Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email firstname.lastname@example.org
RE: [Full-Disclosure] Windows Time Synchronization - Best Practices
From: James Edwards (hackerwackercybermesa.com)
Date: Wed Oct 20 2004 - 02:22:33 CDT
On Tue, 2004-10-19 at 11:22, Richard Stevens wrote:
> Why FD? What is the direct security implications of this?
> I'm sure someone can construct a rather tenuous link, but really....
All forensics requires a time line or time reference so the separate
pieces of forensic data can be assembled in the order they happened.
Otherwise, each data point cannot be related to the others. Data is
often gathered from multiple devices. Security and time are very much
I would suggest NTP and using GMT.
James H. Edwards
Routing and Security Administrator
At the Santa Fe Office: Internet at Cyber Mesa
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
-----END PGP SIGNATURE-----
Full-Disclosure - We believe in it.