What if the system is put in the heart of your internal network? In this way you could ensure that only someone that had penetrated your perimeter defences could have access to the machine?
At 09:35 PM 4/20/2003 -0500, you wrote: >Using a honeypot to protect ones network is in my opinion negligent and >irresponsible. Companies have a responsibility to do their best to keep >their systems inaccessible to unauthorized users, and putting a "free" >system on the internet that could potentially allow a cracker to launch >attacks against others is not a good practice. > >Companies absolutely have a right to protect their systems, but not to >the point of breaking the law to do it. I think anyone who willingly >puts a machine on the internet that's configured to allow someone easy >and full access to it--knowing that that person intends to do damage >with it--is guilty of aiding a criminal and should be charged as such. >Enforcing the law is not the duty of citizens and corporations. > > > >On Sat, 2003-04-19 at 22:48, Jeremy J Bertrand wrote: > > > > I just read the article on securityforce.com. posssible loop-hole in > using a > > redirect, to redirect hacker traffic from a production system to a honeypot > > the hacker could sue/countersue for misrepresentation and entrapment. That > > goes for both the private company and the government. > > As far as the hackers getting in through other means beside telnet or a > > webpage and how to notify there are numerous messages that you can use to > > notify that the machine is being monitored. > > But your right it is sickening. The fact that using a honeypot to lure > hackers > > away from production machines could land you in prison. The fact that > the act > > hacking any machine is a felony should but doesn't protect the company from > > litigation. > > ??? I mean a company doesn't have the right to protect what is his and > so what > > if he wants to use something that could help capture "wanted > criminals", the > > company should be rewarded for doing a good deed, but instead they get > > litigation. Come on what kind of society have we created for ourselves ???? > > > > > > Jeremy Bertrand > > email: [EMAIL PROTECTED] > > > > > > ---------- Original Message ----------- > > From: Nashid Hasan <[EMAIL PROTECTED]> > > To: [email protected] > > Sent: Fri, 18 Apr 2003 11:10:07 -0500 > > Subject: [brlug-general] Use a Honeypot, Go to Prison? > > > > > These legal games are sickening....... > > > > > > "Using a honeypot to detect and surveil computer intruders might put > > > you on the working end of federal wiretapping beef, or even get you > > > sued by the next hacker that sticks his nose in the trap, a Justice > > > Department attorney warned Wednesday." > > > > > > http://securityfocus.com/news/4004 > > ------- End of Original Message ------- > > > > > > _______________________________________________ > > General mailing list > > [email protected] > > http://brlug.net/mailman/listinfo/general_brlug.net > > > >_______________________________________________ >General mailing list >[email protected] >http://brlug.net/mailman/listinfo/general_brlug.net --- Dustin Puryear <[EMAIL PROTECTED]> Puryear Information Technology Windows, UNIX, and IT Consulting http://www.puryear-it.com
