[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Full-disclosure] Geeks
- To: Valdis.Kletnieks@xxxxxx
- Subject: Re: [Full-disclosure] Geeks
- From: "Fredrick Diggle" <fdiggle@xxxxxxxxx>
- Date: Sat, 17 May 2008 02:39:44 +1000
thank you for the qualified opinion valdis. everyone cares very much.
can't you see how much we are all caring. also I saw a deal on
mustache wax the other day, email fredrick off list for linkage.
On Fri, May 16, 2008 at 5:10 AM, <Valdis.Kletnieks@xxxxxx> wrote:
> On Thu, 15 May 2008 09:11:37 PDT, Morning Wood said:
>> >> Anybody who thinks a CISSP is a "license to hack" is dreadfully ignorant
>> >> of what little overlap there is between hacking skills and the material
>> >> covered in the CISSP.
>>
>> CISSP's cant hack
>
> Right, because the CISSP isn't about hacking. It's about risk management.
> It's about balancing the cost of adding more security to a system against
> the costs of an intrusion. It's about the costs of testing a disaster
> recovery plan, and the costs of not having a plan. It's about what sort
> of backup schedule you should have, and what the retention period on the
> backups should be, and why. It's about knowing how deep a background check
> you should make on prospective employees. It's about how much security
> awareness training the users need.
>
> Hacking is a *very small* part of the security world.
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/