Well, I posted this last week but have since gotten a few requests for it,
so I wanted to post this again. Following is the starting list I give to
people when they ask me for book suggestions. My personal library is much
more than this, and I can certainly recommend more books than what I list
here. However, this is what I give to people as a starter if they aren't
really sure what they want to learn. I'm open to suggestions for additions
or removals.
I recommend anyone buying books online start with http://www.bookpool.com/
and http://www.bestbookbuys.com/ for purchases in the USA. Outside the US,
I don't know what sites are best for shopping.
----------
Firewalls:
----------
Building Internet Firewalls - Zwicky, et al
IDS:
----
Network Intrusion Detection: An Analysts' Handbook - Northcutt
Intrusion Signatures and Analysis - Northcutt
Networking:
-----------
TCP/IP Illustrated, Volume I- Stevens, Wright
Internetworking with TCP/IP, Volume I - Comer
Computer Networks - Tanenbaum
Vulnerability Testing:
----------------------
Hacking Exposed - Scambray, et al
General Security:
-----------------
Practical Unix and Internet Security - Garfinkel, Spafford
Cryptography:
-------------
Applied Cryptography - Schneier
Web sites:
----------
http://www.google.com/ -- excellent search engine
http://www.securityfocus.com/ -- security news and education
http://www.sans.org/ -- security training and reading
---------
Randy Graham
--
You're kind of trying to pick between "horible disaster" and "attrocious
disaster" -- Paul D. Robertson (on VNC vs. PPTP)
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
