Network Security: Detailed info on Re: Honeypot Server

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security Security-Basics

[Top] [All Lists]

Re: Honeypot Server

from [krymson] Network Security

[Permanent Link]

Subject:	Re: Honeypot Server
Date:	17 Jan 2008 21:38:24 -0000

"Easy to admin, monitor, alert..." I apologize, but I would first question what 
your intended purpose for the honeypot would be. I get the feeling you want 
something more like a network tripwire that you don't have to look at. I would 
steer you towards an IDS solution like Snort or some other sort of deep 
inspection firewall or even just your firewall logs.

A honeypot, while fun and interesting, is still largely a measure for 
malware/hacker research as opposed to any real security measure. I know you 
didn't call it a security measure, but it sounds like you want a security 
measure...? A honeypot has very little value to most shops that are not 
providing actual research.


<- snip ->
Can you advise what is the best honeypot server available
Open-source or commercial - it doesn't matter as long as it will be easy to
administrate and easy to monitor and alerted ...

[More messages with this same subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
RE: Logging, (continued) RE: Logging, Petter Bruland Re: Logging, infolookup RE: Logging, Bugtraq Re: Logging, securek9 Re: Logging, infolookup Re: Honeypot Server, Gleb Paharenko Re: Honeypot Server, p1g Re: Honeypot Server, Emilio Casbas Re: Honeypot Server, Brent Huston Re: Honeypot Server, p1g Re: Honeypot Server, krymson <= RE: Honeypot Server, Timmothy Lester RE: Honeypot Server, Albert Gonzalez

Previous by Date:	Re: Re: SIEM device?, vin
Next by Date:	Re: Re: SIEM device?, vin
Previous by Thread:	Re: Honeypot Server, p1g
Next by Thread:	RE: Honeypot Server, Timmothy Lester
Indexes:	[Date] [Thread] [Top] [All Lists]