this is so true its scaryOriginally Posted by streaker69
you must always have the power to give some major technical mumbo-jumbo, it helps...A LOT
and -=Xploitz=-...."rightly free wireless internet"....i just laughed my ass off
Wow!
What great questions!!
Why you want to ask me? Hell..I'm a nobody. Streaker and Re@lity in my mind are the best people to discuss this all with.
He and Re@lity have more knowledge in Networking and I can even fathom. I'm only a lowly student.
Sure, I can crack WEP, WPA,WPA2 and websites in under a New York Minute....and do some "Xploitz"....but theres so much more to the bigger picture. I want to be the best all round IT Security Specialist in the world.I'm willing to sacrifice anything and everything to achieve my goal. Hell...when I first found this forum..I heard of Linux, but I never even looked at a Linux desktop!! I was strictly a Windows man.
Before I found this forum, (wanna hear a good laugh at my expense?
But seriously..thats what sparked my interest in BT2. I had never been exposed to wi-fi or Linux. So I had 2 things to overcome...knowledge in both areas...a BIG obstacle to overcome..so what did I do?? I signed up to this forum and the aircrack-ng forums..I read ..and read..and read..literally EVERY THREAD I got involved...I asked questions when "search" and google failed..I posted my problem(s)..listed all commands used..and any other useful information anyone could use to help me....and I dedicated months into learning Linux and Wireless Fidelity. I went to my Library... Barnes and Noble...bought every book under the sun that I thought would help me to do what I wanted to do. Now look at me. I'm in college getting my Assoc. in Network Administration..and I plan on going the distance in getting a PHD in IT security..specializing in wireless security.
Why specialize in wireless Security??
Answer:
Simple...in a few years from now..I believe that a wired network will not exist. I believe that the demand for a Global Wireless Network will be met (Wi-MAX) and I want in on the action!
I have NO certs...no experience in Network Administration at all. I'm a regular Joe Blow from The United States of America who loves Penetration Testing Wireless networks. And I WILL make a living doing thus. No, theres no great need for it...but large companies and government agencies will want to make sure their info is 100% protected..and thats where I come in to play. Sure...I'm gonna have a job as an Network Admin one day....but my passion and all my energy is going into Pen testing Wifi...you can bet your arse thats where the high dollar money will be in a few short years.
IT Security,....Wireless Fidelity and -=Xploitz=-........together. What a great team!
[CENTER][FONT=Book Antiqua][SIZE=5][B][COLOR=blue][FONT=Courier New][COLOR=red]--=[/COLOR][/FONT]Xploitz[FONT=Courier New][COLOR=red]=--[/COLOR][/FONT][/COLOR][/B][/SIZE][/FONT][FONT=Courier New][COLOR=Black][SIZE=6][B] ®[/B][/SIZE][/COLOR][/FONT][/CENTER]
[CENTER][SIZE=4][B]Remote-Exploit.orgs Master Tutorialist.[/B][/SIZE][SIZE=6][B]™
[/B][/SIZE]
[URL="http://forums.remote-exploit.org/showthread.php?t=9063"][B]VIDEO: Volume #1 "E-Z No Client WEP Cracking Tutorial"[/B]
[/URL]
[URL="http://forums.remote-exploit.org/showthread.php?t=7872"][B]VIDEO: Volume #2 "E-Z No Client Korek Chopchop Attack Tutorial"[/B]
[/URL]
[URL="http://forums.remote-exploit.org/showthread.php?t=8230"][B]VIDEO: Volume #3 "E-Z WPA/WPA2 Cracking Tutorial"[/B][/URL]
[URL="http://forums.remote-exploit.org/showthread.php?t=8041"][B]VIDEO: Volume #4 "E-Z Cracking WPA/WPA2 With Airolib-ng Databases"[/B][/URL]
[/CENTER]
this is so true its scary
you must always have the power to give some major technical mumbo-jumbo, it helps...A LOT
and -=Xploitz=-...."rightly free wireless internet"....i just laughed my ass off
Not true. Where I work, your data is up to YOU to backup. Not the server or the netadmin. If you lose/corrupt/wipe/delete you data, that's your fault/responsibility. Thanks God too. I'm tired of data recovery stuff.
I felt like bending the bars back, and ripping out the window frames and eating them. yes, eating them! Leaping, leaping, leaping! Colonics for everyone! All right! You dumb*sses. I'm a mental patient. I'm *supposed* to act out!
See that just creates headaches by laying it on the feet of the Users, because they don't know and will never know any better.
With using GPO's, all their data is stored in their 'My Documents' folder, which is coincidently mapped to their H: drive which happens to be a home folder on the server. All users know that all their data is to reside in their 'My Documents' folder and anything that is not in there, is not being backed up.
It's a quick and easy way to make sure that your users aren't annoyed that they lost data. Remember, the goal is to make the life of your users and ultimately yourself easier.
Now, let's think about this. The VP of IT calls you up and says he just lost all his data because his harddrive failed. Are you going to sit there and tell him that it was HIS responsibility to back up his data?
If your company actually has such a policy, it's because the Net Admin is probably an idiot, and doesn't know how to set things up properly.
A third party security audit is the IT equivalent of a colonoscopy. It's long, intrusive, very uncomfortable, and when it's done, you'll have seen things you really didn't want to see, and you'll never forget that you've had one.
i agree with streaker on that one, where i work, i have to make sure that the data is stored on the server and properly backed up, in an HDD, burned into a DVD or a Gigadrive, and yeah, when one of the users has to look up an old Autocad file, guess who has to look it up, you guessed it, i have, the good part of this is that i dont trust any users to do this because they WILL screw up and i'll have to fix the damages so my boss won't rip me a new one
Lol...well, at the time it made perfect sense to us! Spend $1,000 on a laptop..and it better come with free wireless internet!!
and -=Xploitz=-...."rightly free wireless internet"....i just laughed my ass off
[CENTER][FONT=Book Antiqua][SIZE=5][B][COLOR=blue][FONT=Courier New][COLOR=red]--=[/COLOR][/FONT]Xploitz[FONT=Courier New][COLOR=red]=--[/COLOR][/FONT][/COLOR][/B][/SIZE][/FONT][FONT=Courier New][COLOR=Black][SIZE=6][B] ®[/B][/SIZE][/COLOR][/FONT][/CENTER]
[CENTER][SIZE=4][B]Remote-Exploit.orgs Master Tutorialist.[/B][/SIZE][SIZE=6][B]™
[/B][/SIZE]
[URL="http://forums.remote-exploit.org/showthread.php?t=9063"][B]VIDEO: Volume #1 "E-Z No Client WEP Cracking Tutorial"[/B]
[/URL]
[URL="http://forums.remote-exploit.org/showthread.php?t=7872"][B]VIDEO: Volume #2 "E-Z No Client Korek Chopchop Attack Tutorial"[/B]
[/URL]
[URL="http://forums.remote-exploit.org/showthread.php?t=8230"][B]VIDEO: Volume #3 "E-Z WPA/WPA2 Cracking Tutorial"[/B][/URL]
[URL="http://forums.remote-exploit.org/showthread.php?t=8041"][B]VIDEO: Volume #4 "E-Z Cracking WPA/WPA2 With Airolib-ng Databases"[/B][/URL]
[/CENTER]
Another important point is TRUST NO ONE! If you hear that someone is looking for a new job. Immediately take steps to back up their data. Do not tell them you're doing it, just do it. Even if what you hear is just scuttlebutt, do it anyway, it will save your ass in the future.
If someone gives 'two weeks notice' immediately back up their data. Even if you have to temporarily kill their account to do it. Back up all their data, this includes all their email. I'm currently in the process of getting our HR policy changed that if someone turns in their notice, they are immediately off the network, all because we got bit by someone we thought we could trust.
So, TRUST NO ONE.
A third party security audit is the IT equivalent of a colonoscopy. It's long, intrusive, very uncomfortable, and when it's done, you'll have seen things you really didn't want to see, and you'll never forget that you've had one.
again, so right its scary, and yes, i trust one person and only one person to do backup of the data, me...let me put it into perspective the kind of users i have:
User: "I can't send an email with attachment thru the company's mail, why is that?"
fyi, the SMTP here is configured so that the attachment limit is 10MB
Me: "If you are trying to send an attachment that is 50MB, it will not send, the limit is 10MB miss"
My Brain at the moment: " !"%&/#%/ dumb...plain old dumb"
so yeah, that is why i do the backups
We have this in place. It's still the responsibility of the user to keep their data safe. I'm not a netadmin, Just a deskside tech. Also, if the VP had this problem, anything/everything would be done to retrieve the data. I'm sure other measures have been put in place with their data. It's just the general population that has it rough. I think the situation is unique here. It's not like anywhere else I've worked where the general pop. is a bunch of noobs.
I felt like bending the bars back, and ripping out the window frames and eating them. yes, eating them! Leaping, leaping, leaping! Colonics for everyone! All right! You dumb*sses. I'm a mental patient. I'm *supposed* to act out!
Well this is all great info everyone. Thank you. I didn't think I would get so many responses in so little time. I look forward to this education and a lifelong career in IT and all the responsibilities in it. I'm glad I found this forum of friends that all share the same interests. And as long as I don't ask for "A step by step noobie tutorial" I think I'll fit in just fine.
Posting Permissions