[Dshield] IPS/IDS solutions--your opinions?

Joel Esler joel.esler at sourcefire.com
Tue Jan 29 17:54:31 GMT 2008 

I think one of the problems is that we have "bootcamped" our  
industry.  "Here!  Take this course, in a week, you'll be a  
CISSP!" (or whatever).  The other problem is, pushing SECURITY  
analysts towards CISSP.  Fine.  But where it the technical merit in  
doing this?

Anyway -- We are starting to sound old ;)

Joel

On Jan 29, 2008, at 9:43 AM, Frank Knobbe wrote:

> On Mon, 2008-01-28 at 20:30 -0800, CunningPike wrote:
>> The direction this thread is taking is the most depressing thing I've
>> read in quite some time. At the age of only 40, I feel like I'm a
>> dinosaur - a relic of an age where computer technicians _had_ to know
>> the inner workings of the systems they looked after, _had_ to be  
>> able to
>> analyze problems using knowledge of how "low-level" things like TCP  
>> and
>> RFCs actually worked, and _had_ to craft solutions themselves, making
>> the tools and acquiring the skills to do so themselves if need be.
>
> It's not the direction the thread is taking. It's the direction the
> whole industry is taking. It's probably to blame on lame CS courses
> (heck, in my time, we built our own CPUs with shift-registers in 8th
> grade...), but mostly we have a need for far more IS positions than
> highly qualified relic^H^H^H^H^Htechnicians are available. So you tend
> to make due with people that can operate GUIs rather than writing  
> their
> own code. Sadly, that "tend" introduces a subtle trend, and before you
> know it, GUIs ops are the norm and code monkeys are too expensive.
>
> The demand was higher than the supply, and no one did anything to
> replenish the shrinking pool. Pharma and Law is just more interesting
> than CS. We got by with getting by.
>
> But that's okay. If it breaks, we just buy a new one. (No one knows or
> cares how to fix things anymore... *sigh*)
>
>
> Sorry, cranky morning. :)
>
> Cheers,
> Frank
>
>
>
> -- 
> It is said that the Internet is a public utility. As such, it is best
> compared to a sewer. A big, fat pipe with a bunch of crap sloshing
> against your ports.
>
> _________________________________________
> SANS Security 2008 in New Orleans!! January 11-19 2008. Why freeze  
> up north if you can be in New Orleans.  http://www.sans.org/info/15826


--
Joel Esler
joel.esler at sourcefire.com

More information about the list mailing list