diff --git a/cowrie.cfg.dist b/cowrie.cfg.dist index ec2d15d..b5b41bc 100644 --- a/cowrie.cfg.dist +++ b/cowrie.cfg.dist @@ -83,6 +83,13 @@ txtcmds_path = txtcmds #download_limit_size = 10485760 +# TTY logging will log a transcript of the complete terminal interaction in UML +# compatible format. +# (default: true) +ttylog_enabled = true + + + # ============================================================================ # Network Specific Options # ============================================================================ @@ -154,7 +161,8 @@ auth_class = UserDB # ============================================================================ -# SSH Specific Options +# Historical SSH Specific Options +# historical options in [honeypot] that have not yet been moved to [ssh] # ============================================================================ @@ -233,14 +241,23 @@ forward_redirect_25 = 127.0.0.1:12525 forward_redirect_587 = 127.0.0.1:12525 + +# ============================================================================ +# SSH Specific Options +# ============================================================================ [ssh] -# Enable SSH support, enabled by default +# Enable SSH support +# (default: true) enabled = true -# Enable SSH direct-tcpip forwarding, enabled by default + +# Enable SSH direct-tcpip forwarding +# (default: true) forwarding = true + + # ============================================================================ # Telnet Specific Options # ============================================================================ @@ -266,6 +283,7 @@ enabled = false #reported_port = 23 + # ============================================================================ # Database logging Specific Options # ============================================================================ @@ -401,7 +419,7 @@ logfile = log/cowrie.json #index = cowrie -# Splunk HTTP Event Collector (HEC) output module +# Splunk HTTP Event Collector (HEC) output module # Sends JSON directly to Splunk over HTTPS # mandatory fields: url, token # optional fields: index, source, sourcetype, host