|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
RE: [Full-Disclosure] Windows Time Synchronization - Best Practices
From: James Edwards (hackerwacker
cybermesa.com)
Date: Wed Oct 20 2004 - 02:22:33 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On Tue, 2004-10-19 at 11:22, Richard Stevens wrote:
> Why FD? What is the direct security implications of this?
>
> I'm sure someone can construct a rather tenuous link, but really....
All forensics requires a time line or time reference so the separate
pieces of forensic data can be assembled in the order they happened.
Otherwise, each data point cannot be related to the others. Data is
often gathered from multiple devices. Security and time are very much
related.
I would suggest NTP and using GMT.
--
James H. Edwards
Routing and Security Administrator
At the Santa Fe Office: Internet at Cyber Mesa
jameshcybermesa.com
noccybermesa.com
(505) 795-7101
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
iD8DBQBBdhI5oe/P7NB2GVsRAntlAKCUtMPzkbw/u6s1+mKxg6WLmU+j9gCbBkfO
QVtAB3liP2h8mAvDwwo2W5w=
=zNNu
-----END PGP SIGNATURE-----
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]