darkreading.com — A new open-source Honeynet Project tool toys with attackers by dynamically emulating apps with the types of bugs they're looking for. This next-generation Web server honeypot project poses as Web servers with thousands of vulnerabilities in order to gather firsthand data from real attacks targeting websites.
Nov 1, 2009 View in Crawl 4
scuba7183Nov 1, 2009
Not really. This is about collecting information about hackers and the techniques they use
itspecificNov 1, 2009
New?
johnnysoftwareNov 1, 2009
I'm not sure this is the most original idea ever. The whole point of a honey pot is so you can learn from, toy with delay, frustrate, tie up, confuse, distract, etc. the attackers. A lot of what they can do betrays things about them and their resources.Attackers are sometimes more vulnerable than what they are attacking, depending on the circumstances.They could break into someplace to steal information and instead get little and give away a lot.Who is going to use a honey pot in a purely defensive manner or simply to detect something? The whole point is to learn as much as you can about the attackers, their software, and anything else you can. They break into your house, you make the rules. If you write software, it executes your rules.
samurimasterNov 2, 2009
Honeypots are not new
kibibytebrainNov 2, 2009
They are not tampering with the botnet in this case, they are purposely letting the botnet tamper with them, except in a way the botnet was not expecting. It's still the bots that are initiating all the intelligence, so the honeypot is perfectly OK to do.
salinemistNov 2, 2009
While fun, a honeypot does absolutely nothing to increase the security of your network. If anything it only attracts attention to your network.
nyxerebosNov 2, 2009
That really depends on what your goals are. If you just want a secure network, then sure. If you need to do research on the attacks your software faces, and learn of new vulnerabilities as they are entering use then honeypots are a valuable source of information.