When the ssh command is executed, with either 1, 2, or 3 -v switches, it outputs various debug messages. Does anyone know a resource that will provide an explanation for the debug messages that appear in the output?

Thanks to Comptia and his helpful team... @Stephen Schneiter
I passed Network+ 009 exam yesterday...

What's next ...

I've put together a curated list of free and paid resources to help us prepare our students for the CompTIA Cloud+ CV0-004 exam. It includes links to valuable labs, courses, and reading materials. Feel free to check it out and share with your classes!

Greetings. Over the past year, I redeveloped a few of our IT courses using TestOut (ITF+, A+, Network+, and Security+). We plan on moving these over to the new CertMaster Perform when they become available, such as with Network+ and Tech+.

The major concern I've had, and still have, is that the simulations in the courseware are the exact same as the custom quiz labs. I am finding that students go through the simulations in the courseware, score the labs, copy the steps provided, then take the custom quiz lab (we call them lab assignments) and use the steps provided. I don't understand why CompTIA doesn't make the custom quiz labs different from the simulations.

I am at a loss. I even had a student tell me they were the same and it was a waste of their time to practice, copy the steps, and then complete it again for a grade.

As part of Objective 2.4 (analyzing indicators of malicious activity), collision attacks on broken cryptographic algorithms, like SHA-1, are critical examples of tampering threats.

Key Takeaways:​

• Collision Attack: When two distinct inputs generate the same hash, indicating possible tampering or forgery.
• Broken SHA-1: SHA-1 is deprecated due to collision vulnerability, making it possible for attackers to create identical hashes for malicious files.

Practical Demo:​

1. Demonstration: Use the
   SHAttered
   website, which showcases a real-world collision attack on SHA-1. It provides two PDF files that generate the same SHA-1 hash, but contain different content.
2. Verification: Have students download the example files from
   SHAttered
   and use Python on https://github.com/OffensiveSoldier/Collision-attack/tree/main to hash them, demonstrating the collision.
3. Discussion: Analyze how collision attacks can be used in malicious activities, such as bypassing digital signatures or integrity checks.

Has anyone had trouble getting a hold of their account rep to purchase training? I have been trying since the 13th and customer service say I can only put in a ticket and wait. I did that and I still do not have any contact with the business/academic partner team.

Does anyone know a work around?

Thanks!

CompTIA Cloud+ CV0-004
have started now please do well to join the platform .

I'm a UX Designer at CompTIA. I'm hoping to hear from instructors. What is your AI wish list for the CertMaster platform and courses?

1. How would you hope to be able to use it? In other words, what job would you hire AI to do for you in CertMaster? And why?
2. What job would your students hire AI to do for them in CertMaster? And why?
3. How have you already used AI to help you teach?
4. How are your students using AI currently to help them learn?
5. What, if any, negative effects of AI are you currently seeing, either for instructors or students?

I’m still waiting for my Network + voucher. Any updates on when it might be coming?

Three Mile Island: From Meltdown to Microsoft’s AI Power Play​

Remember Three Mile Island? That nuclear plant south of Harrisburg, Pennsylvania that gave us all a scare back in 1979? Well, it’s making a comeback, and this time it’s got Microsoft muscle (and money) in its corner.

A Brief History Lesson​

Three Mile Island was home to two nuclear reactors. In March 1979, Unit 2 suffered a partial meltdown, causing the worst commercial nuclear accident in U.S. history. While Unit 1 kept chugging along, it eventually closed in 2019 due to economic pressures. Producing electricity there was more expensive than other providers using cheaper natural gas.

New Owner, New Expectations​

Constellation Energy now owns three Mile Island. That’s not the only nuclear power plant Constellation owns. Here’s a partial list:

• South Texas Project Electric Generating Station (Texas)
• Three Mile Island Nuclear Generating Station (unit 1, Pennsylvania)
• Braidwood Nuclear Generating Station (Illinois)
• Byron Nuclear Generating Station (Illinois)
• Calvert Cliffs Nuclear Power Plant (Maryland)
• Clinton Nuclear Generating Station (Illinois)
• Dresden Generating Station (Illinois)
• Ginna Nuclear Generating Station (New York)
• James A. FitzPatrick Nuclear Power Plant (New York)
• LaSalle County Nuclear Generating Station (Illinois)
• Limerick Nuclear Power Plant (Pennsylvania)
• Nine Mile Point Nuclear Generating Station (New York)
• Peach Bottom Atomic Power Station (Pennsylvania)
• Quad Cities Nuclear Generating Station (Illinois)
• Salem Nuclear Power Plant (New Jersey) (minority owner)

Enter Microsoft / Enter Microsoft Muscle / Enter Microsoft Money (whichever heading you prefer)​

Microsoft, in its quest to power the AI revolution, needs electricity. They need electricity to a) power the servers running and supporting CoPilot, and b) provide cooling in the server rooms housing those servers. The servers create heat. The rooms have to stay cool. They need industrial strength air conditioning.

How Much Power Can Three Mile Island Generate?​

Microsoft’s deal with Constellation is for a whopping 835 megawatts of electricity. That’s enough to power about 800,000 homes. All this electricity will come from Three Mile Island and go towards powering Microsoft’s AI ambitions. They’re diving headfirst into the AI pool, and they need a lot of energy to keep those servers cool and running.

Summary​

AI servers are creating more electricity demand than what our current infrastructure can supply. Expect more stories like this to come, to keep AI alive.

More​

AI ain’t so tough. See https://cybersafetynet.net/category/ai/ to help understand and use Artificial intelligence.

Good morning/evening/night everyone,

Just caught up with the DataX TTT (great job, RJ!) and @Stephen Schneiter 's comments about CIN membership and the email address we use prompted me to look at my profile.

When I signed up a few years ago, I used my personal email address and for some time there was no issue with getting exam vouchers but lately I didn't receive any. I put one training provider I work for in the profile but it no longer seems sufficient. Now I tried to change my email address but it wouldn't let me.

Is there a way to change the email address to one supplied by the training provider?

And if that's not the issue, any pointers would be very much appreciated!

Many thanks,

Andreas

Hello everyone! I don't know if this is the right channel to report this, but here goes anyway: through its blog, CompTIA published an interesting article about data-focused certifications: Data+, DataSys+ and DataX. The problem is that the section dedicated to publicizing the certification paths does not include the other certifications besides CompTIA Data+. It would be better to take a look... &;-D

Blog post link: https://www.comptia.org/blog/enhanc...s-with-the-comptia-data-pathway-certification
Link to the path disclosure: https://www.comptia.org/certifications/which-certification

I have been teaching CASP for many years and am looking forward to the Train the Trainer for CSAP in its newer name SecurityX, I add labs and activities for managers on this course, what do you include when delivering a CASP+ course for added value.

I'm excited to share the RTFM (Red Team Field Manual) PDF! This resource is a fantastic quick reference for red team tactics, techniques, and procedures. It's invaluable for both beginners and seasoned pros in our field. If you're looking to enhance your toolkit, definitely check it out!

As industries increasingly rely on data to inform decision-making, CompTIA’s DataX certification seems poised to become a crucial part of the cybersecurity landscape. I'm particularly interested in how this certification might bridge the gap between data analytics and security. Are any of you planning to introduce DataX in your teaching, especially for students aiming to specialize in data security and analysis? Would love to hear how others see this fitting into current learning pathways!

With the rise of AI-driven cybersecurity threats, I’m thinking about incorporating some discussion around this topic in my Security+ course. Are any of you doing the same? If so, how do you present it in a way that aligns with the exam but stays relevant to current trends?

Teaching cryptography can be a challenge due to the complex math involved. I recently designed a lab where students use OpenSSL to encrypt and decrypt files with different algorithms. It really helped them grasp the concepts. Does anyone have similar exercises or labs they'd recommend?

Thank you @Stephen Schneiter. Coordinating all these activities is no joke. ?

Certified CompTIA Network+ N10-009 instructor wanted to create and deliver a pre recorded instructional video designed to prepare the student for the exam. Also accepting material already built. If you are interested in this opportunity, please submit your resume/CV along with copies of relevant certifications to [email protected] or [email protected]

I don't know if anybody has ever thought of this. When we certify, CompTIA has certain paths and order of certifications that allows you to cover a whole set of certifications if you take an upper level exam. Like for example: you have A+, Network+ and Security+, you pass CySA+and all three certs are renewed. Cool. But not everyone do the certs in order and (please correct me if I'm wrong) CompTIA doesn't give you the chance of earning CEU's for other certs taken.

I have A+, Network+, Security+, Server+, CySA+, Pentest+ and CASP+..... We all know that CASP+ renews all the previous certs. What I find strange is that I took Linux+ and I can't get CEU's to apply to CASP+. The next cert I'm studying for is Cloud+ and it's the same deal. If we look at those 2 certs and how they can enhance my skill set as a CASP+ I can think of:

• Comprehensive Security Architecture: Both Cloud+ and Linux+ provide practical skills for designing, implementing, and managing secure environments across on-premises, cloud, and hybrid setups, directly supporting CASP+'s focus on enterprise security.
• Improved Risk Management: The combined knowledge from these certifications equips a CASP+ professional with a holistic view of potential risks in cloud and Linux environments, enabling more effective risk assessment and mitigation strategies.
• Enhanced Incident Response and Automation: Proficiency in Linux and cloud automation tools enables the creation of efficient incident response mechanisms, aligning with CASP+'s emphasis on response strategies and automation to enhance security operations.
• Interoperability and Integration: Mastery of cloud and Linux systems supports CASP+ professionals in integrating various security solutions, ensuring interoperability while maintaining a strong security posture.

So, why doesn't CompTIA give us CEU's no matter in what order you take the certifications? In the end every test we take enhances our knowledge base. If you just have CASP+ we all know that CySA+, Linux+, etc will help us to be better prepared. I'm not talking about 50 CEU's here, I think 15-25 CEU's depending on the cert will be more than fair. Like for example, you are a CASP+ and pass Network+ or Security+ you get 15 CEU's each, you are a CASP+ and pass CySA+ or Cloud+ you get 25 CEU's each.

Any thoughts?

Intellectual property is still relevant​

Last week, I argued intellectual property was no longer relevant. This week, I argue the opposite. Despite the challenges posed by artificial intelligence, intellectual property (IP) rights continue to play a crucial role in fostering innovation and protecting creative works. In case you've already read, https://cybersafetynet.net/does-int...rtificial-intelligence-generating-content-no/, fasten your seat belt. I am making the opposite argument here.

Human creativity remains central​

While AI can generate content, human creativity and ingenuity are still at the core of innovation. Humans design, develop, and refine AI systems, making critical decisions about their architecture, training data, and application. The creative process often involves human-AI collaboration, where AI serves as a tool to augment human capabilities rather than replace them entirely. Therefore, traditional intellectual property protections remain relevant for human contributions to AI-assisted works.

Legal frameworks are adapting​

IP laws are not static. They are dynamic. They evolve to address technological advancements. Courts and policymakers worldwide are actively working to modernize intellectual property laws to account for AI's impact. For instance, some jurisdictions are considering new categories of IP rights specifically for AI-generated works, ensuring that valuable innovations receive appropriate protection while maintaining the integrity of existing IP frameworks.

Economic incentives are still necessary​

The fundamental purpose of IP rights - to incentivize innovation and creativity - remains relevant in the AI era. Companies and individuals investing significant resources in developing AI technologies and AI-generated works need assurance that their investments will be protected. Without IP protections, cutting-edge AI research and development will decline.

Attribution and ownership challenges still exist​

While AI complicates issues of authorship and inventorship, solutions are emerging. For example, some propose attributing AI-generated works to the individuals or companies responsible for creating and deploying the AI system. This approach maintains the concept of human authorship while acknowledging AI's role.

IP rights help manage AI ethics and accountability​

As AI systems become more sophisticated, IP rights can serve as a mechanism for ensuring accountability and ethical use. By attributing ownership and responsibility for AI-generated works, intellectual property frameworks can help address concerns about the potential misuse of AI technologies.

Protection against infringement remains critical​

Even in an AI-driven world, the need to protect against unauthorized use or reproduction of creative works and inventions persists. IP rights provide a legal framework for creators and innovators to defend their work against infringement, whether by humans or other AI systems[2].

International cooperation is strengthening IP protections​

Global efforts to harmonize IP laws and address AI-related challenges are underway. International organizations and treaties are working to establish consistent approaches to AI and IP, ensuring that intellectual property rights remain enforceable across borders[2].

Summary​

In case your brain is melting, let me summarize here. AI presents unique challenges to traditional IP concepts. It does not negate the need for intellectual property protection. Instead, it underscores the importance of adapting and strengthening IP frameworks to address the complexities of AI-generated works. By evolving alongside technological advancements, IP laws can continue to foster innovation, protect creative endeavors, and provide essential economic incentives in the age of artificial intelligence.

Had a student of mine ask about AI Essentials and if it would be offered in the future. I was not aware of any such things until he showed me this article:


And now I am curious, what is the latest with these expansions? Is this going to be a new pathway or what is going on with them. The article mentions a July 24 release, but I am not finding anything about them on CIN or other places. just curious.

How do I register for the Cloud+ Train-the-Trainer? I usually get the invites, but I didn't get them.

Thanks!

Adrienne Crosby

I hope you’re all doing well. Are there any new requirements or programs from CompTIA for becoming a trainer, especially since CompTIA Trainer+ is no longer available?

Thanks in advance for any insights!

Tagging @Rick Butler and @Stephen Schneiter for insights. Thanks in advance for any information.