Security Basics mailing list archives

Re: pen test

From: "Albert R. Campa" <abcampa () gmail com>
Date: Tue, 11 Dec 2007 07:33:40 -0600

I would say no. Not even a port scan.
I would expect a hosting company to hire their own pentesters and
security professionals to protect their webservers.
If they dont then I wouldnt trust my customer's sensitive data on their servers.

If I had an ebusiness with personal customer data on a server then I
would want to ensure security measures are in place and that a good
web app pen test has been completed. This may mean that I host my own
server in my own business network and not put the trust in some
hosting company.

regards
Albert

On Dec 10, 2007 11:35 AM, Marty Resnick <marty () techmaking com> wrote:

Am I able to pen test or run a vulnerability assessment on my web hosting company. I got the idea after reading this 
article. http://www.securitypark.co.uk/Security_article.asp?articleid=260173

--
Marty Resnick
Techmaking Inc.
(877) 291-1110 (office)
(661) 209-2089 (mobile)
(805) 512-9603 (fax)
marty () techmaking com

Current thread:

RE: pen test, (continued)
- - - RE: pen test Worrell, Brian (Dec 12)
    - Re: pen test Michael R. Martinez (Dec 12)
    - Re: pen test Ken . Carty (Dec 12)
    - RE: pen test Craig Wright (Dec 12)
  - Re: pen test Serg B (Dec 12)
  - RE: pen test Craig Wright (Dec 12)
    - RE: pen test Worrell, Brian (Dec 13)
- Re: pen test Gregory Boyce (Dec 12)
- Re: pen test scott (Dec 12)
- pen test Marty Resnick (Dec 10)
  - Re: pen test Albert R. Campa (Dec 12)
  - RE: pen test Jayson Agagnier (Dec 12)