Re: Certifications: Not worth the paper they are printed on?

["Jay D. Dyson" <jdyson () treachery net>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Mon, 6 Oct 2008, brendan wrote:

> > First off, let's see the URL.
>
> at a guess, 
> http://certcities.com/editorial/columns/story.asp?EditorialsID=176&page=9

Thanks for the URL.  After reading that piece, I'm left with the distinct 
impression that the author clearly has some fundamental things 
bass-ackwards.  This impression is borne out in the author's statement 
that he was expecting the exam to "broaden [his] security knowledge."

Pardon me, but Whiskey Tango Foxtrot?  Taking an exam does not broaden 
anyone's knowledge unless one counts quantifying their own ignorance as 
"broadening knowledge."  If anything, he's got the cart before the horse. 
Even a freshman knows enough to broaden their knowledge *before* an exam 
by (gasp) _studying_ prior to the exam.

In addition to the above, I have to admit some astonishment at the 
author's admission that he didn't need the certification.  What's up with 
that?  Does the author think that certifications are the 21st century's 
version of Beanie Babies or something?  If you don't need something and 
you fail at getting it, where's the beef?

The more I read about this, the more it stinks of sour grapes.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (TreacherOS)
Comment: See http://www.treachery.net/~jdyson/ for current keys.

iD8DBQFI6Yl2Iu2Fkdy0GOwRAhUuAJ9V4Yvqtx2GOPoVD480YWOuXnK8rwCgvQ5z
nozS83Kbo55Sr0dHvXgLq5Q=
=F5lm
-----END PGP SIGNATURE-----

------------------------------------------------------------------------
This list is sponsored by: Cenzic

Top 5 Common Mistakes in 
Securing Web Applications
Get 45 Min Video and PPT Slides

www.cenzic.com/landing/securityfocus/hackinar
------------------------------------------------------------------------