Re: Pentester convicted..

From: David J Blackburn (blkburn@hotmail.com)
Date: Thu May 11 2006 - 09:58:54 EDT

• Next message: Christine Kronberg: "Re: Pentester convicted.."
• Previous message: Sahir Hidayatullah: "RE: Pentester convicted.."
• In reply to: William Hancock: "Pentester convicted.."
• Next in thread: Christine Kronberg: "Re: Pentester convicted.."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

>>If someone leaves their wallet in the park with no guard or protection,
>>I pick it up and bring it back to the owner, the owner didn't want me to
>>have it but I brought it back to him.
>>Why in the hell should I have to
>>go to jail for returning it to him, why should I/we be punished for
>>doing the right thing?

Not the best analogy IMHO.
Finding mentally impared persons, taking money out of their pockets and then
telling them we can do so as we hand it back seems like a better analogy.

The analogy has the mentally impared managing companies and websites, which
makes it not good, but better. Kind of funny, but not good.

Maybe the first thing we need is a good community analogy that won't offend.

Anyway...

I believe we need to keep a sober perspective and obey the law,
understanding there will be carnage we can do nothing about that the
mentally impared have every right to inflict on themselves and their
customers until the law says otherwise.

And we need some laws in place to protect reasonable actions by knowledgable
persons trying to protect society.

Someday we will have an entry:
http://en.wikipedia.org/wiki/Good_Samaritan_law "for pentesters"

very best regards,
David

------------------------------------------------------------------------------
This List Sponsored by: Cenzic

Concerned about Web Application Security?
Why not go with the #1 solution - Cenzic, the only one to win the Analyst's
Choice Award from eWeek. As attacks through web applications continue to rise,
you need to proactively protect your applications from hackers. Cenzic has the
most comprehensive solutions to meet your application security penetration
testing and vulnerability management needs. You have an option to go with a
managed service (Cenzic ClickToSecure) or an enterprise software
(Cenzic Hailstorm). Download FREE whitepaper on how a managed service can
help you: http://www.cenzic.com/news_events/wpappsec.php
And, now for a limited time we can do a FREE audit for you to confirm your
results from other product. Contact us at request@cenzic.com for details.
------------------------------------------------------------------------------

• Next message: Christine Kronberg: "Re: Pentester convicted.."
• Previous message: Sahir Hidayatullah: "RE: Pentester convicted.."
• In reply to: William Hancock: "Pentester convicted.."
• Next in thread: Christine Kronberg: "Re: Pentester convicted.."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:55:56 EDT