From: Bojan Zdrnja (Bojan.Zdrnja@LSS.hr)
Date: Mon Jul 21 2003 - 19:12:57 EDT
> -----Original Message-----
> From: Alvin Oga [mailto:alvin.sec@Mail.Linux-Consulting.com]
> Sent: Sunday, 20 July 2003 5:59 p.m.
> To: Paul Vet
> Cc: MARTIN M. Bénoni; pen-test@securityfocus.com
> Subject: RE: Know such a web's server tool? -- huh
>
> okay.... i'll bite ... why does everybody/somebody think that "pen-test"
> means to run a port scan w/ nmap/nessus .. etc ..
Exactly this is the reason why penetration testing isn't only running of
nmap/nessus/iss/whatever, but more important - interpretation of results and
additional steps taken.
Everyone can run tools, but only people who understand things can interpret
their results and find additional possible or existing security problems.
Regards,
Bojan Zdrnja
---------------------------------------------------------------------------
----------------------------------------------------------------------------
This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:53:37 EDT