[Capture-HPC] One Question About Capture-HPC

dmyww123 Fri, 25 Jul 2008 05:44:13 -0700

Hi,Everyone!
&nbsp;&nbsp;&nbsp; Capture-hpc is&nbsp;wonderful!&nbsp;&nbsp; I am a 
newman&nbsp;who&nbsp;encountered a&nbsp;&nbsp;question&nbsp;about it recently.
&nbsp;&nbsp;&nbsp;&nbsp;My question&nbsp;is:&nbsp; "How to&nbsp;enable the 
malwares&nbsp;to be downloaded from capture-client onto the capture-server?"
&nbsp;&nbsp;&nbsp; I had set the "collect-modified-files" item in the 
"config.xml"&nbsp;to be "true",just&nbsp;as below:
&nbsp; <global collect-modified-files="true" client-default-visit-time="10" 
capture-network-packets-malicious="false" 
capture-network-packets-benign="false" send-exclusion-lists="false" p_m="0.019" 
/> 
&nbsp; <exclusion-list monitor="file" file="FileMonitor.exl" /> 
&nbsp; <exclusion-list monitor="process" file="ProcessMonitor.exl" /> 
&nbsp; <exclusion-list monitor="registry" file="RegistryMonitor.exl" /> 
&nbsp; But it didn't make sense at all, I still cann't receive any 
malwares&nbsp;in the capture-server end.&nbsp;&nbsp; *_*!
&nbsp; If you know how to configure the Capture-server to 
collect&nbsp;malwares&nbsp;from Capture-clients, please teach me.
&nbsp;&nbsp;Thank you very much!&nbsp; ^_^


-------------------------------------------------------------------
注册新浪2G免费邮箱(http://mail.sina.com.cn/)

_______________________________________________
Capture-HPC mailing list
Capture-HPC@public.honeynet.org
https://public.honeynet.org/mailman/listinfo/capture-hpc

[Capture-HPC] One Question About Capture-HPC

Reply via email to