|Main Archive Page > Month Archives > full-disclosure-uk archives|
so do you work for Salsoft, or are you trying to break into a machine owned by them?
If it's a network you monitor, meaning you have direct responsibility for, wouldn't you already know if it's a honeypot?
sounds fishy that you have to ask....
[mailto:firstname.lastname@example.org] On Behalf Of James Lay
Sent: Saturday, August 30, 2008 1:26 PM
Subject: [inbox] [Full-disclosure] Honeypot?
So...one of the networks I monitor has this ip:
Doing netbios scans on it. A cursory inspection shows it as a win2003 box...that's WIDE open. Could this be a honeypot that's been compromised?