Hi all, below is an email I sent to [EMAIL PROTECTED] I would just like to know the thoughts of the Cooker developers on this topic.
Hi all, it's been a while since I have been on this list but I have checked through the archives and have not seen anything on the idea of honeypots here. The reason I am asking is because I did one a couple of months ago as a research project in school before I graduated and I am looking into the idea of setting up another one. While my last one was purely for my own learning experience, I would like the results of this one to contibute to something or someone outside of myself. One of the values of a honeypot is in the possible detection of new and previously unknown to the greater security community exploits and vulnerabilities. Following this, my current idea is to start a Mandrake Cooker honeypot. This machine would follow the development of the Cooker branch (as well as one possibly can with such a moving target) in order to possibly discover vulnerabilities before the next final release. I think such an idea would be highly valuable to the Mandrake community in the creation of a more secure distribution both code wise as well as configuration wise. I realise the limits of one Cooker honeypot on my lonely cable connection. That is why I am asking for feedback from others about this idea and to see who else would be interested in this project. I realise the liabilities in running a honeypot already and have been looking into even greater damage prevention than my last one. What I want to know is how valuable others of you feel this would be and if anyone might be interested in furthering this idea with me? Thanks everyone. Tom
