« PaulDotCom Logo & Slogan Contest (Sponsored by Sourcefire) | Main | PaulDotCom Security Weekly - Episode 25 - April 27, 2006 »

PaulDotCom Security Weekly - Episode 24 - April 20, 2006

Live from the PaulDotCom Security Weekly Studio....

WARNING: Twitchy did not take his meds for this episode. Listen at your own risk!

  • Sponsored by Core Security, listen for the discount code at the end of the show
  • Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book!
  • Sponsored by The SANS Institute, listen to the discount code for SANSFIRE this summer for 5% off this conference
  • Please go update our frapper map!
  • Help us get a cool logo and slogan! Go to our contest page and read all about how you can win free Snort gear and a one-year subscription to VRT rules. Sponsored by Sourcefire
  • Full Show Notes

Hosts: Larry Pesce, Paul Asadoorian, "Twitchy"
Email: psw@pauldotcom.com

Direct Audio Download
Direct Video Download - We put together a very short promotional video this week. We will resume next with with actual technical content.

(Bandwidth provided by OSHEAN, They take their meds)
Audio Feeds:

Posted by Paul Asadoorian on April 21, 2006 11:40 AM |

Comments

Trivia:

$5000

From: http://www.phillipsnizer.com/library/cases/lib_case35.cfm

Posted by: Ben | April 21, 2006 12:11 PM

The magic number is $5,000. It's very familiar to incident handlers and forensic investigators :-)

The Computer Fraud and Abuse Act (18 USC 1030):
http://www.usdoj.gov/criminal/cybercrime/1030_new.html

Posted by: Raul Siles | April 21, 2006 01:14 PM

Citing from here:

http://www4.law.cornell.edu/uscode/html/uscode18/usc_sec_18_00001030----000-.html

(i) loss to 1 or more persons during any 1-year period (and, for purposes of an investigation, prosecution, or other proceeding brought by the United States only, loss resulting from a related course of conduct affecting 1 or more other protected computers) aggregating at least $5,000 in value;

again: $5,000

Posted by: Attila-Mihaly Balazs | April 21, 2006 07:51 PM

I just wanted to add that you'r doing a great show :)

Posted by: Attila-Mihaly Balazs | April 21, 2006 07:51 PM

The answer to the question of the week is $5000 USD.

Src: http://assembler.law.cornell.edu/uscode/html/uscode18/usc_sec_18_00001030----000-.html

Posted by: Fred | April 22, 2006 04:12 AM

In this episode you kept talking about sniffing traffic and that this was totally undetectable. However that is not entirely true. As far back as 2001 I was working on some of the various sniffer detection techniques, and doing a simple google search for "sniffer detection" will present you with documentation and tools for detecting sniffers on your network.

Just thought I'd letcha know

Posted by: Dan Kuykendall | April 23, 2006 11:50 AM

You've mentioned Forensics being a hot topic at Educause - I thought I'd add a link to the SANS forensics track description. http://www.sans.org/sansfire06/description.php?tid=205

I'm looking forward to attending this track at an upcoming SANS .EDU session in Missouri.

Regards,
SW

Posted by: SideWynder | May 1, 2006 09:46 PM

Post a comment

(If you haven't left a comment here before, you may need to be approved by the site owner before your comment will appear. Until then, it won't appear on the entry. Thanks for waiting.)