Honeypots mailing list archives
Re: Need your helping defining honeypots
From: Harish Pillay <harish () maringotree com>
Date: Sat, 17 May 2003 13:23:38 +0800
Lance - I think Option 2 is better but like what others have also said, it can be expanded to include those who are authorized. Behaviour of those who are authorized can provide valuable clues on what they "thought" they were doing as opposed to what they were "actually" doing. This is similar to usage testing. BTW, I have just finished reading your book on Honeypots and I must thank you for an excellent tome! It takes pride of place next to Bruce Schneier's books. Harish * on the Fri, May 16, 2003 at 01:24:11PM -0500, Lance Spitzner was commenting:
Recently I released a paper attempting to define honeypots. I've received alot of great feedback on that. Some of the feedback has been we may be able to improve on the definition. Honeypots are extremely flexible and can be used for many different things. As such, I propose two different possible definitions. Comments/input GREATLY appreciated! Option 1: --------- A honeypot is a security resource who's value lies in being probed, attacked, or compromised. Option 2: --------- A honeypot is a resource operated to monitor the use by entities who are unauthorized, or have reason to believe they are unauthorized, to use those resources. Do you have a preference for either defintion, a different defintion, or perhaps a combination of the both? If so, why? Let us know. Thanks! -- Lance Spitzner http://www.tracking-hackers.com
-- Harish Pillay CEO/CTA Maringo Tree Technologies Pte Ltd 15 Jalan Kilang Barat #06-06, Frontech Center, Singapore 159357. w: +65.6271.8589 x: +65.6270.4552 If this helped you, please take the time to rate the value of this post: http://svcs.affero.net/rm.php?r=harish
Current thread:
- Re: Need your helping defining honeypots, (continued)
- Re: Need your helping defining honeypots Jon Baer (May 16)
- Re: Need your helping defining honeypots Valdis . Kletnieks (May 16)
- Re: Need your helping defining honeypots Jon Baer (May 16)
- Re: Need your helping defining honeypots Ed Shirey (May 16)
- Re: Need your helping defining honeypots Matt Fisher (May 16)
- Re: Need your helping defining honeypots Diego González (May 16)
- Re: Need your helping defining honeypots Davide Del Vecchio (May 16)
- Re: Need your helping defining honeypots Seth Arnold (May 16)
- Re: Need your helping defining honeypots Valdis . Kletnieks (May 16)
- Re: Need your helping defining honeypots Bernie, CTA (May 16)
- Re: Need your helping defining honeypots George Washington Dunlap III (May 16)
- Re: Need your helping defining honeypots Harish Pillay (May 17)
- Re: Need your helping defining honeypots Andy Cuff [talisker] (May 17)
- Re: Need your helping defining honeypots Sergio Pozo Hidalgo (May 19)
- Re: Need your helping defining honeypots Christian Kreibich (May 19)
- Re: Need your helping defining honeypots Sergio Pozo Hidalgo (May 19)
- Re: Need your helping defining honeypots Todd A. Jacobs (May 18)
- Re: Need your helping defining honeypots Christian Kreibich (May 19)
- Re: Need your helping defining honeypots Niels Provos (May 19)
- Re: Need your helping defining honeypots Sergio Pozo Hidalgo (May 19)
- Re: Need your helping defining honeypots Diego González (May 16)
- Re: Need your helping defining honeypots Tora (May 16)
- RE: Need your helping defining honeypots Glenn_Everhart (May 16)
(Thread continues...)