|
|
|
|
|
|
by PeterisP
4323 days ago
|
|
|
The solution for log issue can be a remote specialized machine that does append-only logs and nothing else - it should be possible to lock down such a service so that if you're compromised, then at least you have unaltered data from the initial part of the attack, before they disable all logging. |
|
|