Enterprise Linux Security Episode 23 – Busting 5 IT Security Myths

In March 18, I saw a video on Odysee regarding an interview from David Bombal titled “Hackers Arise to hack Russia.”

My comment and questions are as follows:

Okay, so I have a question. Is there an eBook or online resources for those who have advanced experience in Linux and wanted to get started in becoming an ethical hacker? I’ve had experience with Linux for over 13 years and I have been using Linux at home full-time. I even mastered how to install Arch Linux a few years ago and I’m currently running Arch Linux in my desktop computer and Debian in my home server. I’ve even taking Linux+ practice exam in Pearson Test Prep’s website a few months back and I have not passed the Linux+ exam yet. I’m still focusing in studying CompTIA CySA+ exam and I’m getting very close to getting ready to pass the exam on the first attempt. It seems like CompTIA PenTest+ is more valuable compared to CySA+. I like to focus on the defense side of cybersecurity, but at the same time, I don’t mind getting my feet wet in becoming an ethical hacker.

In one of the virtual labs on ITPro TV, I’ve learned how to perform a data breach by performing a SQL injection attack on a DVWA. That, to me, is troubling and I’m not sure if I could let go of my conscience in my heart and become a Certified Ethical Hacker. I learned about that and I would never do that again unless I want to land myself in jail. No way… And I’m about 35 minutes into the video. And yes, I mentioned “virtual labs.” This is not real-world. There’s a big difference between a virtual lab and real-world hacking. To those who believe in a stereotype that “hacking is illegal,” what I did is just a simulation.

Someone I blocked and muted made a reply saying “sit down, you know nothing about the government” and I do not appreciate that; however, I think I have realized that the downvotes and the reply to my comment makes me think that I’m a bad guy when it comes to getting my feet wet in ethical hacking, so I’m thinking this has something to do with myth #2 that I’m a bad actor and that I get to go to jail which I said in my comment. I have ZERO intention of causing harm. Or maybe I should not come to conclusions due to the downvotes and that someone told me I know nothing about the government and whatever it is? That’s why I’ve decided to mute/block the user because I do not want to deal with the arguement and if the user who made a reply is a troll, then I do not want to feed the troll at all. I’m trying to be civil, but maybe the downvoters do not see it that way.

And besides, I found this myth about getting convicted for letting businesses know about the flaw without causing harm to be very disheartening.

What are your thoughts?

Update 1: So I should use > instead of quote tags. Interesting.

Update: I removed the introduction regarding the related video after my post got merged into this thread.

Thanks. I probably should have waited.

I didn’t want to comment on YouTube because I’m afraid of the automated spam-filtering algorithms deleting my comment without an explanation on why the YouTube’s system did that.