|
OpenBSD Packages and Ports Installation and upgrading of packages and ports on OpenBSD. |
|
Thread Tools | Display Modes |
|
|||
Honeypot : Which package lets me imitate OpenSSH?
Hello,
I would like to imitate a few services on a few ports for outside world. If one connects to lets say 22 TCP port I would like him to not connect to real OpenSSH, still make him thinking that he connects to real OpenSSH and only need to guess valid password. Maybe even imitate Windows services. Based on that I would like to block IP and log that. The part with pf to block IP I am able to do, but I don't know if there exists something like that in ports, which lets me imitate various popular services. |
|
||||
You'll find net/honeyd in packages. The Honeyd project website has an example configuration that includes a simulated ssh.
Disclaimer: I've never used this tool, and can't comment on its use/function/safety/security. |
|
||||
Quote:
There is an interesting Military/Cyberwar perspective/presentation on that technology/technique at: "Confessions of a Cyber Spy Hunter: Eric Winsborrow at TEDxVancouver", [specifically] about time - 16:40 - but the entire talk is worth watching, IMHO |
|
||||
Here's a talk given by Lance Spitzner, the founder of the Honeynet Project: "HNW2015 - Lance Spitzner - The Honeynet Project: Then and Now". I had to stop watching at 6:00.
|
Tags |
honeypot, pf, port trap |
|
|
Similar Threads | ||||
Thread | Thread Starter | Forum | Replies | Last Post |
OpenSSH 7.0 has been released. | e1-531g | News | 0 | 11th August 2015 08:03 PM |
Backdoor in wireless DSL routers lets attacker reset router, get admin | J65nko | News | 3 | 6th January 2014 12:30 AM |
Google Lets You Manage Your Digital Life From Beyond the Grave | Beastie | News | 1 | 16th April 2013 10:30 PM |
Xen lets KVM overtake | J65nko | News | 0 | 23rd June 2011 06:18 AM |
OpenSSH 5.4 Release | J65nko | News | 0 | 9th March 2010 08:48 PM |