but one a side note, if windows is not your area of expertise, why are you the one doing a security assesment for it? I dont mean to be an *******, but that is just plain stupid. Get somone who knows what they are doing to do the security assesment, otherwise it is pretty pointless.
No, You're not being an ******* at all. It's a very valid point. Let me first say that I do know enough to be compotent in performing the assesment. When I say it's not my area of expertise, I mean just that. I work primarily with Linux and Unix, however I am not incompotent in the Windows arena.

Secondly, beings as I would want the client to have the best, this has already been discussed. His network is not entirely Windows mind you and the job was requested by the client. Thus, it was already discussed that I would recommend he have a second assesment done by someone else who's expertise IS windows, as someone who works primarily in that field may find something that I do not. He still wants me to do the assesment. It's a paid job, and I sure am not going to turn it down!

At some point in the future, I would certainly like to team up with another individual who's expertise is in Windows security. That way, I do not have to recommend someone else to do a second test. As well, it would relieve me of having to do that portion of the assesment, as i much prefer to work with Linux and Unix. However, at the moment, I do not have such an individual available. But, since many jobs are networks comprised of both *nix and Windows, it would absolutely be an asset to me to have such a person working with me.

Bottom line though, is if a client is aware of this and understands my recommendation for a second test to be performed by someone whos expertise is in the Windows field, and he still wants to pay me, I definately will not turn the job down!