 16)
- FW: Need your helping defining honeypots David Lordly (May 16)
- Re: Need your helping defining honeypots Richard.Salgado () usdoj gov (May 16)
  - RE: Need your helping defining honeypots John McCracken (May 16)
    - Re: Need your helping defining honeypots George W. Capehart (May 16)
  - Re: Need your helping defining honeypots George Bakos (May 17)
  - Re: Need your helping defining honeypots Jeremy Bennett (May 19)
- FW: Need your helping defining honeypots Axel de Kimpe (May 16)