I have an interest in a group of firewall breakers to test security
before a break in.
A couple of issues leap to mind:
How would we determine the integrity of the people in the group?
How do we get around the legal issues, after all, breaking in
is illegal even if the purpose is for the good of the site. A verbal
contract is not likely to hold up in court, and management may not
honor contracts made by administrators.
Before I sign off, I would like to explain my interest.
I have suffered greatly in the past because of break ins
at two different sites. Security is a major drag on productivity
and twice as bad when security fails to prevent break ins. I
am determined to learn enough about hacking by breaking my system
to prevent any break ins in the future. However I prefer a
black box testing paradigm. I believe a group of like minded
administrators would be beneficial to the entire community.