Version vom 27. August 2016, 15:36 Uhr

Before we begin

Change standard ssh Port =Install some packets

apt-get install python-dev openssl python-openssl python-pyasn1 python-twisted git authbind

add

kippo ALL=(ALL:ALL) ALL

under the “root” user. =create fil and change some rights?

At this point we enter the system as ‘kippo’ user and go to the /home directory.

tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN 22627/python

@@ Zeile 13: / Zeile 13: @@
 *chown kippo:kippo /etc/authbind/byport/22
 *chmod 777 /etc/authbind/byport/22
+At this point we enter the system as ‘kippo’ user and go to the /home directory.
 =Download the latest Kippo version from GitHub=
-git clone https://github.com/desaster/kippo.git
+*git clone https://github.com/desaster/kippo.git
-=c
+=change port=
+*cd kippo
-cp kippo.cfg.dist kippo.cfg
+*sed -e "/ssh_port =/s/2222/22/" kippo.cfg.dist > kippo.cfg
-nano kippo.cfg
+=Finally, change the Kippo start script=
+*sed -i.bak -e "/kippo.tac/s/twistd/authbind --deep &/" start.sh
-    Finally, edit the Kippo start script:
+=start=
+*./start.sh
-nano start.sh
-changing the following command from
-twistd -y kippo.tac -l log/kippo.log --pidfile kippo.pid
-to
-authbind --deep twistd -y kippo.tac -l log/kippo.log --pidfile kippo.pid
-so that it uses authbind to “listen” on port 22, and run the honeypot:
-./start.sh
-    We check that our port has actually opened and Kippo is “listening”:
-sudo netstat -antp
-where there should be a line like this:
 tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN 22627/python
 *https://bruteforce.gr/installing-kippo-ssh-honeypot-on-ubuntu.html