Edit: The post was probably heavily AI written and contains mistakes to that effect, which is unfortunate. The data in general is still interesting though.
Edit: The post was probably heavily AI written and contains mistakes to that effect, which is unfortunate. The data in general is still interesting though.
Honeypot as a Python script in a docker container?
Isn’t that not really a true isolation?
endlessh + fail2ban
Please say more.
I use both on a daily basis and from what I understand, there’s no implicit access from within a container. If you set it up right, there’s no access outside the container of any sort unless you explicitly say so.
Unless the container had a bug that they know but you don’t know.
Yeah the system isn’t protecting you (like it does preventing a normal user accessing another user), “only” the docker code does.
Or so I have understood it.