Hi Kam Yung ,
Thanks for the article.Unfortunately , its not in Singapore
bookstores yet. I checked Kino bookweb and funan computer bookshop
website... I think we just have to wait a while longer..
regards
Billy
On Mon, 2009-03-02 at 11:08 +0800, Soh Kam Yung wrote:
> [http://lwn.net/Articles/319567/]
>
> =====
> Book review: Nmap Network Scanning
> February 18, 2009
> This article was contributed by Nathan Willis
>
> Gordon "Fyodor" Lyon is the principal author of the network scanner
> Nmap, and his new book Nmap Network Scanning is its authoritative
> guide. Lyon has crafted a precise, readable resource that will serve
> both newcomers and experienced Nmap users well. Equal parts manual,
> network scanning textbook, history lesson, and field guide, the book
> is a detailed reference to what Nmap can do, an explanation of how and
> why it works, and instructions on how to best use it for maximum
> result.
>
> [...]
>
> The book is successful as a comprehensive manual, but Lyon makes it
> more than just documentation by infusing it with his experience.
> First, he is an experienced scanning and security expert, and in
> almost every section shares specific, real-world expertise about the
> good and bad points of the available scanning techniques under
> discussion. As he points out in the introductory material, when it
> comes to free software, experience is the only barrier to becoming an
> expert, and he shares his without reservation. For example, in
> addition to the predefined scan types, Nmap's --scanflags option
> allows you to define a custom set of TCP flags for your probe. The
> author presents an example where crafting a packet with both the SYN
> and FIN flags set will get by certain firewall configurations because
> the TCP RFC is ambiguous about how hosts should interpret certain
> combinations of flags.
>
> [...]
>
> He also draws on the history of the entire project to educate the
> reader. He includes background and discussion about scans and tests
> (such as the TCP FTP bounce scan) that are less and less useful every
> year as operating systems and applications servers close old security
> vulnerabilities. He notes changes in the code, such as the 2006
> rewrite of the OS detection module that enhances the program but
> obsoletes older OS detection fingerprints. And he explains how new and
> interesting scans (such as Gerhard Rieger's IP Protocol scan) were
> discovered and added to Nmap's arsenal. Finally, Lyon brings the
> perspective of an ongoing project lead to the book, encouraging and
> explaining the importance of participation in Nmap's development
> process -- from consulting the mailing list, to submitting OS
> detection fingerprints to the Nmap database, to properly documenting
> homemade NME scripts.
>
> Whether you are a novice port scanner looking to learn Nmap, or a
> security professional looking for the definitive reference on the
> ubiquitous free software scanner, Nmap Network Scanning has something
> for you. Nmap Network Scanning is available online from a variety of
> retailers; a current list as well as the best available price can be
> found at http://nmap.org/book. There you can also read several sample
> chapters in a free online edition.
> =====
_______________________________________________
Slugnet mailing list
[email protected]
http://wiki.lugs.org.sg/LugsMailingListFaq
http://www.lugs.org.sg/mailman/listinfo/slugnet
