Re: Pen Test liability waiver form

[US Infosec <usinfosec () gmail com>]

I would reccomend that if you are remote, that you email and have them
print it, sign it, and fax it back (or scan + email back).   A
pen-signed doc, even if faxed or scanned, will still hold up in court.



On 2/17/06, Levenglick, Jeff <JLevenglick () fhlbatl com> wrote:
> I know a lot of companies are going the 'fast' route and via the correct
> wording, allowing an email
> To confirm their wishes. But, I would still say that paper is the best
> route. (and in some cases the only
> Legal route)
>
> You could run into a mess with email.
>
> Quick off the top of my head thoughts -
>
> How do you know that the email was passed to the correct people?
> How do you that it was not changed and you have an old email?
>
> I would think that worse case you would have to prove that your email
> has not been modified...ect.. With
> A paper contract you have everything in front of you.
>
> -----Original Message-----
> From: Maxim Kostioukov [mailto:maxim () francoudi com]
> Sent: Friday, February 17, 2006 05:14 AM
> To: pen-test () securityfocus com
> Subject: RE: Pen Test liability waiver form
>
> I beg your pardon but I would like to extend the question.
>
> Usually in which form the waiver is presented: by email or signed paper?
> I guess it may depend on local law, anyone can confirm from his/her
> practice?
>
> -----Original Message-----
> From: e.lewis () infosecurityconsult com
> [mailto:e.lewis () infosecurityconsult com]
> Sent: Tuesday, February 14, 2006 6:27 PM
> To: pen-test () securityfocus com
> Subject: Pen Test liability waiver form
>
> Hello Everyone!
>
> Does anyone know where I can find a good pen-test Liability waiver? I
> need a good one that I can alter to fit my needs. I know im being lazy.
> :-)
>
> ------------------------------------------------------------------------
> ------
> Audit your website security with Acunetix Web Vulnerability Scanner:
>
> Hackers are concentrating their efforts on attacking applications on
> your website. Up to 75% of cyber attacks are launched on shopping carts,
> forms, login pages, dynamic content etc. Firewalls, SSL and locked-down
> servers are futile against web application hacking. Check your website
> for vulnerabilities to SQL injection, Cross site scripting and other web
> attacks before hackers do!
> Download Trial at:
>
> http://www.securityfocus.com/sponsor/pen-test_050831
> ------------------------------------------------------------------------
> -------
>
>
>
> -----------------------------------------
> This e-mail message is private and may contain confidential or
> privileged information.
>
>
> ------------------------------------------------------------------------------
> Audit your website security with Acunetix Web Vulnerability Scanner:
>
> Hackers are concentrating their efforts on attacking applications on your
> website. Up to 75% of cyber attacks are launched on shopping carts, forms,
> login pages, dynamic content etc. Firewalls, SSL and locked-down servers are
> futile against web application hacking. Check your website for vulnerabilities
> to SQL injection, Cross site scripting and other web attacks before hackers do!
> Download Trial at:
>
> http://www.securityfocus.com/sponsor/pen-test_050831
> -------------------------------------------------------------------------------

------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner:

Hackers are concentrating their efforts on attacking applications on your
website. Up to 75% of cyber attacks are launched on shopping carts, forms,
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are
futile against web application hacking. Check your website for vulnerabilities
to SQL injection, Cross site scripting and other web attacks before hackers do!
Download Trial at:

http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------