Re: What is your policy on customers particapating in a pen test?

From: Meritt James (meritt_jamesat_private)
Date: Thu Jun 21 2001 - 12:51:04 PDT

Next message: Vanja Hrustic: "Re: What is your policy on customers particapating in a pen test?"

Previous message: Dragos Ruiu: "Re: Linksys Pen Test"
In reply to: Gary Warner: "Re: What is your policy on customers particapating in a pen test?"
Next in thread: Steve Hutchins: "RE: What is your policy on customers particapating in a pen test?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Not a friendly way to come across.  There is also a possibility of 
being contracted to do the test on outsourced services to ensure the
security of the service, and that is no way  what you said.

Now, the folks providing the service didn't think highly of it, but
.....

oh well.......

V/R

Jim

Gary Warner wrote:
> 

[snip]

>   Face it.  Our profession pits our skills as
> violators against their skills as defenders.  That's why it is so critical to help
> them understand that this is A PART of a much larger project.

[snip]

-- 
James W. Meritt, CISSP, CISA
Booz, Allen & Hamilton
phone: (410) 684-6566

Next message: Vanja Hrustic: "Re: What is your policy on customers particapating in a pen test?"
Previous message: Dragos Ruiu: "Re: Linksys Pen Test"
In reply to: Gary Warner: "Re: What is your policy on customers particapating in a pen test?"
Next in thread: Steve Hutchins: "RE: What is your policy on customers particapating in a pen test?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Thu Jun 21 2001 - 15:35:18 PDT