Hey everyone!
First of all, thank you to everyone who reads or answers!
I am playing with honeyd for a little "weekend project" and I have it up and running but I am getting some off behaviour that I wanted to check by someone. I have looked round the net but I can't find anything relevant, I don't know whether I am unique to my problem or possibly more likely that I just can't define the search terms well enough to get the right results.
I run Ubuntu 12.10 on my laptop, on which I have VMWare Player (5.0.1 build-894247) installed. In VMWare Player I have an Ubuntu 12.04.1 Server installed.
In the VM I have HoneyD compiled from source and installed from
https://github.com/DataSoft/Honeyd as of a few days ago.
My configuration is pretty simple - at this stage I am only testing really:
and my honeyd init command is:
Just to be clear, I know that the DHCP in this network will give me an IP at roughly the .100 mark.
The only other thing to note is that for VMWare Player to allow the VM to use promiscuous mode I have also run this command:
So that lot should be pretty standard. Maybe a little boring, but would (and on the most part does) work:
And here is the weird bit. On a third machine, i.e. completely seperated from the virtual host and virtual machine. I run an nmap against the IP address that the honeypot has got (192.168.1.113) and it tells me that every single port is open...
Bookmarks