CDR: Re: Visit a hacked site, loose your computers.
Wouldn't the time of the hack be pretty well known and wouldn't the RPI firewall logs be timestamped or am I naive? Is knowledge being used as evidence of guilt? Mike
Andres Salomon, a fairly clued in RPI student, heard on IRC that the Yankees website had been hacked. He checked it out, noted some well-known Red Hat security holes, and came to the conclusion that there had been a DNS redirect attack. Total time: 5 minutes.
The next day, the FBI raided his dorm room and seized his computers (along with a copy of ORA's DNS & BIND).
Peter Trei
mmotyka@lsil.com wrote:
Wouldn't the time of the hack be pretty well known and wouldn't the RPI firewall logs be timestamped or am I naive?
most likely that was a failed case of the assumption that the criminal always returns to the site of the crime.
participants (2)
-
mmotyka@lsil.com -
Tom Vogt