[96936] in North American Network Operators' Group
Re: Advice requested
daemon@ATHENA.MIT.EDU (Valdis.Kletnieks@vt.edu)
Tue May 29 15:57:54 2007
To: Matthew Black <black@csulb.edu>
Cc: nanog@nanog.org
In-Reply-To: Your message of "Tue, 29 May 2007 08:21:47 PDT."
<web-13441896@remus.csulb.edu>
From: Valdis.Kletnieks@vt.edu
Date: Tue, 29 May 2007 13:51:48 -0400
Errors-To: owner-nanog@merit.edu
--==_Exmh_1180461108_5909P
Content-Type: text/plain; charset=us-ascii
On Tue, 29 May 2007 08:21:47 PDT, Matthew Black said:
> What would you do if a major US computer security firm
> attempted to hack your site's servers and networks?
> Would you tell the company or let their experts figure
> it out?
Step 0: Define "attempted to hack"?
Step 1: Ask whoever acts as your CTO/CIO if you contracted for a pen test
from the company.
Step 2: If you're not a customer of the security company, contact the company,
and explain the concept of "negative advertising" to them.
--==_Exmh_1180461108_5909P
Content-Type: application/pgp-signature
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (GNU/Linux)
Comment: Exmh version 2.5 07/13/2001
iD8DBQFGXGg0cC3lWbTT17ARAjz9AJ0YDi9EUf+oSPXl6r3wmXOJ2mj3ewCgtpfv
hQmbKeOHXX/GaEMDbsZi944=
=6gTS
-----END PGP SIGNATURE-----
--==_Exmh_1180461108_5909P--
