Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

RE: Windows Time Synchronization - Best Practices

From: James Edwards <hackerwacker () cybermesa com>
Date: Wed, 20 Oct 2004 01:22:33 -0600
On Tue, 2004-10-19 at 11:22, Richard Stevens wrote:

Why FD? What is the direct security implications of this?
 
I'm sure someone can construct a rather tenuous link, but really....



All forensics requires a time line or time reference so the separate
pieces of forensic data can be assembled in the order they happened. 
Otherwise, each data point cannot be related to the others. Data is 
often gathered from multiple devices. Security and time are very much
related.

I would suggest NTP and using GMT.

-- 
James H. Edwards
Routing and Security Administrator
At the Santa Fe Office: Internet at Cyber Mesa
jamesh () cybermesa com
noc () cybermesa com
(505) 795-7101

Attachment: signature.asc
Description: This is a digitally signed message part

Previous By Date Next
Previous By Thread Next

Current thread: