|
Honeypots
mailing list archives
RE: Honeyclients info
From: "Stejerean, Cosmin" <cstejere () cti depaul edu>
Date: Wed, 20 Apr 2005 13:41:09 -0500
I am making some big assumptions here, but I believe tools such as Sebek can
be considered honeyclients. You install it on a high interaction honeypot
and it will log data to a centralized server in order to provide additional
functionality such as Sebek being able to record SSH sessions, something you
could not easily do otherwise.
But I might be wrong...
Cosmin
-----Original Message-----
From: David Jiménez Domínguez [mailto:djdsecurity () gmail com]
Sent: Wednesday, April 20, 2005 1:10 PM
To: honeypots () securityfocus com
Subject: Honeyclients info
Hi folks!!!
Do you know what a honeyclient is??
What is the difference between a high-interaction honeypot and a
honeyclient?
Do yo have docs about it?
In Recon 2005 there is a speaker (Kathy Wang) who is going to speak
about it, but I'm not going to be there.... I have seen that some
honetnet projects are moving to this kind of technology.... but what
is it?
------------------
David.
Attachment:
smime.p7s
Description:
 By Date 
By Thread
Current thread:
- Re: Honeyclients info, (continued)
- RE: Honeyclients info Stejerean, Cosmin (Apr 20)
|
Intro
