TRENDnet has acknowledged a flaw that meant that live feeds from its home security cameras were accessible online without needing a password.…
View full post on The Register – Security
A few months ago, the good folks at No Starch Press sent me a review copy of Chris Sanders’ book Practical Packet Analysis, Using Wireshark to Solve Real-world Problems, 2nd Edition. While this isn’t something we normally do here, since it has been a rather slow day at the Internet Storm Center, I thought this would be a great opportunity to share a short review of the book. As many of our regular readers are probably aware, I tend to use command-line tools such as tcpdump, snort, tshark, scapy, or even Perl to perform packet analysis. I prefer the command-line tools because when possible I like to script my analysis and GUI tools don’t lend themselves to that.
This book (actually, starting with the 1st edition) was one that had been on my list of books I wanted to read for quite some time, but I had never gotten around to buying it, so I jumped at this opportunity when it presented itself. I really wanted to love the book, but wasn’t quite able to get there. if aimed at experienced networking folks, why bother with explaining the OSI model again). Even so, I did like the book. Starting with chapter 8 is where I think the book really becomes worthwhile. I especially like the idea of using real-world scenarios (even if sometimes a bit contrived) to teach the features of a tool. This is often one of the best ways to teach new techniques or concepts. I learned some new tricks for both wireshark and tshark which itself would have made it worth the price to me. I’m not going to give it stars or anything, but I do recommend this book to folks that aren’t wireshark experts (and even those who have plenty of wireshark experience may pick up a new trick or two).
—————
Jim Clausing, GIAC GSE #26
jclausing –at– isc [dot] sans (dot) edu
(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View full post on SANS Internet Storm Center, InfoCON: green
Small and medium-sized businesses often let the cost of compliance obscure important benefits
View full post on Dark Reading – All Stories
Symantec is warning customers to upgrade pcAnywhere and apply available patches to stay safe after source code for the product was posted online
View full post on Dark Reading – All Stories
Late Monday evening a 1.2GB file named "Symantec's pcAnywhere Leaked Source Code" was posted on The Pirate Bay. The security firm has downloaded and is analyzing it, but has still to confirm whether i…
View full post on Help Net Security – News