Passing Sec+ Tomorrow
superman859
Member Posts: 55 ■■□□□□□□□□
in Security+
Just a heads up. I'm taking that test down. DG's book was used (and before that All-In-One Sec+). Feeling pretty good about it now. That and I simply cannot afford to not pass 
My savings are dwindling until I finish this semester and can finally get a job.
Well, provided I get my voucher code I ordered in time to schedule it for tomorrow.
My savings are dwindling until I finish this semester and can finally get a job.Well, provided I get my voucher code I ordered in time to schedule it for tomorrow.
Degrees: B.S. Computer Science, B.S. Mathematics
Certifications: Network+, Security+
In-Progress: M.S. Computer Science, CEH
Certifications: Network+, Security+
In-Progress: M.S. Computer Science, CEH
Comments
I didn't get my voucher until this morning via email, and it has to be scheduled 24 hours in advance. dang it. So I'm taking it tomorrow. Scheduled. In the books. Ready to go.
Passing Sec+ Tomorrow (for real!)
Certifications: Network+, Security+
In-Progress: M.S. Computer Science, CEH
I liked how you made it seemed you failed today....LOL!
Bring the thunder on it and bring home the gold!!!
Masters Degree Information Security and Assurance (WGU) / Estimated 06/01/2016
Next Up: CCNP Routing Exam | Certified Ethical Hacker Exam
Cisco Lab: ASA 5506-X, GNS3, 1x 2801 Router, 1x 2650XM, 1x 3750-48TS-E switch, 2x 3550 EMI Switches and 1x 2950T swtich.
Juniper Lab: 1x SRX100H2, 1x J2320 (1GB Flash/1GB RAM, JunOS 11.4R7.5), and 4 JunOS Firefly vSRX Routers in VMWare ESXi 5.1
Certifications: Network+, Security+
In-Progress: M.S. Computer Science, CEH
It can hurt.....
You don't want to spend the day before an exam like Security+ doing hardcore studying. You need to give your brain time to absorb the material. It sounds silly, but it works.
Having said that, a very light review will not hurt....you just don't want to cram the day before an exam. You want to cram an hour or two before the exam starts....but not the day before.
Oh no worries on that front
Certifications: Network+, Security+
In-Progress: M.S. Computer Science, CEH
For example, a private key has been compromised what should you do? Answer: CA should revoke it and add to CRL
My Answer: You should revoke it
Sure, the CA manages the CRL, but the CA won't know it needs to be revoked until YOU say so. That part is put on the end-user to specifically request it be revoked. I suppose there is a difference in requesting it to be revoked and actually revoking it, but actually revoking cannot take place without the end user being involved and requesting it...oh well...it happens!
Certifications: Network+, Security+
In-Progress: M.S. Computer Science, CEH
Presumably, if you just revoke it, the employee who left the organization could request and generate another cert. Realistically, that shouldn't happen, but in the case that it did, when you notify the CA, if that employee tries to generate another cert, it won't be valid, because anything that comes from that employee will be on the CRL.
Hmm - I wasn't considering it from an employee point of view. I was considering if the key had been lost / stolen / etc.
But even still, if it was an employee, wouldn't the employee have to be authorized to get another cert granted to them? If it's a private CA ran by the company, I can't imagine they would give out certs to non-employees...
In the end, the CA would have to revoke the original cert and add it to the CRL, but it still needs to be requested by someone (person who decided it needed to be revoked, "you" as I took it in the question)
Certifications: Network+, Security+
In-Progress: M.S. Computer Science, CEH
Real World Imaginary Scenario
I deal with "managed PKI" from both a user and an administrator perspective through a well known CA (probably the best known...
I generate a certificate request from my server.
I grant myself a certificate based on the certifcate request I sent.
I install certificate on my web server.
My new job offer comes through! I give 2 week notice.
Guy who is replacement informs CA I left the organization.
My email from old job is now on CRL. Any certificate I requested will also be invalid and therefore revoked. New ones will need to be generated by my replacement.
This is a real world scenario of what (needs to) happen. Hopefully it makes sense.
Congratulations!
On a serious note: thanks for explaining this...I understand the concepts of what PKI is, what a CA, CRL, AS, etc. are, but haven't put them together on how they all work together. I'm reading all my material to get a basic grasp on the stuff then going to buy DG's book as a final study guide.
This PDF might help you out even more:
http://www.verisign.com/static/DEV004104.pdf
Remember, don't worry about Extended Validation. It's not tested on Security+ (or apparently in the next iteration). All EV certs do is make a valid cert make the address bar green for a valid cert and red for invalid. You've seen this on sites like Bank of America, Paypal, etc. (This was why I put managed PKI in quotes.....
Congrats! I just recently became a System Administrator for DISA FSO.
(If that wasn't clear enough, I don't know what is....lmao!)
Anyways, my claim is now officially true
Few terms and such that were not found in DG's book but I roughly recalled from the All-In-One. The questions were a little different than expected but still not bad - just poorly written in most cases, some with no good answer so I had to pick between two subpar answers....
Certifications: Network+, Security+
In-Progress: M.S. Computer Science, CEH
:P
Congratulations!! Welcome to the club!
Now pay it forward and help out the rest of your DoD buddies/others who were just as nervous as you were.
Congrats once again!
I took and passed this test today also. I agree with you on certain questions seeming to have only vague or wrong answers to choose from.
congratulations superman!