*nods* amen here... I'm around the same level myself. Big scary computer world out there

The thing that boosted my related general knowledge a LOT is forums like these... not posting, not asking, just browsing and reading.
I tend to only understand one post in five (or rather one explanation in five) but continual exposure eventually leads to an understanding of a particular facet.

Another excellent source for a continual flood of security-related information are mailing lists... my favourite is the pen-test list from securityfocus.

Before books or courses and even supplemental to online tutorials and whitepapers, I would recommend this as a speedy way of learning the whys and wherefores of security testing/hacking/label of choice.