[asterisk-security] Honeypot Project
david at iaxtalk.com
david at iaxtalk.com
Wed Oct 12 19:36:20 CDT 2011
Hi,
> A simple script to parse it then extract the list of attackers IP, compile them and send them out to the list.
Hacker will not always use a fixed ip. They might rent cheap cloud serve or vps and change their ip often. So, I think upload those ip to public black list is not much meaningful. And, if you occasionally rent a server with exactly one of those ip, it is unfair to you.
Regards
David
================================
VOIP solution provider
http://www.iaxtalk.com
----- Original Message -----
From: Jack Honey Pot
To: asterisk-security at lists.digium.com
Sent: Thursday, October 13, 2011 1:51 AM
Subject: [asterisk-security] Honeypot Project
Hi All,
I'm not the first to try to start a VOIP blacklist but currently working on a project for the next 12 hours, hopefully I can get it up soon. What I intend to do is to work with a few reliable Harvester to gather the logs. A simple script to parse it then extract the list of attackers IP, compile them and send them out to the list.
If any of you are kind enough to zip and send me a /var/log/asterisk/messages that contain hacker's scan & attack, it will be helpful to my research. Do email me at jack at asteriskhoneypot.com . Let me know if you are keen to be a harvester as well.Thanks.
Regards,
Jackster
------------------------------------------------------------------------------
--
_____________________________________________________________________
-- Bandwidth and Colocation Provided by http://www.api-digital.com --
asterisk-security mailing list
To UNSUBSCRIBE or update options visit:
http://lists.digium.com/mailman/listinfo/asterisk-security
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.digium.com/pipermail/asterisk-security/attachments/20111013/8ab95f25/attachment.htm>
More information about the asterisk-security
mailing list