RE: Free/Open Source Disk Imaging Tools

["crazytrain.com" <subscribe () crazytrain com>]

George

just some thoughts;

1) bandwidth

2) cleartext

3) dropped connection

So you can see where you may suck down bandwidth, send via clear text
susceptible to sniffing (cryptcat would alleviate that but increase
overhead), and if your connection drops, ouch!  Do not pass go, do not
collect $200, start over!

I mostly do my imaging via 'dd' and write it to an external 1394 drive. 
Super fast, no CPU cycles, no dropped network connections, no sniffing, and
I'm happy :)


hope something here helps!


farmerdude



> I'm still researching the options for disk imaging and haven't started
> working with dd and the other tools mentioned on the list.
>
> I was concerned about the possibility of corrupt images due to gluing
> two (albeit solid) tools together but I get the feeling that I may be
> worrying about it too much.
>
> Has anyone had any bad experiences working with dd and netcat?  If not
> I'll consider my question answered.
>
> Thanks,
> george
>
> On Thu, 2003-02-06 at 09:39, Hudak, Tyler wrote:
> > Just out of curiosity, what problems are you seeing with dd and netcat?
> >
> > -----Original Message-----
> > From: George Chamales [mailto:george () overt org]
> > Sent: Thursday, February 06, 2003 12:49 AM
> > To: honeypots () securityfocus com
> > Subject: Free/Open Source Disk Imaging Tools
> >
> >
> > We're looking for a tool to create images of our Windows and Linux
> > honeypots that's a bit more reliable than dd | netcat.  Does anyone have
> > experience with any free/open source disk imaging utilities?
> > Thanks,
> > george