Secrets of Computer Espionage: Tactics and Countermeasures
by Joel McNamara
This is a good overview of computer security issues. It's a bit dated at this point in the game but many of the ideas are still concerns today. The book lists a number of great security related URL's (Although some are offline now or have changed addresses), most of which are jems. The author does a good job of explaining the weaknesses in computer systems in a general way but doesn't cover the more modern OS's like WinXP/Win2000/Win2003. He uses a spy vs counter-spy model to explain his points which I found entertaining.
Recommended!
After taking a look at
Haven's blog (
DataGridGirl doesn't have the only pink site around.) I'm on a forensics and security binge. So here are a few good articles/books.
Client-Side Validation in Downlevel Browsers
Could you Pass the Salt? Improving the Security in Encrypting Passwords using MD5
Good Books:
The Cuckoo's Egg
Still a classic and a must read for any IT Pro in my opinion.
Practical Cryptography
Plus I just blew a bundle on new books. I'll let you know how they are.
Microsoft Security Bulletin MS03-039
Here's a site
dedicated to database security with SQL Server.
Scott Grannemann of SecurityFocus.com writes about several Security related blogs (Most with RSS feeds).