Information Security News mailing list archives

Previous By Date Next
Previous By Thread Next

RE: [TSCM-L] Security? Huh!

From: InfoSec News <isn () c4i org>
Date: Tue, 26 Feb 2002 01:10:43 -0600 (CST)
Forwarded from: "Huggins, Michael" <mhhuggins () firstcommand com>

Whenever I see something like this I always want to claim "BS", then I
think well how non PC of me this security professional did his job so
james bondish maybe uncle sam should hire him.

Being retired military (22 years) I know that some of what he said
could be true and perhaps with the clintonization that occurred it
could actual of happened.  Nuff said imply what thy will.


-----Original Message-----
From: InfoSec News [mailto:isn () c4i org] 
Sent: Monday, February 25, 2002 2:53 AM
To: isn () attrition org
Subject: [ISN] [TSCM-L] Security? Huh! 


[I saw this on another list that I am on (and recommend) and I thought you
all might be interested in reading this. -  WK]


---------- Forwarded message ----------
Date: Sat, 16 Feb 2002 01:03:36 -0500
From: Steve Uhrig <steve () swssec com>
To: tscm-l () yahoogroups com
Subject: [TSCM-L] Security? Huh!

This is something I posted to a Minox list when we got off on a security 
tangent. LX = the model of Minox camera I carry always. 

If anyone attempts to do penetration studies like this, make CERTAIN the
person who hired you is instantly available by telephone, AND you carry the
original of a dated and signed authorization specifically detailing why you
are there and that you are authorized to do anything or possess anything in
fulfillment of your contract. You do not want to spend a day in the local
lockup while you wait for your lawyer to track down your client. I can
promise you no one else will care nor will the system care in the slightest
about contacting your client or taking care of medical needs or anything
like that.

====================

I did a penetration study of a government facility within the last several
days (no clues when or where).

They knew it was going down on that day, but not by whom. I had not been in
the building in months.

They made a big show of checking my boot heels for the metal taps which of
course tripped the metal detector, my largish belt buckle, X-rayed my
aluminum cane, completely missed my black LX as I wrapped it in what looked
like a well used handkerchief in their little wicker basket and none of them
would lower themselves to inspect it. That LX could have been my Case pocket
knife or, God forbid, a box cutter or nail file.

[...]



-
ISN is currently hosted by Attrition.org

To unsubscribe email majordomo () attrition org with 'unsubscribe isn' in the BODY
of the mail.
Previous By Date Next
Previous By Thread Next

Current thread: