Network Security: Detailed info on Re: [Full-Disclosure] write events log to CD?

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security FullDisclosure

[Top] [All Lists]

Re: [Full-Disclosure] write events log to CD?

from [Ali Campbell] Network Security

[Permanent Link]

Subject:	Re: [Full-Disclosure] write events log to CD?
Date:	Mon, 30 Aug 2004 16:35:51 +0100

Oliver J. Morais wrote:

* Ali Campbell <fdisclosure@alicampbell.org.uk> [040830 05:15]:
Sending logs to a printer makes the most sense to me. Absolutely unhijackable, and a good use for that old 9-pin dotmatrix and 2000 sheets of traction feed paper you have in the cupboard.
Read http://downloads.securityfocus.com/library/lp-attack.pdf

Fair enough. Although in my defence I must point out that I wasn't advocating sending absolutely everything to the printer verbatim - anyone can see that some sort of filtering and/or escaping is required, both in terms of the volume of data involved, and in terms of dangerous control characters. I also wasn't implying that LPT1 should be the only target for logs, rather a jigsaw piece in a more comprehensive logging strategy (something I didn't make clear).

Thanks for your comments, though. :)

Ali

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Re: [Full-Disclosure] Viral infection via Serial Cable, (continued) Re: [Full-Disclosure] Viral infection via Serial Cable, Über GuidoZ Re: [Full-Disclosure] Viral infection via Serial Cable, Christian Re: [Full-Disclosure] Viral infection via Serial Cable, Christian Re: [Full-Disclosure] Viral infection via Serial Cable, James Tucker Re: [Full-Disclosure] Viral infection via Serial Cable, J.A. Terranson Re: [Full-Disclosure] Viral infection via Serial Cable, James Tucker Re: [Full-Disclosure] Viral infection via Serial Cable, Barry Fitzgerald RE: [Full-Disclosure] Viral infection via Serial Cable, Aditya Re: [Full-Disclosure] write events log to CD?, Marcel Krause Re: [Full-Disclosure] write events log to CD?, Oliver J. Morais Re: [Full-Disclosure] write events log to CD?, Ali Campbell <= Re: [Full-Disclosure] write events log to CD?, James Tucker RE: [Full-Disclosure] write events log to CD?, Aditya Re: [Full-Disclosure] write events log to CD?, Alan J. Wylie RE: [Full-Disclosure] write events log to CD?, Rainer Gerhards RE: [Full-Disclosure] write events log to CD?, Pikett/LKSI

Previous by Date:	Re: [Full-Disclosure] Bootable Memorystick?, Lan Guy
Next by Date:	Re: [Full-Disclosure] Bootable Memorystick?, Thorsten Peter
Previous by Thread:	Re: [Full-Disclosure] write events log to CD?, Oliver J. Morais
Next by Thread:	Re: [Full-Disclosure] write events log to CD?, James Tucker
Indexes:	[Date] [Thread] [Top] [All Lists]