Honeypots mailing list archives

Re: forkcmdexe.pl

From: Jan Reister <jan.reister () unimi it>
Date: Tue, 26 Apr 2005 13:24:06 +0200

On 25/04/2005 14:59, David Halsband wrote:

add windows tcp port 4444 "/etc/honeyd/scripts/cmdexe-1.06/cmdexe.pl -pwinxp -l //etc/honeyd/scripts/cmdexe-1.06/log"
[...]
set windows uid 77811 gid 31553


There's one / more in the logdir argument. Read the cmd.exe script and
make sure that logdir and logfile exist. Make sure the honeyd process
has appropriate permissions on them.

See /var/log/honeypot/daemon.log for the uid/gid honeyd starts with,
check it against uid/gid you set in the config file.

Jan

Current thread:

forkcmdexe.pl David Halsband (Apr 25)
- Re: forkcmdexe.pl Jan Reister (Apr 26)
- Re: forkcmdexe.pl Joachim Schipper (Apr 27)
- Re: forkcmdexe.pl Laurent OUDOT (Apr 27)