Gray Hat Hacking: The Ethical Hacker??™s Handbook
504
Types of Honeynets
As previously mentioned, honeynets are simply collections of honeypots. They normally
offer a small network of vulnerable honeypots for the attacker to play with. Honeynet
technology provides a set of tools to present systems to an attacker in a somewhat controlled
environment so that the behavior and techniques of attackers can be studied.
Gen I Honeynets
In May 2000, Lance Spitzner set up a system in his bedroom. A week later the system was
attacked and Lance recruited many of his friends to investigate the attack. The rest, as
they say, is history and the concept of honeypots was born. Back then, Gen I Honeynets
used routers to offer connection to the honeypots and offered little in the way of data
collection or data control. Lance formed the organization honeynet.org that serves a
vital role to this day by keeping an eye on attackers and ???giving back??? to the security
industry this valuable information.
Gen II Honeynets
Gen II Honeynets were developed and a paper was released in June 2003 on the
honeynet.org site. The key difference is the use of bridging technology to allow the
honeynet to reside on the inside of an enterprise network, thereby attracting insider threats.
Pages:
857
858
859
860
861
862
863
864
865
866
867
868
869
870
871
872
873
874
875
876
877
878
879
880
881