Annotation of www/books.html, Revision 1.100
1.36 jufi 1: <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
1.13 deraadt 2: <html>
3: <head>
1.36 jufi 4: <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
1.13 deraadt 5: <meta name="resource-type" content="document">
6: <meta name="description" content="Books about BSD and OpenBSD">
7: <meta name="keywords" content="openbsd,books,information">
8: <meta name="distribution" content="global">
1.66 jsg 9: <meta name="copyright" content="This document copyright 1998-2007 by OpenBSD.">
1.15 philen 10: <meta name="generator" content="The vi editor from UNIX">
11: <meta name="Author" content="Ian Darwin">
1.13 deraadt 12: <title>The OpenBSD Bookstore</title>
1.100 ! sthen 13: <link rel="canonical" href="http://www.openbsd.org/books.html">
1.13 deraadt 14: </head>
15:
1.57 grunk 16: <body text="#000000" bgcolor="#ffffff">
1.15 philen 17:
1.36 jufi 18: <a href="index.html"><img alt="[OpenBSD]" height="30" width="141" border="0" src="images/smalltitle.gif"></a>
1.13 deraadt 19: <p>
1.36 jufi 20: <h2><font color="#cc0000">UNIX and BSD books</font></h2>
21: <hr>
1.1 ian 22:
1.91 deraadt 23: <h3>OpenBSD-specific books</h3>
1.15 philen 24: <dl>
1.89 austin 25:
1.97 austin 26: <dt><a name="book13"><i>The Book of PF, 3rd Edition<br>
27: A No-Nonsense Guide to the OpenBSD Firewall</i></a>
28: <dd>by Peter N. M. Hansteen
29: <dd>ISBN-10: 1-59327-589-7
30: <dd>ISBN-13: 978-1-59327-589-1
31: <dd>Copyright 2015.
32: <dd>
33: The first sentence of this book is, "<i>This is a book about building the
34: network you need</i>". Taking it from there, Peter walks you through the whys
35: and the hows of building the high performance, low maintenance network you need,
36: using OpenBSD tools.<br>
37: The book covers all bases from the basic one machine configuration and basic
38: local area networks, all the way up to configurations with traffic shaping and
39: load balancing with "self healing" networks and countermeasures against common
40: problems such as DoS attempts and spamming. A basic understanding of TCP/IP
41: and some Unix knowledge is assumed.<br>
42: The official book website for a sample chapter, table of contents and errata
43: can be found at
1.98 austin 44: <a href="http://www.nostarch.com/pf3">http://www.nostarch.com/pf3</a>.
1.97 austin 45: <p>
46:
47:
1.81 deraadt 48: <dt><a name="book8"><i>The Book of PF, 2nd Edition<br>
49: A No-Nonsense Guide to the OpenBSD Firewall</i></a>
50: <dd>by Peter N. M. Hansteen
51: <dd>ISBN-13: 978-1-59327-274-6
52: <dd>November 2010.
53: <dd>
1.72 wvdputte 54: The first sentence of this book is, "<i>This is a book about building the
55: network you need</i>". Taking it from there, Peter walks you through the whys
56: and the hows of building the high performance, low maintenance network you need,
57: using OpenBSD tools.<br>
58: The book covers all bases from the basic one machine configuration and basic
59: local area networks, all the way up to configurations with traffic shaping and
60: load balancing with "self healing" networks and countermeasures against common
1.73 wvdputte 61: problems such as DoS attempts and spamming. A basic understanding of TCP/IP
1.72 wvdputte 62: and some Unix knowledge is assumed.<br>
63: The official book website for a sample chapter, table of contents and errata
1.75 tobias 64: can be found at
1.89 austin 65: <a href="http://www.nostarch.com/pf2.htm">http://www.nostarch.com/pf2.htm</a>.
1.93 austin 66: <p>
1.89 austin 67:
68:
1.87 austin 69: <dt><a name="book9"><i>SSH Mastery</i></a>
70: <dd>by Michael Lucas
71: <dd>ISBN-13: 978-1470069711
72: <dd>ISBN-10: 1470069717
73: <dd>February 2012, 145 pp.
1.93 austin 74: <dd>OpenSSH, PuTTY, Tunnels, and Keys
1.87 austin 75: <dd>
1.93 austin 76:
1.87 austin 77: A guide to what you need to know about SSH. This book will help you
78: eliminate passwords on your network, tunnel unencrypted protocols
79: through secure channels, build VPNs with OpenSSH, and more. Focuses on
80: the OpenSSH server, the OpenSSH client, and the PuTTY client.
81: Michael W Lucas is the author of Absolute OpenBSD and other BSD books.
82: Helping support OpenBSD, Michael is contributing all his author's profits, from
1.93 austin 83: orders via the main OpenBSD order page, back to the project.
84: <br><a href="https://www.michaelwlucas.com/nonfiction/ssh-mastery">The
1.92 deraadt 85: official SSH Mastery website is here</a>
1.93 austin 86:
87: <p>
88:
89:
90: <dt><a name="book11"><i>Sudo Mastery</i></a>
91: <dd>by Michael Lucas
92: <dd>ISBN-13: 978-1493626205
93: <dd>ISBN-10: 1493626205
94: <dd>October 2013, 144pp.
95: <dd>Access Control for Real People
96: <dd>
97:
98: Unix-like operating systems use a rudimentary access control system:
99: the root account can do anything, while other users are peasants with
100: only minimal access. This worked fine in UNIX's youth, but today,
101: system administration responsibilities are spread among many people
102: and applications. Different people may need different slices of
103: root's power. However pros and cons are considered as well.<p>
104:
105: This book also thoroughly covers extended features used in other
106: operating systems, but not supported in OpenBSD's more minimalist
107: policy.
108:
109: <br><a href="https://www.michaelwlucas.com/nonfiction/sudo-mastery">The
110: official Sudo Mastery website is here</a>
111:
112: <p>
113:
114:
115:
116: <dt><a name="book12"><i>DNSSEC Mastery</i></a>
117: <dd>by Michael Lucas
118: <dd>ISBN-13: 978-1484924471
119: <dd>ISBN-10: 1484924479
120: <dd>May 2013, 130 pp.
121: <dd>Securing the Domain Name System with Bind.
122: <dd>
123:
124: DNS is one of the oldest protocols on the Internet, and was designed
125: for a network without hostile users. Anyone who wants to break into a
126: network starts by investigating the target's Domain Name Service. <p>
127:
128: In addition to providing a manual for "bind", which is in OpenBSD's
129: default configuration, this book thoroughly targets the extensions
130: which are available in the port net/isc-bind. DNS Security
131: Extensions, or DNSSEC, hardens DNS. But learning DNSSEC requires
132: wading through years of obsolete tutorials, dead ends, and
133: inscrutable standards. Strengths and weaknesses of DNSSEC are
134: discussed, some of which may explain why OpenBSD does not support the
135: extended features by default.
136:
137: <br><a href="https://www.michaelwlucas.com/nonfiction/dnssec-mastery">The
138: official DNSSEC Mastery website is here</a>
139:
1.87 austin 140: <p>
141:
142:
1.89 austin 143: <dt><a name="book10"><i>Absolute OpenBSD. 2nd Edition!</i></a>
1.41 jose 144: <dd>by Michael Lucas
1.89 austin 145: <dd>ISBN-13 978-1-59327-476-4
1.94 deraadt 146: <dd>April 2013, 536 pp.
1.41 jose 147: <dd>
1.90 deraadt 148: Michael Lucas brings us the long anticipated second edition of his
1.93 austin 149: wildly successful book about using OpenBSD. This book covers all aspects of
150: the OpenBSD system for new UNIX and BSD users alike.<br>
1.89 austin 151:
152: <a href="https://www.michaelwlucas.com/nonfiction/absolute-openbsd-2nd-edition">
153: The official Absolute OpenBSD 2nd edition website is here.</a>.
1.93 austin 154:
155: <p>
156:
1.42 wvdputte 157:
1.65 ian 158: <dt><a name="book5"><i>OpenBSD 4.0: A Crash Course</i></a> (PDF)
159: <dd>by Jem Matzan
160: <dd>ISBN 0-596-51015-2
161: <dd>January 2007, 59 pp.
162: <dd>
163: Jem Matzan, known for his online articles promoting OpenBSD,
164: is the author of this "Short Cut" guide to installing and administering
165: OpenBSD 4.0. Topics include initial configuration, desktop and server,
166: using ports (complete with extra hints on some ports), and maintenance.
167: You order this book direct from O'Reilly, and it comes as a PDF
168: with free download of corrected versions as they become available.
169: <ul>
170: </ul>
1.93 austin 171: <p>[<a href="http://www.oreilly.com/catalog/openbsd4/">Order from O'Reilly</a>]
172: <p>
173:
1.65 ian 174:
1.48 austin 175: <dt><a name="book3">
176: <i>Secure Architectures with OpenBSD</i></a>
1.47 jose 177: <dd>by Brandon Palmer, Jose Nazario.
178: <dd>ISBN 03-21193-66-0
179: <dd>April 2004, 520 pp.
180: <dd>
181: A guide for system and network administrators who need to move to a
182: more secure operating system and a reference for seasoned OpenBSD users
183: who want to fully exploit every feature of the system. This book
184: covers all aspects of OpenBSD, including systrace, Kerberos V, IPv6 and
185: IPsec, and the development environment.
1.97 austin 186: <p>[<a href="https://https.openbsd.org/cgi-bin/order?B03=1&B03%2b=Add">Order direct from the OpenBSD website International</a>]
1.15 philen 187: </dl>
188: <hr>
189:
1.91 deraadt 190: <h3>BSD-specific books</h3>
1.15 philen 191: <dl>
192: <dt>
193: <i>The Design and Implementation of the 4.4 BSD Operating System</i>
194: <dd>by Marshal Kirk McKusick, Keith Bostic, Michael J. Karels, John S. Quarterman
195: <dd>
1.52 millert 196: At 549 pages plus an index, <a href="http://www.awprofessional.com/title/0201549794">this book</a> must be considered comprehensive.
1.15 philen 197: McKusick, Bostic and Karels are well known as prime movers at
198: Berkeley CSRG (Computer Systems Research Group) during the 4.3/4.4BSD
199: period. This book covers the 4.4 and 4.4-Lite releases, and discusses
200: everything you wanted to know about how the system operates. Not
201: 100% applicable, but probably the closest there is to an overall
202: system internals manual for OpenBSD.
1.13 deraadt 203: <p>
1.15 philen 204: <dt>
205: <i>Source Code Secrets: The Basic 386BSD Operating System Reference
206: (Volume 1 of Operating System Source Code Secrets)</i>
207: <dd>by L. W. Jolitz, William Jolitz; 1997
208: <dd>
209: The Jolitzes built the first port of BSD to the PC-386 architecture,
210: and deserve a lot of credit for making BSD portable to this low-cost
211: architecture. The earliest versions, called "386bsd", were described
1.46 david 212: in articles in <em>Dr. Dobbs Journal</em>. This book goes beyond the articles,
1.15 philen 213: and provides a comprehensive annotated collection of source code.
214: Not all of it applies to modern versions of OpenBSD, of course, but
215: you can still learn a lot from it.
1.13 deraadt 216: <p>
1.15 philen 217: <dt>
218: <i>Berkeley Unix: A Simple and Comprehensive Guide</i>
219: <dd>by James Wilson
220: <dd>
221: Begins with the basic commands and finishes with advanced programming
222: techniques. Offers strong coverage of systems calls.
223: <p>
224: <dt>
225: <i>An Introduction to Berkeley Unix and ANSI C</i>
226: <dd>by Jack Hodges
227: <dd>
228: An introduction to the operating system and the programming language. Intended
229: for self-study, requires no previous knowledge of Unix. Covers the fundamentals
230: of programming; the correct use of syntax; programming style, debugging, logic,
231: and system programming with C.
232: <p>
233: <dt>
234: <dt>
235: <i>4.4 BSD User's Reference Manual (URM)</i>
236: <dd>published by O'Reilly, 1994
237: <dd>
1.12 ian 238: This is just a reprint of the man pages for users.
1.2 ian 239: Your OpenBSD distribution includes the online man pages,
240: which are specific to OpenBSD, and more up-to-date. So
1.13 deraadt 241: you don't need this one: use the <em>man</em> command instead.
242: <p>
1.15 philen 243: <dt>
244: <dt>
245: <i>4.4 BSD System Manager's Manual (SMM)</i>
246: <dd>published by O'Reilly, 1994
247: <dd>
248: This book details what you need to know to run a BSD system.
1.2 ian 249: Quite a bit of this material is relevant to OpenBSD.
250: Unfortunately it is currently out of print.
1.13 deraadt 251: Worse, due to licensing restrictions from AT&T,
252: the electronic editions of these were not included in the
1.86 lum 253: 4.4BSD distributions.
254: They are not included with OpenBSD.
1.17 louis 255: <p>
256: <dt>
257: <dt>
258: <i>BSD mit Methode</i>
1.23 horacio 259: <dd>published by C&L Computer- und Literaturverlag GmbH, 1998
1.17 louis 260: <dd>
1.78 deraadt 261: A book in German on all
1.17 louis 262: three freenix BSDs covering the essentials of installation, X configuration
263: and system administration, as well as PERL programming and tips on
264: LaTeX/Lyx. The book also covers the KDE desktop environment.
265: <br>Includes older versions of OpenBSD on the two included CD-ROMs.
1.85 deraadt 266: <br><a href="http://www.lob.de/cgi-bin/work/frameset?flag=jfl&frame=yes&id=38effe1813566">
267: Lehmann's Online Bookshop</a>. However, you might want to pick up a <a
1.36 jufi 268: href="http://www.lob.de/cgi-bin/work/frameset?flag=jfl&frame=yes&id=38effe1813566">more
1.17 louis 269: recent version of the CD-ROM</a>.
1.61 grunk 270:
271: <p>
272: <dt>
273: <dt>
274: <i>The OpenBSD PF Packet Filter Book</i>
275: <dd>
276: published by Reed Media Services
277: <dd>
278: August 2006, 193 pp.
279: <dd>
1.62 steven 280: This book is an expanded, cross-referenced, indexed, edited, and reformatted
281: version of the <a href="faq/pf/index.html">PF User's Guide</a>.
1.61 grunk 282: It also covers spamd and introduces the setup and differences of PF
283: on NetBSD, DragonFly, and FreeBSD.
284: <br />The official book website with table of contents, index, and
285: configuration examples can be found at
286: <a href="http://www.reedmedia.net/books/pf-book/">http://www.reedmedia.net/books/pf-book/</a>.
1.15 philen 287: </dl>
288: <hr>
1.2 ian 289:
1.91 deraadt 290: <h3>Unix user guides</h3>
1.15 philen 291: <dl>
292: <dt><i>Unix Made Easy</i>
293: <dd>by John Muster
294: <dd>A general Unix book that covers all areas of the system.
295: <p>
296: <dt><i>UNIX Power Tools</i>
297: <dd>by Jerry D. Peek, Tim O'Reilly, and Mike Loukides
298: <dd>
1.58 grunk 299: This book is now in its third edition. It discusses
1.15 philen 300: hundreds of neat tricks, little-known techniques, and add-on utilities.
301: Be aware that many of the utilities are either included with OpenBSD
302: or, more commonly, are already available as ports or packages.
303: So most of section 52.03, complaining about how hard it is to port
304: software to different UNIXes, can be disregarded if you learn about the
1.80 steven 305: <a href="faq/ports/index.html">Ports Mechanism</a>
1.15 philen 306: that is part of OpenBSD.
1.18 ericj 307: <p>
308: <dt><i><a href="http://www.rodsbooks.com/multiboot/">The Multi-Boot Configuration Handbook</a></i>
309: <dd>by Rod Smith
310: <dd>
311: <dd>
312: Book explaining techniques for Multi-booting.
1.15 philen 313: </dl>
314: <hr>
1.1 ian 315:
1.91 deraadt 316: <h3>Unix administration</h3>
1.15 philen 317: <dl>
318: <dt><i>UNIX System Administration Handbook</i>
319: <dd>by Evi Nemeth, Garth Snyder, Scott Seebass, Trent R. Hein
320: <dd>
321: This is an excellent book on Unix system administration.
322: <p>
323: <dt><i>Essential System Administration</i>
324: <dd>by AEleen Frisch
325: <dd>
326: This book covers many fundamental tasks in system administration. It includes
327: examples for a wide range of Unix operating systems, including BSD.
328: </dl>
329: <hr>
1.1 ian 330:
1.91 deraadt 331: <h3>Unix programming</h3>
1.15 philen 332: <dl>
333: <dt><i>Unix Systems for Modern Architectures</i>
334: <dd>by Curt Schimmel
335: <dd>
1.24 ian 336: This book leads its reader through all the low-level kernel models for
1.53 jsg 337: multi-processing architectures.
1.15 philen 338: <p>
339: <dt><i>Lions' Commentary on UNIX 6th Edition with Source Code</i>
340: <dd>by John Lions
341: <dd>
1.2 ian 342: Although the UNIX described in this book is to BSD as a Model T Ford
1.1 ian 343: is to a 70's Mustang or Thunderbird, UNIX inventor Ken Thompson
344: claims that "After 20 years, this is still the best exposition
345: of the workings of a 'real' operating system." Originally circulated
346: in illicit photocopies, this is the book that most first- and second-generation
347: UNIX hackers cut their code-teeth on. Recommended as a good introduction
348: to how a timesharing OS works, if you've not been inside one before.
349: Substantially shorter than the McKusick book above.
1.15 philen 350: <p>
351: <dt><i>The Practice of Programming</i>
352: <dd>by Brian W. Kernighan and Rob Pike
353: <dd>
354: Brian Kernighan had a hand in two other books which we recommend even though they're not UNIX specific, but are useful to programmers on UNIX and elsewhere.
355: This book covers practical programming considerations for C, C++ and Java.
356: Highly recommended.
1.46 david 357: <p>
1.15 philen 358: <dt><i>The Elements of Programming Style</i>
359: <dd>by Brian W. Kernighan and P. J. Plauger
360: <dd>
361: This book is similar to <i>The Practice of Programming</i>, but older. The
362: examples are given in Fortran and PL/I.
1.16 chris 363: <p>
1.60 grunk 364: <dt><i>Advanced Programming in the Unix Environment (2nd Edition)</i>
365: <dd>by W. Richard Stevens, Stephen A. Rago
1.16 chris 366: <dd>
367: This is a very detailed and easy to read book. It has several examples
368: that you can learn from. There is plenty of information about library and
369: system calls, and associated information so that you can use them.
370: This book along with the OpenBSD manual pages
371: make an excellent combination.
1.36 jufi 372: <p>
1.25 chris 373: <dt><i>The C Programming Language</i>
374: <dd>by Brian W. Kernighan and Dennis M. Ritchie
375: <dd>
376: This is a clear and concise guide to the C programming language,
377: perhaps the only one you will ever need. It focuses strictly on the C language,
378: not how to use your compiler or anything else.
1.36 jufi 379: <p>
1.46 david 380: <dt><i>C: A Reference Manual</i>
1.25 chris 381: <dd>by Samuel P. Harbison and Guy L. Steele
382: <dd>
1.46 david 383: If you only had two books on C, then along with <i>The C Programming Language</i>, this would be your second one!
1.25 chris 384: This book is not a tutorial (hence the title), it deals with syntax, data types,
385: ISO C library functions, and C/C++ compatibility.
1.36 jufi 386: <p>
1.64 steven 387: <dt><i>The Art of Software Security Assessment</i>
1.63 otto 388: <dd>by Mark Dowd, John McDonald and Justin Schuh
389: <dd>Covers code auditing, design and operational review, types of
390: vulnerabilities, privilege models, signals,
391: interprocess communication, synchronization, networking and more.
392: Lots of examples and real world code snippets.
1.15 philen 393: </dl>
1.25 chris 394:
1.15 philen 395: <hr>
396:
1.91 deraadt 397: <h3>Network administration</h3>
1.15 philen 398: <dl>
1.68 grunk 399: <dt><i><a name="book6" href="http://www.sshbuch.de/">Das SSH-Buch</a></i>
400: (German)
1.67 grunk 401: <dd>by Timo Dotzauer and Tobias Lütticke
402: <dd>ISBN 3-938626-03-8
403: <dd>Millin Verlag, December 2006, 600p.
404: <dd>This book covers the theory behind OpenSSH (protocol, channels, standards
405: documents) as well as using OpenSSH as an end user.
406: Although using Linux as a reference OS, many of the examples also have
407: a description how to get things done under BSD.
408: In a separate cookbook chapter, several scenarios from daily work are solved
409: using OpenSSH.
410: Furthermore, this book is the first German book to cover VPN via OpenSSH.
1.77 deraadt 411: <dd>
1.67 grunk 412: <p>
1.22 aaron 413: <dt><i>SSH, The Secure Shell.</i>
414: <dd>by Daniel J. Barrett and Richard Silverman
415: <dd>The Definitive Guide. OpenSSH is covered in detail.
416: <p>
1.15 philen 417: <dt><i>TCP/IP Illustrated, Volume 1</i>
418: <dd>by W. Richard Stevens
419: <dd>
420: "Network administration" is really an inappropriate heading for this book. It
421: is an encyclopedia of the TCP/IP protocol suite. This book provides information,
1.35 pvalchev 422: and diagrams useful to understand the suite to its lowest level.
1.15 philen 423: Home enthusiasts, developers, and network administrators alike will enjoy this
424: book.
425: <p>
1.20 chris 426: <dt><i>Kerberos: A Network Authentication System</i>
427: <dd>by Brian Tung
428: <dd>
429: A guide for administrators of Kerberos-based networks. Explains concepts of
430: the Kerberos system, as well as the installation and administration of it.
431: <p>
1.34 miod 432: <dt><i>IPsec: The New Security Standard for the Internet, Intranets and Virtual
1.20 chris 433: Private Networks</i>
434: <dd>by Naganand Doraswamy and Dan Harkins
435: <dd>
1.34 miod 436: This book explains the IPsec protocol suite. It also describes its relation
1.20 chris 437: to the current deployments, such as VPNs, and future ideas.
1.36 jufi 438: <p>
1.20 chris 439: <dt><i>Computer Networks</i>
440: <dd>by Andy Tanenbaum
441: <dd>
442: This book is an high-level guide to modern computer networking. It presents
443: a wide range of protocols, concepts, and technologies. It covers technologies
444: from fiber to wireless, LANs, Mobile IP, and a lot more.
1.36 jufi 445: <p>
1.15 philen 446: <dt><i>DNS and BIND</i>
447: <dd>by Paul Albitz and Cricket Liu
448: <dd>
449: This book is an excellent introduction to DNS and BIND, useful for
450: anyone who has to implement DNS under OpenBSD.
451: <p>
452: <dt><i>DHCP</i>
453: <dd>by Ted Lemon and Ralph E. Droms
454: <dd>
1.46 david 455: Recommended by the <a href="http://www.isc.org/">Internet Software Consortium</a>,
1.15 philen 456: which is the organization that produces the DHCP client/server software
457: included with OpenBSD.
458: <p>
459: <dt><i>Managing NFS and NIS</i>
460: <dd>by Hal Stern
461: <dd>
462: Gives essential information with examples on managing NFS and NIS.
1.37 dhartmei 463: <p>
464: <dt><i>802.11 Security</i>
465: <dd>by Bruce Potter and Bob Fleck
466: <dd>
467: Provides information on the fundamentals of wireless security, including
468: practical solutions for setting up clients, access points and gateways
469: under several operating systems. Two chapters are dedicated to OpenBSD 3.1,
470: covering wi, bridge, pf and altq.
1.25 chris 471: </dl>
1.21 chris 472:
1.25 chris 473: <hr>
1.91 deraadt 474: <h3>Cryptography</h3>
1.21 chris 475: <dl>
476: <dt><i>Applied Cryptography: Protocols, Algorithms, and Source Code in C</i>
477: <dd>by Bruce Schneier
478: <dd>
479: A comprehensive explanation of Cryptography, with information
480: about its history, protocols, and algorithms. This book is a great
481: introduction to cryptography, with the necessary basics
482: to understand the field. Also, it has a very extensive reference section.
1.36 jufi 483: <br>
484: <p>
1.30 jsyn 485: <dt><i>Handbook of Applied Cryptography</i>
1.26 ian 486: <dd>by Alfred J. Menezes, Paul C. van Oorschot and Scott A. Vanstone
487: <dd>A new and detailed look at Cryptography. The authors write:
488: <dd>
489: ... Public-key cryptographic techniques
490: are now in widespread use, especially in the financial services
491: industry, in the public sector, and by individuals for their personal
492: privacy, such as in electronic mail. This Handbook will serve as a
493: valuable reference for the novice as well as for the expert who
494: needs a wider scope of coverage within the area of cryptography.
495: It is a necessary and timely guide for professionals who practice
496: the art of cryptography.
497: <dd>The entire book is
1.55 grunk 498: <a href="http://www.cacr.math.uwaterloo.ca/hac/">
1.26 ian 499: available for free downloading</a> (for personal use only)
500: from the book authors' site, in PDF or PostScript.
501: <dd>
502: <p>
1.25 chris 503: <dt><i>SSL and TLS Essentials: Securing the Web</i>
504: <dd>by Stephen A. Thomas
505: <dd>
506: This book offers introductory coverage of the SSL and TLS protocols, with
507: examples. The SSL protocol
508: is currently the basis of secure data transfer and secure transactions
509: on the Internet. Aside from encryption, this book also covers data
510: integrity and details the SSL protocol.
511: <dd>
512: <p>
1.39 jose 513: <dt><i>SSL and TLS: Designing and Building Secure Systems</i>
514: <dd>by Eric Rescorla
515: <dd>
516: This book offers comprehensive information about the SSL and TLS protocols,
517: covering their operation and security,
518: together with usage and implementation details.
519: There are also chapters about HTTP over SSL, and SMTP over TLS (STARTTLS).
520: Eric Rescorla is the author of <tt>ssldump</tt>, a utility that can be
521: used to monitor SSL connections.
522: He has written several commercial and free SSL implementations.
523: <dd>
524: <p>
1.25 chris 525: <dt><i>Big Book of IPsec RFCs: Internet Security Architecture</i>
526: <dd>compiled by Pete Loshin
527: <dd>
1.54 nick 528: A complete reprint of the IPsec RFCs with an extensive index and
529: glossary.
1.25 chris 530: <dd>
1.15 philen 531: </dl>
1.13 deraadt 532:
533: </body>
534: </html>