RE: Licensed Penetration Tester LPT

["Ramsdell, Scott" <sramsdell () stinsonmoheck com>]

> From The Register:
http://www.theregister.com/2006/04/26/law_change_for_pis/ 


-----Original Message-----
From: Phil Frederick [mailto:flosofl () gmail com] 
Sent: Wednesday, April 26, 2006 8:51 AM
To: pen-test () securityfocus com
Subject: Re: Licensed Penetration Tester LPT

This is happening now.  Georgia has pending legislation for forensic
examination of information systems.  If you aren't licensed as an
Investigator in the state, you can be charged with a felony if the law
passes.

I can't find a link, but I swear I read this a couple days ago. 
Anyone have any info, or was I hallucinating :)

On 4/25/06, v b <r0cketgrl () yahoo com> wrote:
> All funning aside, this was included in a topic of a BoF at the recent

> ShmooCon held in DC.  The speakers contended that unless the community

> becomes self-policing, there WOULD eventually be government 
> legislation to license information security practitioners.  
> Interesting theory.  I like the idea of shipping all unlicensed 
> practitioners to Lincoln.
> Could do wonders for that local economy. :-)
>
> Regards.
>
>
> --- Dogten <dogten () d3fcon org> wrote:
>
> > Mark Teicher wrote:
> > > Why not license security engineers/gurus like they
> > do social workers, plumbers and doctors.
> > > Then after one gets everyone to comply, partner
> > with an insurance company to offer liability and malpractice 
> > insurance to the licensed penetration testers, just in case someone 
> > accidently shuts down a life support system in a hospital as they 
> > are scanning random Class 'C's on the internet or hijacking root DNS

> > servers in order to play audio streams.
> > > For those who do not comply, set up Senate
> > hearings, and send out letters to those who do not comply, "Are you 
> > an unlicensed penetration tester?"
> > If yes, please list all your friends, neighbors, etc that may or may

> > not be unlicense penetration testers.  Once they have rounded up all

> > the non complying penetration testers, escort them to local train 
> > stations, and guide them onto the train, where they will be taken to

> > re-education camps in Lincoln, Nebraska.  --:)
> > > -----Original Message-----
> > >
> > > > From: Dogten <dogten () d3fcon org>
> > > > Sent: Apr 20, 2006 10:08 PM
> > > > To: Steve Friedl <steve () unixwiz net>
> > > > Cc: pen-test () securityfocus com
> > > > Subject: Re: Licensed Penetration Tester LPT
> > > >
> > > > Steve Friedl wrote:
> > > >
> > > > > If it's not from the government, it's not a real
> > license.
> > > > >
> > > > where does literary license come in? the media
> > certainly practices it
> > > > with impunity.
> > > >
> > > > --
> > > > -dogten, C ISSP
> > > > _________________
> > > > Fight the power and the power will fight back Your only as good 
> > > > as the system you hack If you become a problem you will be 
> > > > replaced Banned, shut down, erased !
> ----------------------------------------------------------------------
> --------
> > > > This List Sponsored by: Cenzic
> > > >
> > > > Concerned about Web Application Security?
> > > > Why not go with the #1 solution - Cenzic, the
> > only one to win the Analyst's
> > > > Choice Award from eWeek. As attacks through web
> > applications continue to rise,
> > > > you need to proactively protect your applications
> > from hackers. Cenzic has the
> > > > most comprehensive solutions to meet your
> > application security penetration
> > > > testing and vulnerability management needs. You
> > have an option to go with a
> > > > managed service (Cenzic ClickToSecure) or an
> > enterprise software
> > > > (Cenzic Hailstorm). Download FREE whitepaper on
> > how a managed service can
> > > > help you:
> > http://www.cenzic.com/news_events/wpappsec.php
> > > > And, now for a limited time we can do a FREE
> > audit for you to confirm your
> > > > results from other product. Contact us at
> > request () cenzic com for details.
> > > >
> ----------------------------------------------------------------------
> --------
> > > >
> > Shhhh, they'll see us.
> >
> > --
> > -dogten, C ISSP
> > _________________
> > Fight the power and the power will fight back Your only as good as 
> > the system you hack If you become a problem you will be replaced 
> > Banned, shut down, erased !
> ----------------------------------------------------------------------
> --------
> > This List Sponsored by: Cenzic
> >
> > Concerned about Web Application Security?
> > Why not go with the #1 solution - Cenzic, the only one to win the 
> > Analyst's Choice Award from eWeek. As attacks through web 
> > applications continue to rise, you need to proactively protect your 
> > applications from hackers. Cenzic has the most comprehensive 
> > solutions to meet your application security penetration testing and 
> > vulnerability management needs. You have an option to go with a 
> > managed service (Cenzic ClickToSecure) or an enterprise software 
> > (Cenzic Hailstorm). Download FREE whitepaper on how a managed 
> > service can help you:
> > http://www.cenzic.com/news_events/wpappsec.php
> > And, now for a limited time we can do a FREE audit for you to 
> > confirm your results from other product. Contact us at 
> > request () cenzic com for details.
> ----------------------------------------------------------------------
> --------
> >
>
>
>
> __________________________________________________
> Do You Yahoo!?
> Tired of spam?  Yahoo! Mail has the best spam protection around 
> http://mail.yahoo.com
>
> ----------------------------------------------------------------------
> --------
> This List Sponsored by: Cenzic
>
> Concerned about Web Application Security?
> Why not go with the #1 solution - Cenzic, the only one to win the 
> Analyst's Choice Award from eWeek. As attacks through web applications

> continue to rise, you need to proactively protect your applications 
> from hackers. Cenzic has the most comprehensive solutions to meet your

> application security penetration testing and vulnerability management 
> needs. You have an option to go with a managed service (Cenzic 
> ClickToSecure) or an enterprise software (Cenzic Hailstorm). Download 
> FREE whitepaper on how a managed service can help you: 
> http://www.cenzic.com/news_events/wpappsec.php
> And, now for a limited time we can do a FREE audit for you to confirm 
> your results from other product. Contact us at request () cenzic com for
details.
> ----------------------------------------------------------------------
> --------
 
 
This communication is from a law firm and may contain confidential and/or privileged information. If it has been sent 
to you in error, please contact the sender for instructions concerning return or destruction, and do not use or 
disclose the contents to others.

------------------------------------------------------------------------------
This List Sponsored by: Cenzic

Concerned about Web Application Security?
Why not go with the #1 solution - Cenzic, the only one to win the Analyst's
Choice Award from eWeek. As attacks through web applications continue to rise,
you need to proactively protect your applications from hackers. Cenzic has the
most comprehensive solutions to meet your application security penetration
testing and vulnerability management needs. You have an option to go with a
managed service (Cenzic ClickToSecure) or an enterprise software
(Cenzic Hailstorm). Download FREE whitepaper on how a managed service can
help you: http://www.cenzic.com/news_events/wpappsec.php
And, now for a limited time we can do a FREE audit for you to confirm your
results from other product. Contact us at request () cenzic com for details.
------------------------------------------------------------------------------