pen-testing permission form for charity work

[tadaka at gmail.com (Jason Wood)]

Does anyone have an idea how much an "errors and omissions" policy would
run?  This is something I've considered off and on, but haven't ever looked
into.



On Mon, Nov 16, 2009 at 1:58 PM, Robert Portvliet <
robert.portvliet at gmail.com> wrote:

> I think for doing 3rd party testing (even for free), you're going to
> need something written up by an attorney & probably 'errors &
> omissions' insurance at a minimum.
>
> Just because you're doing it 'pro-bono'' doesn't mean someone won't
> sue if something goes wrong (no good deed goes unpunished, lol)
>
> Someone please feel free to tell me I'm wrong, but everything I've
> ever been told is that the 'permission slip' level is only good for an
> internal pen test.
>
>
>
>
> On Mon, Nov 16, 2009 at 3:34 PM, Adrian Crenshaw <irongeek at irongeek.com>
> wrote:
> > Hi All,
> >    I've been thinking of doing some free security/pen-testing work for
> local
> > non-profits. This would help me get some hands on experience. I'd like to
> > cover my butt legally also. What "permission forms" would you reccomend
> for
> > such circumstances?
> >
> > Thanks,
> > Adrian
> >
> > _______________________________________________
> > Pauldotcom mailing list
> > Pauldotcom at mail.pauldotcom.com
> > http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
> > Main Web Site: http://pauldotcom.com
> _______________________________________________
> Pauldotcom mailing list
> Pauldotcom at mail.pauldotcom.com
> http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
> Main Web Site: http://pauldotcom.com



-- 

irc: Tadaka
Twitter:  Jason_Wood
jwnetworkconsulting.com
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mail.pauldotcom.com/pipermail/pauldotcom/attachments/20091116/9d6774e1/attachment.htm