Reinstall Dionaea, Glastopf, Kippo

[Kenneth M. S. LAU]

Dear sir / madam,

 

My installation of some honeypots are not successful.  What is the procedure to remove and reinstall Dionaea, Glastopf and Kippo?

 

Kenneth Lau

ASTRI

[Jason Trost]

This should be the steps:

1. Go to the sensors page in MHN, find the sensor you want to re-install and delete it

2. On the sensor box, if the honeypot/sensor was installed to /opt/$SENSOR then remove this directory.  This is how every sensor except dionaea is installed.

3. On the sensor box, run the deployment script.

--
You received this message because you are subscribed to the Google Groups "Modern Honey Network" group.
To unsubscribe from this group and stop receiving emails from it, send an email to modern-honey-net...@googlegroups.com.
To post to this group, send email to modern-hon...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/modern-honey-network/02A6D29B6BFB1D4A92714211745FBBD90B48AD99%40asdag2.
For more options, visit https://groups.google.com/d/optout.

--

Jason Trost | Director of ThreatStream Labs | www.threatstream.com 
Phone:  386.235.0078 | Twitter:  @jason_trost 

[Kenneth M. S. LAU]

Dear Jason,

 

How about Dionaea?  How to remove and re-install it?

 

Kenneth Lau

ASTRI

[Jason Trost]

This should do it:

apt-get purge -y dionaea

apt-get purge -y dionaea-phibo

rm -rf /var/dionaea/ /etc/supervisor/conf.d/dionaea.conf /etc/dionaea/

supervisorctl update

[Scott Keoseyan]

I know this is an older thread - but I was doing this recently and noticed that, on Ubuntu 12.04 at least, if you do not remove the user kippo from /etc/passwd, the deploy.sh script fails with no error at “user already exists”… it never goes to the next step and does the git clone.

—Scott

To view this discussion on the web visit https://groups.google.com/d/msgid/modern-honey-network/CAMvecpPPFiWB7iaJXOL70MRA6uNt893zz_Dm6QH4iDs4uPqY7g%40mail.gmail.com.