- What does the application do? (name/description/function)
- How complex is it?
- How many different user types are there and a brief description of the differences?
- What are the biggest risks if compromise was achieved?
- What technology is the application and its infrastructure based on?
I have been asked to answer the following questions prior to a NCC penetration test on our web-facing systems, and I am not sure what answers I should give to the following:
Surely you can find some of this yourself? For example http://www.google.com.au/search?q=what+is+moodle. Normally people who do not appear to have tried to find answers themselves are less likely to get answers here, but I am feeling generous this morning.
- What does the application do? (name/description/function)
- How complex is it?
- How many different user types are there and a brief description of the differences?
- What are the biggest risks if compromise was achieved?
- What technology is the application and its infrastructure based on?
Tim,
Thanks very much for your response. I have indeed tried to find answers, but I didn't want to risk preconceiving any responses, being concerned that my opinions might be more subjective than useful. Anyway, I thought that the scope of the questions themselves might be interesting or useful to other moodlers. However, your answers are authoritative, completely objective and most helpful, thanks again.
Thanks very much for your response. I have indeed tried to find answers, but I didn't want to risk preconceiving any responses, being concerned that my opinions might be more subjective than useful. Anyway, I thought that the scope of the questions themselves might be interesting or useful to other moodlers. However, your answers are authoritative, completely objective and most helpful, thanks again.