[gnhlug-announce] SLUG meeting Monday 5/12 7pm in Morse Hall rm 301

Robert Anderson rea at q.sr.unh.edu
Thu May 8 09:23:00 EDT 2003


The Topic is:  Using Honeynets to Study Network Security Threats

The next meeting will be on Monday 5/12/2003 at 7pm in Morse Hall room 301.

We're diverting from the Problem & Solution session that should occur
on this odd month.  This month Scott Garman will present his talk on
Honeynets.

Using Honeynets to Study Network Security Threats

A honeypot is a security resource whose value lies in being probed,
attacked, or compromised. By setting up dedicated systems on a network
whose only purpose is to be compromised, you can learn about the
techniques, tools, and sometimes the motives of attackers. Consequently,
honeypots are one of the few security tools that systems administrators
can use to turn the tables on attackers and learn directly from them. 

This presentation will focus on the deployment of two kinds of
Linux-based honeypots: a honeyd system which uses emulated network
services, and a "high interaction" honeypot which provides a full OS
environment for the attacker to exploit. In the latter case, the system
was compromised within days and an analysis of the attacker's activity
will be presented. Scott Garman, a Senior in Computer Science at
UNH/Durham, will be giving the presentation.

For directions see the SLUG website "http://slug.gnhlug.org".

--------------------------------------------------------------
 Robert E. Anderson  		 	email: rea at sr.unh.edu
 Systems Programmer			phone: (603) 862-3489
 UNH Research Computing Center		  fax: (603) 862-1761
--------------------------------------------------------------
_______________________________________________
gnhlug-announce mailing list
gnhlug-announce at mail.gnhlug.org
http://mail.gnhlug.org/mailman/listinfo/gnhlug-announce



More information about the gnhlug-discuss mailing list