|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: Penetration testing via shrinkware
tqbf (ashland
pobox.com)
Fri, 18 Sep 1998 16:24:10 -0400 (EDT)
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
- Next message: Dave O'Shea: "Re: AOL on port 5190"
- Previous message: James Croall: "Re: AOL on port 5190"
- Next in thread: Bill_Roydspch.gc.ca: "Re: Penetration testing via shrinkware"
> it could reasonably be expected to check for is infinite. Scanners can never be
> complete, because the space of possible mis-configurations and buggy software
> knows no bounds.
You have a misconception about what a scanner is. The purpose of a scanner
is no more to discover all possible misconfigurations and vulnerabilities
than the purpose of a firewall is to stop all possible attacks.
-----------------------------------------------------------------------------
Thomas H. Ptacek Network Security Research Team, NAI
-----------------------------------------------------------------------------
"If you're so special, why aren't you dead?"
- Next message: Dave O'Shea: "Re: AOL on port 5190"
- Previous message: James Croall: "Re: AOL on port 5190"
- Next in thread: Bill_Roydspch.gc.ca: "Re: Penetration testing via shrinkware"
This archive was generated by hypermail 2.0b3 on Sat Jul 17 1999 - 07:11:47 CDT