| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
From: kspett at spidynamics.com (Kevin Spett) Subject: Security Certifications No way... if they were Certified Idiots they'd be easier to identify. Kevin. ----- Original Message ----- From: "rrm" <rrm@...ick.net> To: "'Leo Security'" <security@...tmail.fm>; "'Rizwan Ali Khan'" <rizwanalikhan74@...oo.com>; <full-disclosure@...ts.netsys.com>; <security-basics@...urityfocus.com> Cc: <certification@...urityfocus.com> Sent: Saturday, March 08, 2003 7:45 PM Subject: RE: [Full-Disclosure] Security Certifications > We could really do with less certified idiots. > > -----Original Message----- > From: full-disclosure-admin@...ts.netsys.com > [mailto:full-disclosure-admin@...ts.netsys.com] On Behalf Of Leo Security > Sent: Saturday, March 08, 2003 7:19 PM > To: Rizwan Ali Khan; full-disclosure@...ts.netsys.com; > security-basics@...urityfocus.com > Cc: certification@...urityfocus.com > Subject: Re: [Full-Disclosure] Security Certifications > > I have checked the content and syllabi of most of the subjects offered > for these certs and was disappointed. They are a waste of time. My > advice will be to use your time for the deep study of operating systems. > That would make you a better security analyst. Most employers have had > it with certs and do not give much importance to it any more. > Certifications were hot untill 2000. There value is going downhill since > then. > > I would only go for certs if my employer requires it and pays me for it. > I will never like to spend my own money on certs. > > Thats my opinion. > > regards > Leo > > hellNbak wrote: > > Be sure when filling out the questionaire from ISC2 that you lie if you > > have been a part of any "hacking" groups or have used a nym. Honesty *IS > > NOT* the best policy in this case. > > > > I have a friend in Tokyo who took the lead auditor course and passed the > > test, he said it was horrible and not worth the time or money > > > > On Fri, 7 Mar 2003, Ron DuFresne wrote: > > > > > >>Date: Fri, 7 Mar 2003 09:08:21 -0600 (CST) > >>From: Ron DuFresne <dufresne@...ternet.com> > >>To: Rizwan Ali Khan <rizwanalikhan74@...oo.com> > >>Cc: full-disclosure@...ts.netsys.com, security-basics@...urityfocus.com, > >> certification@...urityfocus.com > >>Subject: Re: [Full-Disclosure] Security Certifications > >> > >> > >> > >>Your quickest bet here is to do a google search on cisa and then on cissp. > >>You'll gt pointers to the governing bodies and such, pointers to lists of > >>pretesting help, local affiliations as well as testing sites in the near > >>future and much more in the first 10-20 links google returns. > >> > >>Thanks, > >> > >>Ron DuFresne > >> > >>On Thu, 6 Mar 2003, Rizwan Ali Khan wrote: > >> > >> > >>>I have heard of CISA and CISSP as Security > >>>Certifications, but could someone shed some light and > >>>give information about the governing bodies of the > >>>following Certifications, and where to get their > >>>suggested training material/ books etc. > >>> > >>>And if it is possible to give their exams from > >>>Pakistan? > >>> > >>> > >>>BS7799/ISO7799 lead auditor > >>>Prince 2 > >>>SSCP > >>>CISM > >>>CISMP > >>>TCSEC > >>>SCP > >>> > >>> > >>> > >>> > >>> > >>>__________________________________________________ > >>>Do you Yahoo!? > >>>Yahoo! Tax Center - forms, calculators, tips, more > >>>http://taxes.yahoo.com/ > >>>_______________________________________________ > >>>Full-Disclosure - We believe in it. > >>>Charter: http://lists.netsys.com/full-disclosure-charter.html > >>> > >> > >>~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ > >>"Cutting the space budget really restores my faith in humanity. It > >>eliminates dreams, goals, and ideals and lets us get straight to the > >>business of hate, debauchery, and self-annihilation." -- Johnny Hart > >> ***testing, only testing, and damn good at it too!*** > >> > >>OK, so you're a Ph.D. Just don't touch anything. > >> > >>_______________________________________________ > >>Full-Disclosure - We believe in it. > >>Charter: http://lists.netsys.com/full-disclosure-charter.html > >> > > > > > > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.netsys.com/full-disclosure-charter.html > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.netsys.com/full-disclosure-charter.html >
Powered by blists - more mailing lists