Re: Pen testing / Vuln Assessment from Cable Modem - question on service provider selection

["Morgan Reed" <morgan.s.reed () gmail com>]

On 6/20/07, Tommy May <tommymay () comcast net> wrote:
> Issue - A standard nessus scan or nmap will choke my service from a standard home based cable modem service.

You will not likely find anybody who will be willing to allow this.

> I need to have a solid provider that is "used to dealing with pen-test like customer businesses"... is there someone that you all may 
> be able to recommend that won't cost an arm and a leg and will meet the requirements? (i.e. one that's home based, allows it to 
> happen, has pen-testing customers. and doesn't cost any more than 100.00 a month).

I highly doubt you will find one.

> Any words of wisdom would be greatly appreciated.

My best suggestion would be to find a permissive shell account or get
a co-lo server with it's own connection and use that (I have a root
shell on a tier 2 system that I use for these activities).

You're unlikely to find any ISP who will do this for you so your best
bet is to go up a tier or two and get an unrestricted connection
attached to a remote server, you'll still have to read the contracts
carefully though.

Morgan

------------------------------------------------------------------------
This List Sponsored by: Cenzic

Are you using SPI, Watchfire or WhiteHat?
Consider getting clear vision with Cenzic
See HOW Now with our 20/20 program!

http://www.cenzic.com/c/2020
------------------------------------------------------------------------