Honeypots: Re: Question about logging

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Honeypots mailing list archives

Re: Question about logging

From: "Curq" <curq () flashmail com>
Date: Thu, 5 Dec 2002 23:56:43 -0500

I think he was getting at the exposure of the syslog server once a honeypot
is compromised.

To follow your example:
In this case you have to leave the address of the dead man's switch in your
pocket and give the mobsters an opportunity (though limited) to visit them
next.

curq

----- Original Message -----
From: <Valdis.Kletnieks () vt edu>
To: "TJ O'Grady" <tjogrady () flyingwithouta net>
Cc: <honeypots () securityfocus com>
Sent: Thursday, December 05, 2002 10:17 PM
Subject: Re: Question about logging

By Date By Thread

Current thread:

Question about logging TJ O'Grady (Dec 05)
- Re: Question about logging Valdis . Kletnieks (Dec 05)
  - Re: Question about logging Curq (Dec 06)
- Re: Question about logging Floydman (Dec 06)
- <Possible follow-ups>
- Re: Question about logging Ryan Barnett (Dec 06)