From: Marcin Nawrocki <marcin.nawrocki@fu...> - 2011-08-18 15:05:58
Dear Sir or Madam,
I am running my Honeytrap-testbed on an Ubuntu server, to which I donot
own any physical access. Honeytrap handels right now all ports but SSH
This port ist used to configure / access this machine remotely.
Is it possible, to run Honeytrap also listening on SSH port, without
loosing my connectivity to this machine?
Are some special configuration steps required?
From: Marcin Nawrocki <marcin.nawrocki@fu...> - 2011-08-19 11:13:13
So there is no chance of setting up / controlling a honeytrap-testbed
which listens on _ALL_ ports, as long as I dont have any physical Access.
Am I right?
> Only one TCP port may be assigned at a time. So you can either run SSH on
> a free port other than 22 or connect by some other method.
On Fri, Aug 19, 2011 at 4:13 AM, Marcin Nawrocki <
> So there is no chance of setting up / controlling a honeytrap-testbed
> which listens on _ALL_ ports, as long as I dont have any physical Access.
> Am I right?
You could run it as a virtual and use some sort of virtual console for
access (e.g. VirtualBox,
VMware ESXi, Xen, KVM, QEMU, etc.) It might just be easier to run SSH on a
high port (e.g. somewhere between 50000-65355) and restrict access so that
IPs can reach it.
Have you considered using something like honeystick or honeywall instread of
addition to honeytrap?