Search /
Docfinder:
Advanced search  |  Help  |  Site map
RESEARCH CENTERS
SITE RESOURCES
Click for Layer 8! No, really, click NOW!
Networking for Small Business
TODAY'S NEWS
Valentine's Day Patch Tuesday: Microsoft to issue 9 patches, 4 critical
Mobile World Congress sneak peek: Quad-core smartphones, Ice Cream Sandwich & more
Microsoft details 'Windows on ARM' program
March debut of 'iPad 3' a sure bet, says analyst
FBI unbolts Steve Jobs 1991 investigation file
Cisco boosted profit, sales in Q2 while cutting costs
Macs take on the enterprise
Four crazy tech ideas from Google's Solve for X project
Obama 2012 campaign playlist revealed courtesy of Spotify
Oracle buying Taleo for US$1.9 billion in direct hit at SAP
Amazon attacks Apple: You get 3 Kindle products for price of iPad 2
Pre-rendered pages highlight latest Google Chrome release
Microsoft exec: Lync-Skype integration a 'compelling opportunity'
The future of hypervisors
/

New, worthwhile book on hacking problems

Related linksToday's breaking news
Send to a friendFeedback

Sign up to receive this and other networking newsletters in your inbox.

By Joel Snyder
Network World on Groupware and Messaging, 12/27/99

I just got a copy of Hacking Exposed, by Stuart McClure, Joel Scambray and George Kurtz. This is a strange one. What the authors have done is compile hundreds of security hacks into one volume. The hacks and attacks range all around, from WWW server vulnerabilities to SNMP bugs in network gear to Windows NT-based password decoders and network denial of service attacks.

In a sense, this is a history of attacks against operating systems, ranging over the past three or four years, for every major hack. If you're a "script kiddie," this book would be your bible - it lists all of the known problems with every major operating system, and how to exploit them.

If you're new to the security business, this is an excellent place to start; it will help you get caught up to everything that's been happening in the cracker tool kit. This is also the kind of book I'd send to clients who are suddenly starting to think about network security.

However, Hacking Exposed has its faults. The authors are fantastic at collecting exploits and describing what's going on, but their prescriptive discussions are immature and incomplete. In that sense, Hacking Exposed can't stand on its own, since it tells you more of how people will try to break in and too little of the general principles behind securing your systems. But that's OK - no other book fills this niche, and while there are Web sites dedicated to listing exploits, none of them take the time to analyze the problems in the way that McClure, Scambray and Kurtz have.

Hacking Exposed, however, has a much bigger problem - it's in print. By definition, all of the information in this book is old news, history really. For that reason, I'd be cautious about giving this to a naïve network administrator who might think that by filling the holes listed in the book they're suddenly safe. This isn't something the authors could have done anything about; after all, we're lucky to have had them take the time to build such a comprehensive compilation of otherwise openly available information.

I'd say buy it. Everyone has something to learn from Hacking Exposed.

Due to the holidays, there will be only one Messaging newsletter this week.

RELATED LINKS

Get more information on "Hackers Exposed" from Amazon.com

Known vulnerabilities are No. 1 hacker exploit
Network World, 12/16/99.

What are the hacks I need to worry about today?
Network World Fusion Focus, 11/17/99.

A psychological profile of hackers
Network World Fusion Focus, 11/01/99.

SNMP - simple management tool for hackers?
Network World Fusion Focus, 10/04/99.

Getting the drop on network intruders
Network World, 10/04/99.

RELATED LINKS

Joel Snyder is a senior partner with Opus One, a consulting firm in Tucson, Arizona. He spends most of his time on the road helping people build larger, faster, better, and more reliable networks. His professional travels have taken him from San Francisco to St. Petersburg, where he always carries his trusty Macintosh and modem, neither of which have cute names. He is also a member of the Network World Test Alliance and writes extensively on networking topics. Reach him at joel.snyder@opus1.com.

Get more information on "Hackers Exposed" from Amazon.com

Known vulnerabilities are No. 1 hacker exploit
Network World, 12/16/99.

What are the hacks I need to worry about today?
Network World Fusion Focus, 11/17/99.

A psychological profile of hackers
Network World Fusion Focus, 11/01/99.

SNMP - simple management tool for hackers?
Network World Fusion Focus, 10/04/99.

Getting the drop on network intruders
Network World, 10/04/99.

Archive of Network World on Groupware and Messaging newsletters


NWFusion offers more than 40 FREE technology-specific email newsletters in key network technology areas such as NSM, VPNs, Convergence, Security and more.
Click here to sign up!
New Event - WANs: Optimizing Your Network Now.
Hear from the experts about the innovations that are already starting to shake up the WAN world. Free Network World Technology Tour and Expo in Dallas, San Francisco, Washington DC, and New York.
Attend FREE
Your FREE Network World subscription will also include breaking news and information on wireless, storage, infrastructure, carriers and SPs, enterprise applications, videoconferencing, plus product reviews, technology insiders, management surveys and technology updates - GET IT NOW.