Full Disclosure: Re: Reacting to a server compromise

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Full Disclosure mailing list archives

Re: Reacting to a server compromise

From: "James A. Cox" <computer () jacox net>
Date: Sun, 03 Aug 2003 18:06:31 -0500

I've never heard of a rule that prohibits the introduction in evidenceof Norton Ghost images or any other electronic evidence. In most placesin the US, I think, there wouldn't be any hard and fast rules; it wouldbe up to the judge to decide whether the evidence was reliable enough.


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

By Date By Thread

Current thread:

Re: Hard drive images, (continued)
- Re: Reacting to a server compromise Mark (Aug 02)
- Re: Re: Reacting to a server compromise Jennifer Bradley (Aug 03)
  - Re: Re: Reacting to a server compromise morning_wood (Aug 03)
    - Re: Re: Reacting to a server compromise manohar singh (Aug 03)
  - Re: Reacting to a server compromise James A. Cox (Aug 03)
- RE: Re: Reacting to a server compromise Richard Stevens (Aug 04)
  - Re: Re: Reacting to a server compromise Frank Bruzzaniti (Aug 04)
  - RE: Re: Reacting to a server compromise Ron DuFresne (Aug 04)
    - RE: Re: Reacting to a server compromise security snot (Aug 04)
    - SV: Re: Reacting to a server compromise martin scherer (Aug 04)