tag:blogger.com,1999:blog-4088979.post114981633933529764..comments2023-10-16T06:06:25.012-04:00Comments on TaoSecurity Blog: Answering Penetration Testing QuestionsRichard Bejtlichhttp://www.blogger.com/profile/13512184196416665417noreply@blogger.comBlogger1125tag:blogger.com,1999:blog-4088979.post-1149862590676659552006-06-09T10:16:00.000-04:002006-06-09T10:16:00.000-04:00Even before considering a pen test, decide what yo...Even before considering a pen test, decide what you are going to do with the report. If your organization is not interested in addressing (funding) the issues found as a result of the pen test, don't bother with a pen test. <BR/><BR/>I have seen too many exit meeting pen test reviews where IT management says 'thank you' and tosses the report unwilling to fund closing even some of the holes.<BR/><BR/>-RussellAnonymousnoreply@blogger.com