Neil D. Quiogue wrote:
>
> On Thu, 3 Jul 1997 hartmut .
fehling @
hamburg .
netsurf .
de wrote:
>
> > In order to make a really tough test before I actually connect the gateway
> > to our network, I could ask some people I know in the Underground to spread
> > the IP-Address, maybe the HW/SW-Configuration and perhaps even the
> > FW-1-Settings and invite the guys to try it out and break in (into the
> > empty network behind it).
> >
> > Question: Is this a wise thing to do / Has anybody "invited" Hackers in
> > such a fashion?
>
> Check the legalities of this 'breaking' session. There are companies
> which have security policies that does not allow this. And I think it is
> bad practice to do this since the information would cascade throughout the
> underground community.
>
> Why not try to do this yourself? In security parlance, do not trust
> anyone.
As I understand it, there are professional consultants who do this kind
of work.
I would NOT go to the "underground" as you say, as that is an open
invitation for people to attack you ad-infinitum, and if any are
successful, and don't tell you they were, when the system goes into
"real network" mode, you'll be wide-open.
--
Jim Harmon The Telephone Connection
jim @
telecnnct .
com Rockville, Maryland
References:
|
|
