Search: Home Bugtraq Vulnerabilities Mailing Lists Jobs Tools Beta Programs
Time for a new certification
Don Parker, 2007-05-01

I wrote a column for Securityfocus some time ago that aired my concerns over GIAC dropping the practical portion of their certification process. That column resulted in a lot of feedback, with most agreeing about how GIAC bungled what was up till then, the best certification around.

Comments Mode:
Time for a new certification 2007-05-01
Steven Adair
Time for a new certification 2007-05-01
Wim Remes (2 replies)
Re: Time for a new certification 2007-05-09
Anonymous
Re: Time for a new certification 2007-05-20
Anonymous
Time for a new certification 2007-05-02
Omar Herrera
Time for a new certification 2007-05-02
Anonymous
Time for a new certification 2007-05-02
Fatman
Time for a new certification 2007-05-02
Anonymous
Time for a new certification 2007-05-02
Anonymous
Blocking port 53 TCP 2007-05-02
Richard Bejtlich (1 replies)
Don,

You said "It is only by understanding the theory that you truly understand something. An example of this is why it is good to deny inbound TCP Port 53 on your firewall. Regurgitating something that you heard on a course or in an IRC chat room isn?t good enough. You would only know why the above example is a good firewall policy by having a passing knowledge of the DNS protocol."

You know that if you block port 53 TCP traffic, you break DNS for large query responses? Port 53 TCP is used for large DNS replies, so arbitraily blocking port 53 TCP breaks DNS. It's better to disable zone transfers on name servers.

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/columns/443/34507#34507
Re: Blocking port 53 TCP 2007-05-02
Don Parker (1 replies)
Re: Re: Blocking port 53 TCP 2007-05-03
Anonymous (2 replies)
Re: Re: Re: Blocking port 53 TCP 2007-05-03
Don Parker
Re: Re: Re: Blocking port 53 TCP 2007-05-04
Anonymous (2 replies)
Re: Re: Re: Re: Blocking port 53 TCP 2007-05-20
Anonymous
Re: Re: Re: Re: Blocking port 53 TCP 2007-05-22
Raman (1 replies)
Blocking port 53 TCP vs CISSP 2007-05-24
G Bickers
Time for a new certification 2007-05-02
Ron Black
Time for a new certification 2007-05-02
Anonymous (1 replies)
Re: Time for a new certification 2007-05-07
Anonymous
Time for a new certification 2007-05-02
Rob Shein (1 replies)
Re: Time for a new certification 2007-05-02
Don Parker (1 replies)
Re: Re: Time for a new certification 2007-05-06
Rob Shein
Time for a new certification 2007-05-03
Anonymous (2 replies)
Re: Time for a new certification 2007-05-06
Don Parker
Re: Time for a new certification 2007-05-08
Anonymous
Bring it on! 2007-05-03
ichinin (2 replies)
Re: Bring it on! 2007-05-06
Anonymous (1 replies)
Re: Re: Bring it on! 2007-05-15
Anonymous
Re: Bring it on! 2007-05-07
Anonymous
Time for a new certification - the CISSP 2007-05-05
Anonymous
Time for a new certification 2007-05-08
Anonymous
Time for a new certification 2007-05-09
Anonymous
Time for a new certification 2007-05-10
Anonymous
Time for a new certification 2007-05-10
Allen
Time for a new certification 2007-05-11
Anonymous
The CEPT & CPTE 2007-05-16
Anonymous
Practical Exams? Check out OSSA & OSWA 2007-05-17
Anonymous
Time for a new certification - It is already existing from Orchidseven! 2007-05-19
Anonymous
Time for a new certification 2007-05-20
CISSP guy (1 replies)
Re: Time for a new certification 2007-05-25
DeMartian
Time for a new certification 2007-05-24
CISA, CISSP, GSEC, CEH, MCSE, CCNA, CCSA, SEC+ Guy







 

Privacy Statement
Copyright 2009, SecurityFocus