Nice link, think I'll be spending a bit of time studying that. Can't explain why as I've never had enough time to investigate to deeply but botnets and associated 'naughtiness' has always peeked my interest.

Don/Chris,

thanks for the replies. As I said I'm yet to sit any security related cert, but I had been put off of the C|EH by a number of people/posts/forums complaining about this requirement with the C|EH. If, as you say, most of this relates to basic, every day tool usage I'll worry less about this aspect of the cert and give it some extra consideration.

Thanks again.

tntcoda,

welcome to EH-net,

This topic strikes close to home so I thought I'd provide you with my experience as it seems I'm running roughly 1 year ahead of you.

I graduated from a UK uni with a 1st class honours in computing. Like you I've always had an interest in security. Nearly been working in my current place for three years (one year placement, one year whilst completing final year and one year after graduating). Don's advice rings true, keep doing whatever your day job is and jump on any opportunity to work on a security related project.

I've mostly completed my usual tasks whilst focusing on the security aspects like tightening ACLs/firewall rules, hardening servers etc. I've also been fortunate (or unfortunate depending on your view point) in that I've handled a couple of real-world incidents. Nothing makes the management types look at you differently than when the senior guys start panicking and the new-comer whips out a backtrack/helix CD and deals with the situation calmly

Basically, I'd echo Don's advice, get in where you can and push the security aspects where possible. If you company has any standards certifications (ISO 9001, 27001 etc.) this can be a good place to start by offering to do the security audits (that most people don't enjoy doing). If your place has a security department you can push for a transfer once you've 'proven' yourself, if you place doesn't have a security department then you amy become that department

In terms of pay, I can't speak for the whole UK industry as I don't have that much experience, but from my experience security type people are being paid more than programmers at the moment. (But security is a hot topic in the UK currently so this could be a blip).

Good luck with your final exams

Don,

as someone still looking to take their first security related course the obvious question I'd like asked would be 'why C|EH?'.

For a more specific question I would like to know the reasoning behind requiring such a complete knowledge of specific tools commandline switches that seems to be part of the C|EH examination process. Especially when most requirements can be formulated with a knowledge of what you a trying to achieve and a few minutes with the man pages (RTFM?) in real world situations.

Just my 2cents/pence/<insert currency here>

It's a dirty job......but someone has to do it

It wasn't the EH server on March 10 was it? (Or was I the only one having issues hitting the site yesteray?)

Dean,

nice script, thanks for sharing

Haven't had a chance to play yet, stuck at work. But from looking at the site it looks like it could be fairly entertaining and keep me busy for a while.

If it keeps crashing I may need to find my copy of Uplink to fill the void though

That's my preferred method. Also not every machine you come across can boot from DVD, even if you take this route might be handy to have a couple of CDs just in case

ChrisG,

thanks for the link, nice to know the time I've spent as an admin, writing wobbly little apps isn't going to waste

Shawal,


Nice tip, haven't come across that one before. One more for the toolbox

Already completed

if anyone hasn't at least checked 'el reg' I'd recommend it.

As for BoFH, much as I look forward to my Fridays, the early years were far better

just tried this one,

telnet connection is timing out and traceroute is showing fairly horrible latency.

Is this part of the challenge or am I doing something wrong?

Cheers for the link Manu sounds good.

Don't think my network likes it at the minute though, it's taking a pounding 500kBps

Can anyone translate this to English?