RE: security issue in folder sharing

["Scott Ramsdell" <Scott.Ramsdell () cellnet com>]

Hello,

In the Security log, you should be able to find a logon/logoff event
with a "logon type" of 3.

This specifies a logon over the network, and may be who deleted the
files. 

In the description field, it should record the workstation name from
where the connection was made.

Kind Regards,
Scott Ramsdell

-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com]
On Behalf Of nawalmiftahi () gmail com
Sent: Tuesday, December 05, 2006 4:21 AM
To: security-basics () securityfocus com
Subject: security issue in folder sharing

hii all, i have a question and request for your kind and detail answer, 
we have 2 users in our dept who share thier folder on c; drive and share
files but one day they found that there files are deleted , i would like
to know how actually this happend and who could have done this , we have
netiq security manager tool is there anywhere we can find out , ur quick
reply is highly appreciated 

Regards 
 your friend

------------------------------------------------------------------------
---
This list is sponsored by: ByteCrusher

Detect Malicious Web Content and Exploits in Real-Time.
Anti-Virus engines can't detect unknown or new threats.
LinkScanner can. Web surfing just became a whole lot safer.

http://www.explabs.com/staging/promotions/xern_lspro.asp?loc=sfmaildetec
t
------------------------------------------------------------------------
---


---------------------------------------------------------------------------
This list is sponsored by: ByteCrusher

Detect Malicious Web Content and Exploits in Real-Time.
Anti-Virus engines can't detect unknown or new threats.
LinkScanner can. Web surfing just became a whole lot safer.

http://www.explabs.com/staging/promotions/xern_lspro.asp?loc=sfmaildetect
---------------------------------------------------------------------------