Full Disclosure mailing list archives
Re: scanning
From: Valdis.Kletnieks () vt edu
Date: Thu, 01 Jun 2006 21:28:24 -0400
On Fri, 02 Jun 2006 08:54:23 +0800, Nightfall Nightfall said:
Is it illegal if I perform a vulnerability scan on a site without permission from the owner? How about a simple port scan? thanks.
Rule 0 of a pen test: *ALWAYS* have a *written* "Get Out Of Jail Free" card before doing anything, unless it is your own *personal* machine. This includes machines owned by your employer (ask Randal Schwartz about this one). Phrased differently - do you really want to gamble spending the next 3-5 with a big hairy dude named Bubba?
Attachment:
_bin
Description:
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- scanning Nightfall Nightfall (Jun 01)
- RE: scanning Dixon, Wayne (Jun 01)
- Re: scanning Valdis . Kletnieks (Jun 01)
- Re: scanning Ducki3 (Jun 02)
- Re: scanning Steve Kudlak (Jun 02)
- Re: scanning Alice Bryson (Jun 06)
- Re: scanning Neil Davis (Jun 14)
- <Possible follow-ups>
- RE: scanning David Alanis (Jun 01)
- Re: scanning Simon Smith (Jun 01)
- Re: scanning Nightfall Nightfall (Jun 01)
- Re: scanning Valdis . Kletnieks (Jun 01)
- Re: scanning c0redump (Jun 02)
- Re: scanning GroundZero Security (Jun 02)
- Re: scanning Simon Smith (Jun 01)
(Thread continues...)