Hi All I have using "afflib" (for the first time) using Ubuntu 7.10 on a troublesome 1 GiB thumb drive. Part of the package (aimage) allows you to make a copy...
Fuse is utlilised as a Kernel Module if support is not compiled in the kernel. Have you tried "lsmod | grep fuse" to see if you have the module available, if...
FUSE support is disabled if you do not have the FUSE developer libraries and fuse.h installed when AFFLIB is compiled. This has come up before, so I'll...
... Hash: SHA1 ... It's available as a module in Ubuntu 7.10 so that should work. Jon. ... Version: GnuPG v1.4.7 (GNU/Linux) Comment: Using GnuPG with Mozilla...
as far as i knew, usually every linux distro include this tools as default. maybe you can check it first, or if it is still not there you can download it from...
Simson Thank you, everything is now working correctly. Stu ... From: simsongarfinkel <simsong@...> To: linux_forensics@yahoogroups.com Sent: Friday, 1...
... I wasn't sure if you meant the standard lsof with any Linux distro. Yes I'm familiar with that one. I'll re-examine it but it doesn't appear to be what...
... Hash: SHA1 Stuart, Just to clarify what was it that you did to resolve this issue on your Ubuntu 7.10? Regards, Jon. ... Version: GnuPG v1.4.7 (GNU/Linux) ...
Jacques, When I've needed to understand exactly what a process does on linux I've used the standard strace command. Check it out and let me know if you have...
... Thanks. I'll re-examine that one as well. Perhaps between a combination of a few of them I'll be able to do in Linux what I can do in Windows with...
Hi Jon I installed the fuse dev packages using: #apt-get install libfuse-dev (I already had fuse-utils, fuse-source and libfuse2 installed). I then recompiled...
Hi, does anyone here knows, how can we read a formatted / deleted file on Win partition from Linux (beside using grep), not using recovery tools, just like if...
... It does a lot more that I gave it credit (just had a look at it in my Linux In A Nutshell manual). But I don't see where it will do what I'm hoping to do....
I don't think that anyone on the planet actually knows all of the options for the "ps" command. ... [Non-text portions of this message have been removed]...
Hi, When I try to use affuse (Helix 1.9a), it gives the message: affuse: FUSE support is disabled. Googling, I found that afflib must be compiled with...
Hi, I cannot mount ewf using mount_ewf.py (Helix 1.9a). I'm using, as mount-ewf readme says, mount_ewf image.E01 /mounting/point and it give me an error...
1. Install libfuse-dev 2. Download the AFF sources 3. ./configure && make && make install You may wish to suggest to the Helix developers that they compile AFF...
Thanks for the fast reply, Simson. I posted this suggestion in the Helix forum. I was already aware that I should install libfuse-dev and recompile aff in the...
I've got something that you may find useful. Please contact me off-list and I'll be happy to help. Regards - Andrew Rosen ASR Data Acquisition & Analysis, LLC...
Maybe this will make me look dumb, but I can't seem to mount an LVM partition that is on a drive I extracted from another machine. I've created a new volume...
I doubt if I can be of any help since I've never dealt with this before but... ...have you checked out Brian Carrier's "File System Forensic Analysis" book?...
It is often hard to gauge how sophisticated one is or is not with Linux, so I apologize if this seems common sense and you already performed all of these...
That's the right track, I think. The problem is that the LV I am working with is named LogVol01 and came from a system that included it in a VG called...
Hi all, I'd like to suggest our new Linux forensics tool: Selective File Dumper - http://sfdumper.sourceforge.net/ Let me know your impressions... ;) Thank you...
... Hi I'm downloading it now. The link you provided didn't work for me Group members may want to try this link. http://sourceforge.net/projects/sfdumper/ ...
Having problems with message search?
Fill out this form to ensure your group is one of the first to be migrated to the new message search system.
