+ Post New Thread
Page 2 of 2 FirstFirst 12
Results 16 to 28 of 28
Educational Software Thread, Forensic Software on network...............! in Technical; PiqueABoo Well Done !. You are correct in saying that a gracefull logoff, will alter the file system, it will ...
  1. #16

    Join Date
    Feb 2006
    Location
    Leeds
    Posts
    39
    Thank Post
    0
    Thanked 0 Times in 0 Posts
    Rep Power
    0

    Re: Forensic Software on network...............!

    PiqueABoo

    Well Done !. You are correct in saying that a gracefull logoff, will alter the file system, it will also alter many other aspects of the windows architecture too.

    Wiping history and pagefiles is not a problem to me, Hey ive examined Hard Drives that have been thrown in the bath, formatted and Fdisked numerous times, hard drives with this "washer software" installed.

    Trying to monitor students is a nightmare there is software out there that does have its merits, the main problem i have found is the amount of false notifications, and the amount of time the technician or network manager has to plod through data. also the possibility of bottlenecks on the network. Its alright having lots of screen shots of possible violations and lots of reports of possible violations. But then the "administrator" has to go through this and can get it wrong.

    Thats why we take the responcibility of this away from the school.
    I had a school using another package, we run oursoftware on the system and produced the report, they were impressed but they said what they could not understand is we have banned a pupil for pornographic material and you have not shown him on the this report.

    I knew exactly the username they were talking about, and we had prepared a report on that user, I showed that the pupil was NOT searching for porn at all, he was actually searching for crackz and serials, and the pornographic material that was being "screenshot" was redirections. Thus the pupil had no control over the content of redirections. Thus the software that had alerted the IT Manager was producing false information with regard to the users actions.The IT manager and Head had the parents of this boy in. the boys parent was a governor of the school. We sorted that problem out and spoke to the parents. everybody is now happy. Yes the boy was using the school network wrongly, but not for PORN. but then we can get onto copywrite issues within the school as pupils download music ect. leaving the school open to prosecution, we stop that too.

    We also put a stop to the huge problem "its not me sir, someone has my password".

    Mitch

  2. #17
    ChrisH's Avatar
    Join Date
    Jun 2005
    Location
    East Lancs
    Posts
    4,996
    Thank Post
    120
    Thanked 280 Times in 258 Posts
    Rep Power
    106

    Re: Forensic Software on network...............!

    We also put a stop to the huge problem "its not me sir, someone has my password".
    Ah yes the standard excuse. So how do you go about stoppping this without the aid of CCTV or Biometric logon?

  3. #18

    Join Date
    Jan 2006
    Location
    Surburbia
    Posts
    2,178
    Thank Post
    74
    Thanked 307 Times in 243 Posts
    Rep Power
    115

    Re: Forensic Software on network...............!

    So how do you go about stoppping this without the aid of CCTV or Biometric logon?
    Don't know what that or any other one does but if I'd built an app centred on key-logging: A user's typing style is a biometric that can be used for authentication. i.e. it has a sufficiently unique signature.

  4. #19

    Join Date
    Jun 2005
    Posts
    223
    Thank Post
    6
    Thanked 8 Times in 8 Posts
    Rep Power
    30

    Re: Forensic Software on network...............!

    CCTV would be the only way to be absolutely sure. The next excuse you're going to get is, yes i logged onto that machine but i walked off and forgot to log out.
    I think at some point you have to say 'It IS your fault that someone knows your password!'. Make them take some responsibility.

  5. #20

    Geoff's Avatar
    Join Date
    Jun 2005
    Location
    Fylde, Lancs, UK.
    Posts
    11,802
    Thank Post
    110
    Thanked 583 Times in 504 Posts
    Blog Entries
    1
    Rep Power
    224

    Re: Forensic Software on network...............!

    Realisticaly you should have something in your AUP to cover that.

  6. #21

    Join Date
    Jan 2006
    Location
    Surburbia
    Posts
    2,178
    Thank Post
    74
    Thanked 307 Times in 243 Posts
    Rep Power
    115

    Re: Forensic Software on network...............!

    Quote Originally Posted by _Bob_
    CCTV would be the only way to be absolutely sure
    True.. if I wanted to do something naughty and knew how I typed was analyzed, I'd deliberately alter my typing style e.g. just use little fingers. It would only really works if a logon depends on both the correct password and how it is typed.. and although you'd then have more ammunition to prove the user's identity, it's definitely not absolute.

  7. #22

    Join Date
    Aug 2005
    Location
    Birmingham, UK
    Posts
    490
    Thank Post
    0
    Thanked 0 Times in 0 Posts
    Rep Power
    0

    Re: Forensic Software on network...............!

    Quote Originally Posted by ChrisH
    We also put a stop to the huge problem "its not me sir, someone has my password".
    Ah yes the standard excuse. So how do you go about stoppping this without the aid of CCTV or Biometric logon?
    Make the kids responsible for the security of their own logon details, as Geoff said, put it in the relevant docs to back you up and when an issue occurs, pull out the AUP.

  8. #23

    TechMonkey's Avatar
    Join Date
    Dec 2005
    Location
    South East
    Posts
    3,282
    Thank Post
    225
    Thanked 403 Times in 300 Posts
    Rep Power
    161

    Re: Forensic Software on network...............!

    Quote Originally Posted by E1uSiV3
    Make the kids responsible for the security of their own logon details, as Geoff said, put it in the relevant docs to back you up and when an issue occurs, pull out the AUP.
    Thats the way we do it. It's their account with their potential important coursework on it so they are responsible. We take all possible measures to track down someone if they say it isn't them (we have basic CCTV in nearly all IT rooms) but at the end of the day it is their account and they have to take responsibility for it. If they know someone has their password they should get it changed and let us know. Stops a lot of arguements that way.

  9. #24
    tosca925's Avatar
    Join Date
    Aug 2005
    Location
    Midlands
    Posts
    1,547
    Thank Post
    4
    Thanked 4 Times in 4 Posts
    Rep Power
    22

    Re: Forensic Software on network...............!

    We have had installed now for over 2 weeks PCE (Policy Central Enterprise) Forensic software. It works quite well but i have one or two issues with it.

    I t has stopped Dreamweaver 2004 from launching, if you click on the shortcut the programme launches and then immediately shuts itself down, I have to right click an html file and choose 'edit with Dreamweaver to get it to open correctly. But the worst is i can no longer choose 'Define sites' with out it crashing. I have installed the latest version of Dreaweaver(8) and it does not seem to affect this version. I plan on re-imaging the machines in Easter hols with the new version of Dreamweaver 8 any way so i should be able to stop this.

    Problem i have now is that staff are complaining that Smartboard software is playing up now. It odes not detect the pens on start up and also orientation does not work.


    Has any one else got PCE and is having similar problems.

  10. #25

    Join Date
    Jan 2006
    Location
    Surburbia
    Posts
    2,178
    Thank Post
    74
    Thanked 307 Times in 243 Posts
    Rep Power
    115

    Re: Forensic Software on network...............!

    Has any one else got PCE and is having similar problems.
    No, but I can see the potential for conflicts with rootkit-like software. Definitely worth pulling PCE off a machine to see if the problem goes away.

  11. #26
    chazzy2501's Avatar
    Join Date
    Jan 2008
    Location
    South West
    Posts
    1,774
    Thank Post
    212
    Thanked 263 Times in 213 Posts
    Rep Power
    67
    I've been running PCE for almost 3 years now. I chose it because it was the only monitoring program at the time that would install the server software onto a windows server. (Securis want to sell you hardware as well)

    You have to sort the filters out, PCE like to catch everything then have you sift through it. I'd say with the default settings 1 in 40 captures are genuing violations. I offload this work to our cover supervisors when they're not doing a lesson.

    you can deploy the software via MSI. It will upset your antivirus (I've put in directory exclusions for NOD) and on my vista machines for about 6 months it continually crashes and will not uninstall!

  12. #27

    Join Date
    Sep 2010
    Posts
    228
    Thank Post
    3
    Thanked 36 Times in 33 Posts
    Rep Power
    15
    “I've been running PCE for almost 3 years now”
    The people that started this thread have now been using it for 6 years unless they gave up on it - lol

    “I offload this work to our cover supervisors when they're not doing a lesson.”
    It should be a member of SLT; our head does it although I also have access I only usually deal with the technical side. There are likely to be captures from staff as well as kids although staff members aren’t going to look at stuff they shouldn’t it could capture personal emails and the like there is also data protection to be careful of as you could accidently capture SEN data, child protection stuff etc… which is why it should only be SLT.

    “on my vista machines for about 6 months it continually crashes and will not uninstall”
    If you deploy it via msi you can usually uninstall it the same way without problems, there is also an uninstall tool you can get from forensic if an uninstall fails (they keep updating it). Sorry I’ve only ever run it on XP so cant comment on Vista but even on XP every now and again there are problems when forensic or microsoft release an update there’s not a lot you can do about it. Vista / W7 is more secure than XP and that could cause more compatibility issues. Also I would have thought that most of their testing was on XP and W7 as most people skipped Vista but I could be wrong.

    It’s a good ESafety tool but can cause explorer / IE crashes now and again the only problem now is our school is starting to consider purchasing devices it can’t be run on i.e. Ipads and the like at which point it becomes useless…

  13. #28

    Join Date
    May 2011
    Location
    Jus North of London, close but not too close
    Posts
    717
    Thank Post
    170
    Thanked 53 Times in 51 Posts
    Rep Power
    34
    We had Securus at a previous place, all I can say is who will be monitoring and looking through the reports, somehow passed to us, the IT dept .

SHARE:
+ Post New Thread
Page 2 of 2 FirstFirst 12

Similar Threads

  1. Policy Central Professional Entrprise Forensic Software hell
    By tosca925 in forum Educational Software
    Replies: 45
    Last Post: 17th August 2009, 03:18 PM
  2. Network auditing software
    By timbo343 in forum Windows
    Replies: 9
    Last Post: 7th March 2007, 07:27 PM
  3. Network Mapping Software
    By witch in forum Wireless Networks
    Replies: 11
    Last Post: 28th February 2007, 11:16 AM
  4. Limes software on a CC3 network
    By Ian.S in forum Educational Software
    Replies: 16
    Last Post: 13th February 2007, 08:56 AM
  5. Network Management Software
    By towen in forum Educational Software
    Replies: 21
    Last Post: 27th June 2006, 06:58 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •