Blue Team ROE

To:	pen-test@securityfocus.com
Subject:	Blue Team ROE
From:	mesenbrink@hotmail.com
Date:	1 Mar 2007 19:45:18 -0000
Delivered-to:	sp-com-lists@consult.net
Delivered-to:	pentest-list2@consult.net
Delivered-to:	mailing list pen-test@securityfocus.com
Delivered-to:	moderator for pen-test@securityfocus.com
List-help:	<mailto:pen-test-help@securityfocus.com>
List-id:	<pen-test.list-id.securityfocus.com>
List-post:	<mailto:pen-test@securityfocus.com>
List-subscribe:	<mailto:pen-test-subscribe@securityfocus.com>
List-unsubscribe:	<mailto:pen-test-unsubscribe@securityfocus.com>
Mailing-list:	contact pen-test-help@securityfocus.com; run by ezmlm
Resent-date:	Sun, 4 Mar 2007 17:19:06 -0700 (MST)
Resent-from:	pen-test-return-1078483676@securityfocus.com
Resent-message-id:	<20070305001906.99AF0237FDD@outgoing3.securityfocus.com>
Resent-sender:	listbounce@securityfocus.com
Sender:	listbounce@securityfocus.com

List,

I wanted to send out a general email asking the members of this list their 
professional opinions on being limited during a Blue Team pen-test.  I have a 
govt customer that is trying deny us the ability to remove password 
hashes/files from the system for cracking, write procedures for every 
tool/exploit that could be possibly executed, not allow the loading of any 
tools/exploits on target systems, things like that.....  Of course my reaction 
is that my company will not perform the assessment with such restrictions, what 
are some thoughts from this list on this subject?

------------------------------------------------------------------------
This List Sponsored by: Cenzic

Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.

http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW
------------------------------------------------------------------------

<Prev in Thread]	Current Thread	[Next in Thread>
Blue Team ROE, mesenbrink <= RE: Blue Team ROE, Dexter, Ben RE: Blue Team ROE, McCarty, Eric C. RE: Blue Team ROE, Dave Sanford RE: Blue Team ROE, Angelacci, Anna M CTR SPAWAR, J616 Re: Blue Team ROE, Pete Herzog RE: Blue Team ROE, Tim Singletary RE: Blue Team ROE, krymson RE: Blue Team ROE, Dave Sanford Re: Blue Team ROE, zenmasterbob123

Previous by Date:	RE: Good Pentesting checklist, Hardwick, Stephen
Next by Date:	Re: Good Pentesting checklist, Barry Fawthrop
Previous by Thread:	Penetration Testing within the UK, lee
Next by Thread:	RE: Blue Team ROE, Dexter, Ben
Indexes:	[Date] [Thread] [Top] [All Lists]