Re: FW: EC-Council Network Security Administrator Course attains the NSA / CNSS 4011 Certification

[Baki Gábor <baki.gabor () infobia hu>]

> p1g,
>
> I'm not just talking about the very old content, however it's also a 
> quite big mistake.
> I'd rather mention the very very serious errors of the topic...
> - The server won't ever use the client's private key, 'cause it's a 
> private key. A private key is everytimes used just by it's owner. 
> That's why it's called private.
> - IPSec IS able to encrypt the network traffic!  If  EC Council thinks 
> that it's not true, they should attend for a course. Of course they 
> won't find a Windows 2000 course nowadays... They shouldn't even teach 
> it. As well as bicycles aren't made from wood any more.
> - Microsoft's EFS works well for file encryption based on PKI. And it 
> works not only the encryption (as it is written in the book) but the 
> decryption as well. Of course the system administrators should know 
> what's going on in the background, how to handle the recovery agents 
> and so on. It's also a topic of a course EC Council guys should attend 
> for.
> After finding these 3 examples next to each other, within about 6 
> pages I decided not to use this book for the course.
> I may have made a mistake but I'm sure, that holding a course 
> shouldn't be just running through the possible questions of the exam...
>
> Kidnd reagrds,
> Gabor Baki
> CISA, CISM, MCSE, MCT, whatever
>
> p1g írta:
> > Baki,  I agree.
> >
> > Leonard,
> >
> > More is not better, so remove the older garbage from the courseware
> > for CEH and CHFI.
> > Sometimes I think you guys are shooting for the biggest 3 ring binder award.
> >
> > No insult intended.
> >
> > On 3/11/08, Baki Gábor <baki.gabor () infobia hu> wrote:
> >   
> > > Dear leonard,
> > >
> > > I suggest you to have your books reviewed and renewed as early as you can.
> > > I've opened EC Council's book for a NSA training and I've found the
> > > followings:
> > > - IPSec can't encrypt the network traffic, because the Windows 2000 (!)
> > > server is not able to do that,
> > > - You should rather not use EFS, because EFS will face trouble at decrypting
> > > etc..
> > > - At Kerberos authentication (if I remember well) the server uses the
> > > client's private key for some check or whatever.
> > >
> > > After these few sentences I closed the book and I've held the security
> > > training from other sources.
> > > I've just made the students correct these errors in their books.
> > >
> > > It is not to mention the very poor quality of the printouts of the slides..
> > >
> > > Kind regards,
> > > Gabor Baki
> > > CISA, CISM, MCSE, MCT, etc.
> > >
> > > -----Original Message-----
> > > From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On
> > > Behalf Of leonard () eccouncil org
> > > Sent: Thursday, March 06, 2008 6:18 PM
> > > To: security-basics () securityfocus com
> > > Subject: EC-Council Network Security Administrator Course attains the NSA /
> > > CNSS 4011 Certification
> > >
> > > The Committee on National Security Systems (CNSS) / National Security Agency
> > > ( NSA) of the United States of America certified EC-Council Network Security
> > > Administrator Certification as 100% mapped to the CNSS National Standards
> > > 4011.
> > >
> > > This certification is made by the Information Assurance Courseware
> > > Evaluation (IACE) Program, National INFOSEC (Information Security) Education
> > > and Training Program and is administered by the U.S. National Security
> > > Agency (NSA).The Committee on National Security Systems (CNSS) and National
> > > Security Agency (NSA) have developed a nationally recognized certification
> > > program based on NSTISSI standards. The CNSS / NSA Certification is a
> > > government class certification that is the National Training Standard for
> > > Information Security Professionals
> > >
> > > For more information -> http://www.eccouncil.org/newsletter/CNSS.swf
> > >
> > >
> > >
> > >     
> >
> >
> >