Honeypots mailing list archives
Re: profiling honeypots..
From: Seth Arnold <sarnold () wirex com>
Date: Mon, 7 Apr 2003 12:37:43 -0700
On Mon, Apr 07, 2003 at 03:13:25PM -0400, Toby Miller wrote:
However, if your honeypot is place deep inside a corporate network or a government network then you might catch a more advanced hacker.
It might be worthwhile to ask Digital Defense where they locate their honeypots -- they caught an attacker using an otherwise unknown samba vulnerability using a samba honeypot. http://www.securityfocus.com/archive/1/317615/2003-04-04/2003-04-10/0 -- "In God we trust, all others we monitor." -- NSA, Intercept Operators's motto, 1970
Attachment:
_bin
Description:
Current thread:
- Re: profiling honeypots.., (continued)
- Re: profiling honeypots.. Bernie, CTA (Apr 07)
- RE: profiling honeypots.. Toby Miller (Apr 07)
- RE: profiling honeypots.. Nigel Clarke (Apr 07)
- RE: profiling honeypots.. Toby Miller (Apr 07)
- RE: profiling honeypots.. Nigel Clarke (Apr 07)
- RE: profiling honeypots.. Bernie, CTA (Apr 07)
- Re: profiling honeypots.. paul (Apr 07)
- Re: profiling honeypots.. Seth Arnold (Apr 07)