What are the requirements for acquiring data on a suspect computer using Linux?
What will be an ideal response?
ANSWER: A unique feature of a forensics Linux Live CD is that it can mount and read most drives. To perform a data acquisition on a suspect computer, all you need are the following:
* A forensics Linux Live CD
* A USB, FireWire, or SATA external drive with cables
* Knowledge of how to alter the suspect computer’s BIOS to boot from the Linux Live CD
* Knowledge of which shell commands to use for the data acquisition
You might also like to view...
How do you make an object in a classic tween follow a path?
What will be an ideal response?
What directory are the host tables found in the /etc/ directory in UNIX, Linux, and macOS on a Windows system?
What will be an ideal response?
The overall purpose of an inference engine is to seek information and relationships from the knowledge base and to provide answers, predictions, and suggestions similar to the way a human expert would.
Answer the following statement true (T) or false (F)
The development and maintenance of information resources is now the sole responsibility of the MIS department
A. True B. False