Re: TCP/IP skills
From: Nigel Stepp (stepp_at_atistar.net)
Date: 07/08/04
- Previous message: Chris Brenton: "Re: PWDUMP Parser"
- In reply to: Don Parker: "TCP/IP skills"
- Next in thread: Nelson Santos: "Re: TCP/IP skills"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 7 Jul 2004 23:00:35 -0400 (EDT) To: Don Parker <dparker@rigelksecurity.com>
On Tue, 6 Jul 2004, Don Parker wrote:
[ snip ]
> It constantly amazes me when I teach a TCP/IP Analysis course that
> people who are presently in the industy do not know of such basic
> TCP/IP concepts as the 3 way handshake and how ICMP works. That or
> being able to wholly dissect a packet and explain the relationships
> between various metrics.
I would have to agree. In IT and some software development I also see
it lacking, but in security it is essential. I hardly ever do any kind
of analysis without also looking at packet dumps, otherwise it's
diffucult to really get a feeling for the behaviour of the network (in
my opinion).
When I first started wearing my trusty SYN/ACK shirt around I was
horrified when I received so many questions from my collegues.
> Cheers,
>
> Don
>
> -------------------------------------------
> Don Parker, GCIA
> Intrusion Detection Specialist
> Rigel Kent Security & Advisory Services Inc
> www.rigelksecurity.com
> ph :613.233.HACK
> fax:613.233.1788
> toll: 1-877-777-H8CK
> --------------------------------------------
>
-- :wq
- Previous message: Chris Brenton: "Re: PWDUMP Parser"
- In reply to: Don Parker: "TCP/IP skills"
- Next in thread: Nelson Santos: "Re: TCP/IP skills"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
