Hi all (again) :)

To explain mine post that I have wrote before.

Idea is to create one box that is going to be honeypot and that is going to
send all datas from syslog to remote syslog machine.
Machine is going to be setuped with default configuration.
I wan't to learn the most from the attacks on that machine.
I'm interested in all commands, because I know who are the script kidies and
how they think and work, but for someone that is realy good, it would be
nice to see what is he doing on the box, what things is he interested in on
the machine, what is he going to do on machine, purpose of breaking in (why
does he need that shell, scanning, gateway shell or something else) and so
on.
The machine is going to be machine for some kind of internal hacking
contest, but I'm sure that is going to be scans from outside.
The only phisical access to the machine is going to be over serial port.

I hope that I have created more detailed vision of my idea.

Best regards
Kulla

---------------------------------------------------------------------
To unsubscribe, e-mail: honeypots-unsubscribesecurityfocus.com
For additional commands, e-mail: honeypots-helpsecurityfocus.com
---------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert
(SIA) Service. For more information on SecurityFocus' SIA service
which automatically alerts you to the latest security vulnerabilities.
Please, see: https://alerts.securityfocus.com/

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]