Sweet! Wish my University had that arrangement, from someone trying to pay for extra training after graduating take full advantage.

Welcome to EH-Net.

Ethical Hacker - Hacker 

(or I'm I missing something?)

Coming off the back of this thread I've found both a review and sample chapter on LSO (don't know why I didn't think to check here earlier) by Chris Gates, thanks man. Review can be found here: http://www.learnsecurityonline.com/index.php?option=com_content&task=view&id=224&Itemid=85)

Sample chapter can be found here for your studying pleasure http://www.informit.com/content/images/9780321336323/samplechapter/0321336321_CH11.pdf

Cheers Don, should be worth a look.

Seems to be the day for podcasts. For those that missed it the ISC is starting to create podcasts (direct link here: http://phobos.apple.com/WebObjects/MZStore.woa/wa/viewPodcast?id=276609412)

Haven't had a listen yet (need itunes on my work machine, downloading...) but the ISC and Johannes stuff is usuall top notch so I'd be surprised if this is any different.

The handlers diary (http://isc.sans.org/diary.html?storyid=4202) Also has a link to an RSS feed so you can keep track of new releases.

Looks like I'm going to have headphones on all day

Don,

I've taken a look at this book on Amazon a few times but haven't been able to find a copy in store to take a quick shuffty at. I assume from your post it's worth the outlay?

While I can find a tenuous link; is there anyway for me to connection the H affliation-type stuff with the UK (or other) Amazon sites? Currency conversion is starting to make my head hurt

Thanks for the link. How well setup is the site usually? Or is it suffering from the EH-Effect?

This page cannot be displayed due to an internal error.

You can provide the following information to the administrators of this site to help them solve the problem:

Error: Unable to connect to database

download unknown file from Evil Ethical Hacker.net?

Might give that one a miss...

Xmachine,

I've just taken a quick read through some of your previous blog posts and they look rather useful, bookmarked for future reference

Welcome on board.

The Honeynet Project (http://www.honeynet.org/), SANs Reading Room (http://www.sans.org/reading_room/) and Cyber-TA (http://www.cyber-ta.org/) are good places to start in this field.

I've mentioned this in another thread (http://www.ethicalhacker.net/component/option,com_smf/Itemid,54/topic,1910.msg7621/#msg7621) but Steve Gibsons analysis of DDoS attacks using botnets make an interesting (but slightly dated read). Can be difficult to find though 

Happy Hunting

Shawal,

thanks for the link and snippet, looks like Firefox will start protecting against a lot of things out the box with extra features so you don't need a laundry list of add-ons. Should make setting up 'regular' users PC's simpler.

I'm with iSmith though as I'll wait for the stable release, looking good.

ATC,

welcome to EH-Net.

if I get a few minutes I'll try to have a crack at your encryption, however as my crypto-fu is weak and you've gone to the effort of creating your own I'm guessing (hoping) this is more advanced that anything I can break easily.

For me crpyto and crypto-analysis is definitely more of an interest than something I have an aptitude for. (I've read Simon Singh's Code Book many times but still couldn't implement a basic algorithm) As most encryption systems are only accepted as being secure after large scale analysis and long term testing by the crpyto community a lot of 'secure' systems only remain secure whilst no-one is interested in breaking them. (Same as the arguement by the Windows community to explain why there are less exploits for *nix, but thats another thread)

Are you able/willing to provide more information related to your encryption methods? Basically I would be interested to know what you are doing differently from anything else that makes your system more secure than X.

Knew there would be a neater way of doing it. I've left my linux machine at work as I'm meant to be in holiday mode for Easter weekend. Let me know if you have any more luck and I'll try a few things once I get mty hands on one of my linux boxes

I've looked at Russix before (actually have a burned CD sat on my desk now).

Problem that I've had is that I can't get it to find my wi-fi device on my laptop with an atheros chip and can't boot on my laptop with an Intel chip. Has anyone else had similar issues or do I just seem to buy strange hardware combinations? Think I'm a little behind, version wise, so if everything is looking stable I'd be interested in taking another look.

Bill,

I'm sure it's a nasty hack and someone will be able to provide a better solution. For the same issue I just set the command to pipe it's output through more/less/<chooseYourPoison>, that way the terminal should remain open waiting for interaction.

I've only tried this under KDE so your mileage may vary, but I'm assuming the principal should be the same.

Chris,

looks like you've done it again. Was out shopping with the missus (again), came across a new security book I hadn't seen and went 'ooh'. Glad I decided to wait till I got back home to read some reviews.

Are you my financial guardian angel?