Re: RE: pentest physical security

[kratzer.jason () gmail com]

Also, check out NIST's guidelines for physical security checks.  Some requirements are based on outside lights, fence 
heights, etc..  Some CISSP study guides I have seen in the past make a good evaluation of physical security and offer 
good starting points.  Also,  the OSSTMM (page 75) offers a pretty good breakdown of what to look for in physical 
security implementations.  The manual can be found here: http://www.isecom.info/mirror/osstmm.en.2.1.1.pdf


------------------------------------------------------------------------------
This List Sponsored by: Cenzic

Concerned about Web Application Security? 
Why not go with the #1 solution - Cenzic, the only one to win the Analyst's 
Choice Award from eWeek. As attacks through web applications continue to rise, 
you need to proactively protect your applications from hackers. Cenzic has the 
most comprehensive solutions to meet your application security penetration 
testing and vulnerability management needs. You have an option to go with a 
managed service (Cenzic ClickToSecure) or an enterprise software 
(Cenzic Hailstorm). Download FREE whitepaper on how a managed service can 
help you: http://www.cenzic.com/news_events/wpappsec.php 
And, now for a limited time we can do a FREE audit for you to confirm your 
results from other product. Contact us at request () cenzic com for details.
------------------------------------------------------------------------------