Re: Security breach
From: Shenan Stanley (news_helper_at_hushmail.com)
Date: 02/18/04
- Next message: !:?): "Re: Whats with Ports 135 & 445 ????"
- Previous message: |{evin: "Re: How to kill a process?"
- In reply to: Annita: "Security breach"
- Next in thread: Dusko Savatovic: "Re: Security breach"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Tue, 17 Feb 2004 18:39:13 -0600
Annita wrote:
> I've been suspended from work because I was accused of creating some
> accounts without going through due procedure. I did not create the
> accounts. Even if someone knows my user admin password shouldn't they
> be able to tell from the security log:
> a) which machine they were logged into ('cos it can't have been mine,
> via the IP)
> b) what time and date it was done (and compare it to when I was on my
> machine)
> c) could someone have manipulated the security logs and is it
> traceable
> d) what other possibilities should I be investigating, as to how
> someone has used my machine/log in & does it help me if my company has
> key stroke logging?
>
> I have to go in on Friday to discuss this & I'd really appreciate some
> help
Until they present the proof that you created these accounts, you have
nothing to counter with. Although they can log some of the things you
mentioned, they may not.
Also, since they are the ones with the access to the computers at this
point, nothing you can actually say would mean too much, as they could
create pretty much whatever they wanted.
-- <- Shenan -> --
- Next message: !:?): "Re: Whats with Ports 135 & 445 ????"
- Previous message: |{evin: "Re: How to kill a process?"
- In reply to: Annita: "Security breach"
- Next in thread: Dusko Savatovic: "Re: Security breach"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
