Recentemente ho condotto un test di penetrazione in cui ho usato il seguente testo come autorizzazione:
Penetration testing authorization
During a penetration testing is possible that:
- The performance of servers and networks is decreased.
- Lost of availability of some services.
- Access to confidential data.
- Modification of web site.
- Physical access to private zones.
- Employees suffer social engineering attacks.
I acknowledge these risks and authorize yzT to perform a penetration testing in my company.
John Doe, CEO of Some Random Company Inc.
(Signature and date)
È giusto? O dovrei aggiungere un'altra informazione in lavori futuri?