Honeypots mailing list archives
Re: securing a bridge
From: Hendrik Scholz <hscholz () raisdorf net>
Date: Thu, 29 May 2003 19:58:59 +0200
Hi! On 29 May 2003 12:03:32 -0000 <kathya6200 () yahoo com> wrote:
Are there any special things to do to secure a bridge other than the 'traditional' securing of a linux box? I am using a bridge in a GenII honeypot system, and haven't been able to find much on exploiting a linux bridge.
A bridge does not need any IP addresses. Perhaps you might want to use a third interface for management or a serial console. Disabling arp might be useful if your network segments are limited to a single host (Cisco, router, ...) on each side. Don't forget to set static arp entries before disabling arp. Hendrik -- Hendrik Scholz - <hscholz () raisdorf net> - http://raisdorf.net/ Forcast for tonight: Dark.
Current thread:
- securing a bridge kathya6200 (May 29)
- Re: securing a bridge Anton A. Chuvakin (May 29)
- Re: securing a bridge Hendrik Scholz (May 29)