Pentester convicted thread



List members,

While the 'pentester convicted' thread has generated a *lot* of response
and interesting discussion, don't be surprised if I reject posts on it
going forward. This is not a blanket rejection of all future posts on the
thread as I do think that some of the discussion is relevant and within
the list charter. However, at the same time I can't let it devolve into
ethical or morality debates, legal verbiage, and flamefests. If your post
on this thread is rejected it's not personal, I just didn't see the
immediate relevance to the focus of the pen-test list.

If you wish to discuss the methodology used and the pros/cons surrounding
how it all went down that's fine and dandy :)

Please be aware of the pen-test list charter which can be found at
http://www.securityfocus.com/archive/101/description. Though I have been
the list moderator for a little over a year now, pen-test is still owned
by Al Huger and the fine folks at SecurityFocus.

If you have any questions, comments, concerns, or flames feel free to
email me directly.


--
Erin Carroll
Moderator, SecurityFocus pen-test list


------------------------------------------------------------------------------
This List Sponsored by: Cenzic

Concerned about Web Application Security?
Why not go with the #1 solution - Cenzic, the only one to win the Analyst's
Choice Award from eWeek. As attacks through web applications continue to rise,
you need to proactively protect your applications from hackers. Cenzic has the
most comprehensive solutions to meet your application security penetration
testing and vulnerability management needs. You have an option to go with a
managed service (Cenzic ClickToSecure) or an enterprise software
(Cenzic Hailstorm). Download FREE whitepaper on how a managed service can
help you: http://www.cenzic.com/news_events/wpappsec.php
And, now for a limited time we can do a FREE audit for you to confirm your
results from other product. Contact us at request@xxxxxxxxxx for details.
------------------------------------------------------------------------------



Relevant Pages

  • Recent issues with pen-test list
    ... I have been unable to moderate messages to the list as my server exploded and it took some time to get it back up and running and to work out the kinks with SecurityFocus to get mail delivering again for moderation. ... As attacks through web applications continue to rise, you need to proactively protect your applications from hackers. ... You have an option to go with a managed service or an enterprise software. ...
    (Pen-Test)
  • The quest for ring 0
    ... The following interview was published on SecurityFocus today: ... Federico Biancuzzi interviews French researcher Loïc Duflot to learn more ... Download FREE whitepaper on how a managed service can ...
    (Pen-Test)
  • Checkpoint thread - dead
    ... The number of posts I dropped ... This list is provided by the SecurityFocus Security Intelligence Alert ... For more information on SecurityFocus' SIA service which ...
    (Pen-Test)
  • Administrivia
    ... In an attempt to pick up the quality of the list I will be dropping posts ... This list is provided by the SecurityFocus Security Intelligence Alert ... For more information on SecurityFocus' SIA service which ...
    (Pen-Test)
  • Re: [Full-Disclosure] Re: Second critical mremap() bug found in all Linux kernels
    ... >> vulns db at Securityfocus. ... >> was suppressing some posts, not because the vuln db was removed. ...
    (Full-Disclosure)