Results 1 to 9 of 9
  1. #1
    Join Date
    Sep 2007

  2. #2
    Join Date
    Jul 2007
    Do you want to setup a linux box for penetration test or you want to do a penetration test for a linux box?
    Prashant T.

    Don't run after Success. Run after Excellence and Success will soon follow.

  3. #3
    Join Date
    Sep 2007

  4. #4
    Join Date
    Sep 2007

  5. #5
    Join Date
    May 2009
    On a Speck!!!!!
    CENTOS 5.3 will be a better choice for this purpose.

  6. #6
    Join Date
    Apr 2009
    Islamabad , pakistan
    Definitely centos will be a better choice for it. You can get some details on penetration testing here.
    Aun Muhammad Raza
    Linux System Administrator
    Personal Web:

  7. #7
    Quote Originally Posted by nomankhn View Post
    Hi folks,

    I hope all are fine and doing good, can somebody provide detail guide line how to test Penetration testing on linux servers and what security measures are required in against of that.
    Before reading suggestions like using NMAP as others have suggested to perform a penetration test, I would recommend gaining a true understanding of a penetration test truly is and what it is used for. Are you trying to perform the test solely to ensure a server is "secure" or to meet some regulatory requirement such as PCI, HIPAA, SOX, etc and are you testing application or network layer.

    Here is a good wiki article discussing penetration testing. Keep in mind, true penetration testing is more than running a few scans on a server or network. Many good penetration tests are performed manually by "ethical" hackers in addition to automated scanning and social engineering.
    ZZ Servers - Business Hosting, HIPAA and PCI Compliant Hosting Solutions -
    Xen Virtual Private Servers | Dedicated Servers | Shared Hosting
    Custom configurations, firewall, VPN, load balancers, private networks and more.

  8. #8
    Join Date
    Sep 2007

  9. #9
    Join Date
    Mar 2008
    Penetration testing is "one of those things"... snake oil - the majority of white-hat hackers don't actually know enough to be selling what they claim to be, I definitely don't consider myself competent enough to offer penetration testing services.

    In the best case scenario, say you set up a pen-test that costs $5000. All it says is that for $5000 worth of effort, Hacker X wasn't able to find a way in. Obviously who Hacker X is plays a giant part in how much that means, and therein lies the problem - there's absolutely no way to quantify what it means.

    If you're wanting to do it yourself, you'll have a long way to go. Same thing again, but this time Hacker X would be yourself - so you couldn't break into your own website, but what does that really tell you? Practically nothing.

    Honestly your best bet is to ensure all your patches are up to date, then run something like Nessus over your network and call it a day - you'll get the same basic level of reassurance and save a boatload of money. A good Pen-test will find the obvious stuff, but so would Nessus and a competent security minded sysadmin... if you must spend money, spend it on someone like AdminGeekz or Rack911 instead.

    All hackers are different and have different approaches - just because you paid one white hat and he couldn't do it doesn't mean some 15 year old Romanian kid with nothing better to do won't pop it open in 30 seconds flat.

    Pen-testing is basically the wet dream of hackers who don't have the gall (or the finances) to stay black hat, and/or the guys who never were black hat and want so desperately to have been a part of it.
    I used to run the oldest commercial Mumble host.

Similar Threads

  1. Shell Penetration ( HELP!!! )
    By webhostbeginner in forum Hosting Security and Technology
    Replies: 9
    Last Post: 03-21-2007, 08:36 AM
  2. Flash penetration? Am I going to alienate...
    By james26 in forum Web Design and Content
    Replies: 3
    Last Post: 03-04-2005, 10:55 AM
  3. - - - Double Penetration - - -
    By AussieHosts in forum Shared Hosting Offers
    Replies: 2
    Last Post: 06-02-2004, 01:15 PM
  4. Double Penetration
    By AussieHosts in forum Shared Hosting Offers
    Replies: 4
    Last Post: 08-19-2002, 02:19 AM
  5. Wanted: Hackers for Linux Box Penetration Test - Top $$$
    By topwiz in forum Employment / Job Offers
    Replies: 33
    Last Post: 06-02-2002, 05:20 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts