Slashdot Mirror


Firewalls and Internet Security, 2nd Ed.

Eater writes "Over the last decade, we've seen an explosion in the area of books dealing with the subject of Internet security. Few have defined the genre as well as Firewalls and Internet Security: Repelling the Wily Hacker by Bill Cheswick and Steve Bellovin. Security gurus rejoice... the 2nd edition is finally here!" Eater compares this new version to the original in his review below. Firewalls and Internet Security: Repelling the Wily Hacker, 2nd Ed. author William Cheswick, Steven Bellovin, Aviel Rubin pages 455 publisher Addison-Wesley rating 9 reviewer Eater ISBN 020163466X summary Long-awaited second edition of the security administrator's favorite classic.

Those familiar with this classic have undoubtedly recommended it to other hackers seeking a definitive text. Firewalls and Internet Security has provided a roadmap for security conscious sysadmins since its publication in 1994. It mixed sound policy recommendations with examples of UNIX-based implementations, all rooted in experience from working in AT&T corporate security.

Although many of the ideas laid out in the original edition are just as relevant in today's Internet, much has changed technically since 1994. Alas, this month Addison-Wesley has released a new second edition ... nearly complete rewrite (and 135 page expansion) of the original classic.

A glance at the new edition indeed reveals significant changes. Avi Rubin has been added as an author. The preface details some of the predictions made from the first edition... some of which came true, and others that didn't. Most sections have been vastly expanded, if not completely restructured.

Denial-of-services (DoS) attacks, infamous in the previous decade, are explored in greater depth. Replacements of deprecated tools have been given new sections (ssh is detailed following the chapter on the "r" commands, for example.) The myriad of enumeration tools available today are discussed (i.e., Nessus, hping, nmap).

Intrusion-detection tools, almost completely absent from the first edition, are given space in the new book, although not nearly as much as I would have liked. Much has been added on the subject of cryptography and authentication. Forthcoming standards like IPV6 and DNSsec are discussed.

Those who've read the original will recall the "Evening with Berferd." the chapter detailing a break-in the authors were able to watch and analyze in real-time. This inspired more than a few honeypot oriented projects. The second edition introduces a second real-world scenario, the "Taking of Clark," which illustrates forensic measures to be taken after after a host is compromised. Fans of Foundstone's Hacker's Challenge will find it familiar.

The defining thread across all of these topics is what makes this book a classic: the emphasis of the "why," not just the "how." Although the examples are mostly geared towards UNIX users, the guidance and policy suggestions are directly applicable to any platform where the reader is responsible for making security decisions.

Perhaps the greatest aspect of this book is its availability: it's on the web here. Those who are working in the security field, or those interested in it, will benefit from owning the hard-copy available from Addison-Wesley.

You can also purchase Firewalls and Internet Security, 2nd Edition from bn.com. Slashdot welcomes readers' book reviews -- to see your own review here, read the book review guidelines, then visit the submission page.

5 of 84 comments (clear)

  1. GET A FiREwall or Hax0r5 WILL BEnD U OVER by Anonymous Coward · · Score: -1, Flamebait

    *_g_o_a_t_s_e_x_*_g_o_a_t_s_e_x_*_g_o_a_t_s_e_x_*_
    g_______________________________________________g_ _
    o_/_____\_____________\____________/____\_______o_ _
    a|_______|_____________\__________|______|______a_ _
    t|_______`._____________|_________|_______:_____t_ _
    s`________|_____________|________\|_______|_____s_ _
    e_\_______|_/_______/__\\\___--___\\_______:____e_ _
    x__\______\/____--~~__________~--__|_\_____|____x_ _
    *___\______\_-~____________________~-_\____|____*_ _
    g____\______\_________.--------.______\|___|____g_ _
    o______\_____\______//_________(_(__>__\___|____o_ _
    a_______\___.__C____)_________(_(____>__|__/____a_ _
    t_______/\_|___C_____)/Insert\_(_____>__|_/_____t_ _
    s______/_/\|___C_____)__Cock_|__(___>___/__\____s_ _
    e_____|___(____C_____)\_Here_/__//__/_/_____\___e_ _
    x_____|____\__|_____\\_________//_(__/_______|__x_ _
    *____|_\____\____)___`----___--'_____________|__*_ _
    g____|__\______________\_______/____________/_|_g_ _
    o___|______________/____|_____|__\____________|_o_ _
    a___|_____________|____/_______\__\___________|_a_ _
    t___|__________/_/____|_________|__\___________|t_ _
    s___|_________/_/______\__/\___/____|__________|s_ _
    e__|_________/_/________|____|_______|_________|e_ _
    x__|__________|_________|____|_______|_________|x_ _
    *_g_o_a_t_s_e_x_*_g_o_a_t_s_e_x_*_g_o_a_t_e_x_*_


    Important Stuff: Please try to keep posts on topic. Try to reply to other people's comments instead of starting new threads. Read other people's messages before posting your own to avoid simply duplicating what has already been said. Use a clear subject that describes what your message is about. Offtopic, Inflammatory, Inappropriate, Illegal, or Offensive comments might be moderated. (You can read everything, even moderated posts, by adjusting your threshold on the User Preferences Page) If you want replies to your comments sent to you, consider logging in or creating an account.

    Important Stuff: Please try to keep posts on topic. Try to reply to other people's comments instead of starting new threads. Read other people's messages before posting your own to avoid simply duplicating what has already been said. Use a clear subject that describes what your message is about. Offtopic, Inflammatory, Inappropriate, Illegal, or Offensive comments might be moderated. (You can read everything, even moderated posts, by adjusting your threshold on the User Preferences Page) If you want replies to your comments sent to you, consider logging in or creating an account.

    Important Stuff: Please try to keep posts on topic. Try to reply to other people's comments instead of starting new threads. Read other people's messages before posting your own to avoid simply duplicating what has already been said. Use a clear subject that describes what your message is about. Offtopic, Inflammatory, Inappropriate, Illegal, or Offensive comments might be moderated. (You can read everything, even moderated posts, by adjusting your threshold on the User Preferences Page) If you want replies to your comments sent to you, consider logging in or creating an account.




  2. yep by Anonymous Coward · · Score: -1, Flamebait

    I'll confirm it: Slashdot's editors are facist pigs

  3. Review? by Anonymous Coward · · Score: -1, Flamebait

    8 "paragraphs" consisting of at most 2 sentences? Most having only one sentence?

    This is a review?

    Slashdot: 99.9% content-free, the site that self-moderates itself to 33.333% crap that isn't even worth reading.

  4. Security Gurus? by Garridan · · Score: -1, Flamebait

    Um, why would security gurus rejoice about this book being published? By definition, a guru knows just about everything to know about his art... and wouldn't need no steenking book. And no guru got where (s)he is from reading a book... they got it from experience. If anything, gurus would be annoyed that the distance between them, and the average joe, grows thin.

  5. Go for it. by Anonymous Coward · · Score: -1, Flamebait

    "Then I think that he's a tenured professor, and yet is a complete idiot, and I go back to #1. I've always wanted to give a prof what-for."

    These types are why I realized what a waste it is to pay $30k/year to 'educational' instutions for.

    I expect plenty of others have had idiots for professors who haven't been in the real world for decades, and as a result, have no clue when it comes to what crap they're spewing.

    Strike a blow for all of us, please.