Slashdot Mirror

fogez writes "This tutorial shows you how to reverse engineer a new example of Windows Mobile malware - step by step. Included are methods for background research and even include a fully annotated IDA disassembly of the ARM binary. We hope that this tutorial will inspire others to enter the exciting field of reverse engineering embedded malware."

Nigel McFarlane writes "I have no life (humour) other than to write articles about Web technology and open technologies, and the way they mediate, enable and transform our public places and our participation opportunities. Mostly I write about Mozilla and Linux, but my latest effort is an attempted wake-up call over Web standards and the future of the Web." Self-deprecation aside, it's a decent article that summarizes the stakes well.

sundling writes "There are interesting articles here(1) and here(2) on software espionage against the Soviets. In the Ronald Reagan era, a Soviet spy network (Line X Network) was looking to steal software to run oil pipelines. The CIA found out what they were trying to steal and fed them bogus versions. This is of course not the only time the CIA has done this. ... An article on the ethics of programming mentions this very topic and the moral implications." Update: 03/02 09:22 GMT by T : Oops -- this is a dupe.

cthulu13 writes "Network security can often be a difficult task because there are so many things to consider. This book can help you get a handle on it all by providing a single place to look for advice on policy, design, and implementation. I wish I had the benefit of this book when I was first starting out in my career in security." Read on below for cthulu13's review of the second edition of Merike Kaeo's Designing Network Security. Designing Network Security, 2nd. Ed. author Merike Kaeo pages 745 publisher CiscoPress rating 8 reviewer cthulu13 ISBN 1587051176 summary A good overall resource on network security policy, design, and implementation.

Weighing in at a hefty 745 pages, Designing Network Security is a concise and authoritative guide to the sometimes daunting task of designing secure networks - with a special emphasis placed on Cisco solutions, of course. The book is divided into three major sections:basic theory and essentials; policy design and best practices; and implementation with Cisco hardware. In my opinion this book is best suited as a reference book for those who already have a firm foundation in security and networking, but could also be of value to beginner level techs with a bit of patience. While the topics that are covered have all pertinent information discussed, some might wish that there were a bit more explanation of the Hows and Whys.

The first section, "Security Fundamentals," is an especially valuable part of the book in that it provides a great desk reference to the building blocks of secure networks. The first chapter deals with the basics of encryption technologies - symmetrical/asymmetrical cryptography, digital hashes, public key systems, etc. From there the book moves into what is probably its meatiest chapter, covering the application of encryption to security technologies which range from TACACS+ authorization to TLS encryption. Building on previous chapters, the third chapter deals with the application of these security technologies in protecting real world installations. I was especially impressed with the attention paid to wireless and VoIP technologies in this chapter - this is one of the first discussions of VoIP security I have seen in a general reference book. The first section winds up with a fairly exhaustive discussion on routing protocol security which I also thought was excellent.

The second section, "The Corporate Security Policy," is a good reference to infosec management. Many topics covered in this section are applicable to the CISSP exam - so if that is a career goal for you, this can act as one of your study guides. The section begins with a discussion of threats in the enterprise environment. Types of threats as well as common protocol vulnerabilites are discussed. I felt that some of the material in this chapter was a bit dated, in particular the sections on TCP sequence number attacks (most recent OSes have improved their sequence generation routines to make it nearly impossible to do this) and the ping of death (which I don't remember working on anything after Windows 95 or Linux 2.0.23). The next chapter is a bit more valuable in its discussion of the basics of risk assessment and management. This leads into a discussion of actual design and implementation of security policy. Sample topics include physical/logical controls, data confidentiality, and policies/procedures for staff. And finally this section concludes with a good chapter on incident handling and response.

The final section, "Practical Implementation," is the Cisco-centric third of the book. Many parts of this section are a good reference to points covered on the CCSP exams, especially the SECUR test. The first chapter deals with configuring access controls and audit on Cisco devices from the PIX to switches and routers. A brief discussion of intrusion detection implementations is also included. The next chapter consists of primarily information dealing with firewall/screening router construction - content filtering, packet screening, and the various types of IOS filters. Several implementation examples are included to walk you through the process of configuring CBAC (content-based access control) and the Cisco PIX. From there the section moves to remote access security, with good sections on all Cisco based AAA (authentication, authorization, and accounting) features including lock-and-key and accounting-based billing. Finally, the book wraps up with a chapter on securing VPN, Wireless, and VOIP networks which focuses more on design than implementation, although there are still some Cisco (PIX) based examples. The book's appedices cover DDOS attacks, well-known port numbers, and guidelines for reporting and preventing intrusions.

Overall, I felt this was an excellent book which clearly fufilled its purpose. For the intermediate to advanced network security engineer this could act as an excellent desktop reference, while still being accessible enough to teach to the beginner. The writing style is clear and precise, and I found no technical errors in the material presented. As I mentioned, the book could act as an additional study aid for several security certifications, including the CISSP or the CCSP. I look forward to the next volume by Ms. Kaeo.

You can purchase Designing Network Security, 2nd Ed. from bn.com. Slashdot welcomes readers' book reviews -- to see your own review here, read the book review guidelines, then visit the submission page.

Alexander Moskalyuk reviews below the new O'Reilly title Essential Blogging, which he points out is available not only for purchase through conventional purchase, but also with O'Reilly's Safari Online subscription, where it's available for a mere 1 point. Read on for his take on how useful Essential Blogging really is. Essential Blogging author Benjamin Trott, Mena G. Trott, Shelley Powers, J. Scott Johnson, Rael Dornfest, Cory Doctorow pages 264 publisher O'Reilly rating 3/10 reviewer Alexander Moskalyuk ISBN 0596003889 summary Introduction to running Weblogs on the Internet

Blog, Blog, Blog. Recent media infatuation with the blogging effect seems to be overwhelming. It seems that newspaper journalists have just discovered the ability to post and comment messages on the Internet, while most of the computer aficionados and heavy Internet users just shrug their shoulders when told about personal Web journals that link to other articles on the Web.

Blogging Essentials is mostly a generic guide to setting up and running your own Weblog using the software available out there. It doesn't require as much technical knowledge and Unix experience as Running Weblogs with Slash, and doesn't have a nice preface by CmdrTaco, but for a person who is determined to keep a daily journal available on the Internet, it would provide helpful reading material.

What's reviewed

Blogger, Radio Userland and MovableType are the primary products discussed in the book. Each of these packages has two chapters dedicated to it, one for beginners' introduction and one for description of advanced features. The main difference between these three products is in their hosting capabilities - Blogger wants you to keep the journal entries on its Web site and provides Web interface, Radio UserLand keeps the posts on its own server as well, while providing desktop interface, while MovableType assumes the user has a Web server on which to install the blogging software. Both Blogger and Radio UserLand allow for self-hosting, which is also covered in introductory chapters.

Another chapter is dedicated to server-based Blosxom, and in the review of desktop clients such blog utilities as BlogScript, BlogApp, BlogBuddy, W.Bloggar and Slug are covered.

What's good and what's bad

While the depth of covered material is surprisingly large for such a narrow topic, a lot of book pages are spent on displaying screenshots of the blogging software, and showing other people's blogs. The only thought that never left my mind while reading this book was "Who would buy it?" Why would you need 264 pages to explain you how to set up your own journal and run it? People who find satisfaction in running their own customized versions of online journals already know most of the material, and those who don't would probably opt in for easier Web-based interface like LiveJournal.

The book seems to be just a quick walk-through of the manuals, and if you consider that all of the reviewed products have pretty good help and FAQ sections, the need for such book decreases even more. I can hardly name anyone to whom I would recommend this book.

Table of contents can be viewed on publisher's Web site.

You can purchase Essential Blogging from bn.com. Slashdot welcomes readers' book reviews -- to see your own review here, read the book review guidelines, then visit the submission page.