|
|
| Applications |
| Mailing Lists |
| Miscellaneous |
| Operating Systems |
| Programming |
Re: NTFS $LOGFILE metafile
From: George M. Garner Jr. <gmgarner(at)erols.com>
Date: Mon Mar 17 2003 - 17:54:37 EST
This list is provided by the SecurityFocus ARIS analyzer service. For more information on this free incident handling, management and tracking system please see: http://aris.securityfocus.com Received on Mon Mar 17 19:53:37 2003
Date: Mon Mar 17 2003 - 17:54:37 EST
Harlan,
>> As yet, I haven't found a way to access the $LOGFILE metafile on a live
system,
>> let alone parse it... <<
The FSCTL control codes to read and write from the $Logfile do not appear to be documented. Maybe they are in the IFS SDK. On Windows XP and .Net Server you can use the volume shadow copy service to backup a snapshot of the $Logfile. The syntax is as follows:
ntbackup backup C:\$Logfile /F "A:\myLogfile"
This assumes that C:\ is a ntfs volume and you want to write the backup file to the a: drive.
George.
This list is provided by the SecurityFocus ARIS analyzer service. For more information on this free incident handling, management and tracking system please see: http://aris.securityfocus.com Received on Mon Mar 17 19:53:37 2003
This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 14:01:43 EDT
|
Contact Us Legal Notices Order Services Online Pantek Home Privacy Policy IT news Site Map Pantek Library |