this post was submitted on 26 Sep 2024
28 points (100.0% liked)

Programming

17669 readers
133 users here now

Welcome to the main community in programming.dev! Feel free to post anything relating to programming here!

Cross posting is strongly encouraged in the instance. If you feel your post or another person's post makes sense in another community cross post into it.

Hope you enjoy the instance!

Rules

Rules

  • Follow the programming.dev instance rules
  • Keep content related to programming in some way
  • If you're posting long videos try to add in some form of tldr for those who don't want to watch videos

Wormhole

Follow the wormhole through a path of communities [email protected]



founded 2 years ago
MODERATORS
 

I went to my local library today and noticed there's a lot of networking, cybersecurity, tcp/ip books from the early 2000s. Now, I want more modern versions of these types of handbooks. Does anyone know any good modern handbooks that deal with networking or network security standards?

Thanks :)

top 5 comments
sorted by: hot top controversial new old
[–] [email protected] 7 points 2 months ago* (last edited 2 months ago)
[–] [email protected] 6 points 2 months ago* (last edited 2 months ago) (1 children)

A few months ago, my library gained a copy of Cybersecurity For Small Networks by Seth Enoka, published by No Starch Press in 2022. So I figured I'd have a look and see if it it included modern best-practices for networks.

It was alright, in that it's a decent how-to guide for a novice to set up sensible, minimum network fortifications. But it only includes an overview of how those fortifications work, without going into the additional depth needed to fine-tune or optimize them for specific environments. So if the reader has zero experience with network security, it's a worthwhile read. But if you've already been operating a network with defenses for a while, there's not much to gain from this particular text.

Also, the author suggests that IPv6 should be disabled, which is a terrible idea. Modern best-practice is not to pretend IPv6 doesn't exist, but to assure that firewalls and other defenses are configured to handle this traffic. There's a vast difference between "administratively reject IPv6 traffic in/out of the WAN" and "disable IPv6 on all devices and pray no one ever connects an IPv6-enabled device".

You might have a look at other books available from No Starch Press, though.

[–] [email protected] 4 points 2 months ago* (last edited 2 months ago)

If a person is at the intro/intermediate level that advice may be sound enough. Since they’re less likely to apply proper rules to include those ranges of IP’s etc.

Assuming it’s advising disabling it at the router/switch level and not just a per device level.

Better would be to explain: Disable this until you’re familiar with the following concepts (see cited books/material for more info)

[–] [email protected] 2 points 2 months ago
[–] [email protected] 2 points 2 months ago

Anything in those categories from No Starch Press