<a href="http://g.adspeed.net/ad.php?do=clk&zid=14678&wd=728&ht=90&pair=as" target="_top"><img style="border:0px;" src="http://g.adspeed.net/ad.php?do=img&zid=14678&wd=728&ht=90&pair=as" alt="i" width="728" height="90"/></a>

Nmap Security Scanner

Docs
Security Lists

Full Disclosure

More
Security Tools

Packet crafters

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

edgeos

Penetration Testing: Re: [PEN-TEST] "Get out of Jail Free"

Re: [PEN-TEST] "Get out of Jail Free"

From: Gregory Luckman <g.luckman_at_E-SECURE.COM.AU>
Date: Wed, 1 Nov 2000 11:10:09 +1100

Ensure that the CIO is easily available by phone for conformation during the
audit. The intelligent integrator will assume that the letter is just a social
engineering attempt, and you don't want to be detained for a few hours until the
CIO is out of a meeting.

....Gregory

Quoting "Gallicchio, Florindo (2007)" <florindo.gallicchio_at_ESAVIO.COM>:

> In other words, the contract itself has the legal wording that gives us
> permission to do the security assessment, and we get a separate document
> for
> our auditors to carry with them when they're doing the social
> engineering/physical penetration test portion. A clearly written
> authorization letter from the client's CIO does the trick.
Received on Nov 01 2000

This message: [ Message body ]
Next message: Bennett Todd: "Re: [PEN-TEST] ios/cisco packet sniffer..."
Previous message: Etaoin Shrdlu: "Re: [PEN-TEST] Dead Thread"
In reply to: Gallicchio, Florindo (2007): "Re: [PEN-TEST] "Get out of Jail Free""

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]