Penetration Testing mailing list archives

Starting up: What contracts, agreements, waivers, etc do you use?

From: <anonyguard-pentest () yahoo com>
Date: Wed, 16 Jun 2004 07:36:24 -0700 (PDT)

Hello, everyone.  I'm looking at the possibility of 
striking out on my own with a network vulnerability
assessment / penetration test consulting firm.  My 
question is more towards the administrative side of the
business, rather than the technical.  For those of you
who do this kind of consulting, what sorts of contracts,
statements of work or other legal documents do you use
with your customers?  I'm particularly concerned about
the liability issue of probing and/or breaking into 
other peoples' networks.  What sort of waivers do you
ask your customers to sign, or what reasonable amount
of liability are you willing to accept?

Current thread:

Starting up: What contracts, agreements, waivers, etc do you use? anonyguard-pentest (Jun 16)
- <Possible follow-ups>
- RE: Starting up: What contracts, agreements, waivers, etc do you use? Yonatan Bokovza (Jun 21)
- RE: Starting up: What contracts, agreements, waivers, etc do you use? Martin Murray-Brown (Jun 22)
- Re: Starting up: What contracts, agreements, waivers, etc do you use? bartholomewbj (Jun 22)