Internet Books

I have been using this book to refresh my concepts. It's truly amazing to learn concepts you've known for so long from a different angle aiding in building on it. I always expect a lot on the background of the technology rather than heaps of implementation details and the authors have provided a balanced mix of both. It is the best reference on IGPs and another point worth mentioning is the highlighting of certain key areas, where most people are likely to make a mistake. Each chapter in this book takes you a step closer to knowing IGPs better.

People call this the IGP Bible. I would agree, and would recommend this book for anyone who is serious about networking. If you're going for certification, this is obviously one of the books you will need for the CCIE. I personally wish I had read this book and Vol. 2 before taking the CCNP BSCI exam... I probably would have aced it in about 20 minutes. Whether you're a CCNA, CCNP, or none of the above,any questions hanging around in your head about EIGRP, OSPF, and even RIP will be clearly explained here. The book even covered IS-IS (from a campus perspective... you would need a bit more if you're doing ISP work).

This is the first book I've read that tamed my fear of IPv6. For each routing protocol (aside from EIGRP, which did not support IPv6 when this edition was released) the book goes through everything about using that routing protocol with IPv4, then goes through the same thing using IPv6. When looked at side-by-side like this, you clearly see how simple and improved IPv6 really is.

With some books, you read an entire section on a particular protocol, and at the end of the section it will say "here is the command to redistribute it." or "FYI... here's a cool command called a route-map," but doesn't explain. This book has entire chapters on the individual topics of redistribution, default-routes and on-demand routing, route filtering, and route maps. This truly cleared up all of the the big network clouds floating around in my head.

Routing TCP/IP, Vol 1 - 2nd Edition

I have used the first edition of Jeff Doyle's Routing TCP/IP volumes 1 and 2 for some time now. I consider them essential to studying for the CCIE lab exam. They also act as an ongoing reference for any networking professional. I was anxious to review the second edition and have not been disappointed.

I was impressed that this second edition appears to be a well thought out re-presentation of the material. By that I mean it is not just the first edition with some bolt-on additions but rather a fresh covering of the material with the updates that inundate our industry woven in as opposed to added on to the existing text.

I find rare cases to employ RIP in my current work but as an old dog, I tend to monitor its evolution. The book does one of the best jobs of conveying RIPng and its exclusive use with IPv6 that I have seen. An important note that other writers seem to overlook is the reliance of RIPng on IPv6 authentication mechanisms. Coverage of EIGRP's approach to IPv6 was lacking but I am told this was due to press dates vs. standards publishing or some such. Separate research for this technology would be required for those that need it.

In typical Doyle fashion, information is presented in a very matter of fact way, diagrams are clear and correctly annotated. Command output is easy to follow and well trimmed of content that does not apply directly to the point being illustrated. I have chastised other Cisco Press books for failure to hit this level of clarity and correctness. It is a peeve of mine to have to flip back and forth several pages (or even chapters) to reference a diagram or a table that is being discussed in the current chapter.

Overall: As expected I was quite pleased with the book and will recommend it to anyone pursuing their CCIE certification. I will also recommend this book (as I have the first edition) to anyone involved in higher level network design and administration. I heartily give the book five stars as I believe most reviewers will.

I read the original edition of Jeff Doyle's "Routing TCP/IP, Volume I" (ISBN 1587052024) a few years back while studying from my CCIE. The first edition was a "must read" for any CCIE candidate. I am happy to say that the second edition improves upon and updates this essential classic in Cisco and network architecture.

Let's face it, internetworking has evolved tremendously since the original edition was published in 1998. The CCIE lab has also changed enormously since the first edition. For example, gone is IGRP, IPv6 is on the horizon. "Routing TCP/IP, Volume I, Second Edition" reflects these changes.

For new Doyle readers, the book covers the essential Interior Routing Protocols (IGP) for IP version 4 and IPv6, including static routing, RIP (version 1 and 2), EIRGP, OSPF, and IS-IS. The chapter on IGRP from the first edition is dropped, and instead is briefly discussed from a historical perspective in the EIGRP chapter. The second half of the books discussed the intricacies of routing protocol redistribution and introduces the reader to the concepts and uses of distribution lists and route-maps. Readers interested in BGP and Multicast should look to Doyle and Carroll's Routing TCP/IP, Volume II (ISBN 1578700892).

I especially loved the IPv6 content incorporated throughout the book. Prior to reading this new edition, my knowledge and understanding of IPv6 was at an elementary level. I found Doyle's explanation of routing IPv6 and examples to be concise, practical, and very helpful. I was easily able to walk through most of the configuration exercises on my home lab. Guess what, routing IPv6 isn't much different than routing IP version 4.

Who would have guessed that you could improve upon a classic? If you are a season veteran, the updated version is well worth the purchase price. For the aspiring CCIE, the book is an absolute "must have".

Mark G. Reyero
CCIE 12932

Jeff Doyle's 2nd edition of his best-selling book - "Routing TCI/IP Volume 1" is a welcome revision to the cannon required for any CCIE Routing & Switching candidate. Jeff Doyle, along with Jennifer Carroll, has done an excellent job at updating what is considered by many to be THE book on routing. In particular, the new edition does a terrific job at describing the white-elephant in the room - IPv6, IPv6's packet format and how to configure some routing protocols to advertise IPv6 prefixes.

The primary focus of this book discusses the most popular routing protocols - RIPv1 & RIPv2, EIGRP, OSPFv2 and, particular to IPv6, RIPng and OSPFv3. Dedicating over 450 pages to these topics alone makes the book worth itself. A further 130 pages are used to discuss route control (redistribution, filtering and route-maps).

In particular, I was impressed by:
* The book is fully-updated, and is not just a copy-and-paste of subject matter from the first book. For instance, on page 439 is discussed the use of a much misunderstood newer command `area nssa translate type7 suppress-fa'. This is just an example of complex and new commands that are documented.
* Of all the books I have looked at, this book does the best job at introducing oneself to RIPng.
* The book wastes little time discussing site-local addresses for IPv6. As the difficulties of using of IPv6's site-local addresses has rendered ths address as too complex to implement (and was, in fact, deprecated in RFC 3879), this books notes this and moves on. This goes against other recent books that that wastes pages and time discussing IPv6 site-local addresses. As any CCIE candidate will attest, studying time comes at a premium.

There are few cons worth mentioning:
* The book repeatedly incorrectly documents IPv6's link-local addresses as FF80::/10. Link-local addresses start as FE80::/10.
*IS-IS is discussed (which is no longer on the CCIE R&S lab). The book went to press too late to discuss EIGRP for IPv6 and is sorely missed.
*The book does bypass some interesting subtleties that you know Doyle is aware of but are, for the most part, undocumented. For instance, the differences between EIGRP and RIP when using the neighbor command.

The path to the CCIE R&S can be a long (and costly) road. While this book is focused towards candidates for CCIE Routing & Switching Lab, I believe this book would be a welcome addition to any Networkers' bookshelf.

I give this book 5 pings out of 5:
!!!!!

Secrets of Computer Espionage: by Joel McNamara is a must for any PC user. Staffed with so many examples (with a conversational funny tone) the book does a really good job. The book stresses the vulnerabilities and threats, explains in details the evolution of spy tactics, network eavesdropping and provide countermeasures as well.

It's good to know what's around us and be in the know!

Recommend ****
Guzman, Dror

Judging from the title, Secrets of Computer Espionage: Tactics and Countermeasures would appear to be geared to governments, security agencies, or high-level corporations. In fact, as the author makes clear, anyone with an Internet connection is a potential target of online espionage-even by such "mundane" means as viruses, worms, and phishing attacks-and this book is addressed to that huge audience.

Just who is spying on whom? The author explains that the typical person might be a target of bosses, friends, family members, hackers, and many others. Even people with nothing confidential or of value on their computers risk getting caught up in espionage and other cyber capers. For instance, hackers can use their computers as vehicles for staging attacks or as a location for storing illicit files, such as child pornography. And as more cell phones and PDAs connect to the Internet, the risks multiply.

What may be disturbing to some readers is that every computer device and peripheral provides at least one avenue of attack. The author explains many of these schemes, such as keystroke loggers and cleartext file transfers via file transfer protocol (FTP). In addition, operating-system and application-level vulnerabilities constitute even more ways that systems can be compromised.

Despite the grim picture painted by the author, the book isn't intended to make readers paranoid, but rather to acquaint them with the many risks posed by the Internet. This excellent book shows that someone quite possibly is out to get you, but it provides the tools to protect yourself.

The "Secrets of Computer Espionage" by Joel McNamara unveils what every PC user should know before they hop on to the internet Bandwagon. If you can read this review, then you need to purchase this book. Cyber Crime is the number one precursor to identity theft and the simple thruth is -- Internet Security is YOUR responsibility.

Joel McNamara makes you walk a mile in the bad guys shoes, forcing you to see both sides of the story. You will learn the real threats behind internet worms (such as Sasser) and trojan horses (like MyDoom). Discover why Windows(tm) isn't safe and learn who's after your PII (Personally Identifiable Information).

View the world through the eyes of an internet private eye and see that everything really is an open book, it just depends on where you look. Let Joel be your guide. Buy the ticket, take the ride... then go to www.pcpitbull.com and see what's really inside.

Joel McNamara's book is one of the very, very, few books that I classify as a "Must Read" for anyone involved in business or technology. This book does an amazing job of avoiding the "paranoia for paranoia's sake" tone seen so often in computer security books while still taking the issues seriously and discussing them intellegently.

The conversational tone is fun and often quite funny while not making the user feel talked down to. And Mr. McNamara does an equally great job of explaining very complex topics in way that works for both extremely sophisticated computer technology professionals and non-techies alike. I've brought this book around for side-discussions in the seminars I've given since it came out and my students, ranging from small business owners to 30+ year professional tech veterans in Fortune 50s have learned new and important lessons from it. For a book to address all these audiences is rare. For a book to succeed and be invaluable for all of them is virtually unheard of. This book succeeds amazingly well.

I've not only read the book through in one sitting, I keep referring back to it and it's incredibly useful web site on a regular basis.

Joel, thank you for writing one of the key books of the year!

You and your computer face a dizzying array of security threats, writes tech consultant Joel McNamara. Competitors, cops, crooks and even disgruntled kin would love a peek at your hard drive. But don't hyperventilate just yet. If you calmly analyze the desirability and vulnerability of your secrets, you can figure out how to protect yourself. McNamara's prose is surprisingly clear given the degree of difficulty of his topic, and he offers a number of useful sidebars, charts and examples from inside the tech business to juice up his instructional tome. We suggest this practical book to managers charged with protecting corporate data, and to people who are unsure just how safe their computers are.

The first book by Gina Lynn, SexRev 2.0 is an amazing look at the many possibilities of sexuality with the tools of the modern world. Her prose style is very easy to read. Her writing is to the point and direct, as is her attitude toward sex and relationships. This book is a very good introduction to the new technology of this century, and how it can be used to enhance your love life. After reading Gina's column for some time, it is nice to hear her 'voice' in a longer narrative context. I love the fact that you can look at her writing and say to yourself "I know she is speaking from experience."

Regina Lynn's book starts with an interesting and believable thesis ... that a new technology (the internet) has caused as much of a change in contemporary sexual patterns and practices as another new technology (the pill and other means of effective birth control) did a generation earlier.

As the Sex/Tech editor for Wired Magazine (in itself a respected distribution point for information about things new and technical), Ms. Lynn is in an almost unique position to keep up with the latest in this field. She brings much of this expertise to bear in this book.

With chapters dealing with everything from meeting people on line to women's access to pornography, she covers many aspects of the intersection of these two domains ... one ancient and one as modern as can be. Computers make possible powerful searches, which can bring people "together" who probably never could have met by chance in an earlier era. And women who would rather die than get caught sneaking down to Sam's Smut Shack to buy a dirty book from some pimply-faced clerk who went to school with their son can (and, the evidence suggests, do) go on line and download reading and viewing materials that suit their intersts.

She goes on to deal with things like sex toys, breaking up in the internet age, and a whole host of other issues.

But in the end, the end is (as Ms. Lynn says, optimistically, at the end of her book) much the same as the beginning:

"The future of sex is just that: sex, only better.
"Dig it."

There is no doubt that sex and tech are forever linked in our world and Regina Lynn's Sex Rev 2.0 is an entertaining, educational, and provocatively personal account of where these two fundamental forces in our lives currently stand. Regina does a marvelous job guiding the reader through the complexities, not only explaining the technology involved, but also the do's and don'ts to bring this material into your real life in a positive, healthy, and exciting way! In these times of extreme sexual oppression in this country, Regina should be recognized as sexual freedom fighter. I can't wait to see what version 3.0 has in store for us.

A smart savy guide to life love aqnd the internet. This is the real sex and web. It is both inteligent and entertaining and , well written . It's an easy guide to usiing texh to best advantage in social setting.. When left on a table necver fails to ignite conversation.

Regina Lynn does what so few manage to do: explain the basics about online sexuality without throwing her readers into a panic. Lynn provides a landscape of some of the ways that the Internet can *enhance* one's sexuality and sex life while most other books instill fear about this phenomenon in the average person. Sure, people become addicted to cybersex; people also become addicted to Twinkies. But most people are able to eat their Hostess products in moderation. And most people who choose to engage in online sexual activities -- or at least explore their options -- will do so to improve an in-person relationship, or use it to explore an aspect of their sexual identity they want to "try on" in a safer environment. Lynn writes with the notion that most people are simply curious about sex and the Internet as she paves the way for people to learn how the virtual world can improve their romances ans sex lives in the physical one. And she educates with compassion, humor, and savvy.

I'm sad I waited so long to read this excellent book. "Troubleshooting Campus Networks" (TCN) was published in Jul 2002, and it belongs on every network administrator's shelf -- now! This is the best networking book since Scott Haugdahl's "Network Analysis and Troubleshooting" and Eric Hall's "Internet Core Protocols." TCN will truly test your networking knowledge; you'll quickly validate the truth and discard the fiction.

So many books discuss networks, but somehow distort subtle points. Authors Oppenheimer and Bardwell know their material inside-out and explain key points in clear, concise prose. Ever hear of the "37% utilization rule for Ethernet?" It's false. Think that TCP sequence numbers count packets? Wrong -- they count bytes of data. And why are sequence numbers seemingly "off by one?" Look at the difference between ordinal and cardinal numbers, described in ch. 9.

TCN displays an uncanny ability to include just the information that is needed. "Reversible half-ASCII," which accounts for odd-looking NetBIOS traces, appears in ch. 12. The sections on Windows networking are first-rate, with helpful comparisons of NetBIOS with IPX, TCP, and NetBEUI. Even theoretical but damaging attack methods, like corrupting Hot Standby Router Protocol messages (ch. 8), are illuminated.

I have two complaints. I would have liked more attention paid to the mechanics of analyzing traffic, including the use of taps. Also, the Windows chapter seemed to end abruptly, just when the dynamics of Windows 2000 networking and port 445 should have appeared.

TCN is designed to educate protocol analysts. People with this skill set can administer LANs, analyzer network-based IDS traffic, and deploy network infrastructure. I thank the authors for their efforts and look forward to their next endeavor.

I have had this book for about 10 days. It is excellent, destined to become a bestseller in its category. But this will not be surprising because Oppenheimer's previous book has received a stamp of approval in its category (Top Down Network Design, Cisco Press, ISBN: 1578700698). For those privileged to have Top Down Network Design, we know what I am talking about: a self-contained book that delivers beyond a Cisco Certification test.

It is in this very light that I rate Troubleshooting Campus Networks: it is a an extremely valuable reference book for network administrators, but it will also help you pass the Cisco CCNP Support exam.

Briefly going through the contents, Chapter 1 describes the book itself and its audience. Chapter 2 details formal network troubleshooting methods, including the Cisco Troubleshooting Method, protocol analysis, network traffic types and the various troubleshooting tools. Above all, it emphasizes the importance of proactive network management.

Chapter 3 provides in-depth knowledge on troubleshooting and Analyzing Ethernet Networks. And Chapter 4 will be even more appreciated: about 55 pages dedicated to troubleshooting and analyzing IEEE 802.11 Wireless Networks. This chapter alone will be of great assistance to those preparing for Certified Wireless Network Administrator (CWNA) from Planet3 Wireless, Inc. It provides an excellent introduction for those who want to know what Wireless LANs are all about.

Chapters 5 and 6 provide indepth knowledge on troubleshooting and analyzing the Spanning Tree Protocol and Virtual LANs respectively. Chapters 7 and 8 do the same for Campus IP Networks and Campus IP Routing Protocols.

What I have found to be of equally great value is Chapter 9, detailing TCP, UDP, and Upper Layer protocols' troubleshooting and analysis. Here, one would find the answers to the questions he may have had about HTTP, FTP, SMPT protocol analysis and the like.

Chapters 10, 11, 12 and 13, respectively provide the skills needed for troubleshooting and analyzing Campus IPX Networks, AppleTalk Networks, Windows Networking and Wide Area Networks.

In all, this is a powerful tool from which you will not only find the answers to day-to-day networking issues, but will also empower you to become a better network administrator.

If you are in network administration, a networking professional generally or preparing for Cisco CCNP Support exam, this is the book!

Good book for anyone who is having problems with their networks. Author makes things easily understandable and the book is a great reference.

Many books have I read where authors speak of Ethernet or TCP/IP or other subjects. This book fills in the gaps without being too vendor biased. Cisco and WildPackets are excellent companies, but the book really focuses on enhancing your network to it's fullest. I learned that just because my network "works", there may be many things ready to break that had not been troubleshot before. Now I really feel able to properly "fix" my troubles and not just make my network magically work when there is trouble behind the scenes waiting for a Friday night to break.
The two authors have been in the industry since it's inception and bring a passion for networking to the table with a focus on teaching those of us who do not have 20+ years in the trenches.
This book is not only a reference book, but a well written, easy to read explanation of networking and troubleshooting. With real-life scenarios from the authors and practical situations played out. I felt as though I had a mentor walking me through the logical steps of analysis.
Buy reference books and keep them on your selves for when you need them. Buy this book, read it and keep it close because you will need it!

My overall impression was that this is a great book. I felt that the first chapter was unnecessary detail, and sort of seemed like chest thumping to me. I find this book to be an excellent reference about just about all aspects of LAN communications. I was not impressed with the WAN protocols however. I sort of expected more of that, as you might find in a Campus network. I keep this book handy, and often find myself using it as a reference when I am unsure of a conclusion I have drawn. I recommend this book to anyone looking for reference material.

The Ultimate Guide to Search Engine Marketing by Bruce C. Brown is a must read for anyone who owns and operates a business in today's technologically advanced world. It is a great resource and a handy reference guide to the mysteries of internet marketing. It explains, in detail, what Search Engine Optimization is and how to make your website visible in search engines via the use of keywords. It contains comprehensive information about marketing your business and products online. While some of the chapters can be quite complex, the author includes screen prints as he walks the reader through the necessary steps to get a website on to the more popular search engines. There is a chapter devoted entirely to fraud, and how to stop your competition from clicking on your ads and burning through your advertising budget - something I didn't even know existed until I read this book. The case studies are helpful in demonstrating the effectiveness of directed pay per click marketing and search engine optimization. After reading this book, you will not only have a clear understanding of how internet advertising and marketing works; you will be able to apply your knowledge and immediately start marketing your business on the internet.

One hundred fifty years ago, businessmen believed that the China market was unlimited. They illustrated its size by claiming that, if they could sell even a single wooden match to every citizen of China, they would make a fortune. Nowadays, the Internet has replaced China as the source of unlimited market opportunity. Bruce C. Brown's The Ultimate Guide to Search Engine Marketing: Pay Per Click Advertising Secrets Revealed tells the reader how to tap into this opportunity and start building a fortune.

Brown cites studies that predict 231 million online users in 2009 spending as much as $3.7 billion. Brown shows readers how to reach those users through various online marketing techniques, in particular through PPC (pay per click) advertising. He details for owners methods for generating traffic, developing marketing strategies, budgeting, building sales, and protecting themselves from fraud. In addition to this information, useful to most business owners interested in generating Internet traffic, the book also operates on another level.

Brown goes into considerable detail on optimizing a web page for search engines and working in detail with Google and Yahoo marketing programs. No doubt, there are individuals who are equally comfortable with web page design and business operations, but it is more likely that a business owner will best use the web page design information to guide their interaction with a programmer. The book closes with case studies and more expert advice from individuals who have been there and done that. Brown has created a thorough guide loaded with a great deal of useful information.

The Ultimate Guide to Search Engine Marketing: Pay Per Click Advertising Secrets Revealed was recently selection as a USA Best Books Awards 2007 Business: Marketing & Advertising Winner: The Ultimate Guide to Search Engine Marketing: Pay Per Click Advertising Secrets Revealed by Bruce C. Brown.

Winner:
The Ultimate Guide to Search Engine Marketing: Pay Per Click Advertising Secrets Revealed by Bruce C. Brown
Atlantic Publishing Company
ISBN: 978-0-910627-99-3

Finalist:
How to Use the Internet to Advertise, Promote, and Market Your Business or Web Site--With Little or No Money by Bruce C. Brown
Atlantic Publishing Company
ISBN: 978-0-910627-57-3

The Ultimate Guide to Search Engine Marketing: Pay Per Click Advertising Secrets Revealed by Bruce C. Brown is a great book for small business owners and those with small marketing budgets. This comprehensive guide is a wonderful addition to anyone who wants to promote their business online.

The online pay-per-click system may seem complicated with its many ins and outs but with Brown's book, you can implement his ideas with little to no money and do so easily. Each section offers a wealth of information for web marketing and pay-per-click newbies. There are even three separate sections each on how to use Google, Yahoo and Microsoft alone! The concepts are simple and the history of online marketing gives one a helpful background in getting started. Brown teaches you how to create a budget, devise a marketing strategy of your own and work from there. This book is a good resource with its handy checklists, helpful glossary of terms and sections on writing your own press releases and even detecting fraud in the online marketing world.

`The Ultimate Guide' gives detailed plans and goes far beyond the basics of PPC marketing. With Brown's guide, you will learn the difference between the internet marketing practices and be armed and ready to get your business out there. What I loved the most was that names, internet addresses and links are all right here in this book! Brown includes so much information and guidance that there is even a section about how much time you can expect to spend depending on the success outcome level you are looking for. There are a variety of links and resources all at your fingertips in this book. It is detailed, well laid out and incredibly helpful to anyone who is looking for a new way to advertise their business and get beyond the first round of search engine success.

Bruce Brown takes us on a delightful tour of search engine Marketing. We meet some Pay Per Click guru's that astound with their knowledge.

"Forget schemes and empty promises. There is only one way to guarantee
that your web site will get visibility, at the top of all major search engines. It is through hard work compared with P.P.C. advertising," says Bruce.

So much for my six pack of silver bullets. But he's right. And when you think about it hard work never hurt anyone . . . . right.

We now have two billion pages on the internet. Google and Yahoo come under the spotlight. Bruce even gives Microsoft ad Centre the once over.

To get a maximum return, we are gonna need to do our homework. These three are the major players so study up and decide which is best for you.

Chapter 14 has some real case studies. One example is `The Hitchin Post.' In Sep. and Oct. they did not spend on P.P.C. advertising. The money just trickled in.

The next month, Nov. they invested $550 on P.P.C. . the return was $2,375.55 . The following month $885 was shelled out and the payoff was a staggering $4,131.59 . Almost double.

If this is not enough to convince you, on page 200 is a special report. In the closing pages there is an excellent glossary.

Honeynet solutions were seen just as a research technology a couple of years ago. It is not the case anymore. Due to the inherent constraints and limitations of the current and widely deployed intrusion detection solutions, like IDS/IPS and antivirus, it is time to extended our detection arsenal and capabilities with new tools: virtual honeypots.

Do not get confused about the book title, specially about the "virtual" term. The main reason to mention virtual honeypots, although the book covers all kind of honeynet/honeypot technologies, is because during the last few years virtualization has been a key element in the deployment of honeynets. It has offered us a significant cost reduction, more flexibility, reusability and multiple benefits. The main drawback of this solution is the detection of virtual environments by some malware specimens.

The detection of honeypots has always been one of the main concerns in the honeynet community, basically because if the attacker can identify them, they are useless. For this reason, one of the chapters is just focused on providing some light, tips, and tricks about what an adversary can really accomplish. In fact, we have not seen lots of real-world incidents where the attacker actively checks the existence of honeynet setups.

I have been working with honeynets during the last 5 years. We founded the Spanish Honeynet Project on 2004, and almost at the same time we became part of The Honeynet Project and released the Scan of the Month 32. The main honeynet/pot book reference till last year was the book published by the Honeynet Project. As this is a rapidly evolving field, definitely it has been replaced by this book, written by two project members.

The first chapter is a very brief introduction to honeynet technologies and basic tools. You can jump through it if you are not new to this field. Then, the book covers the main two honeypots types: high and low interaction. The high interaction section provides details about the tools to virtualize your honeypots: VMware, UML, or more specific solutions, such as Argos. The low interaction section provides details about some the most relevant honeypot types to cover lots of detection scenarios: worms, traditional server attacks, Google Hacking, Web-based attacks, etc. It is a wide overview that will give you lot of ideas for new deployments.

The whole book has been cooked with a how-to mentality , and it explains in detail how to install and configure the different tools and software elements covered. Additionally, it provides guidelines, best practices, and analysis recommendations for each tool based on the authors experience. However, for the how to portions take into account that most of the solutions are Linux-based, and the installation and setup process will vary based on the tool version and the Linux distribution you are using (library dependencies, etc). In any case, the step by step guides are very useful as a general setup reference.

From my perspective, the most valuable part of the book is chapters 4 to 6. The authors, Niels Provos and Throsten Holz, are the lead developer/architect for honeyd (chapter 4 and 5) and strongly related with nephentes (chapter 6), respectively. These two are the most famous and advanced low-interaction server-based honeypot and malware honeypot. They know what they are talking about :), and you cannot find a better reference out there for these two tools. The book is an excellent guide, covering from the design principles and innovative deployment ideas, to all kinds of configuration options and possibilities, including limitations on real-world scenarios. Chapter 6 is complemented with other less popular malware-based honeypots (except for Honeytrap).

The book includes some extra material, covering academic and research hybrid solution, still on their early stages, but that can give you and idea of where these technologies are evolving to and the major challenges we are facing nowadays. This pretty much theoretical content is well balanced with the case studies chapter, where real incidents involving different honeypot types are presented. These are always a fun read and a way of getting experience and learn how to deal with intrusions.

Finally, one of the main expansion areas we are involved today is the creation of new client-based honeypot technologies. This book section (highly recommended) does a great job introducing multiple high and low interaction honeyclients currently available, their benefits and drawbacks (chapter 7). This information is perfectly complemented by the last two chapters, focused on tracking botnets and analyzing malware with sandbox environments. Once a client is compromised, it typically becomes a member of a botnet, and for easy and quick categorization, we start by performing a malware analysis of the specimens. I recommend you to add all this knowledge to your incident handling and response capabilities.

Something I would have liked to see in the book is a section about a fully virtualized honeynet environment, showing how using VMware, you can build up a virtual Honeywall (just slightly mentioned on chapter 2) and different honeypots, creating a complete, cheap, mobile and multi-purpose virtual honeynet infrastructure. Also, we receive multiple questions related to this kind of setup in the Honeynet Project mailing lists, because all the previous whitepapers are obsoleted now. I've been deploying these type of solutions for fun and professionally during the last few years and I strongly recommend you to start using them. You won't be disappointed about how much you can learn of what is going on in your networks and systems, and this book is the best starting point.

If you have any relationship with the intrusion detection, incident handling and forensics, threat analysis, or SOC and CERT security side of things, definitely this book is for you. Go through it and improve your capabilities with easy to deploy virtual honeypot solutions. You just need a (not so new) computer, virtualization software, and some time!

The book is well written and I feel that I will be successful in setting up my first honey pot once I get my network segmented for security purposes.

Excellent, really good, sorry for my bad English, but is EXCELENT BOOK.

Regards

Carlos

I have relatively little to add to the praise that has already been given of this book, but I found it extremely enjoyable. In particular, the chapters on collecting and analyzing malware were quite good, in my mind. I think the book delves a bit too deeply into man page territory with the level of detail provided on the minutia of utilities, but that doesn't detract from the book, as it is very clearly segmented away from loftier topics.

Overall, I found this book to be quite excellent, and very informative and accessible to those new to the arena of Honeypots.

It's fairly difficult to find good books on digital defense. Breaking and entering seems to be more exciting than protecting victims. Thankfully, Niels Provos and Thorsten Holz show that defense can be interesting and innovative too. Their book Virtual Honeypots is your ticket for deploying defensive resources that will provide greater digital situational awareness.

A security technician with some degree of proficiency should be able to read Virtual Honeypots and then implement at least one of the solutions presented. This sounds like a fairly common event, but too often technical books do not provide the detail required to transform theory into practice. Virtual Honeypots offers installation and operational guidance for a variety of deception and analysis systems, primarily for server-oriented technologies. I especially gained a better understanding of Honeyd and Nepenthes, the two applications about which I cared the most.

While I liked the first 2/3 of the book, I have to say I really enjoyed the last four chapters. These covered Detecting Honeypots, Case Studies, Tracking Botnets, and Analyzing Malware with CWSandbox. Of these the final chapter was superb. Ch 12 has probably the clearest explanation of hooking I've read anywhere. I am not a rootkit writer or Windows kernel programmer, but the text was so well written I had zero problems following along.

I gave Virtual Honeypots five stars because it is so unique and well-written, but I do have a few minor issues to mention. First, I was somewhat disappointed by the honeyclients section (ch 8). I was not as confident that I could implement a honeyclient solution after reading the great material on server-oriented honeypots. Perhaps the second edition or a separate book will give greater attention to this area. Second, I found a few small technical items. On p 4, it isn't accurate to say "TCP...[gives] each packet a sequence number." Bytes of application data are numbered, not packets. On p 13 we are told to use a snaplen of 1500 bytes, but this will cut off the last 14 bytes of many Ethernet frames. Try it with ping -s 1472 while sniffing with Tcpdump. As you can see, these minor issues are easily fixed in a future printing and do not justify dropping a star.

If you are at all interested in potentially deceiving intruders, buy and read Virtual Honeypots. You'll learn about more than VMware (QEMU, UML, etc.) as well as numerous open source tools you can download and try for free. I look forward to reading more from these authors -- perhaps a book of true case studies?

Now, you read "Building a Server with FreeBSD 7" and you want to do more. This is the book to get.

This is an excellent book, plenty of information and very well written, covering every aspect of a FreeBSD system.

I am a big fan of open source software. I've been a GNU/Linux user for years but I must admit I had never played with BSD before. I bought this book because I wanted to set up a network server at home and I thought it was the perfect occasion to try FreeBSD. I expected one of those thick and boring reference books but, hey! I am very glad I chose "Absolute FreeBSD" because it is the perfect example of how write a clear, informative, nice and accurate technical book. The book is not for the absolute beginner but, in general, it's very easy to read. It should be self-explanatory to anyone with a little experience in networking, UNIX-like systems or, in general, computer science.

The author is a FreeBSD developer himself, so he talks about the inner workings of the FreeBSD community, providing an interesting point of view of the operating system, not only as a regular user but also as one of its "insiders".

The book covers everything a BSD system administrator should know. It covers basic things like how to install the system, how to make backups and recover from data loss, how to configure the network, disk management, etc. It also includes detailed explanations and sysadmin tricks of the usual network services: DNS, SSH, DHCP, FTP, printing server, web Server, mail Server... The author also gets into more advanced topics like, kernel tunning, security, performance analysis and tunning or RAID management. I was particularly interested in using hard disk encryption. I thought getting it was going to be a pain in the neck but the book explains how to do it with 6 simple commands. Nice!

In general the book is well structured. Concepts are explained clearly and with a lot of examples. Some chapters cover so many concepts that my brain couldn't keep up with so much information and I had to take a break for a nice beer ;-) The book is worth it's price: 37 dollars for 700 pages.

Only one advice: Although it has a graphical interface, FreeBSD is normally configured trough the good old command-line. Don't expect this book to tell you how to configure your web server double-clicking on an icon, FreeBSD is not Ubuntu or Win2003. The book may not be suitable for Happy Windows Users, used too the click-next click-next click-next way. This book is for computer geeks, system administrators, people that enjoy using different operating systems, people that need to have a robust system to use as a network server, people that like to tune every detail of their machines, or people that need to learn freeBSD and have no time to google every single configuration detail. For any of those people, I highly recommend this book.

This book is worth every dollar.

Easy to read, you don't need to be already an experienced administrator or user to read this book

'Absolute FreeBSD: The Complete Guide to FreeBSD' is another hit in the No Starch collection of books which have their own unique layout and style of writing associated with the authors publishing with them. With around 700 pages of content you will learn the ins and outs of this Unix-like operating system and see how powerful it is and what it can do for you. If you use FREEBSD on the job or are just a tinkerer that plays with non Windows/Mac systems this will enable you do do administration, learn to programmatically script, and get behind the curtain to do more than you thought possible! If you need a FREEBSD book, No Starch makes learning FUN and it's a great addition to your library!

***** RECOMMENDED

I really enjoyed this book. It was straight forward, to the point and provided some great best practices as solutions to some common security problems. A major problem with security is management. Too often the people making the important decisions do not understand the information that they are given.

As the authors point out, Managers and technical staff speak different languages and that is the key problem here. Managers that read this book will gain a clear understanding of the problems that the IT staff faces, and IT people that read this book will understand the management side and will know how to speak to non-technical staff.

This book is a perfect introduction to security and related business concerns.

This is a really good introduction to security for non-technical and IT personnel. It covers a lot of subject matter including disaster planning, and writing a security policy. This book is an excellent resource for managers who need a clue. It is written better, more organized and more helpful than "Secrets and Lies" and other similar books. I recommend this book for anyone that needs a good overview of security. You may not be a CISSP after you finish it but you will understand what a CISSP is saying.

This book is a great overview of security and policy development. This is not a technical book, it does not teach you the specifics of any particular OS, or how to configure software. It does ask key questions, and gets you thinking about security programs and business practices. The policy template is an added bonus. I gave this book to my manager to help convince her that we needed to look at security differently and budget for it.

This book is a great starter book on information security! I was wading though my copy grumbling "I know this, this, this...", when it occurred to me that I am not the intended audience.

For some time, one of my friends was asking me for a good book on security for somebody who knows absolutely nothing about it. I gave him "Access Denied" - and now he is hooked. Several weeks has passed by and he is already asking for "Hacking Exposed"...

"Access Denied" covers a wide range of security-related topics. The book is well written, logically organized and have everything to appeal to the beginners in the security field, those curious about modern (if not cutting edge) security topics and those migrating to security from other IT fields.

Anton Chuvakin, Ph.D., GCIA, GCIH is a Senior Security Analyst with a major information security company. His areas of infosec expertise include intrusion detection, UNIX security, forensics, honeypots, etc. In his spare time, he maintains his security portal info-secure.org

This book is a great introduction to security concepts and procedures. I've used it as a resource for college papers and I have used the templates to start a security policy. I recommend it to anyone that needs a well written primer on security.

I just started reviewing books this month, but this book is one of my favorites among those that I've read. I am an above average webmaster and found this book extremely useful. You know the saying "someone always knows more"? Well this book is a prime example of that saying. This Adsense book is one of the most up to date on the Internet today!

DAMN RIGHT! This is The Best Damn Google Adsense Book. As other reviewers have stated, this might be the best google adsense book on Amazon, and that's saying something because there are more then a few really good ones here.

This is the best Google Adsense book available on amazon, plain and simple. This is the most up to dat Google Adsense book available on amazon at this time in my opinion. I like a few of the others also but this is by far my #1 Adsense pick.

Well worth the $39.99 I paid for it, my sites are now making more the that each month solely because of this book. Thanks so much!

I never knew you could earn money in so many different ways online. It just amazes me that everyone doesn't start a website who has a computer. It's like there's free money out there for those who have knowledge of it. This book is great!

Forests have been felled to carry articles and books analysing the Internet Boom and its Bust from every conceivable angle. This book offers far more than simple analysis, breaking down cases and examples into straightforward lessons for business owners and executives.

George Colombo has an engaging, direct style that is short on jargon and long on lessons that can be applied to nearly any business that wants to use the web to increase customer contacts and sales. Colombo argues that the basics of business still matter, whether the business is based in a downtown storefront or a Java-heavy catalog application. It's the sort of advice that a lot of us could have used in 1998.

I'm a survivor of the Internet Era, and have read many of the books that have tried to make sense of what happened, but this is the one that will be covered with pointers and sticky notes when we're building the next business web site. Capturing Customers.com is a keeper.

It is a useful book which can give readers much information about runing a Dot com company. It was known to me that, running a company with web page only cannot work effectively since physical supports are needed to provide to customers. So, the author recommended the points that I think it is quite insightful, that is "the integration of online/offline strategies. As online business can support the offline business, i.e. physical store, salesperson. The reason is that customized services and stores are needed to provide to customers, so that the company can suvive in the competitive market.

Also, another useful point of the book is about the offline strategies. Since the effective use of offline strategies can greatly help the operation of the company and the promotion of products and services, there are some strategies that suggested by author.

For example, personalized customers through internet, e.g. asking them for their personal information, so that the company can send those things customers are interested and customized the email messages, for reminding and promoting about the products or services the company could provide to them.

This book was very helpful to me as a beginner in internet marketing. It opened my eyes to many new ideas and ways of thinking. The author's style of writing was comfortable and easy to comprehend. I have already recommended this book to several of my co-workers.

What I liked most about this book, is that it cuts through a lot of the (now obvious) hype of the internet to focus on the fact that you cannot simply ignore traditional means of developing customer relationships when you decide to incorporate the internet into your business plans. Effective businesses still need to provide face-to-face and voice contact with customers.

This book also stands on the shoulders of other giants by including several interviews with key industry gurus that honestly have perceptive insights. For example: In a world where pricing cannot provide you with a competitive advantantage, how do you differentiate yourself or your products?

The tenor of the book is summed up in the my favorite quote: "In the grand scheme of things, the technology piece of the puzzle is relatively easy. There is plenty of talent out there that is available to help you get where you want to go. The hard part is knowing where to go."

This book helps you to see where you need to go.

My only criticism is that there are several typos and grammatical errors in the book that would have been caught if somebody had done a little proof-reading before it went to press. The errors, however, are minor and do not detract much from what is a very helpful book written in an engaging style.

Colombo's insight into establishing and maintaining a web based business is crucial to success. Colombo demonstrates what is needed to establish, and maintain a website for long term business success. This book is a must read for folks just starting a business and desire to use the web as a marketing tool. Even for established "brick and mortar" businesses, Colombo gives good advice on how to reach customers to acheive incremental sales growth. Even if you think you know how to use the web to your advantage, I would recommend this book. In today's competitive environment, practical information is what you need. This book delivers.