3 Days Left to Save $400 on SANS Cyber Defense Initiative 2014, Wash DC

Why should I not run a honeypot?

< Previous Question | Back to Intrusion Detection FAQ Home | Next Question >

As a general rule honeypots can be extremely useful to organizations that have the resources to maintain them. For organizations that do not have the security personnel to closely monitor a honeypot the organizations has, at best, created a vulnerable system that is not monitored and, at worst, a system that may be compromised and used to attack other systems. There is potential liability inherent in running intentionally vulnerable systems.

Daniel Owen
www.danielowen.com

< Previous Question | Back to Intrusion Detection FAQ Home | Next Question >