I can read the list (when things show up; I've noticed the same delay -- I suspect it has to do with the email hammering from the so very big virus). The MCNS and SECUR materials, I didn't think, were too badly apart. The MCNS exam I took in late May looked a lot like the MCNS book without the PIX material. The exam topics list for SECUR on CCO is more like a rearranged MCNS than it has different content.
As for the SAFE exam, I absolutely would not rule out such a question--and based on what I saw in the exam, I stand by the list I offered. Data manipulation includes IP spoofing, session replay and hijacking, rerouting, and repudiation. We can argue whether those are threats to happen or attacks that may happen. The Network Attack Taxonomy I see in the SAFE SMR Blueprint App B (p 64) includes packet sniffing, unauthorized access, DoS, IP spoofing, etc...... But there is no list of threats. At the same time, the body of the SAFE Blueprin always discusses "Threats Mitigated" and lists these very items. Clearly, there is a disconnect in Cisco's evolution of exams. We'll see if this makes it to the list -- I've rebuilt the connection profile. Reimer, Fred wrote: > Please pass this on to Annlee. > > I've already sent another message with an excerpt (fair use!) from the new > Cisco training materials that refutes this. > > The "threats" are: > > Structured > Unstructured > Internal > External > > The "attacks" are: > > Reconnaissance > Access > Denial of Service > > I don't know what "data manipulation" is. I think that would fall under > access attacks. > > There is no dispute with the new Cisco material. With all due respect, > quoting old MCNS material is misleading, as the new exams are based on the > new material. I don't know about the rest of the book, but I'd seriously > consider chucking that one, or recycle it if you are environmentally minded. > > And I don't believe it would be breaking the confidentiality agreement with > Cisco to say that it would be very reasonable to expect the threat and > attack questions on any of the security exams, with the "new" right answers. > Or, to quote Parkhurst during the CCIE Power Session "I wouldn't rule that > out." > > And "SAFE," or more accurately Cisco SAFE Implementation, may be the last > recommended exam in the CCSP series, but all of the course material for all > five of the exams go over this material, and it is possible that it shows up > on every one of your five exams if you take them all. I don't know if it > is, and frankly don't even remember if it was on the two I've taken so far, > but "I wouldn't rule it out." > > As a side note, what's up with the list? The message with the excerpt I > sent Monday at 10:09AM (forget whether it was before or after I changed my > timezone from EDT to MST). I still have not received it. Is this list so > large, and I'm so late in subscribing, that it takes days to send out all > the posts? Believe me, I'm grateful of the list and am not complaining, but > I sometimes find myself responding to responses to my posts that I have not > received yet! Just wondering if it is something I'm doing wrong ;-) > > Sorry if that sounded too harsh. I didn't mean it to. > > Fred Reimer - CCNA > > Eclipsys Corporation, 200 Ashford Center North, Atlanta, GA 30338 > Phone: 404-847-5177 Cell: 770-490-3071 Pager: 888-260-2050 > > NOTICE; This email contains confidential or proprietary information which > may be legally privileged. It is intended only for the named recipient(s). > If an addressing or transmission error has misdirected the email, please > notify the author by replying to this message. If you are not the named > recipient, you are not authorized to use, disclose, distribute, copy, print > or rely on this email, and should immediately delete it from your computer. > > > -----Original Message----- > From: Howard C. Berkowitz [mailto:[EMAIL PROTECTED] > Sent: Tuesday, August 26, 2003 9:55 AM > To: [EMAIL PROTECTED] > Subject: RE: SAFE and the Holy Hand Grenade of Antioch [7:74304] > > At 3:03 AM +0000 8/26/03, Charlie Wehner wrote: > >>This is an excellent example of why I hated taking the SAFE exam. I found >>myself for several questions thinking... "Well, I depends on what you mean >>by this term." >> >>I agree with Fred though. I believe the answers they are looking for are >>Unstructured, Structured, External and Internal. > > > Annlee Hines is having trouble posting, and asked me to add her view > to the thread: > > At 7:57 AM -0500 8/26/03, Annlee wrote: > >>I can't post to groupstudy, so here's my reply (about the fifth time >>I've written it up).... >> >>The four threats are: >> >>reconnaissance >>unauthorized access >>denial of service >>data manipulation >> >>See mike Wenstrom's MCNS CiscoPress book; a long section begins on p.13. >> >>Remember SAFE is last in th CCSP sequence -- it pulls together the >>ideas from all preceding exams, including MCNS/SECUR, IDS, PIX, and >>VPN. In addition, the CSI Exam focuses on the SMR SAFE, which IMHO >>is a blend between Enterprise SAFE, minus e-commerce and HA, and VPN >>SAFE, to handle the remote-user (R in SMR). > > **Please support GroupStudy by purchasing from the GroupStudy Store: > http://shop.groupstudy.com > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > **Please support GroupStudy by purchasing from the GroupStudy Store: > http://shop.groupstudy.com > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=74415&t=74304 -------------------------------------------------- **Please support GroupStudy by purchasing from the GroupStudy Store: http://shop.groupstudy.com FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
