Latest Tweets
Dionaea on the Raspberry PI2012-12-15 21:00:15
Compiling Dionaea is a relatively extensive task, if you are missing the dependencies. On a 800mhz Raspberry PI is the whole thing even a lot more of time-extensive matter.
But not any longer!
I went to all the bother of compiling any dependencies and Dionaea itself into Debian packages and to upload it into an APT-repository.
To install them on the PI (with Raspbian) are only these few steps necessary:
Adding the repository
Installing the necessary packets:
Now you have to configure dionaea. For this, reading the Dionaea documentation is preferred. In this case we use simply the standard configuration:
If anything went well Dionaea can be started in the following way:
More informations on how Dionaea works can be found on the Dionaea website.
To run Dionaea in an open network you should take care about possible attacks, this short instruction does not replace reading in the topic "Honeypot" in no way, it should only make installing Dionaea more easy. I don't take care of eventual damage.
EDIT: Updated the tutorials for version 0.1.1
But not any longer!
I went to all the bother of compiling any dependencies and Dionaea itself into Debian packages and to upload it into an APT-repository.
To install them on the PI (with Raspbian) are only these few steps necessary:
Adding the repository
echo "deb http://packages.s7t.de/raspbian wheezy main" >> /etc/apt/sources.list
apt-get update
Installing the necessary packets:
apt-get install libglib2.0-dev libssl-dev libcurl4-openssl-dev libreadline-dev libsqlite3-dev libtool automake autoconf build-essential subversion git-core flex bison pkg-config libnl-3-dev libnl-genl-3-dev libnl-nf-3-dev libnl-route-3-dev liblcfg libemu libev dionaea-python dionaea-cython libpcap udns dionaea
Now you have to configure dionaea. For this, reading the Dionaea documentation is preferred. In this case we use simply the standard configuration:
cp /opt/dionaea/etc/dionaea/dionaea.conf.dist /opt/dionaea/etc/dionaea/dionaea.conf
If anything went well Dionaea can be started in the following way:
export PATH=$PATH:/opt/dionaea/bin
dionaea -u nobody -g nogroup -r /opt/dionaea -w /opt/dionaea -p /opt/dionaea/var/dionaea.pid
More informations on how Dionaea works can be found on the Dionaea website.
To run Dionaea in an open network you should take care about possible attacks, this short instruction does not replace reading in the topic "Honeypot" in no way, it should only make installing Dionaea more easy. I don't take care of eventual damage.
EDIT: Updated the tutorials for version 0.1.1
Comments
Sean Dexter schrieb am 2013-01-29 09:20:00
Hi, vielen Dank für die Anleitung und das Package! Hat alles einwandfrei auf dem RPi funktioniert. Wenn Du das Package weiter pflegen möchtest wirf bitte im Source mal einen Blick auf die connection.c und such nach "Nepenthes". Während des compiles wird ein Zertifikat generiert, das dann auch für den Dionaea benutzt wird. Für eine bessere Verschleierung könnte es Sinn machen die Strings anzupassen. Cheers, Sean.
ManiacTwister schrieb am 2013-02-26 02:41:03
Hallo Danke für das Lob ;) Habe das Zertifikat jetzt mit unauffälligeren Daten gefüllt und gleich auch den Bug mit den Ordnern die nicht erstellt werden gefixt. Anleitung oben ist angepasst.
Sean Dexter schrieb am 2013-04-10 14:34:40
Danke :o)