The Fedora Security Lab Test Bench provides three low-interaction honeypots which are using honeyd. This is nice but real machine are much more fun. It took me a while to include this feature because just go on with nested KVM/qemu visualization was not the way I wanted to go. LXC make it possible to run Linux systems in an isolated and virtual environment with only a small overhead. Saving system resources is one of the main requirements for the Fedora Security Lab Test Bench.
At the moment are two containers available. Both only provides SSH functionality in a separate network. There are some ideas around how to use those containers like transform them into a target for detecting load-balancing or similar. First this implementation has to prove that it’s stable.