Hey list:
Well, I read enough bad computer books, so I figured
I'd take a few minutes to throw out a few good words
about some books I've recently added to the
collection.
Exploiting Software. Hoglund & McGraw. I think this
one has become/is becoming the standard in this area
of security. It's heavily technical and quite
comprehensive. Experience with debuggers, etc.
(tools like IDA, SoftIce, OllyDbg) is useful.
Everything you ever wanted to know about malicious
input, overflows, etc. If you are looking for how to
write secure code, look elsewhere (e.g. the author's
other book). The 'attack patterns' interspersed
throughout are informative, especially RE: a number of
software security fundamentals.
The Linux Networking Architecture. Wehrle, et. al.
Very technical look at networking in the Linux kernel.
Runs through the basic kernel structure, network
devices, TCP/UDP, etc. Should be useful to the network
coding folk out there.
Real 802.11 Security: Wi-Fi Protected Access and
802.11i. Edney and Arbaugh. Again, I think this one
will become a/the standard guide in this area. I
especially liked the lucid walkthrough of 802.1x and
RSN (Robust Security Network). Will be most useful for
folks needed solutions for large scale wireless nets.
Of course, these are just my opinions, YMMV.
Jason
__________________________________
Do you Yahoo!?
Friends. Fun. Try the all-new Yahoo! Messenger.
http://messenger.yahoo.com/
_______________________________________________
EUGLUG mailing list
[EMAIL PROTECTED]
http://www.euglug.org/mailman/listinfo/euglug
