Dailydave mailing list archives

Previous By Date Next
Previous By Thread Next

Wiley does bad science

From: Dave Aitel <dave () immunitysec com>
Date: Thu, 06 Jan 2005 19:10:00 -0500
So Shellcoder's Handbook made $252 for me in the last six months. That's why if you're writing a book, I suggest that you do it all by yourself. That way you have some actual say over the contract and can ensure you get more than 1 cent a book. Not that I really care, since I did it for the publicity, but I thought it was funny, since it's basically the most popular computer security book since Extreme Hacking.
What does bug me is the wee little note some liberal arts major wrote for the Wiley newsletter about the NIH's efforts to require that medical research funded by the US Government (I.E. Taxpayers) be available to the people who paid for it (i.e. the public). Wiley, not surprisingly, is against such an initiative, claiming that you can download abstracts for most research for free, and that there are efforts being made to sugar coat selected research for public consumtion, so we shouldn't worry our pretty little heads about it. 

How evil is that?
In contrast, the NYC Security Shindig on the 17th is going to have some free book give-aways sponsored by CRCPress, who published the Hacker's Handbook. For those of you who asked, the price is "free" and includes pizza and all the coke you can drink. So in a way, the price is like negative 5 bucks. But you do have to register ahead of time by sending me a quick email. So free pizza and coke AND there will be Toy OS 0day AND there will be old school graphics demos (thanks to Jake) AND there will be a talk from Dino and Shane. The last one filled up, so email me early and register your space.
Trivia Question: Which famous German hacker wrote large parts of the Hacker's Handbook for no credit? I didn't realize he'd done it myself until he introduced himself at a conference and told me.
If you emailed me today and I didn't get back to you that's because I'm not answering email until my latest shellcode actually works. It's a fairly interesting shellcode, and one I've only seen the Chinese government use. Basically it reuses the socket on IIS connections. So you can use SSL to hack into something and reuse that connection (still SSLed) to do whatever else you need to do. I think it's funny how ahead of everyone else the Chinese government is when it comes to hacking Windows. 

-dave




_______________________________________________
Dailydave mailing list
Dailydave () lists immunitysec com
https://lists.immunitysec.com/mailman/listinfo/dailydave
Previous By Date Next
Previous By Thread Next

Current thread: