Date: Sat, 14 Jan 2006 09:52:28 -0700 (MST) From: les@safety.net To: Cy Schubert <Cy.Schubert@spqr.komquats.com> Cc: anchor <jacquejiang@hotmail.com>, freebsd-hackers@freebsd.org Subject: Re: My machine been hacked, I need help Message-ID: <200601141652.k0EGqStk006474@ns3.safety.net> In-Reply-To: <200601141619.k0EGJqN6091994@cwsys.cwsent.com>
next in thread | previous in thread | raw e-mail | index | archive | help
> In message <200601141632.29709.doconnor@gsoft.com.au>, "Daniel O'Connor" > writes > Only evidence collected by a forensic analysis tool > is admissible in court. Not necessarily true. Log data that is routinely collected can be admissible. Though, log data that you collected starting when you suspected there was something amiss will not be. -Les -- Les Biffle CISSP Information Systems Security Consultant (480) 585-4099 les@safety.net http://www.les.biffle.org/ Network Safety, PO Box 14461, Scottsdale, AZ 85267
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200601141652.k0EGqStk006474>