linux Ó¦¼±ÏàÓ¦¹¤¾ß°üºÍlivecd
http://www.forensicswiki.org/wiki/Helix3
http://www.sleuthkit.org/index.php
»Ö¸´²½Öè:
root@srv01 [/home/recovery]# ./fls -a -r -p /dev/sdb3 > sdb3usrdirlist.txt
root@srv01 [/home/recovery]# grep -i "access_log" /home/recovery/sdb3usrdirlist.txt
r/r 2195490: local/cpanel/logs/access_log
r/r * 2199010(realloc): local/cpanel/logs/access_log-cpanelsync
r/r 2362208: local/apache/logs/access_log
root@srv01 [/home/recovery]# ./icat -r -s -f ext3 /dev/sdb3 2195490 > /tmp/access_log
root@srv01 [/home/recovery]# ls -la /tmp/access_log
-rw-r--r-- 1 root root 13312000 Jun 11 03:38 /tmp/access_log
root@srv01 [/home/recovery]#
Ïà¹ØÎĵµ£º
ÏÂÔصİ汾ÊÇAxis C++ 1.6 Beta
¿Í»§¶ËºÍ·þÎñÆ÷¶Ë¶¼ÐèҪʵÏÖ°²×°xml½âÎöÆ÷
Xerces C++ (2.2.0)
·þÎñÆ÷¶Ë»¹ÐèÒªapache1.3.x»òÕß2.0.x
Ò»¡¢·þÎñÆ÷¶Ë°²×°
1¡¢°²×°Axis C++
2¡¢°²×°Apache£¬ÎÒÃDzÉÓÃApache 2.2.6
×¢ÒâÒ»¶¨ÒªApache 1.3.x use --enable-module=so; for Apache 2.0.x use --enable-so when configuring£¬± ......
add linux kernel min, max define:
include/linux/kernel.h
/*
* min()/max() macros that also do
* strict type-checking.. See the
* "unnecessary" pointer comparison.
*/
#define min(x,y) \
(__extension__\
({ \
typeof( ......
дµÃÂùºÃµÄlinuxѧϰ±Ê¼Ç
linuxĿ¼¼Ü¹¹
/ ¸ùĿ¼
/bin ³£ÓõÄÃüÁî binary file µÄÄ¿錄
/boot ´æ·ÅϵͳÆô¶¯Ê±±ØÐë¶ÁÈ¡µÄµµ°¸£¬°üÀ¨ºËÐÄ (kernel) ÔÚÄÚ
/boot/grub/menu.lst GRUBÉèÖÃ
/boot/vmlinuz& ......
