I've been running Avircap for some time on a honeypot server and it provides two very useful functions:-
1. Keeping a track of any attacks that might be launched across the subnets that we use.
2. Drawing attention away from other servers that may be more vulnerable to attack.
I'm happy with the current functionality, but am wondering about two specific aspects; firstly the component applications that were supplied are now long in the tooth and have their own vulnerabilities. I would like to upgrade apache and mysql but just wanted to check that it's not dependent on the current versions. Secondly we've had a new variant of Codered (F) released this week and I'm not sure what's involved in getting the application to look for further variants.
Any assistance gratefully received.
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
I've been running Avircap for some time on a honeypot server and it provides two very useful functions:-
1. Keeping a track of any attacks that might be launched across the subnets that we use.
2. Drawing attention away from other servers that may be more vulnerable to attack.
I'm happy with the current functionality, but am wondering about two specific aspects; firstly the component applications that were supplied are now long in the tooth and have their own vulnerabilities. I would like to upgrade apache and mysql but just wanted to check that it's not dependent on the current versions. Secondly we've had a new variant of Codered (F) released this week and I'm not sure what's involved in getting the application to look for further variants.
Any assistance gratefully received.