TCP/IP skills

• Previous message: Ferruh Mavituna: "RE: hacking challenges"
• Next in thread: Nigel Stepp: "Re: TCP/IP skills"
• Reply: Nigel Stepp: "Re: TCP/IP skills"
• Reply: Nelson Santos: "Re: TCP/IP skills"
• Maybe reply: drbitbucket_at_comcast.net: "FW: TCP/IP skills"
• Reply: Jordan Cole (stilist): "Re: TCP/IP skills"
• Reply: Naveed: "RE: TCP/IP skills"
• Reply: Vlad: "Re: TCP/IP skills"
• Maybe reply: Allan: "Re: TCP/IP skills"
• Reply: Mark W. Webb: "Re: TCP/IP skills"
• Maybe reply: captgoodnight_at_acsalaska.net: "Re: TCP/IP skills"
• Maybe reply: Scott Schappert 6270, QA: "re: TCP/IP skills"
• Maybe reply: M. D.: "Re: TCP/IP skills"
• Maybe reply: Vaccare, Anthony: "RE: TCP/IP skills"
• Reply: Dave Dyer: "RE: TCP/IP skills"
• Maybe reply: Parish Zachary Z AB 381 IS/SCSS: "RE: TCP/IP skills"
• Reply: vulnerable: "Re: TCP/IP skills"
• Maybe reply: Eric McCarty: "RE: TCP/IP skills"
• Maybe reply: drbitbucket_at_comcast.net: "Re: TCP/IP skills"
• Maybe reply: Strand, John: "RE: TCP/IP skills"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Tue, 6 Jul 2004 21:20:46 -0400 (EDT)
To: pen-test@securityfocus.com, vuln-dev@securityfocus.com

Hello all, I just wanted to comment on what I see as a rather alarming trend in the
security industry today. More and more many are becoming reliant upon tools to do their
job whilst they ignore core components of their skillset. Specifically in this case an
in-depth knowledge of TCP/IP.

Knowing TCP/IP at a granular level in my opinion is very much a core skill that must be
attained by anyone who wishes to have a successful career in the network security
industry today. One cannot become adept by simply using tools, and never knowing how to
interpret the output by verifying the packets themselves.

It constantly amazes me when I teach a TCP/IP Analysis course that people who are
presently in the industy do not know of such basic TCP/IP concepts as the 3 way
handshake and how ICMP works. That or being able to wholly dissect a packet and explain
the relationships between various metrics.

I would be curious to hear of your opinions on this?

Cheers,

Don

-------------------------------------------
Don Parker, GCIA
Intrusion Detection Specialist
Rigel Kent Security & Advisory Services Inc
www.rigelksecurity.com
ph :613.233.HACK
fax:613.233.1788
toll: 1-877-777-H8CK
--------------------------------------------

• Previous message: Ferruh Mavituna: "RE: hacking challenges"
• Next in thread: Nigel Stepp: "Re: TCP/IP skills"
• Reply: Nigel Stepp: "Re: TCP/IP skills"
• Reply: Nelson Santos: "Re: TCP/IP skills"
• Maybe reply: drbitbucket_at_comcast.net: "FW: TCP/IP skills"
• Reply: Jordan Cole (stilist): "Re: TCP/IP skills"
• Reply: Naveed: "RE: TCP/IP skills"
• Reply: Vlad: "Re: TCP/IP skills"
• Maybe reply: Allan: "Re: TCP/IP skills"
• Reply: Mark W. Webb: "Re: TCP/IP skills"
• Maybe reply: captgoodnight_at_acsalaska.net: "Re: TCP/IP skills"
• Maybe reply: Scott Schappert 6270, QA: "re: TCP/IP skills"
• Maybe reply: M. D.: "Re: TCP/IP skills"
• Maybe reply: Vaccare, Anthony: "RE: TCP/IP skills"
• Reply: Dave Dyer: "RE: TCP/IP skills"
• Maybe reply: Parish Zachary Z AB 381 IS/SCSS: "RE: TCP/IP skills"
• Reply: vulnerable: "Re: TCP/IP skills"
• Maybe reply: Eric McCarty: "RE: TCP/IP skills"
• Maybe reply: drbitbucket_at_comcast.net: "Re: TCP/IP skills"
• Maybe reply: Strand, John: "RE: TCP/IP skills"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]