From: Neil (neil@voidfx.net)
Date: Mon Feb 06 2006 - 11:35:35 EST
On 2/6/2006 11:24 AM, kish_pent@yahoo.com wrote:
> The Metasploit framework doesn't sound as insecure as it seems. It is secure ofcourse.In Pentoo live cd you get version 2.5 of the framework which might certainly have some bugfixes than the previous ones. As a pen-tester it's generally not safe to use any tool before testing in a isolated environment, before bringing into production side.
>
> Regards
>
Well, liveCDs are definitely safe, since you just reboot the machine and
its like a fresh install. Of course, if your data was on the hard drive
underneath, there's a risk that a hacker might mount and then play with
it, but the simple solution is to take your data off first (or use a
spare/test/non-vital machine).
-- Neil. http://voidfx.net "Lord, grant me the strength to accept the things I cannot change, the courage to try to change the things I can, and the wisdom to hide the bodies of the people I had to kill because they pissed me off." --Anonymous ------------------------------------------------------------------------------ Audit your website security with Acunetix Web Vulnerability Scanner: Hackers are concentrating their efforts on attacking applications on your website. Up to 75% of cyber attacks are launched on shopping carts, forms, login pages, dynamic content etc. Firewalls, SSL and locked-down servers are futile against web application hacking. Check your website for vulnerabilities to SQL injection, Cross site scripting and other web attacks before hackers do! Download Trial at: http://www.securityfocus.com/sponsor/pen-test_050831 -------------------------------------------------------------------------------
This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:55:27 EDT