Sign in with
Sign up | Sign in
Your question

Selecting a Honeypot Solution

Tags:
  • Security
  • Business Computing
Last response: in Business Computing
Share
October 24, 2012 1:20:40 PM

Over the past year, My fearless users have infected my network countless times, and i was looking to set up a honeypot. I was thinking of trying Debian and Nepenthes, but am not a linux guru. I would like something that does not require digging through event logs, but rather somthing that will collect malware attempting to install on vunerable pc's and propgate notifications accordingly. If anyone has a suggestion or tried this solution and has some advise to save me some hassle with tricks or tips to make the setup go smoother, ty in advance.

More about : selecting honeypot solution

October 24, 2012 1:41:16 PM

I haven't set up a honey pot yet, but,
In our company we have everything locked down: Internet access, attachments(are dumped on the server, and if they are needed user asks for them), everything. For the people that do need internet access we lock it down to only the sites they need and pretty much it, they have to come down and request a site to be unblocked. Also we have the ISP filter almost everything before it even reaches our gateway.
We also did away with DHCP and went static IP, yea, it's old school and a pain but when it's up and running properly it doesn't need to be touched.
October 25, 2012 11:50:54 PM

Mikrotik routers might offer a solution. The routerOS is very robust.
!