2 Replies Latest reply on Jun 10, 2018 11:28 AM by Gabriel F

    Errata for "SSCP (ISC)2 Systems Security Certified Practitioner Official Study Guide"

    bk38402

      I recently purchased an electronic copy of

      SSCP (ISC)2 Systems Security Certified Practitioner Official Study Guide

      George Murphy, ISBN: 978-1-119-05965-3, 576 pages,  October 2015

      Correction: Per my point of purchase information, the eBook I have is actually ISBN 9781119059950 dated September 1, 2015, also 576 pages (likely identical)

       

      I found the following problem (page numbers refer to PDF version page)The Systems Security Certified Practitioner must be familiar with

      The "Summary" section of Chapter 5 on eBook page 431 of 950 or printed page 216 of 576, with text beginning with "The Systems Security Certified Practitioner must be familiar with ..." , does NOT match the content of that chapter (Risk Identification, Monitoring, and Analysis).  The incorrect text is in fact a duplicate copy of the summary from the prior Chapter 4, (Security Operations and Administration), which appears on page eBook page 357 of 950 or printed page 173 of 576. 

       

      This problem doesn't seem to be listed in the Errata on books web page below, and the real summary for Chapter 5 appears to be completely missing.

      Sybex: SSCP (ISC)2 Systems Security Certified Practitioner Official Study Guide - George Murphy

        • Re: Errata for "SSCP (ISC)2 Systems Security Certified Practitioner Official Study Guide"
          Chrys C.

          Thank you for your post!

           

          I have sent your errata report to our content team for further investigation. Once approved, the errata will be added to the list of errata on the website.

           

          Please let me know if you have any further questions. Have a great day!

           

          - Chrys

            • Re: Errata for "SSCP (ISC)2 Systems Security Certified Practitioner Official Study Guide"
              Gabriel F

              I disagree with an errata that's been posted for the CCSP (ISC)2 Certified Cloud Security Professional Official Study Guide (ISBN: 978-1-119-27741-5).

              On the Errata site, it says:

              ChapterPageDetailsDatePrint Run
              7179
              Errata in text
              Chapter 7/Appendix A
              Page 179/320
              Question 20/answer to question 20
              Answer on page 320
              Correct answer is A, not B. Remainder of explanation is correct as is.
              28-Jul-17

               

              However, the explanation in the Appendix contradicts the correct answer.  The Appendix (on page 320) says:

              "A.  Options B and C are incorrect, because a sandbox is not in the production environment.  D is incorrect in that sandboxing does not prevent code from running."

               

              I believe the correct answer to this question is B, because "a sandbox is not in the production environment" per the explanation in the answer key, and (per page 162), "Sandboxing refers to the concept of a protected area being utilized for testing untested or untrusted code...  Sandboxes are usually protected areas in memory that will not allow processes of any kind [ie, production] to run outside the environment or allow access inside from any other application or process." 

               

              So, option B should be the correct answer: "A test environment that isolates untrusted code changes for testing in a nonproduction environment".