On Fri, Mar 17, 2017 at 4:21 PM, Bill Campbell <b...@celestial.com> wrote:
> I've had PCI testers complain when they tried port scans on > systems we monitor, and their IPs were blocked almost > immediately. They couldn't understand active measures that > detect attacks and take actions to prevent damage. They actually > wanted me to remove the firewall so they could test. If the testing team is competent, it is reasonable to suspend an outer layer of controls in order to validate an inner layer. If you want a safecracker to test your safe, it's OK to let them past the guards and into the building first. :) Royce _______________________________________________ mailop mailing list mailop@mailop.org https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop
