Home page logo
/

basics logo Security Basics mailing list archives

Re: application for an employment
From: ilaiy <ilaiy.e () gmail com>
Date: Tue, 21 Mar 2006 22:27:50 -0600

Poking in to someone network for information gathering is illegal.

Donot do it.

You could gather information like post made by the company .. The
manager who is hiring his or her post. which would give you a fair
idea of the network layout and the intrests of the person interview ..

./thanks
ilaiy

On 3/21/06, PCSC Information Services <info () pcsage biz> wrote:
Matthias et al,

I don't know if this is an ethical practice for a security
administrator to undertake at all,
let alone in the context of pre-employment research. I echo the
sentiments of most
respondents in that it's not information that's relevant to your
application for employment
nor is it representative of the ideal ethical standards by which
you're no doubt holding
yourself.
It's important to discuss your skillset including the use of security
tools, and
understanding of current best practices and methodologies. How you
brought these
skills to bear on an already unfortunate situation could
deleteriously impact your
application here. Clearly you have some insights that the University
could benefit from
and having some prior knowledge is beneficial immediately should you
become
employed by them, however, disclosing the information before your
even employed by
the University could raise ethical questions that I'm sure you're not
wanting to answer.

Sincerely,

Sean Swayze
PCSC Information Services

On 20-Mar-06, at 7:45 AM, Matthias Güntert wrote:

Dear listmembers,

i am seeking for a new job as a Unix/Linux systemadministrator. There
has been an advertisement at a well known university. So I started to
prepare my self for the application. While collecting some information
about the network, using nmap, dig, etc... I was able to read the
whole
namespace from the ip range (255.255.0.0)

My question is should I use some of the information I have found
out to
push my application forward? What do you think how a director would
react?

--
Mit freundlichen Grüßen

                Matthias Güntert


---------------------------------------------------------------------------
EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The Norwich University program offers unparalleled Infosec management
education and the case study affords you unmatched consulting experience.
Tailor your education to your own professional goals with degree
customizations including Emergency Management, Business Continuity Planning,
Computer Emergency Response Teams, and Digital Investigations.

http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------



---------------------------------------------------------------------------
EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The Norwich University program offers unparalleled Infosec management
education and the case study affords you unmatched consulting experience.
Tailor your education to your own professional goals with degree
customizations including Emergency Management, Business Continuity Planning,
Computer Emergency Response Teams, and Digital Investigations.

http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]