±Forensic Focus Partners

Become an advertising partner

±Your Account


Username
Password

Forgotten password/username?

Site Members:

New Today: 1 Overall: 35880
New Yesterday: 7 Visitors: 136

±Follow Forensic Focus

Forensic Focus Facebook PageForensic Focus on TwitterForensic Focus LinkedIn GroupForensic Focus YouTube Channel

RSS feeds: News Forums Articles

±Latest Articles

±Latest Videos

±Latest Jobs

Slash dot thread

Computer forensics discussion. Please ensure that your post is not better suited to one of the forums below (if it is, please post it there instead!)
Reply to topicReply to topic Printer Friendly Page
Forum FAQSearchView unanswered posts
 
  

Andy
Senior Member
 

Slash dot thread

Post Posted: Sep 04, 05 15:58

Here is an interesting thread I've picked bouncing around some of the other boards. The members of /. have some strong (laughable) views about FC and LE....

yro.slashdot.org/artic...%20&tid=17

Andy  
 
  

psu89
Senior Member
 

Re: Slash dot thread

Post Posted: Sep 09, 05 06:00

I may be misunderstanding your post, but is it not true that

"browsers such as Firefox and Opera impede law enforcement and investigation efforts because they "use different structures, files and naming conventions for the data that investigators are after", which can "cause trouble for examiners"
?

Brian  
 
  

hogfly
Senior Member
 

Re: Slash dot thread

Post Posted: Sep 09, 05 06:10

Anything written on slashdot has to be taken with a grain..er bottle of salt.

If someone gets tripped up by alternate browsers, then they probably shouldn't be investigating that case.  
 
  

psu89
Senior Member
 

Re: Slash dot thread

Post Posted: Sep 09, 05 06:15

What about this link on Forensic Focus Home page?

news.com.com/Alternati...45409.html

I guess it's all in how you define the word impede.  
 
  

keydet89
Senior Member
 

Re: Slash dot thread

Post Posted: Sep 09, 05 07:17

Interesting. The article, though titled in a way that initially causes concern, goes on to say that the problem has essentially been solved.

Now, we'd really be in trouble if one of the bad guys wrote his own browser...one that didn't save settings or cache or anything else.

H. Carvey
"Windows Forensics and Incident Recovery"
www.windows-ir.com
windowsir.blogspot.com  
 
  

fatrabbit
Senior Member
 

Re: Slash dot thread

Post Posted: Sep 09, 05 13:06

If an investigation happened to be thwarted and the investigator found themselves not to be up to the job technically because the suspect used Firefox and Thunderbird then I would have serious doubts as to the competence of that investigator. As Harlan points out there is potential for a more serious anti-forensic threat than just open source alternatives.
_________________
fatrabbit 
 
  

nbeattie
Member
 

Re: Slash dot thread

Post Posted: Sep 09, 05 13:47

Now, we'd really be in trouble if one of the bad guys wrote his own browser...one that didn't save settings or cache or anything else.

I have started booting into Helix and using the included browsers when accessing certain sites.

I wonder how many other people may be doing this type of thing as it would leave no trail.

I haven't had time to look at BartPE bootable Windows - is IE or other browsers included ?  
 

Page 1 of 1