Full Disclosure mailing list archives

Re: write events log to CD?

From: "Alan J. Wylie" <shyyqvfpybfher () wylie me uk>
Date: 30 Aug 2004 13:53:26 +0100

On Mon, 30 Aug 2004 13:53:19 +0530, "Aditya" <aditya.deshmukh () online gateway technolabs net> said:

ALD> Is there a way to setup Event Log in Windows to log to a CD-R by
ALD> maybe using ALD> software like Aptec DirectCD so that intruders
ALD> could not erase their tracks

yes you can forward the events to a syslog server and make the
syslog server write the logs on a worm disk.


google for <"receive-only ethernet" syslog> for another way of making
the storage append-only.

It was a lot easier to set up one-way ethernet links in the days of
thick co-ax, vampire taps and 15 pin AUI connectors.

http://www.mrtweaks.com/sec4.htm

-- 
Alan J. Wylie                                          http://www.wylie.me.uk/
"Perfection [in design] is achieved not when there is nothing left to add,
but rather when there is nothing left to take away."
  -- Antoine de Saint-Exupery

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

Re: Viral infection via Serial Cable, (continued)
- - - Re: Viral infection via Serial Cable James Tucker (Aug 30)
    - Re: Viral infection via Serial Cable J.A. Terranson (Aug 30)
    - Re: Viral infection via Serial Cable James Tucker (Aug 31)
    - Re: Viral infection via Serial Cable Barry Fitzgerald (Aug 31)
    - RE: Viral infection via Serial Cable Aditya (Aug 30)
    - Re: write events log to CD? Marcel Krause (Aug 30)
    - Re: write events log to CD? Oliver J. Morais (Aug 30)
    - Re: write events log to CD? Ali Campbell (Aug 30)
    - Re: write events log to CD? James Tucker (Aug 30)
- RE: write events log to CD? Aditya (Aug 30)
  - Re: write events log to CD? Alan J. Wylie (Aug 30)
- RE: write events log to CD? Rainer Gerhards (Aug 30)
- RE: write events log to CD? Pikett/LKSI (Aug 30)