Date: Tue, 20 Feb 2001 20:59:38 -0800 From: Rob <europax@home.com> To: David Kelly <dkelly@HiWAAY.net> Cc: freebsd-chat@FreeBSD.ORG Subject: Re: mousetrap for port 111? Message-ID: <3A934B3A.33E70781@home.com> References: <200102210312.f1L3CVm06055@grumpy.dyndns.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Sounds like fun! My notebook is only connected for a couple of hours per night but ipflog is full of port 111 stuff. (and also the LPRng port scans) Rob. David Kelly wrote: > > Getting tired of the probes on port 111. Anyone know of a "mousetrap" to > fake being Sun RPC, complete with emulation of what the script kiddies > are looking for? > > I wouldn't mind a protected sandbox for them to play in. Protected from > everything else. Fake credit card files. Files tagged "SECRET". Etc. > Recording everything they did. Something that could be used as evidence > for prosecution. Thinking such could be called a "reverse kiddie > script", or maybe just "mousetrap". > > Surfing /usr/ports finds security/fakebo seems to have the right idea. > > The FBI got a lot of flack for Carnivore, which actively seeked its prey > out of the herd. Maybe we talk them into Herbivore, which would wait for > the hunter to come to it? If it wasn't for the pre-existing Carnivore > name they could call this one "venus flytrap." > > -- > David Kelly N4HHE, dkelly@hiwaay.net > ===================================================================== > The human mind ordinarily operates at only ten percent of its > capacity -- the rest is overhead for the operating system. > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-chat" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-chat" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3A934B3A.33E70781>