Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

dailydave logo Dailydave mailing list archives

Wiley does bad science
From: Dave Aitel <dave () immunitysec com>
Date: Thu, 06 Jan 2005 19:10:00 -0500
So Shellcoder's Handbook made $252 for me in the last six months. That's why if you're writing a book, I suggest that you do it all by yourself. That way you have some actual say over the contract and can ensure you get more than 1 cent a book. Not that I really care, since I did it for the publicity, but I thought it was funny, since it's basically the most popular computer security book since Extreme Hacking.
What does bug me is the wee little note some liberal arts major wrote for the Wiley newsletter about the NIH's efforts to require that medical research funded by the US Government (I.E. Taxpayers) be available to the people who paid for it (i.e. the public). Wiley, not surprisingly, is against such an initiative, claiming that you can download abstracts for most research for free, and that there are efforts being made to sugar coat selected research for public consumtion, so we shouldn't worry our pretty little heads about it. 

How evil is that?
In contrast, the NYC Security Shindig on the 17th is going to have some free book give-aways sponsored by CRCPress, who published the Hacker's Handbook. For those of you who asked, the price is "free" and includes pizza and all the coke you can drink. So in a way, the price is like negative 5 bucks. But you do have to register ahead of time by sending me a quick email. So free pizza and coke AND there will be Toy OS 0day AND there will be old school graphics demos (thanks to Jake) AND there will be a talk from Dino and Shane. The last one filled up, so email me early and register your space.
Trivia Question: Which famous German hacker wrote large parts of the Hacker's Handbook for no credit? I didn't realize he'd done it myself until he introduced himself at a conference and told me.
If you emailed me today and I didn't get back to you that's because I'm not answering email until my latest shellcode actually works. It's a fairly interesting shellcode, and one I've only seen the Chinese government use. Basically it reuses the socket on IIS connections. So you can use SSL to hack into something and reuse that connection (still SSLed) to do whatever else you need to do. I think it's funny how ahead of everyone else the Chinese government is when it comes to hacking Windows. 

-dave




_______________________________________________
Dailydave mailing list
Dailydave () lists immunitysec com
https://lists.immunitysec.com/mailman/listinfo/dailydave

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]