Re: hacked afterthought, tools
From: Steven L Umbach (n9rou_at_n0-spam-for-me-comcast.net)
Date: 08/07/04
- Previous message: Dusty Harper {MS}: "Re: logon screen"
- In reply to: hackedupon: "hacked afterthought, tools"
- Next in thread: Jeff Cochran: "Re: hacked afterthought, tools"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Sat, 07 Aug 2004 02:19:18 GMT
Not really. If you had auditing of object access enabled and then audited
folders/files you might have an idea who accessed data and when but it is not
practical to audit everything as it will decrease computer performance and generate
thousands and thousands of events in the security log. Security logs can also be
erased or modified by a hacker. Encryption of data and removal and securing of all
private keys that can decrypt a file would be one way to insure confidentiality of
data. In your situation you pretty much have to assume the worst. --- Steve
http://securityadmin.info/faq.asp#hackerstoc -- link from Karl's FAQ may be helpful.
http://www.microsoft.com/technet/community/columns/secmgmt/default.mspx -- from
Microsoft
http://www.microsoft.com/technet/security/guidance/secmod144.mspx -- auditing
procedures.
"hackedupon" <anonymous@discussions.microsoft.com> wrote in message
news:026c01c47be8$5a1214a0$3501280a@phx.gbl...
> Hello,
>
> If a system gets hacked and you go over the various data.
>
> is any tools out there that will tell you what
> information they got???
>
> it was the only system that had a lot of viruses.
>
> Recently discovered it was compromised....
>
> Is there anyway to find what network data was transmitted?
>
> thank you,
>
> "hackedupon"
- Previous message: Dusty Harper {MS}: "Re: logon screen"
- In reply to: hackedupon: "hacked afterthought, tools"
- Next in thread: Jeff Cochran: "Re: hacked afterthought, tools"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
