I recently heard mention of setting up a system using honeypot folders on servers as a easier and cheaper alternative.
Basically, you can do the following.
1. Configure a folder on each server and place one or several documents in it which appear to contain confidential data. The folder name should indicate that it is important, like “Accounting Backup Data” but the data within it is actually fake and may even be misleading.
2. Notify users that the folder is not to be accessed.
3. Configure logging of all access to the folder and also alerting
Should an intruder gain access into the network, they will almost certainly look in the folder, which will generate and aid in their detection.
1. Configure a folder on each server and place one or several documents in it which appear to contain confidential data. The folder name should indicate that it is important, like “Accounting Backup Data” but the data within it is actually fake and may even be misleading.
2. Notify users that the folder is not to be accessed.
3. Configure logging of all access to the folder and also alerting
Should an intruder gain access into the network, they will almost certainly look in the folder, which will generate and aid in their detection.
-Posted from my IPhone 4S
Location:Okemos Rd,,United States
No comments:
Post a Comment