Date: Thu, 8 May 2003 09:23:00 -0400 From: Robert Anderson Subject: [gnhlug-announce] SLUG meeting Monday 5/12 7pm in Morse Hall rm 301 The Topic is: Using Honeynets to Study Network Security Threats The next meeting will be on Monday 5/12/2003 at 7pm in Morse Hall room 301. We're diverting from the Problem & Solution session that should occur on this odd month. This month Scott Garman will present his talk on Honeynets. Using Honeynets to Study Network Security Threats A honeypot is a security resource whose value lies in being probed, attacked, or compromised. By setting up dedicated systems on a network whose only purpose is to be compromised, you can learn about the techniques, tools, and sometimes the motives of attackers. Consequently, honeypots are one of the few security tools that systems administrators can use to turn the tables on attackers and learn directly from them. This presentation will focus on the deployment of two kinds of Linux-based honeypots: a honeyd system which uses emulated network services, and a "high interaction" honeypot which provides a full OS environment for the attacker to exploit. In the latter case, the system was compromised within days and an analysis of the attacker's activity will be presented. Scott Garman, a Senior in Computer Science at UNH/Durham, will be giving the presentation. For directions see the SLUG website "http://slug.gnhlug.org". -------------------------------------------------------------- Robert E. Anderson email: rea@sr.unh.edu Systems Programmer phone: (603) 862-3489 UNH Research Computing Center fax: (603) 862-1761 -------------------------------------------------------------- _______________________________________________ gnhlug-announce mailing list gnhlug-announce@mail.gnhlug.org http://mail.gnhlug.org/mailman/listinfo/gnhlug-announce