[clug-talk] Slides from the Jan 7th presentation are available.
Gustin Johnson
gustin at echostar.ca
Thu Jan 8 10:46:22 PST 2009
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
John Jardine wrote:
> Hi,
>
> For those that would like copies of the slides from my Jan 7th
> presentation - you can download them from:
> http://clug.ca/node/585
>
I promised to post some links regarding packet sniffing tutorials,
books, and firefox plugins.
The first two links are specific to tcpdump, a command line utility.
The principles should translate to wireshark (I believe that wireshark
uses the same syntax). I do believe that you should start with tcpdump
and only move to wireshark when you have a solid grasp of the
principles. Wireshark is more than a packet sniffer, it can also read
the saved captures from tcpdump. The take home message here is start
with tcpdump.
http://dmiessler.com/study/tcpdump/
http://dmiessler.com/study/tcpdump_recipes/
The book I was talking about for developers and interested users alike
was "the TCP/IP Guide" by Charles M. Kozierok.
http://www.amazon.ca/TCP-Guide-Comprehensive-Illustrated-Protocols/dp/159327047X/ref=sr_1_7?ie=UTF8&s=books&qid=1231439498&sr=8-7
It may sound like a dry topic but the author does a superb job in
keeping the material interesting. His writing style is entertaining
without getting in the way of technical accuracy.
The "Linux Firewalls" by Michael Rash is also excellent.
http://www.amazon.ca/Linux-Firewalls-Michael-Rash/dp/1593271417/ref=sr_1_1?ie=UTF8&s=books&qid=1231439534&sr=1-1
The firefox plugin was called noscript, and can be found here:
http://noscript.net/
I also use the jsview and showip Firefox addons, for those who wish to
dig deeper:
JSView
https://addons.mozilla.org/en-US/firefox/addon/2076
ShowIP
https://addons.mozilla.org/en-US/firefox/addon/590
Hth,
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iEYEARECAAYFAklmSfsACgkQwRXgH3rKGfNfrgCfV/vX3jK/rJ/mwHrjnX6BYINC
iosAoJDoBx1YIzTMAH0qRgjvowqZ5Kb7
=BkVT
-----END PGP SIGNATURE-----
More information about the clug-talk
mailing list