- Details
- Written by Jon Moore
In a bit of a panic, I moved all kinds of grub files, without fully realizing the consequences later on... In any case, I am going over the files that I do have, and noting what differences may exist. If there's anything that would cause my booting problems, it is likely the bootloader, grub.
Read more: Forensics File Analysis 3: grubs
- Details
- Written by Jon Moore
Here I go over the following files /etc/hosts*
This works out to 3 files total.
Read more: Forensics File Analysis 2: hosts*
- Details
- Written by Jon Moore
Recently I had opportunity to work on a security problem. One firewall cluster member had failed and needed to be rebuilt. While typically not an issue, an additional challenge was that the software in use was so old, it was no longer available. In the end, it was absolutely necessary to use this old software as an entire environment was built with it. Eventually we were able to find a copy of the software and major disaster was averted, but it made me wonder if maybe, just maybe, are we doing them a DISservice by providing it?
This software has documented vulnerabilities, and because it is so old and no longer supported, these vulnerabilities will NOT be patched or fixed.
Read more: Legacy Software, when is it TOO old?
- Details
- Written by Jon Moore
In this article I am examining the /var/log/auth.log file for any indication of what/what/when my server may have been compromised.
{jcomments on}
Read more: Forensics File Analysis 1: auth.log
- Details
- Written by Jon Moore
At this point I have managed to get the old HDD mounted and working on my test server and I got all the data off. Now I need to reformat the drive to ensure nothing is left, and get just my data back on so I can use it for my dedicated internal server, and once again have access to my data. Here's how I went about doing so.
Page 5 of 6
- You are here:
-
Home
- Network Security