Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Pen-Test
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Sneaking a peek on Wlan in airports

from [R. DuFresne] Network Security [Permanent Link]
Subject: RE: Sneaking a peek on Wlan in airports
Date: Tue, 29 May 2007 12:05:20 -0400 (EDT) 
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Thu, 17 May 2007, Erin Carroll wrote:

All,

Tremaine has a point I'd like to tangent from. There are many posts that
come across the list that can be interpreted as actions or events which are
questionable given the scenario. Unless explicitly stated by someone or
obviously illegal, please try to assume that the question or situation is of
a benign nature. We could argue about intentions or likelihood until we're
blue in the face but it generally devolves to flaming or not-so-nice
inferences that I do not want on this list.

Yes, there are script kiddies and unethical behavior in our profession...
But let's focus on the issue at hand and not the motive: You encounter
leaking sensitive data that was not in scope of a job or part of your duties
etc. What should you do?



If it's not within the scope of your job, you should have the "danger Will Robinson" voice in your head alert you to walk away, and walk away fast to avoind breaking laws written and implied that might well end you career, might end up your being branded a terrorist, or worse.

Now, you might make note of this, and use this clue to desing an experiment on resources you own and have rights to play with, with a future project of writing a paper on an issue not documented if this is what one has "discovered". But certainly not this day in age act upon it.

Thanks,

Ron DuFresne

p.s. I do not agree with erin here, one should always in these lists question motive, it plays an important role, and guides the response.
- -- ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
admin & senior security consultant: sysinfo.com
http://sysinfo.com
Key fingerprint = 9401 4B13 B918 164C 647A E838 B2DF AFCC 94B0 6629

...We waste time looking for the perfect lover
instead of creating the perfect love.

                -Tom Robbins <Still Life With Woodpecker>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)

iD8DBQFGXE9Est+vzJSwZikRAnVQAKCpnWg/Z8LihpBP96y+t847FUSlRwCeN9+S
WOXRYDcNJ5F32zswa4IGM0s=
=I4Wl
-----END PGP SIGNATURE-----

------------------------------------------------------------------------
This List Sponsored by: Cenzic

Are you using SPI, Watchfire or WhiteHat?
Consider getting clear vision with Cenzic
See HOW Now with our 20/20 program!

http://www.cenzic.com/c/2020
------------------------------------------------------------------------

[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Re: Re: Legality of WEP Cracking, cwright
Next by Date:  Re: front page extansions, Nikhil Wagholikar
Previous by Thread:  Re: Sneaking a peek on Wlan in airports, Ryan Meyer
Next by Thread:  Re: Sneaking a peek on Wlan in airports, Predrag PetroviÄ
Indexes:  [Date] [Thread] [Top] [All Lists]