Honeypots: Re: Honeyd Security Advisory 2004-001: Remote Detection Via Simple Probe Packet

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Honeypots mailing list archives

Re: Honeyd Security Advisory 2004-001: Remote Detection Via Simple Probe Packet

From: "Peter Bates" <Peter.Bates () lshtm ac uk>
Date: Wed, 21 Jan 2004 15:34:04 +0000


Hello all...

A new version of Honeyd has been released to address this issue.
The source code for Honeyd 0.8 can downloaded from

http://www.citi.umich.edu/u/provos/honeyd/


It might be a bit lame, but I just thought I'd point out (as it caught
me out!) that there's a new nmap.prints in this release which is
somewhat changed/updated from the previous versions...

My configuration didn't like it at all, although it was largely a case
of lines like:
set x personality "Solaris 2.5, 2.5.1"
suddenly acquiring a manufacturer, like so:
set x personality "Sun Solaris 2.5, 2.5.1"

Alright, it's probably blindingly obvious to most, but it caused me a
few minutes of fun!

...

p.s. Thanks again to Niel and all for the great work on honeyd!



--------------------------------------------------------------------------------------------------->
Peter Bates, Systems Support Officer, Network Support Team.
London School of Hygiene & Tropical Medicine.
Telephone:0207-958 8353 / Fax: 0207- 636 9838

By Date By Thread

Current thread:

Re: Honeyd Security Advisory 2004-001: Remote Detection Via Simple Probe Packet Peter Bates (Jan 21)