Question

  • Creator
    Topic
  • #2167183

    Computer Forensics 101

    Locked

    by thumper1 ·

    As a Network administrator, I need some basic knowledge on this subject. I have some secretaries and a few Attorneys who treat their company owned computers as their personal amusement parks. I need to be able to find out where these people go and what they do on the Internet. What is the best way to educate myself?
    Thanks

All Answers

  • Author
    Replies
    • #2985412

      Clarifications

      by thumper1 ·

      In reply to Computer Forensics 101

      Clarifications

    • #2980871

      Open their Web Browsers History

      by oh smeg ·

      In reply to Computer Forensics 101

      Generally works.

      Though I’m not sure that is what you are asking here.

      Col

      • #2978772

        I guess I should have………..

        by thumper1 ·

        In reply to Open their Web Browsers History

        I guess I should have clarified this. The problem people, while quite a ways from being computer literate, are very careful to hide their tracks. They set their browsers to keep no history. They have been real good at deleting all content, including off line and cookies.
        We have a computer use policy that is being reviewed and re-written.
        I have been told that everything they do is stored in a file called index.dat. I am not sure if history information is stored anywhere else, I have downloaded a couple of programs to read this file, so far with mixed results. What I am asking is if there is anything else I could be doing to try to get a handle on what’s going on.
        Thanks

        • #2978753

          save yourself alot of trouble

          by xnavydk ·

          In reply to I guess I should have………..

          just get a web blocker like web sense to block unwanted content. As well as get your network use policy in place. really no need to be big brother if you are proactive rather than reactive. although, If they are a remote user you cant use a blocker service if they are wireless or use the laptop at home, get your group policy object for company laptops in place by restricting advance functions in the browser. like the ability to delete cookies, and history. Make sure you have your consent to monitoring policy in place as well.

    • #2964784

      Use a key logger

      by jesus_estrada_escalante ·

      In reply to Computer Forensics 101

      Try to use a keylogger on every machine that you want

      • #2964772

        Be careful…

        by cmiller5400 ·

        In reply to Use a key logger

        Be careful; know your laws in your area about employee monitoring.

        If your organization doesn’t have an IT Policy, then it may be time to draft one that covers “acceptable use”

Viewing 2 reply threads