On Fri, Nov 04, 2005 at 01:19:36AM +0100, Javier Fernández-Sanguino Peña wrote: > But also somewhat wrong: a black-box test is much cheaper than a full > security audit of a system. Well, I guess you mean "port scan". A Tiger Team who helps your security is most often quite expensive cause it takes a lot of attacks - including on-site social engeneering. To run nessus you do not need to spend any money, thats right. Gruss Bernd