Richard,
How does the tool work? If it's one of those that probes the site from
outside, just let them run it. If it's supposed to run on the system
with the web server, let them try to run it. Whose fault is it that it
won't execute? Not yours. You could even offer to send your files to a
system where the tool will run, so they can be scanned. The results
will be meaningless, but you will have satisfied the edict.
Dennis
"The popularity and effectiveness of modern anti-depressants is one of
the great challenges of contemporary dramaturgy. We no more want Willy
Loman to solve his problems with Prozac than we want Stanley and Stella
Kowalski to get air-conditioning." -- Playwriting 101
-----Original Message-----
From: The IBM z/VM Operating System [mailto:[EMAIL PROTECTED] On
Behalf Of Schuh, Richard
Sent: Monday, February 04, 2008 12:34
To: IBMVM@LISTSERV.UARK.EDU
Subject: Re: [IBMVM] Security Scans
It is not that I want to test the site, it is that a committee has
specified that the same tool be used for all platforms. This was
chiseled in granite before anyone associated with a mainframe even heard
that it was being considered. Now that the edict has been made, rules is
rules.
Don't confuse the domain name of my e-mail with either that of the VM
system or the real production network. They are quite different from
each other. The VM system really is not that interesting of a target for
several reasons which I will not go into here. It might be tempting, but
would be fruitless.
Regards,
Richard Schuh
> -----Original Message-----
> From: The IBM z/VM Operating System
> [mailto:[EMAIL PROTECTED] On Behalf Of Mark Boltz
> Sent: Monday, February 04, 2008 9:14 AM
> To: IBMVM@LISTSERV.UARK.EDU
> Subject: Re: Security Scans
>
>
> Of course, that also depends on how tempting the target is.
> Given the domain name of your e-mail, I would guess the
> target is very tempting indeed...
>
