This fun piece from "Network Computing" reminds everybody that forensics is not only about "surfing for porn" on somebody else's hard disk. It is also about logs! In fact, looking at logs before looking at disk images is so darn sensible that few people actually do it :-)
UPDATE: also featured here with this fun quote: "Log analysis in particular has long been a thorn in IT's side. Either you tried hard to forget that terabyte or so of raw log data just sitting there, or you paid through the nose for a security information manager. Now, affordable log analyzers are available from companies like LogLogic"
No comments:
Post a Comment