02233

Netværkssikkerhed
Network Security

• Introduktion
• Nessus Scan
• Nessus Questions
• Snort Questions
  • Question 1
  • Question 2
  • Question 3
  • Question 4
  • Question 5
  • Question 6
  • Question 7
  • Question 8
  • Question 9
  • Question 10
  • Question 11
  • Question 12
  • Question 13
  • Question 14
  • Question 15
  • Question 16
  • Question 17
  • Question 18
• References

Question 10

Will it be possible to use Snort as a honey pot and for what reason?

Yes, in fact its quite a good idea because it can capture all of the prospective hackerÕs packets and payloads, gleaning invaluable information about the hackerÕs activities and providing a critical analysis.

[i42] has an excellent overview of the reasons and techniques. It should be noted, however, that Snort in itself isn't suitable as the actual honeypot , but is suitable as a monitoring device only with the actual honeypot machines running other services that one wants to expose to the potential hackers.

Bjarne D Mathiesen

Michael Pantridge

Thabet Al-Assdi

Chang Jensen