LXC Container
// TODO This documentation is still work in progress.
Description
The lxc
director will spawn a container per attacker. After a period of inactivity, the container will be frozen and eventually stopped. When the attacker returns, the original container will be assigned to his session.
Syntax
[director.lxc]
type="lxc"
Arguments in config file
There are 3
arguments in lxc
director:
argument | default setting | explanation |
---|---|---|
freeze_every |
15 min | The duration of inactivity after which a containter will be frozen. |
stop_every |
30 min | The duration of inactivity after which a frozen container will be stopped. |
housekeeper_every |
1 min | The frequency to check for inactivity. |
s seconds
mcs microseconds
ns nanoseconds
ms milliseconds
m minutes
h hours
Example
If you want to override the destination port, you can specify a port where all forwarded traffic will be directed to.
[director.lxc]
type="lxc"
host="8.8.8.8:1234"
[service.telnet]
type="telnet"
port="tcp/23"
director="lxc"
Availability
Linux | MacOS | |
---|---|---|
lxc | yes | no |