The honey pot project

Discussion in 'Security and Legal' started by kev, Jun 4, 2009.

  1. kev

    kev Regular Member

    Joined:
    Mar 9, 2009
    Messages:
    1,224
    Likes Received:
    61
    Perhaps some of you have heard of this, or maybe not. Its a security experiment where an organization will put a server out on the internet, and watch as people try to hack it.

    The server is running special software that allows the people running the project to view everything that is being done.

    .:: Welcome to Leurrecom.org Honeypot Project ::.
    It looks like the last paper that was published was in 2007 - .:: Welcome to Leurrecom.org Honeypot Project ::.

    Some of the papers are interesting to read through. There is a lot that can change from 2007 - 2009, but its still the same basic principle - find a way to get into the server.

    One paper I read a couple of years ago talked about the number of attacks and the seriousness of the attack. Out of so many thousand attempts, only a few might be considered serious, and then only 1 or 2 out of several thousand attackers might have actually done damage to the server.

    another link to another project - http://www.honeynet.org/
     
  2. Nick

    Nick Regular Member

    Joined:
    Jul 27, 2008
    Messages:
    7,441
    Likes Received:
    218
    This is fairly neat and interesting, Kevin. Thanks for sharing it with the community! :)
     
  3. kev

    kev Regular Member

    Joined:
    Mar 9, 2009
    Messages:
    1,224
    Likes Received:
    61
    I first heard about honey pots back in 2001 or 2002 when I was working for a cable modem provider in Houston, Texas. The main network guy told me about it. It was not until a couple of years later that I actually looked into the project and was quit impressed.

    Some of those white sheets go into detail about the attacks. And some of the attackers, I hope they never target my server.
     
  4. Wayne Luke

    Wayne Luke Regular Member

    Joined:
    Apr 2, 2009
    Messages:
    991
    Likes Received:
    276
    I've heard of honeypots and different methods that people use to implement them. I have never really followed them as its not really what I want to work on.
     
  5. Soliloquy

    Soliloquy Regular Member

    Joined:
    Jun 3, 2009
    Messages:
    2,402
    Likes Received:
    66
    Location:
    New York City
    Scary how many overall attacks there were. I'm sure they were probing, looking for weaknesses.
     
  6. Wayne Luke

    Wayne Luke Regular Member

    Joined:
    Apr 2, 2009
    Messages:
    991
    Likes Received:
    276
    If you want to see how many attacks something gets you can try a test. Several things are needed for this test though.

    1) You need a web accessible router with network address translation (i.e. NAT).

    2) You need a static IP address.

    3) You need a strong firewall that blocks incoming connections though your computer shouldn't actually get any.

    4) You need to post your IP address in a location where hackers would see it.

    Watch your router's logs. Now you have your own honeypot.
     

Share This Page