I arrived home from my local 2600 meeting last night to find the Spring 2005 issue of 2600 waiting for me in my mailbox. This confirmed the phone call that I got from Natas earlier in the evening telling me that my article on “disposable email vulnerabilities” was in this issue.
This is the same topic that I presented at the recent Interzone conference and is discussed earlier in this blog.
*** 08/07/2005 UPDATE! *** This file is now up on Docdroppers.org with my other articles! I have also added the presentation itself to this post.
<insert presentation here>
I mentioned on Binary Revolution Radio about a month or two ago that I passed the CEH (Certified Ethical Hacker) exam. Just this past week, I finally got a welcome packet with my printed certificate (which was very unimpressive) along with some other things.
I went from the stereotypical evil hacker to Certified Ethical Hacker and a “security professional” in the matter of a few hours. Does anyone out there really think that I am any different for having this piece of paper?
Also included in the packet was a sticker for the back window of a car that reminds me of those found at universities. I do not foresee myself putting this on the “StankMobile” anytime soon.
I also received a congratulation letter and some little papers repeating the mindwash of what an “ethical hacker” is supposed to be in their minds.
The final thing that was in the packet, and the thing that was most interesting to me, was a small business card sized CD with a linux distro on it. The CD itself said “CEH” on the front along with the word “membership card” and I got a little bit excited wondering if they had developed their own special little security distro. I always like playing with new bootable security distros. I was very disappointed to find out that the disc was nothing more than LNX-BBC with a different label on it. It has not been updated since 2003 and seems to be a dead distro, regardless of what their page says. If it hasn’t been updated in 2 years, it is dead.
I really should have expected that, but oh well. I knew what I was getting into with that certification and I am still glad that I got it, just for the factor of knowing that I can pass an exam based on their view of what a hacker is. Of course when they say I’m an “ethical hacker” and I say that I’m an “ethical hacker” we are describing two totally different people.