Project HoneyPot

Request and discuss new features you would like to have.
Post Reply
nicola.piazzi
Posts: 280
Joined: 23 Apr 2015 09:45

Project HoneyPot

Post by nicola.piazzi » 14 Jun 2017 16:18

It can be useful to weite a plugin that query for this database using the given key


https://www.projecthoneypot.org/httpbl_api.php

efa-user
Posts: 18
Joined: 27 Jul 2017 10:59

Re: Project HoneyPot

Post by efa-user » 27 Jul 2017 12:44

Would this be for the web interface, to prevent potentially malicious scripts from being able to attempt to log in?

Or are you suggesting that hosts which appear to be crawling websites are probably also going to be sending spam, and thus this data should be fed into SA?

wilbourne
Posts: 52
Joined: 22 Sep 2016 09:04

Re: Project HoneyPot

Post by wilbourne » 28 Jul 2017 11:11

Put a reverse proxy in front of your web application

like this : https://www.vultureproject.org/ and this is a waf server

User avatar
pdwalker
Posts: 1137
Joined: 18 Mar 2015 09:16

Re: Project HoneyPot

Post by pdwalker » 31 Jul 2017 12:12

efa-user, no it's a tool used to recognize the IP of spam harvesters, so mail coming from these addresses are more likely to be spam.

It's yet another tool to add weighting to help determine if mail is junk or not.

efa-user
Posts: 18
Joined: 27 Jul 2017 10:59

Re: Project HoneyPot

Post by efa-user » 09 Aug 2017 14:14

so basically "that hosts which appear to be crawling websites are probably also going to be sending spam, and thus this data should be fed into SA" ?

ovizii
Posts: 450
Joined: 11 May 2016 08:08

Re: Project HoneyPot

Post by ovizii » 27 Sep 2017 07:43

not sure that projecthoneypot fits in here, apparently is does report 4 categories of IPs. Email Spammers specifically are not in there.

Value Meaning
0 Search Engine
1 Suspicious
2 Harvester
4 Comment Spammer

Post Reply