Penetration Testing mailing list archives
Re: What a security test should do?- from thinking about: Ethical Hacking Training
From: "Meritt James" <meritt_james () bah com>
Date: Fri, 23 Jan 2004 16:15:29 -0500
The rest. Physical, legal, operational, communications, policy, ... It is a tiny piece of the overall picture. Familiarity with just one piece may well blind one to the additional components. Jim Pete Herzog wrote:
So my question is, what parts of security can't be verified in a security test? No flames please-- I'm just trying to make the OSSTMM (osstmm.org) better.
-- James W. Meritt CISSP, CISA Booz | Allen | Hamilton phone: (410) 684-6566 --------------------------------------------------------------------------- ----------------------------------------------------------------------------
Current thread:
- What a security test should do?- from thinking about: Ethical Hacking Training Pete Herzog (Jan 23)
- RE: What a security test should do?- from thinking about: Ethical Hacking Training Rob Shein (Jan 23)
- RE: What a security test should do?- from thinking about: Ethical Hacking Training Jerry Shenk (Jan 25)
- Re: What a security test should do?- from thinking about: Ethical Hacking Training Meritt James (Jan 23)
- Re: What a security test should do?- from thinking about: Ethical Hacking Training James Fields (Jan 25)
- Re: What a security test should do?- from thinking about: Ethical Hacking Training Frank Knobbe (Jan 25)
- RE: What a security test should do?- from thinking about: Ethical Hacking Training Rob Shein (Jan 23)