Review - Security Warrior
Posted Sat, 18 Jun 2005 14:32:56 GMT to Posted in Reviews Tags networks, oreilly, review, security
Security Warrior labels itself as the “most comprehensive, up-to-date book covering the art of computer war�?. Having been on my To-Read list since it was initially released a year and a half ago, I was interested to see how accurate this claim remains.
Obviously, some topics you might expect to be covered in a comprehensive security handbook are missing. No where to be seen is discussion of vulnerabilities in MD5 and SHA, as these hadn’t been published yet. Also missing is any reference to the Linux 2.6 kernel, as the first version of that was released barely a month before the first publishing.
However, this items discussed in this book are general enough that they are still valid and highly valuable. Discussion is platform neutral where possible, with further discussion on platform dependencies where needed. There are some very nice examples and case studies, which make the book a more interesting read than strict discussion. The Advanced Defense subsection is spectacular and well deserving of the designation Advanced. A lot of the ideas there, while simple in nature, are things that I haven’t come across before, or even thought of, especially their discussion on intrusion detection and log aggregation.
Read more...