Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Penetration Testing: Re: [PEN-TEST] WebEx security?

Re: [PEN-TEST] WebEx security?

From: Ken Pfeil <kpfeil_at_MIRADIANT.COM>
Date: Tue, 31 Oct 2000 13:38:23 -0500

I'm pretty sure that the last thing they want is a bunch of port scanning
being done on the basis of your assumption. What is your criteria for a
"general overview" and the basis for your conclusion?

Just wondering...
Ken

Ken Pfeil
Director, Information Security
Miradiant Global Network, Inc
kpfeil_at_nospam.miradiant.com
http://www.miradiant.com
15 Broad Street
New York, NY 10005

PGP Lookup:
http://pgpkeys.mit.edu:11371/pks/lookup?op=get&search=0x3011C88A
"Of course my password is the same as my pet's name.
My dog's name was Q47pY!3$H9x, but I change it every 90 days."

-----Original Message-----
From: Erik Tayler [mailto:erik_at_DIGITALOFFENSE.NET]
Sent: Tuesday, October 31, 2000 11:36 AM
To: PEN-TEST_at_SECURITYFOCUS.COM
Subject: Re: [PEN-TEST] WebEx security?

A general overview would suffice. Anyone with non-intrusive probing
capabilities would be able to tell right off the bat.

And no, I didn't break into their site, then draw up the conclusion they
are insecure.

Erik Tayler
http://www.digitaloffense.net
http://www.14x.net

Alfred Huger wrote:
>
> On Tue, 31 Oct 2000, Erik Tayler wrote:
>
> > Judging by the state of security of their network, I wouldn't go with
> > them. Security is the last thing they should be talking about on their
> > site. Just my 2 cents.
>
> How exactly did you come to this conclusion?
Received on Nov 01 2000

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]