[deception toolkit http://www.all.net/dtk/] > I like the idea of this thing but what happens if there's a bug in > those scripts that fakes the vulnerabillities? Then couldn't it > just be vulnerable too?
If you want your firewall to remain safe forward the deceptive ports to a dedicated deception machine, maybe on a separate network with access to your private networks blocked. Bernhard
