In this blog I will provide you with an overview of the resources I used to pass exam BTA-CBBF and tips on the exam. I hope it will be of use to you.
By way of a hobby I am interested in Bitcoin, other cryptocurrencies and all things related like blockchain. It is fascinating how the area of cryptocurrencies interfaces with other fields, ranging from socio-economics to politics to mathematics, programming, security, cryptography, trading, technical analysis.
Years ago I bought my DNS domain name with a DNS registrar in The Netherlands. They also offered DNS hosting so I naturally hosted my zone there also. Years passed without any serious DNS issues and then, a few weeks ago, I decided to move my DNS zone to Microsoft Office 365.
I wanted to move my zone to Office 365 because of several advantages:
This is part two of a seven blogs series in my quest to open my locked shut fire safe of which the dial combination was unknown. How I got to obtain this safe and why it was locked in the first place, can be read in an earlier blog of mine.
In my previous blog in this current series, Part 1 – Blog Series Description, my motivation behind the blog series was given. In that blog I also outline the structural approach – which is usually followed in (ethical) hacking – to open the safe.
This current blog will first describe how in general to open a safe when the number combination is known. This is called dialing the combination. After this introduction the internals of the safe lock mechanism is described and the number combination will be dialed again but now the state of the lock is inspected at every step of the dialing process so as to get a thorough understanding of the inner workings of the lock.
In this blog I will show how to renew a SSL certificate for an Azure WordPress blog site. When obtaining or renewing a certificate it is necessary to prove ownership of the DNS domain the certificate will be issued for. In my case the domain is blog.ictnsure.nl.
The website I use to get free SSL Certificates is SSLforFree. They offers several ways you can proof domain ownership. One of these is adding a DNS TXT-record with a specific value and I describe this procedure in a previous blog. I found this DNS-record method a little challenging because my DNS provider does not let me adjust the TTL of DNS records; the TTL is hardcoded to 60 minutes. Furthermore, their DNS replication is slow.
Therefore, when a renewal of the certificate was due I decided to take another route namely Manual Verification. With this verification method you must place a specific text-file in the root folder of your blog web site so as to proof ownership of the domain.
So I obtained the Certified Information Systems Security Professional (CISSP) certification and to be honest I found the exam to be very different from what I expected after learning the subject matter from the official resources. Consequently I found the exam quite daunting to pass.
But I did pass the exam so let me recap in this blog how I prepared and how I got to pass the exam successfully. I really owe a lot to the people posting their experience and the sources they used to prepare for the exam. Now it is my time to give back to the community. I hope it is of use to you.