A new config option to customize the SSL certificate of the dionaea honeypot has been added recently. In the article I will show how to use the new possibility.
To test new feature you have to install the nightly packages provided in the Personal Package Archive (PPA) or build the honeypot from the sources in the dionaea git repository.
In the config file /etc/dionaea/dionaea.conf comment in and edit the ssl subsection under the listen section.
listen =
{
[...]
ssl = {
default = {
c = "US"
cn = "test.example.org"
o = "Example Org."
ou = "Example"
}
}
}
Restart the honeypot and run the following command to check if the settings were correctly applied.
$ openssl s_client -connect 127.0.0.1:443
[...]
subject=/C=US/CN=test.example.org/O=Example Org./OU=Example
issuer=/C=US/CN=test.example.org/O=Example Org./OU=Example
[...]
Links
- Website: dionaea git repository (english)
- Website: Honeypot PPA (english)