[wplug] F.I.R.E.
Nick Iglehart
nick at systemsecuritysolutions.com
Tue Apr 8 13:36:40 EDT 2003
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
I love F.I.R.E. Use caution when booting a laptop from it though.
Twice I have had to remove the laptop hard drive after using
F.I.R.E., boot without it and then put it back in to get the machine
to start after an analysis. I have never had that problem with a
desktop and it has occurred on both a Thinkpad and a Presario. I am
also pretty darn sure that I unmounted the drives properly, so I have
no idea what causes it.
Works fine after the hard drive removal and reinstall though and I
have no other complaints. I added a few Windows specific tools to the
disc and it works great for analysis there too.
> -----Original Message-----
> From: wplug-admin at wplug.org [mailto:wplug-admin at wplug.org] On
> Behalf Of Alexandros Papadopoulos
> Sent: Tuesday, April 08, 2003 2:44 AM
> To: wplug at wplug.org
> Subject: [wplug] F.I.R.E.
>
>
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Dear all
>
> There is an interesting Slashdot thread at
> http://ask.slashdot.org/askslashdot/03/04/07/1749246.shtml?tid
=185&tid=137
that made me stumble across F.I.R.E. - the Forensic and Incident
Response Environment.
It's quite cool - a bootable Linux CD that brings up a BusyBox
desktop
with lots of nice utilities (sniffers, port/virus scanners,
penetration
tools).
It's not as polished as KNOPPIX though, and can obviously use some
help
from the people it will benefit most - sysadmins who want a trusted
toolkit. So check it out - it's at http://fire.dmzs.com
- - -A
- - --
http://andrew.cmu.edu/~apapadop/pub_key.asc
3DAD 8435 DB52 F17B 640F D78C 8260 0CC1 0B75 8265
- -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
iD8DBQE+km+ngmAMwQt1gmURAhXeAJ9TY2c8cFbuNjoS0L+p1x0Wil6HSACfWRne
vg1xMLw3l2cKwzDAEC4rwMs=
=nmQP
- -----END PGP SIGNATURE-----
_______________________________________________
wplug mailing list
wplug at wplug.org
http://www.wplug.org/mailman/listinfo/wplug
- ---
Incoming mail is certified Virus Free.
Checked by AVG anti-virus system (http://www.grisoft.com).
Version: 6.0.463 / Virus Database: 262 - Release Date: 3/17/2003
-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 7.0.3 for non-commercial use <http://www.pgp.com>
iQA/AwUBPpMIp6q/UK5/FuEgEQL1IACfQaLAILf8rQ+D8MOizsK/fNXzGDgAn0XK
wnGL81Zg9OpjABulj9/bkTCU
=FRZb
-----END PGP SIGNATURE-----
---
Outgoing mail is certified Virus Free.
Checked by AVG anti-virus system (http://www.grisoft.com).
Version: 6.0.463 / Virus Database: 262 - Release Date: 3/17/2003
More information about the wplug
mailing list