<a href="http://g.adspeed.net/ad.php?do=clk&zid=14678&wd=728&ht=90&pair=as" target="_top"><img style="border:0px;" src="http://g.adspeed.net/ad.php?do=img&zid=14678&wd=728&ht=90&pair=as" alt="i" width="728" height="90"/></a>

Nmap Security Scanner

Docs
Security Lists

Full Disclosure

More
Security Tools

Packet crafters

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

edgeos

Penetration Testing: [PEN-TEST] "Get out of Jail Free"

[PEN-TEST] "Get out of Jail Free"

From: Gary Warner <glwarner_at_NARROWGATE.NET>
Date: Tue, 31 Oct 2000 15:35:51 -0600

We are being challenged by a client's legal department to get better "get out of
jail free" documentation.

I wondered what other professional penetration testers are doing for their
"liability" coverage. Language to the effect that we are going to access your
boxes, steal your passwords, root your boxes, view confidential information,
trick your employees, walk into secure areas without authorization, and if
anyone has a problem with that, we show our "Get out of Jail Free" card.

We have a little two-pager, but I've been advised by legal counsel for one of
our potential customers that its not worth the paper its written on.

Would love to hear opinions, or better yet see a sample doc that we could
template.

_-_
gar
Received on Nov 01 2000

This message: [ Message body ]
Next message: Stiles, Robert: "Re: [PEN-TEST] First step of a pen-test"
Previous message: Briney, Andy: "[PEN-TEST] Article series on pen test, etc."
In reply to: Shawn Davenport: "Re: [PEN-TEST] Your opinions are solicited ..."
Next in thread: Gallicchio, Florindo (2007): "Re: [PEN-TEST] "Get out of Jail Free""
Maybe reply: Gallicchio, Florindo (2007): "Re: [PEN-TEST] "Get out of Jail Free""

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]