Penetration Testing mailing list archives
RE: Interesting conviction
From: "Jason" <securitux () gmail com>
Date: Sun, 9 Oct 2005 10:16:50 -0400
He didn't have authorization to access that web site for pen testing, so he got charged. This is an open and shut case, IMO. Not much to argue about. Anyone who goes beyond the scope of the contract they have with a company for a pen test can be charged for misuse. This is why a good pen tester or any security professional worth their salt will have a contract written out clearly stating what will be done, and have a lawyer look at it before getting the client to sign it. -J
Betcha a lot of folks will have some opinions on this one. http://news.zdnet.co.uk/internet/0,39020369,39226979,00.htm Jay ---------------------------------------------------------------------- -------- Audit your website security with Acunetix Web Vulnerability Scanner: Hackers are concentrating their efforts on attacking applications on your website. Up to 75% of cyber attacks are launched on shopping carts, forms, login pages, dynamic content etc. Firewalls, SSL and locked-down servers are futile against web application hacking. Check your website for vulnerabilities to SQL injection, Cross site scripting
and other web attacks before hackers do!
Download Trial at: http://www.securityfocus.com/sponsor/pen-test_050831
---------------------------------------------------------------------------- --- ---------------------------------------------------------------------------- -- Audit your website security with Acunetix Web Vulnerability Scanner: Hackers are concentrating their efforts on attacking applications on your website. Up to 75% of cyber attacks are launched on shopping carts, forms, login pages, dynamic content etc. Firewalls, SSL and locked-down servers are futile against web application hacking. Check your website for vulnerabilities to SQL injection, Cross site scripting and other web attacks before hackers do! Download Trial at: http://www.securityfocus.com/sponsor/pen-test_050831 ---------------------------------------------------------------------------- --- ------------------------------------------------------------------------------ Audit your website security with Acunetix Web Vulnerability Scanner: Hackers are concentrating their efforts on attacking applications on your website. Up to 75% of cyber attacks are launched on shopping carts, forms, login pages, dynamic content etc. Firewalls, SSL and locked-down servers are futile against web application hacking. Check your website for vulnerabilities to SQL injection, Cross site scripting and other web attacks before hackers do! Download Trial at: http://www.securityfocus.com/sponsor/pen-test_050831 -------------------------------------------------------------------------------
Current thread:
- Interesting conviction jay.tomas () infosecguru com (Oct 07)
- Re: Interesting conviction Mike Messick (Oct 08)
- Re: Interesting conviction Rogan Dawes (Oct 09)
- Re: Interesting conviction Stu Thomas (Oct 09)
- Re: Interesting conviction Stu Thomas (Oct 09)
- Re: Interesting conviction David Dischler (Oct 09)
- Re: Interesting conviction Rogan Dawes (Oct 09)
- <Possible follow-ups>
- Re: Interesting conviction b . hines (Oct 08)
- Re: Interesting conviction b . hines (Oct 08)
- RE: Interesting conviction Jason (Oct 09)
- RE: Interesting conviction Craig Wright (Oct 09)
- RE: Interesting conviction Craig Wright (Oct 10)
- Re: Interesting conviction Mike Messick (Oct 08)