Peter’s Soapbox
SANSFire 2008, Audit 507, Day 6 - Unix
July 31, 2008 on 8:49 am | In Uncategorized |Day 6, auditing Unix. By this time, most of the class was pretty wiped. With a few exceptions, (myself included) the bulk of the class had little or no Unix experience, so having to do stuff on the Unix command line was… well, eye-opening.
We reviewed mostly the same things that we covered in Windows, what to audit, where to find it, and how to audit. The instructor provided many sample scripts which do a lot to establish a baseline for you automatically (collecting hardware info, software configuration, resource utilization, etc.). We also discussed how not all Unixes are the same, and some strategies on how to deal with Unix sysadmins (think “fuzzy guys in suspenders”). All in all, it was a good wrap-up day.
Now I’m just waiting for my SANS.org portal to open up so I can review the training again online to prep for my test!
No Comments yet »
RSS feed for comments on this post. TrackBack URI
Leave a comment
You must be logged in to post a comment.
Categories:
Archives:
- October 2008 (1)
- September 2008 (2)
- August 2008 (7)
- July 2008 (22)
- June 2008 (7)
- May 2008 (14)
- April 2008 (13)
- March 2008 (7)
- February 2008 (13)
- January 2008 (8)
- December 2007 (11)
- November 2007 (10)
- October 2007 (8)
- September 2007 (18)
- August 2007 (25)
- July 2007 (10)
- June 2007 (2)
- May 2007 (1)
- March 2007 (4)
- February 2007 (3)
- January 2007 (1)
- December 2006 (1)
- October 2006 (3)
- September 2006 (1)
- August 2006 (9)
- July 2006 (2)
- June 2006 (6)
- May 2006 (4)
- April 2006 (3)
Blogroll
- Fresh Ubuntu - The Fresh Ubuntu podcast
- I, Blog - The blog of my former partner in podcasting crime
- Lotta Linux Links - Lotta Linux Links
- Partis Scientia - Scott’s Linux Tech Blog
- Scamwagon - The blog of my colleague, Scott McGrath