|
|
| Applications |
| Mailing Lists |
| Miscellaneous |
| Operating Systems |
| Programming |
Re: More Firewall Questions
From: Muhammad Faisal Rauf Danka <mfrd(at)attitudex.com>
Date: Thu May 29 2003 - 15:09:28 EDT
Muhammad Faisal Rauf Danka
[ATTITUDEX.COM]
http://www.attitudex.com/
Select your own custom email address for FREE! Get you(at)yourchoice.com w/No Ads, 6MB, POP & more! http://www.everyone.net/selectmail?campaign=tag
Received on Fri May 30 13:22:21 2003
Date: Thu May 29 2003 - 15:09:28 EDT
As you mentioned yourself the objective is "OS Assessment" to achieve Re-Certification of Security Compliance, therefore the Firewall must be turned offline, inorder to avoid risk of a weakness not being detected.
Whether scripts are to run "on" the OS or "at" the OS externally, "OS Assessment" would be achieved if it is only "OS" being tested against scripts/checks.
However later on, during penetration test, the Firewall must be turned on, since that is how it is suppose to be in the "real world".
Regards
Muhammad Faisal Rauf Danka
[ATTITUDEX.COM]
http://www.attitudex.com/
Select your own custom email address for FREE! Get you(at)yourchoice.com w/No Ads, 6MB, POP & more! http://www.everyone.net/selectmail?campaign=tag
Received on Fri May 30 13:22:21 2003
This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 14:04:36 EDT
|
Contact Us Legal Notices Order Services Online Pantek Home Privacy Policy IT news Site Map Pantek Library |