Certified Careers Institute

[Grifter]

I am going to have to write up a review for this school for badcompany.com.

For those that don't know, about two years back I went to CCI to get my CNA. Yes, Novell, get over it. They wanted to penalize me for going through the course material too quickly since they thought it should take longer to do than I was doing it. Now this shit was easy, it was also boring, so the quicker I got through it the better right? Wrong. I finished the course 3 weeks early and they made me pay for the last 3 weeks even though I wasn't going to be in their building.

To top all of this off, they teach, Novell, MCSE, Programming, etc. and while I was wardriving yesterday I drove past and got an AP. Well, they have DHCP enabled on a box with telnet, finger, and all other kinds of open ports on it. This is a school that teaches tech graduates. This is where the poor security trend starts. So...Keep it up CCI, pump out the ill informed and they'll keep getting hacked.

I don't know why it bothered me so much, it just did. So I put my thought here. This is the Shitlist after all.

[tierra]

TWO YEARS to get your CNA???

wow, that is a really long program.. I took a 4 month course, then I didn't take the CNA test til a year and a half later and still passed it with about 2 hours studying the day before the test.

[Grifter]

No you dork! I got my CNA two years ago.

[adept]

Quote:

Novell, get over it

They probably deserve their own shitlist/local business review thread. Nothing wrong with learning Novell though.

Hell they can't even secure some of their own servers that are exposed to the internet. I think it is because the documentation of the internal workings of their software is so weak. I wanted to review the security of a webmail server running GroupWise a long time ago, and I really couldn't find shit on what actual software the server was running, any guidelines on securing it, or any methods to get it abstracted from internal architecture. The funny thing is I bet theres 50 ways to do all that, just badly documented, and in turn badly implemented (even by their own staff).

Anyway that investigation led to findings of Netscape Enterprise Server dropping directory listings instead of the server's index pages when I sent some HTTP commands in lowercase, default scripts installed by Novell with the server that let unauthenticated users browse NDS from the web with the security context of the server, and scripting examples that allow you to run code on the server. I'm interested if anybody knows about updates to WebAccess? I imagine I'm like an NT newb bitching about security issues in NT3.51. Not that the Novell server implementation was near that old though.

I moved your thread over to local businesses, what do you think Grifter? Shitlist or Local Businesses?

[l0wkey]

I like Novell, much better alternative then windows cheaper and less vulnerabilites, not to mention the next version of netware will also be available in linux native.