TheOneWithTheHairtoTechnology@lemmy.worldEnglish·9 months agocross-posted to: reddit@lemmy.mlReddit: IP Address Disclosure Puts User Anonymity At Risk * TorrentFreak(torrentfreak.com)external-linkarrow-up1312arrow-down13message-square44fedilink
arrow-up1309arrow-down1external-linkReddit: IP Address Disclosure Puts User Anonymity At Risk * TorrentFreak(torrentfreak.com)TheOneWithTheHairtoTechnology@lemmy.worldEnglish·9 months agocross-posted to: reddit@lemmy.mlmessage-square44fedilink
minus-squarecmnyboEnglisharrow-up10arrow-down1·9 months agolinkfedilinkJust store what logs you need on a ram drive. The logs will be gone the instant the server shuts down and there is no way to recover them.
minus-squarenevemsenkiEnglisharrow-up8arrow-down0·9 months agolinkfedilinkDownsides include : if any intrusion happens on the server, red team just needs to reboot it to wipe evidence.
minus-squarePerhyteEnglisharrow-up5arrow-down0·9 months agoedit-29 months agolinkfedilinkIf they have the root access typically needed to reboot a server1 they could also just wipe the logs without rebooting. 1: GUIs typically have a way to reboot without such privileges, but those are typically not installed on machines just used as servers.
Just store what logs you need on a ram drive. The logs will be gone the instant the server shuts down and there is no way to recover them.
Downsides include : if any intrusion happens on the server, red team just needs to reboot it to wipe evidence.
If they have the root access typically needed to reboot a server1 they could also just wipe the logs without rebooting.
1: GUIs typically have a way to reboot without such privileges, but those are typically not installed on machines just used as servers.