One Review, One Pre-Review
I read Exploiting Software (ES) last year but realized I hadn't reviewed it yet. Having read other books by these authors, like McGraw's Software Security and Hoglund's Rootkits, I realized ES was not as good as those newer books. At the time ES was published (2004) it continued to define the software exploitation genre begun in Building Secure Software. However, I don't think it's necessary to pay close attention to ES when newer books by McGraw and Hoglund are now available.
Everything you need to know that wasn't on the CCNA exam
I quickly skimmed this book at USENIX and I think it will be valuable. I like books that take nontraditional look at networking issues.
Computers are the Weapons and the Front Line Is Everywhere
That is still true today.
Comments
Nick
The author's (Gary A. Donahue) complete lack of mentioning RHI (Route Health Injection) was sort of disappointing. I wish he also included non-Cisco stuff such as Juniper, Extreme, Foundry, Force10, and Alcatel (Timetra especially).
You'd be better off purchasing "Cisco Router Firewall Security", "CCSP Flash Cards and Exam Practice Pack", "CCNP BCMSN Portable Command Guide", "Cisco Express Forwarding", "Cisco LAN Switching", and my personal favorite, "Designing Content Switching Solutions". Of course, those are more expensive. It would also take some time to read all of that.
I also find it very sad that nothing has changed in Cisco-land in about 6 years. I know the SUP32-PISA is neat, but what real innovations have they had?
I could have written this book in 2001 and it would have been more up-to-date with advanced networking technologies. If NAC is the best Cisco can do, well then I predict that they will be replaced by more forwarding-thinking people such as Kramer's Palo Alto Networks, Trusteer, Imperva, et al.
Give me one Cisco product, and I'll give you a list of stuff that is better, cheaper, and faster than it. And security? Cisco and Apple have a lot in common: they both don't test their code or products before they ship them (or after they ship them. Or ever). If they want beauty and brand, then they should concentrate on the insides of their products and not just the outsides. Quality of product, please - not just a big fat logo.