Book Review: Network Security with OpenSSL

Wednesday, 30 October 2002, 12:44 PM EST

This isn't a general audience book. This is a book aimed almost solely at programmers who will be working with OpenSSL. The only chapter of real use to admins is chapter 2, which covers the command-line interface in great detail.

For general *nix hobbyists, it's not a book you'll want to tackle unless you really need to make use of OpenSSL in a program. It's not an engaging read, cryptography is a pretty dry subject unless you find it interesting. While the authors do a great job of covering their chosen topics well, they never really bring any excitement to the topic. I know, that's probably a bit too much to ask, but you do run across the occasional computer book that actually makes the topic fun as well as informative (Programming Perl comes to mind.) If any topic needs to be spiced up, it's cryptography.

Note that the book spends no time at all on the internals of OpenSSL or the SSL protocol. You will need to look elsewhere to get an understanding of the actual SSL protocol.

If you are in the small group of people who needs to use OpenSSL in a program, this is just the thing you're looking for. It's chock full of great coverage on programming with OpenSSL, and is probably the single best reference for OpenSSL out there. Don't hesitate to add this one to your library, it'll be money well spent.

[ Read more ]


Critical bug found in Cisco ASA products, attackers are scanning for affected devices

Several Cisco ASA products - appliances, firewalls, switches, routers, and security modules - have been found sporting a flaw that can ultimately lead to remote code execution by attackers.

Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.

Daily digest

Receive a daily digest of the latest security news.

Fri, Feb 12th