[wplug] F.I.R.E.

Nick Iglehart nick at systemsecuritysolutions.com
Tue Apr 8 13:36:40 EDT 2003


 
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

I love F.I.R.E. Use caution when booting a laptop from it though.
Twice I have had to remove the laptop hard drive after using
F.I.R.E., boot without it and then put it back in to get the machine
to start after an analysis. I have never had that problem with a
desktop and it has occurred on both a Thinkpad and a Presario. I am
also pretty darn sure that I unmounted the drives properly, so I have
no idea what causes it.

Works fine after the hard drive removal and reinstall though and I
have no other complaints. I added a few Windows specific tools to the
disc and it works great for analysis there too.

 

> -----Original Message-----
> From: wplug-admin at wplug.org [mailto:wplug-admin at wplug.org] On 
> Behalf Of Alexandros Papadopoulos
> Sent: Tuesday, April 08, 2003 2:44 AM
> To: wplug at wplug.org
> Subject: [wplug] F.I.R.E.
> 
> 
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
> 
> Dear all
> 
> There is an interesting Slashdot thread at 
> http://ask.slashdot.org/askslashdot/03/04/07/1749246.shtml?tid
=185&tid=137
that made me stumble across F.I.R.E. - the Forensic and Incident 
Response Environment. 

It's quite cool - a bootable Linux CD that brings up a BusyBox
desktop 
with lots of nice utilities (sniffers, port/virus scanners,
penetration 
tools).

It's not as polished as KNOPPIX though, and can obviously use some
help 
from the people it will benefit most - sysadmins who want a trusted 
toolkit. So check it out - it's at http://fire.dmzs.com

- - -A
- - -- 
http://andrew.cmu.edu/~apapadop/pub_key.asc
3DAD 8435 DB52 F17B 640F  D78C 8260 0CC1 0B75 8265
- -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)

iD8DBQE+km+ngmAMwQt1gmURAhXeAJ9TY2c8cFbuNjoS0L+p1x0Wil6HSACfWRne
vg1xMLw3l2cKwzDAEC4rwMs=
=nmQP
- -----END PGP SIGNATURE-----

_______________________________________________
wplug mailing list
wplug at wplug.org
http://www.wplug.org/mailman/listinfo/wplug

- ---
Incoming mail is certified Virus Free.
Checked by AVG anti-virus system (http://www.grisoft.com).
Version: 6.0.463 / Virus Database: 262 - Release Date: 3/17/2003
 

-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 7.0.3 for non-commercial use <http://www.pgp.com>

iQA/AwUBPpMIp6q/UK5/FuEgEQL1IACfQaLAILf8rQ+D8MOizsK/fNXzGDgAn0XK
wnGL81Zg9OpjABulj9/bkTCU
=FRZb
-----END PGP SIGNATURE-----

---
Outgoing mail is certified Virus Free.
Checked by AVG anti-virus system (http://www.grisoft.com).
Version: 6.0.463 / Virus Database: 262 - Release Date: 3/17/2003




More information about the wplug mailing list