From owner-freebsd-stable@FreeBSD.ORG Sun Aug 3 11:39:08 2003 Return-Path: Delivered-To: freebsd-stable@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 6801A37B401 for ; Sun, 3 Aug 2003 11:39:08 -0700 (PDT) Received: from argus.home.volker.de (p50892152.dip.t-dialin.net [80.137.33.82]) by mx1.FreeBSD.org (Postfix) with ESMTP id C591943F3F for ; Sun, 3 Aug 2003 11:39:06 -0700 (PDT) (envelope-from freebsd@secspace.de) Received: from argus.home.volker.de (localhost [127.0.0.1]) by argus.home.volker.de (8.12.9/8.12.9) with SMTP id h73Idfjr000514 for ; Sun, 3 Aug 2003 20:39:43 +0200 (CEST) (envelope-from freebsd@secspace.de) Date: Sun, 3 Aug 2003 20:39:41 +0200 From: Volker Kindermann To: freebsd-stable@freebsd.org Message-Id: <20030803203941.43e3eea5.freebsd@secspace.de> In-Reply-To: <200308030920.45437.rootman22@comcast.net> References: <200308030920.45437.rootman22@comcast.net> X-Mailer: Sylpheed version 0.9.3claws (GTK+ 1.2.10; i386-portbld-freebsd4.8) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Subject: Re: Forensics CD Toolkit for FreeBSD X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 03 Aug 2003 18:39:08 -0000 Joe, > I'd like to build a toolkit CD specifically for conducting > forensics on FreeBSD. I'm not talking about a bootable > CD but rather one that I could pop into a CD ROM drive > and run trusted commands like ps, netstat, ls, etc., from. there's a project called snarl at http://snarl.eecue.com/articles but this seems to be sleeping. Perhaps it's helpful for your project. -volker