Honeypots mailing list archives
Re: Question about logging
From: "Curq" <curq () flashmail com>
Date: Thu, 5 Dec 2002 23:56:43 -0500
I think he was getting at the exposure of the syslog server once a honeypot is compromised. To follow your example: In this case you have to leave the address of the dead man's switch in your pocket and give the mobsters an opportunity (though limited) to visit them next. curq ----- Original Message ----- From: <Valdis.Kletnieks () vt edu> To: "TJ O'Grady" <tjogrady () flyingwithouta net> Cc: <honeypots () securityfocus com> Sent: Thursday, December 05, 2002 10:17 PM Subject: Re: Question about logging
Current thread:
- Question about logging TJ O'Grady (Dec 05)
- Re: Question about logging Valdis . Kletnieks (Dec 05)
- Re: Question about logging Curq (Dec 06)
- Re: Question about logging Floydman (Dec 06)
- <Possible follow-ups>
- Re: Question about logging Ryan Barnett (Dec 06)
- Re: Question about logging Valdis . Kletnieks (Dec 05)