I have to agree with the author of that SF article, CISSP is just a waste of time, I've been thru their tests and I could simply become a CISSP, but it isn't worth it, it doesn't concentrate on anything specific and the amount of *new* knowledge in it could be gathered from daily PC mags.. Also, their curriculum is pretty gay, it doesn't show you the road to anything specific, like they got a Q that says..

The most important issue with distributed computing is...
a)security
2)sync
3)...
4)...

The correct answer <from their point of view> was a while in real life, there is no actual answer..

If my IDS blocks an intruder by adding an on-the-fly rule to the FW using SAMP, then the FWs don't sync, I would endup with nothing. He was blocked by 1 FW while he could pass thru another one simply.. :\

Nah, I wont take a CISSP, not specific, and doesn't actually deserve it, go get a real cert like the one of those GNU Linux certs or an ISS cert or -of course- a CCSE

O, did I note that ppl that carry the CISSP think that they r Gods? they have to much self-confidence like *ahem* those that carry the MCSE....

etsh911