This repository was archived by the owner on Nov 12, 2021. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 2
Expand file tree
/
Copy pathdionaea.conf.diff
More file actions
95 lines (91 loc) · 3.04 KB
/
dionaea.conf.diff
File metadata and controls
95 lines (91 loc) · 3.04 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
#********************************************************************************
#*
#* TraCINg (Sensor Part) - prepares Dionaea data for TraCINg server
#* Copyright (C) 2013 Matthias Gazzari, Annemarie Mattmann, Andre Mougoui,
#* André Wolski
#*
#* This program is free software; you can redistribute it and/or
#* modify it under the terms of the GNU General Public License
#* as published by the Free Software Foundation; either version 2
#* of the License, or (at your option) any later version.
#*
#* This program is distributed in the hope that it will be useful,
#* but WITHOUT ANY WARRANTY; without even the implied warranty of
#* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
#* GNU General Public License for more details.
#*
#* You should have received a copy of the GNU General Public License
#* along with this program; if not, write to the Free Software
#* Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
#*
#* contact matthias.gazzari@stud.tu-darmstadt.de, mattmann@stud.tu-darmstadt.de,
#* andre.wolski@stud.tu-darmstadt.de
#*
#********************************************************************************
#*
#* This code is based on code from the Dionaea project, see
#* http://dionaea.carnivore.it/
#* which is also licensed under GNU General Public License v2.
#*
#********************************************************************************
--- /opt/dionaea/etc/dionaea/dionaea.conf.orig 2013-07-31 00:52:41.000000000 +0100
+++ /opt/dionaea/etc/dionaea/dionaea.conf 2013-09-23 13:59:04.883567981 +0100
@@ -457,8 +457,34 @@
offers = "var/dionaea/offers.f2b"
}
+ jsonfeeds = {
+ //delete = "True" // remove malware files after download; default: false
+ //verify = "True" // verify server ssl certificate; default: false
+ externalIP = {
+ // set either the number of seconds the fetched external ip is cached or set an custom external ip
+ cachetime = "3600" // 1 hour = 3600 seconds
+ // ip = "8.8.4.4"
+ }
+ // set either sensor.name and sensor.type or enable the client certificate
+ //sensor = {
+ // name = "DionaeaTracing"
+ // type = "honeypot"
+ //}
+ //certificate = {
+ // cert = "/opt/dionaea/lib/dionaea/python/dionaea/ssl/client_cert.pem"
+ // key = "/opt/dionaea/lib/dionaea/python/dionaea/ssl/client_key.pem"
+ //}
+ submit_url = "https://ssi.cased.de:443"
+ }
+
ihandlers = {
- handlers = ["ftpdownload", "tftpdownload", "emuprofile", "cmdshell", "store", "uniquedownload",
+ handlers = [
+ "ftpdownload",
+ "tftpdownload",
+ "emuprofile",
+ "cmdshell",
+ "store",
+ "uniquedownload",
"logsql",
// "virustotal",
// "mwserv",
@@ -467,12 +493,23 @@
// "nfq",
// "p0f",
// "surfids",
-// "fail2ban"
+// "fail2ban",
+ "jsonfeeds"
]
}
services = {
- serve = ["http", "https", "tftp", "ftp", "mirror", "smb", "epmap", "sip","mssql", "mysql"]
+ serve = [
+// "http",
+// "https",
+ "tftp",
+// "ftp",
+ "mirror",
+ "smb",
+ "epmap",
+ "sip",
+ "mssql",
+ "mysql"]
}
}