=================================================================== RCS file: /cvsrepo/anoncvs/cvs/www/books.html,v retrieving revision 1.102 retrieving revision 1.103 diff -u -r1.102 -r1.103 --- www/books.html 2015/07/02 05:49:03 1.102 +++ www/books.html 2016/01/29 19:03:31 1.103 @@ -2,11 +2,11 @@ - - + + -The OpenBSD Bookstore +Books about OpenBSD and UNIX @@ -15,6 +15,8 @@ [OpenBSD]

UNIX and BSD books

+Note that the information in some older books may no longer be accurate +or relevant to modern OpenBSD.

OpenBSD-specific books

@@ -26,155 +28,55 @@
ISBN-10: 1-59327-589-7
ISBN-13: 978-1-59327-589-1
Copyright 2015. -
-The first sentence of this book is, "This is a book about building the -network you need". Taking it from there, Peter walks you through the whys -and the hows of building the high performance, low maintenance network you need, -using OpenBSD tools.
-The book covers all bases from the basic one machine configuration and basic -local area networks, all the way up to configurations with traffic shaping and -load balancing with "self healing" networks and countermeasures against common -problems such as DoS attempts and spamming. A basic understanding of TCP/IP -and some Unix knowledge is assumed.
-The official book website for a sample chapter, table of contents and errata -can be found at -http://www.nostarch.com/pf3.

- - -

The Book of PF, 2nd Edition
-A No-Nonsense Guide to the OpenBSD Firewall -
by Peter N. M. Hansteen -
ISBN-13: 978-1-59327-274-6 -
November 2010. -
-The first sentence of this book is, "This is a book about building the -network you need". Taking it from there, Peter walks you through the whys +The first sentence of this book is "This is a book about building the +network you need." Taking it from there, Peter walks you through the whys and the hows of building the high performance, low maintenance network you need, -using OpenBSD tools.
-The book covers all bases from the basic one machine configuration and basic +using OpenBSD tools. +The book covers all bases, from the basic one machine configuration and basic local area networks, all the way up to configurations with traffic shaping and -load balancing with "self healing" networks and countermeasures against common +load balancing with "self-healing" networks and countermeasures against common problems such as DoS attempts and spamming. A basic understanding of TCP/IP -and some Unix knowledge is assumed.
+and some Unix knowledge is assumed. The official book website for a sample chapter, table of contents and errata -can be found at -http://www.nostarch.com/pf2.htm. +can be found here.

-

SSH Mastery -
by Michael Lucas +
by Michael W. Lucas
ISBN-13: 978-1470069711
ISBN-10: 1470069717
February 2012, 145 pp.
OpenSSH, PuTTY, Tunnels, and Keys -
- +

A guide to what you need to know about SSH. This book will help you eliminate passwords on your network, tunnel unencrypted protocols through secure channels, build VPNs with OpenSSH, and more. Focuses on the OpenSSH server, the OpenSSH client, and the PuTTY client. -Michael W Lucas is the author of Absolute OpenBSD and other BSD books. -Helping support OpenBSD, Michael is contributing all his author's profits, from -orders via the main OpenBSD order page, back to the project. -
The -official SSH Mastery website is here - +Michael W. Lucas is the author of Absolute OpenBSD and other BSD books. +The official SSH Mastery website is +here.

- -

Sudo Mastery -
by Michael Lucas -
ISBN-13: 978-1493626205 -
ISBN-10: 1493626205 -
October 2013, 144pp. -
Access Control for Real People -
- -Unix-like operating systems use a rudimentary access control system: -the root account can do anything, while other users are peasants with -only minimal access. This worked fine in UNIX's youth, but today, -system administration responsibilities are spread among many people -and applications. Different people may need different slices of -root's power. However pros and cons are considered as well.

- -This book also thoroughly covers extended features used in other -operating systems, but not supported in OpenBSD's more minimalist -policy. - -
The -official Sudo Mastery website is here - -

- - - -

DNSSEC Mastery -
by Michael Lucas -
ISBN-13: 978-1484924471 -
ISBN-10: 1484924479 -
May 2013, 130 pp. -
Securing the Domain Name System with Bind. -
- -DNS is one of the oldest protocols on the Internet, and was designed -for a network without hostile users. Anyone who wants to break into a -network starts by investigating the target's Domain Name Service.

- -In addition to providing a manual for "bind", which is in OpenBSD's -default configuration, this book thoroughly targets the extensions -which are available in the port net/isc-bind. DNS Security -Extensions, or DNSSEC, hardens DNS. But learning DNSSEC requires -wading through years of obsolete tutorials, dead ends, and -inscrutable standards. Strengths and weaknesses of DNSSEC are -discussed, some of which may explain why OpenBSD does not support the -extended features by default. - -
The -official DNSSEC Mastery website is here - -

- -

Absolute OpenBSD. 2nd Edition! -
by Michael Lucas -
ISBN-13 978-1-59327-476-4 +
by Michael W. Lucas +
ISBN-13: 978-1-59327-476-4
April 2013, 536 pp. -
-Michael Lucas brings us the long anticipated second edition of his +

+Michael W. Lucas brings us the long anticipated second edition of his wildly successful book about using OpenBSD. This book covers all aspects of -the OpenBSD system for new UNIX and BSD users alike.
- +the OpenBSD system for new UNIX and BSD users alike. +The official Absolute OpenBSD 2nd edition website is -The official Absolute OpenBSD 2nd edition website is here.. - +here.

- -

OpenBSD 4.0: A Crash Course (PDF) -
by Jem Matzan -
ISBN 0-596-51015-2 -
January 2007, 59 pp. -
-Jem Matzan, known for his online articles promoting OpenBSD, -is the author of this "Short Cut" guide to installing and administering -OpenBSD 4.0. Topics include initial configuration, desktop and server, -using ports (complete with extra hints on some ports), and maintenance. -You order this book direct from O'Reilly, and it comes as a PDF -with free download of corrected versions as they become available. - -

[Order from O'Reilly] -

- -

Secure Architectures with OpenBSD
by Brandon Palmer, Jose Nazario.
ISBN 03-21193-66-0
April 2004, 520 pp. -
+

A guide for system and network administrators who need to move to a more secure operating system and a reference for seasoned OpenBSD users who want to fully exploit every feature of the system. This book @@ -197,6 +99,7 @@ 100% applicable, but probably the closest there is to an overall system internals manual for OpenBSD.

+

Source Code Secrets: The Basic 386BSD Operating System Reference (Volume 1 of Operating System Source Code Secrets) @@ -210,6 +113,7 @@ Not all of it applies to modern versions of OpenBSD, of course, but you can still learn a lot from it.

+

Berkeley Unix: A Simple and Comprehensive Guide
by James Wilson @@ -217,6 +121,7 @@ Begins with the basic commands and finishes with advanced programming techniques. Offers strong coverage of systems calls.

+

An Introduction to Berkeley Unix and ANSI C
by Jack Hodges @@ -226,6 +131,7 @@ of programming; the correct use of syntax; programming style, debugging, logic, and system programming with C.

+

4.4 BSD User's Reference Manual (URM) @@ -236,6 +142,7 @@ which are specific to OpenBSD, and more up-to-date. So you don't need this one: use the man command instead.

+

4.4 BSD System Manager's Manual (SMM) @@ -249,6 +156,7 @@ 4.4BSD distributions. They are not included with OpenBSD.

+

BSD mit Methode @@ -263,8 +171,8 @@ Lehmann's Online Bookshop. However, you might want to pick up a more recent version of the CD-ROM. -

+

The OpenBSD PF Packet Filter Book @@ -289,6 +197,7 @@
by John Muster
A general Unix book that covers all areas of the system.

+

UNIX Power Tools
by Jerry D. Peek, Tim O'Reilly, and Mike Loukides
@@ -301,6 +210,7 @@ Ports Mechanism that is part of OpenBSD.

+

The Multi-Boot Configuration Handbook
by Rod Smith
@@ -316,8 +226,27 @@
This is an excellent book on Unix system administration.

+ +

Sudo Mastery +
by Michael W. Lucas +
ISBN-13: 978-1493626205 +
ISBN-10: 1493626205 +
October 2013, 144pp. +
Access Control for Real People +

+Unix-like operating systems use a rudimentary access control system: +the root account can do anything, while other users are peasants with +only minimal access. This worked fine in UNIX's youth, but today, +system administration responsibilities are spread among many people +and applications. Different people may need different slices of +root's power. However pros and cons are considered as well. +This book also thoroughly covers sudo's extended features. +The official Sudo Mastery website is +here. +

+

Essential System Administration -
by AEleen Frisch +
by Æleen Frisch
This book covers many fundamental tasks in system administration. It includes examples for a wide range of Unix operating systems, including BSD. @@ -332,6 +261,7 @@ This book leads its reader through all the low-level kernel models for multi-processing architectures.

+

Lions' Commentary on UNIX 6th Edition with Source Code
by John Lions
@@ -344,6 +274,7 @@ to how a timesharing OS works, if you've not been inside one before. Substantially shorter than the McKusick book above.

+

The Practice of Programming
by Brian W. Kernighan and Rob Pike
@@ -351,12 +282,14 @@ This book covers practical programming considerations for C, C++ and Java. Highly recommended.

+

The Elements of Programming Style
by Brian W. Kernighan and P. J. Plauger
This book is similar to The Practice of Programming, but older. The examples are given in Fortran and PL/I.

+

Advanced Programming in the Unix Environment (2nd Edition)
by W. Richard Stevens, Stephen A. Rago
@@ -366,6 +299,7 @@ This book along with the OpenBSD manual pages make an excellent combination.

+

The C Programming Language
by Brian W. Kernighan and Dennis M. Ritchie
@@ -373,6 +307,7 @@ perhaps the only one you will ever need. It focuses strictly on the C language, not how to use your compiler or anything else.

+

C: A Reference Manual
by Samuel P. Harbison and Guy L. Steele
@@ -380,6 +315,7 @@ This book is not a tutorial (hence the title), it deals with syntax, data types, ISO C library functions, and C/C++ compatibility.

+

The Art of Software Security Assessment
by Mark Dowd, John McDonald and Justin Schuh
Covers code auditing, design and operational review, types of @@ -406,10 +342,35 @@ Furthermore, this book is the first German book to cover VPN via OpenSSH.

+ +

DNSSEC Mastery +
by Michael W. Lucas +
ISBN-13: 978-1484924471 +
ISBN-10: 1484924479 +
May 2013, 130 pp. +
Securing the Domain Name System with BIND +

+DNS is one of the oldest protocols on the Internet, and was designed +for a network without hostile users. Anyone who wants to break into a +network starts by investigating the target's Domain Name Service. +

+In addition to providing a manual for BIND, this book thoroughly targets +the extensions which are available in the port net/isc-bind. DNS Security +Extensions, or DNSSEC, harden DNS. But learning DNSSEC requires +wading through years of obsolete tutorials, dead ends, and +inscrutable standards. Strengths and weaknesses of DNSSEC are +discussed. +

+The official DNSSEC Mastery website is + +here. +

+

SSH, The Secure Shell.
by Daniel J. Barrett and Richard Silverman
The Definitive Guide. OpenSSH is covered in detail.

+

TCP/IP Illustrated, Volume 1
by W. Richard Stevens
@@ -419,12 +380,14 @@ Home enthusiasts, developers, and network administrators alike will enjoy this book.

+

Kerberos: A Network Authentication System
by Brian Tung
A guide for administrators of Kerberos-based networks. Explains concepts of the Kerberos system, as well as the installation and administration of it.

+

IPsec: The New Security Standard for the Internet, Intranets and Virtual Private Networks
by Naganand Doraswamy and Dan Harkins @@ -432,6 +395,7 @@ This book explains the IPsec protocol suite. It also describes its relation to the current deployments, such as VPNs, and future ideas.

+

Computer Networks
by Andy Tanenbaum
@@ -439,12 +403,14 @@ a wide range of protocols, concepts, and technologies. It covers technologies from fiber to wireless, LANs, Mobile IP, and a lot more.

+

DNS and BIND
by Paul Albitz and Cricket Liu
This book is an excellent introduction to DNS and BIND, useful for anyone who has to implement DNS under OpenBSD.

+

DHCP
by Ted Lemon and Ralph E. Droms
@@ -452,11 +418,13 @@ which is the organization that produces the DHCP client/server software included with OpenBSD.

+

Managing NFS and NIS
by Hal Stern
Gives essential information with examples on managing NFS and NIS.

+

802.11 Security
by Bruce Potter and Bob Fleck
@@ -478,6 +446,7 @@ to understand the field. Also, it has a very extensive reference section.

+

Handbook of Applied Cryptography
by Alfred J. Menezes, Paul C. van Oorschot and Scott A. Vanstone
A new and detailed look at Cryptography. The authors write: @@ -496,6 +465,7 @@ from the book authors' site, in PDF or PostScript.

+

SSL and TLS Essentials: Securing the Web
by Stephen A. Thomas
@@ -506,6 +476,7 @@ integrity and details the SSL protocol.

+

SSL and TLS: Designing and Building Secure Systems
by Eric Rescorla
@@ -518,6 +489,7 @@ He has written several commercial and free SSL implementations.

+

Big Book of IPsec RFCs: Internet Security Architecture
compiled by Pete Loshin