cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
rslade
Influencer II

CISSPforum replacement

The long running CISSPforum mailing list on Yahoo Groups is being closed by ISC2, effective June 15, 2018.  An alternate mailing list, run by volunteer CISSPs, has been created on groups.io.  In order to join, you must both:
1)  Send a message to cisspforum+subscribe@groups.io from the email address you would like to use on the mailing list or apply at https://groups.io/g/cisspforum

AND (you must do both: this isn't an option)

2)  Send a message to cisspforum+owner@groups.io from the same email address you would like to use on the mailing list and include, in the body, your last name (as known to ISC2) (your first name is optional) and your certification number.

The moderators use the site

https://www.isc2.org/MemberVerification to verify your certification.  Due to various cultural naming factors, you may wish to verify yourself, and what name(s) you are known by to ISC2, and then send the URL in the form (for example)

https://webportal.isc2.org/custom/CertificationVerificationResults.aspx?FN=&LN=slade&CN=23670 in order to ensure that it is correct and verified.  (Please do not send in Rob Slade's verification and expect to be verified yourself.)  (Yeah, really.)  [Of course, that link no longer works due to the fact that a) it is based on the old verification site, and b) Rob Slade's certificate has been suspended.]

 

(I notice that a discussion of this issue has been started on the "community" under the title "Why cancel the active cisspforum Yahoo Group that has existed for years?"  ...)

 

(And for those saying this is GDPR's fault, let me note that, since you can access all of these "community" postings from Google, it is far less secure and confidential than was the Yahoo forum ...)


............

Other posts: https://community.isc2.org/t5/forums/recentpostspage/user-id/1324864413

This message may or may not be governed by the terms of
http://www.noticebored.com/html/cisspforumfaq.html#Friday or
https://blogs.securiteam.com/index.php/archives/1468
25 Replies
Dain
Contributor I

How do you figure I am arguing for censorship?   

 

If I have given that impression, it was thoroughly unintended.  And I updated the post to make clear that I was the idiot... (tho I wonder if anyone can see those posts, and only CISSPs can reply/post)

Baechle
Advocate I


@Dain wrote:

How do you figure I am arguing for censorship?   

 

If I have given that impression, it was thoroughly unintended. 


 

Maybe I'm overreaching my definition of censorship...  The act of screening out objectionable, sensitive, or harmful material... Isn't that what the CISSP-only forum seeks to do?... ensure that this information (that we CISSPs unilaterally decide is objectionable, sensitive or harmful) isn't accessible to the public?

Dain
Contributor I

Seriously, if you don't understand the difference between Privacy & Censorship theres really nothing to discuss.

 

Want my old CISSP for Dummies?

 

(I kid you not, was possibly the best certification study guide, ever)

Baechle
Advocate I

Dain,

 

That's disappointing. I was hoping to get your opinion.

 

In my understanding Privacy and Censorship is divided by a fine line about who is preventing knowledge transfer.  Either the owner of the information (privacy), or a third party (censorship).  I was drawing ironic and satirical line that (ISC)^2 started incrementally implementing your requests, and several folks were calling it censorship.

Dain
Contributor I

a couple of us being dumb (and expecting a private group to be, well private, which has yet to be born out in depth) is not censorship.

 

I was wrong, as was Rob.  

 

Having a private group is specifically to the point of avoiding censorship - personal due to anti-establishment views,  and the ability to post what ever anyone wants to post.  Seriously, I'll take the knocks on not realizing I needed to join the cissp group, but how can you possibly make the stretch to equate privacy with censorship?

Baechle
Advocate I

Dain,

 

Man, I'm not trying to rub missing the "Join" feature in your face.  I honestly went in and tried to reply and thought to myself, "WTF?" when the button didn't work.  I was just trying to share information that I found, because I saw other people had the initial same reaction.

 

On the censorship thing.  Lately we've been going back and forth at each other kind of hard on the forum.  That's not good or bad necessarily.  But it seems like there's a lot of venting and not a lot of actually trying to solve problems.  I don't have all the answers - in fact, part of the reason I was encouraging you and Rob to come up with full articulate justifications on asking for the forum to be privatized was that I was failing to come up with something articulate and fully justifiable that - if it were submitted to me, I would sign off on. 

 

I'm just trying to rib you a little for being so frustrated.  Not everything is a conspiracy against the "Old Guard".  But sometimes we do have to move on.  Hell, I reminisce about running Citadel, Wildcat, and Telegard... when I could actually make a system do exactly what I wanted, and forums were just straight txt on a monochrome monitor.  Now THAT was useable - it was so simple.  I was the last person in my office to get a cell phone, and my Grandparents were on the Internet before I was because I was sticking to my old dial up BBS.  But, here I am.  And this is what I have to work with.  I'll give it a shot and try to make it work out.  

 

Maybe it'll work out.  Maybe it won't.  Maybe I'll be so frustrated with the way it turns out (ala my experience with the Yahoo forum) that I'll bail on it eventually and go back to my Jeep forums. 🙂   But I'm here now.  And, so are you.  And at least for now, (ISC)^2 is apparently trying to make this what we ask it to be.

 

Sincerely,

 

Eric B. 

rslade
Influencer II

Oh, joy!  I have learned how to edit/modify my own postings!

 

This was made necessary by the fact that I was not completely explicit in my posting about how to get on to the new CISSPforum.  (Although to my mind the need to specify here is sort of akin to having to tell people not to roast marshmallows over volcanoes ...)

 

You have to tell the mailing list (cisspforum+subscribe@groups.io) you want on, and you have to tell the moderators (cisspforum+owner@groups.io) who you are.  (In enough detail that they can check.)

 

Please go back and re-read the directions.


............

Other posts: https://community.isc2.org/t5/forums/recentpostspage/user-id/1324864413

This message may or may not be governed by the terms of
http://www.noticebored.com/html/cisspforumfaq.html#Friday or
https://blogs.securiteam.com/index.php/archives/1468
Dain
Contributor I

no worries, wasn't taking any issue with any comments on the join thing... I question the reality of someone who seems to not be in infosec managing security of a security professionals web board, but no harm/no foul.

 

What your missing is the back story of how ISC has treated the forum that they took over from someone else, or should I say how they've ignored it. 

 

Its fine to say hey look at this - its something that builds on / solves problems with the old school, but when this gets dumped on us, and then they say . oh, and we're closing the thing you like in 15 days.  Well I have issues with that, I shouldn't be having a discussion about how to fix this, there were no problems with the old one (at the very least as shown by the 35-40 responses to ISC2s announcement that they are closing the old group) . ISC2 wants to be more relevant?  A thinly veiled attempt at facebook like is not the way to get there

 

And really what problems does this environment solve?  Seriously?  If all the people move over I expect the same sort of things will happen (kudos/badges/or otherwise)

 

All this does is show isc2 cares nothing about anyone who has already paid for the overpriced test, all they care about now is generating BS metrics, marketing, and pretending to be making a difference in the infosec community.

 

The problem is ISC2, and how they are going about "revitalizing" the certs, they are turning into the next MCSE.

 

Someone else said on one of the earlier kudos posts that it was for the millennials, and thats some seriously bigoted crap. I am a parent of 1 millennial, and 2 others that are whatever the next generation is called, and none of them or any of their friends, or any of the millennials I've worked with need this kind of bs to get or stay involved with a worthwhile community.

 

I was an oblivion guy myself - nothing like trying to learn how to lock the 16550 uarts for the modems... ugg . As soon as I got that 1st cable modem I never looked back (actually the pipeline dial up I guess was the first)

 

like I said no harm no foul, I take better than I give most days (tho you've handed me some winners 🙂

 

 

Baechle
Advocate I

Dain,

 


@Dain wrote:

 

 

Its fine to say hey look at this - its something that builds on / solves problems with the old school, but when this gets dumped on us, and then they say . oh, and we're closing the thing you like in 15 days.  Well I have issues with that, I shouldn't be having a discussion about how to fix this, there were no problems with the old one (at the very least as shown by the 35-40 responses to ISC2s announcement that they are closing the old group) . ISC2 wants to be more relevant?  A thinly veiled attempt at facebook like is not the way to get there

 

And really what problems does this environment solve?  Seriously?  If all the people move over I expect the same sort of things will happen (kudos/badges/or otherwise)

 

All this does is show isc2 cares nothing about anyone who has already paid for the overpriced test, all they care about now is generating BS metrics, marketing, and pretending to be making a difference in the infosec community.

 


I honestly think it has to do with GDPR.  One of my coworkers (who is in Law School) recently wrote a Note for his journal on it, so I had an ear full of it the last few weeks.  Here's what I speculate:

 

The old group was on Yahoo as an officially sanctioned extension of (ISC)^2, but (ISC)^2 doesn't control Yahoo's data collection policies.  Yahoo collects data for all kinds of stuff in excess of "ensuring the basic function of (ISC)^2's CISSP forum". 

 

Short of having a reconcilable contract between (ISC)^2 and Yahoo that limits what information Yahoo collects for CISSPforum members, we have nothing because the old forum goes away in either case.  The only sensible thing to do to fix that is to bring management of it in-house.  Well, here we are.

 

I speculate that from the timing between when this Community went live, to the timing of when the old forum was sunset aligns perfectly with the GDPR roll out in the EU.

 

Sincerely,

 

Eric B.

Dain
Contributor I

Maybe,  if they had discussed that particular tidbit with the group, I would care even a little.  If they had even referenced the possible issues, I might be interested in participating in the conversation to address said issues.

 

They did not.