Courses:

Offensive Countermeasures: The Art Of Active Defense: SANSFIRE June 15-16, Blackhat USA July 27-28 & 29-30


Defensive Countermeasures: Foundations for Becoming A Devious Defender: Blackhat USA July 27-28 & 29-30


Conferences:

Check out the entire PaulDotCom crew at BsidesRI June 14-15th!



Subscribe:

Blog:
Videos:
Podcast:


PaulDotCom EspaƱol


Hack Naked TV


Hack Naked At Night


Stogie Geeks


Sponsored By:


www.coresecurity.com


www.tenablesecurity.com


www.sans.org



Follow Us On:


twitter.com/pauldotcom

PaulDotCom YouTube Channel


PaulDotCom Security Weekly - Episode 24 - April 20, 2006

By
Paul Asadoorian
on April 21, 2006 11:40 AM | | Comments (7)

Live from the PaulDotCom Security Weekly Studio....

WARNING: Twitchy did not take his meds for this episode. Listen at your own risk!

  • Sponsored by Core Security, listen for the discount code at the end of the show
  • Sponsored by Syngress, be the first to post the answer to the question at the end of the show and win a free book!
  • Sponsored by The SANS Institute, listen to the discount code for SANSFIRE this summer for 5% off this conference
  • Please go update our frapper map!
  • Help us get a cool logo and slogan! Go to our contest page and read all about how you can win free Snort gear and a one-year subscription to VRT rules. Sponsored by Sourcefire
  • Full Show Notes

Hosts: Larry Pesce, Paul Asadoorian, "Twitchy"
Email: psw@pauldotcom.com

Direct Audio Download
Direct Video Download - We put together a very short promotional video this week. We will resume next with with actual technical content.

(Bandwidth provided by OSHEAN, They take their meds)
Audio Feeds:

Categories:

7 Comments

By Raul Siles on April 21, 2006 1:14 PM

The magic number is $5,000. It's very familiar to incident handlers and forensic investigators :-)

The Computer Fraud and Abuse Act (18 USC 1030):
http://www.usdoj.gov/criminal/cybercrime/1030_new.html

By Attila-Mihaly Balazs on April 21, 2006 7:51 PM

Citing from here:

http://www4.law.cornell.edu/uscode/html/uscode18/usc_sec_18_00001030----000-.html

(i) loss to 1 or more persons during any 1-year period (and, for purposes of an investigation, prosecution, or other proceeding brought by the United States only, loss resulting from a related course of conduct affecting 1 or more other protected computers) aggregating at least $5,000 in value;

again: $5,000

By Attila-Mihaly Balazs on April 21, 2006 7:51 PM

I just wanted to add that you'r doing a great show :)

By Fred on April 22, 2006 4:12 AM

The answer to the question of the week is $5000 USD.

Src: http://assembler.law.cornell.edu/uscode/html/uscode18/usc_sec_18_00001030----000-.html

By Dan Kuykendall on April 23, 2006 11:50 AM

In this episode you kept talking about sniffing traffic and that this was totally undetectable. However that is not entirely true. As far back as 2001 I was working on some of the various sniffer detection techniques, and doing a simple google search for "sniffer detection" will present you with documentation and tools for detecting sniffers on your network.

Just thought I'd letcha know

By SideWynder on May 1, 2006 9:46 PM

You've mentioned Forensics being a hot topic at Educause - I thought I'd add a link to the SANS forensics track description. http://www.sans.org/sansfire06/description.php?tid=205

I'm looking forward to attending this track at an upcoming SANS .EDU session in Missouri.

Regards,
SW