Penetration Testing mailing list archives

Previous By Date Next
Previous By Thread Next

Re: TCP/IP skills

From: Allan <larsmith () tds net>
Date: Thu, 8 Jul 2004 7:04:52 -0400
Having a goal of in-depth knowledge of TCP/IP is a "mixed bag", to a degree.

Weighing it against ... or even with ... all the other facets of IPSec, one is hard-pressed to find the time to become 
really "knowledgeable" ... thoroughly knowledgeable, in TCP/IP.

I've been studying / investigating security issues for a LONG time and am "a bit overwelmed" with all that one must 
know to be "good" in this field ... or even "responsible" in this field.

I learned early how IMPORTANT it is to understand TCP/IP ... and found out early how little I actually knew ... and was 
obliged to learn "on-the-fly", since I was respolsible for incident analysis of an attack ( which almost begs a 
discussion of the pros / cons of honeypots ... )

I agree with any who recognize the importance of really KNOWING TCP/IP ... but also wonder how many of us really have 
the time to even hope to approach being "experts" with it, considering our multiple other responsibilities.

I suppose in a perfect IPSec environment, each person could focus their energies on their speciality and, in a perfect 
team environment, one might have the time to dedicate their time / energies to specializing in TCP/IP ...

But in my world ...

Allan Smith, NCAA, NDAA
Previous By Date Next
Previous By Thread Next

Current thread: