Home page logo
/

pen-test logo Penetration Testing mailing list archives

Re: What a security test should do?- from thinking about: Ethical Hacking Training
From: "Meritt James" <meritt_james () bah com>
Date: Fri, 23 Jan 2004 16:15:29 -0500

The rest.  Physical, legal, operational, communications, policy, ...  It
is a tiny piece of the overall picture.  Familiarity with just one piece
may well blind one to the additional components.

Jim

Pete Herzog wrote:

So my question is, what parts of security can't be verified in a security
test?  No flames please-- I'm just trying to make the OSSTMM (osstmm.org)
better.


-- 
James W. Meritt CISSP, CISA
Booz | Allen | Hamilton
phone: (410) 684-6566

---------------------------------------------------------------------------
----------------------------------------------------------------------------


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]