Penetration Testing mailing list archives
Re: Security Audit
From: "Phil Cracknell" <phil () orthus com>
Date: Thu, 13 Sep 2001 22:05:27 +0100
<SNIP>
Other problem can be also giving away models and methods, because there are manysmartasses that are just lookingafter knowledge to do the job themselfs.
We have a methodology and would not hesitate in giving it to our clients, we do so regularly, and we also abstract from this a detailed test plan for them. These documents allow for some form of measurement in all of this and as a result if a cowboy tries to sell them a $500 remote scan they have something to compare it too. The 'right' sort of client will have already identified that doing the job themselves is not the right approach I would hope, regardless of how smart their ass is. Rgds Phil CTO - Orthus www.orthus.com ---------------------------------------------------------------------------- This list is provided by the SecurityFocus Security Intelligence Alert (SIA) Service. For more information on SecurityFocus' SIA service which automatically alerts you to the latest security vulnerabilities please see: https://alerts.securityfocus.com/
Current thread:
- Re: How to discover FW-1 management module or GUI?, (continued)
- Re: How to discover FW-1 management module or GUI? Michael Batchelder (Sep 14)
- Re: How to discover FW-1 management module or GUI? Gareth Bromley (Sep 23)
- Re: How to discover FW-1 management module or GUI? The Crocodile (Sep 16)
- Re: How to discover FW-1 management module or GUI? Penetration Testing (Sep 16)
- Re: Security Audit H Carvey (Sep 12)
- Re: Security Audit R. DuFresne (Sep 12)
- Re: Security Audit H C (Sep 13)
- Re: Security Audit R. DuFresne (Sep 13)
- Re: Security Audit H C (Sep 13)
- Industry Definitions... possible? was Re: Security Audit Don Bailey (Sep 14)
- Re: Security Audit R. DuFresne (Sep 12)
- Re: Security Audit bacano (Sep 16)
- RE: Security Audit Dom De Vitto (Sep 18)
- Re: Security Audit bacano (Sep 17)