Honeypots mailing list archives

Re: securing a bridge

From: Hendrik Scholz <hscholz () raisdorf net>
Date: Thu, 29 May 2003 19:58:59 +0200

Hi!

On 29 May 2003 12:03:32 -0000
<kathya6200 () yahoo com> wrote:

Are there any special things to do to secure a bridge other than 
the 'traditional' securing of a linux box?  I am using a bridge in a
GenII honeypot system, and haven't been able to find much on
exploiting a linux bridge.


A bridge does not need any IP addresses. Perhaps you might want to use a
third interface for management or a serial console.
Disabling arp might be useful if your network segments are limited to a
single host (Cisco, router, ...) on each side. Don't forget to set
static arp entries before disabling arp.

Hendrik

-- 
Hendrik Scholz - <hscholz () raisdorf net> - http://raisdorf.net/

Forcast for tonight: Dark.

Current thread:

securing a bridge kathya6200 (May 29)
- Re: securing a bridge Anton A. Chuvakin (May 29)
- Re: securing a bridge Hendrik Scholz (May 29)