RE: OSCP

["Leach, Paul" <Paul.Leach () pioneerinvestments com>]

Since the MCSE first came on the scene back in the 90's there will
always be people who are merely paper certified.

The same is true for the CISSP. Not all people who hold this
certification will be any more than paper professionals, but it must
also be remembered

that there are also people that hold the CISSP who will be very
technically competent.  

-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com]
On Behalf Of Craig Wilson
Sent: 17 December 2008 06:45
To: 'infosigmer () inbox com'; 'christopher.riley () r-it at'
Cc: 'andreg () gmail com'; 'arivas () hyphensolutions com';
'listbounce () securityfocus com'; 'pen-test () securityfocus com';
'pen-test-return-1078487582 () securityfocus com'
Subject: Re: OSCP

Of course it is just paper, no different from OSCP.  In any profession
there will those who are not wholly competent.


----- Original Message -----
From: listbounce () securityfocus com <listbounce () securityfocus com>
To: christopher.riley () r-it at <christopher.riley () r-it at>
Cc: andreg () gmail com <andreg () gmail com>; arivas () hyphensolutions com
<arivas () hyphensolutions com>; listbounce () securityfocus com
<listbounce () securityfocus com>; pen-test () securityfocus com
<pen-test () securityfocus com>;
pen-test-return-1078487582 () securityfocus com
<pen-test-return-1078487582 () securityfocus com>
Sent: Tue Dec 16 20:47:23 2008
Subject: Re: OSCP

I have seen this same problem so often it just eats me. I know a company
that had a test done by Earnest and Young in Nairobi, and the only
vulnerability that was found is the zone file transfer, and the guys are
CISSP certified, so whenever we meet with my fellow group of pentester
we laugh at it, saying,"u are vulnerable to dig!" Secondly u will see
employers, like a company called Safaricom employing CISSP, and the
other day i watched one of them trying to figure out how a SQLi really
works.

I think CISSP is just a paper. But business is always business.

------------------------------------------------------------------------
This list is sponsored by: Cenzic

Security Trends Report from Cenzic
Stay Ahead of the Hacker Curve!
Get the latest Q2 2008 Trends Report now

www.cenzic.com/landing/trends-report
------------------------------------------------------------------------




"The information in this e-mail and in any attachments is confidential and intended solely 
for the attention and use of the named addressee(s). This information may be subject to legal, 
professional or other privilege and further distribution of it is strictly prohibited without 
our authority. If you are not the intended recipient, you are not authorised to and must not 
disclose, copy, distribute, or retain this message or any part of it, and should notify us 
immediately.

This footnote also confirms that this email has been automatically scanned for the presence 
of computer viruses, profanities and certain file types."

Pioneer Investment Management Limited.

1 George’s Quay Plaza, George’s Quay, Dublin 2, Ireland. 

Registered in Ireland no. 287793.

------------------------------------------------------------------------
This list is sponsored by: Cenzic

Security Trends Report from Cenzic
Stay Ahead of the Hacker Curve!
Get the latest Q2 2008 Trends Report now

www.cenzic.com/landing/trends-report
------------------------------------------------------------------------