Citrix

From: Darren Welch (armyreconat_private)
Date: Thu Apr 17 2003 - 12:41:28 PDT

Next message: Steve Treppa: "RE: Citrix"

Previous message: Paul Bakker: "Re: Problem with mounted vfat image"
Next in thread: Steve Treppa: "RE: Citrix"
Reply: Steve Treppa: "RE: Citrix"
Reply: email lists: "RE: Citrix"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

A quick question.

If a remote user were to dial into a lan and initiate a remote session 
through a ras service and open a citrix connection to get to an internal 
app, does anyone know what, if any, remnants are left behind in .tmp, swap, 
slack, and UnAllo space on the remote machine?

Thanks for any help.

Darren Welch
Forensic Computer Examiner, CISSP




_________________________________________________________________



-----------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management 
and tracking system please see: http://aris.securityfocus.com

Next message: Steve Treppa: "RE: Citrix"
Previous message: Paul Bakker: "Re: Problem with mounted vfat image"
Next in thread: Steve Treppa: "RE: Citrix"
Reply: Steve Treppa: "RE: Citrix"
Reply: email lists: "RE: Citrix"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Thu Apr 17 2003 - 13:12:10 PDT