× The internal search function is temporarily non-functional. The current search engine is no longer viable and we are researching alternatives.
As a stop gap measure, we are using Google's custom search engine service.
If you know of an easy to use, open source, search engine ... please contact support@midrange.com.


  1.  Home
  2. MIDRANGE-L
  3. February 2023

Re: Does anybody here have any experience with penetration testing services?

Most criteria is ranked. And many allow you to append an explanation. Reply is brief because the game I'm at is goodSent from my Verizon, Samsung Galaxy smartphone
-------- Original message --------From: Brad Stone <bvstone@xxxxxxxxx> Date: 2/10/23 6:09 PM (GMT-05:00) To: Midrange Systems Technical Discussion <midrange-l@xxxxxxxxxxxxxxxxxx> Subject: Re: Does anybody here have any experience with penetration testing services? I have a customer who works with one.  They were told they HAD to because a3rd party company who handles all their CC functions has a link to theirweb page.  They do not ever transfer any sensitive info between the sites.But, they were convinced (not the IT guy or me) that they must be compliantas well.Now, I've seen the reports and they are crazy weird.  They will look forANYTHING to ping you with a fee for being "non-compliant".  Wrong HTTPheaders (which mean literally nothing to an attacker), a port open but notresponding... even ports that should be open (like 443) and if you haveanything in place to stop DoS, etc attacks which even stops their abilityto probe, you will get pinged.Just be forewarned.  :)  Ask for a free trial for a month with unlimitedtests so you can meet their "criteria"... because they all seem to bedifferent, and they change daily.On Fri, Feb 10, 2023 at 4:31 PM James H. H. Lampert via MIDRANGE-L <midrange-l@xxxxxxxxxxxxxxxxxx> wrote:> The subject line pretty much says it all: I've been asked to look into> penetration testing services, and in particular to assess their> robustness, trustworthiness, and cost-effectiveness. And I haven't a> clue where to find out about their trustworthiness and robustness.>> --> JHHL> --> This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing list> To post a message email: MIDRANGE-L@xxxxxxxxxxxxxxxxxx> To subscribe, unsubscribe, or change list options,> visit: https://lists.midrange.com/mailman/listinfo/midrange-l> or email: MIDRANGE-L-request@xxxxxxxxxxxxxxxxxx> Before posting, please take a moment to review the archives> at https://archive.midrange.com/midrange-l.>> Please contact support@xxxxxxxxxxxxxxxxxxxx for any subscription related> questions.>>-- This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing listTo post a message email: MIDRANGE-L@lists.midrange.comTo subscribe, unsubscribe, or change list options,visit: https://lists.midrange.com/mailman/listinfo/midrange-lor email: MIDRANGE-L-request@lists.midrange.comBefore posting, please take a moment to review the archivesat https://archive.midrange.com/midrange-l.Please contact support@xxxxxxxxxxxxxxxxxxxx for any subscription related questions.

As an Amazon Associate we earn from qualifying purchases.

This thread ...
Replies:
Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.