I had a question and I was interested in your opinion on the matter. If I own domain and it was hosted on a third party server what are the rules about pentesting my sight for security? Am I legally or ethically obliged to aske their permission to do so? Do I have to ask them at all?