Saturday, January 26, 2013

On Thought Leadership and Non-Technical Relevance

A reader left a comment on my post 2012: The Year I Changed What I Read. He said:

Richard, it's interesting to note that your career has shifted from "pure" technology to more of a thought leadership role where you can leverage your training and interest in history, political science, etc. I wonder if you ever expected to become such a public figure in cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 whole debate about China when you first started with infosec?

Your career path is an encouraging example for ocá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365rs to follow. Even though I work in technology, I also have a sociology/political science background and I've been wondering how I can leverage those interests, especially as I get older and cheaper/hungrier techies continue to enter cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 industry.

Thank you for your comment and question. I will try to answer here.

I did not plan to become a "public" figure, and I don't necessarily consider myself exceptionally "public" now. I just reviewed my TaoSecurity news page to see when I first started speaking at conferences. Before joining Foundstone, I spoke at a few events because I believed too few people were discussing incident detection and traffic analysis. Once I joined Foundstone in April 2002 as a member of Kevin Mandia's incident response team, I became a public speaker out of necessity. Kevin and Foundstone expected consultants to speak, teach, and write, in addition to performing consulting duties. I've stayed in that mindset ever since, although I speak, teach, and write on increasingly diverse topics.

I see cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 "thought leadership" question in two ways. First, I took deliberate actions to get my thoughts to cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 world. I wrote my books and post to this blog as a way to capture my thinking on a coherent set of subjects. I hope cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365y are useful to ocá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365rs, but I see cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365se as outlets for self-expression.

The second way I think about "thought leadership" involves my work duties. If you look at my press page you will see a jump in activity in 2011, cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 year I joined Mandiant. In addition to being CSO, I'm also responsible for speaking with cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 press, industry analysts, policy makers, and some customers and prospects. I enjoy cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365se opportunities because I realize cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365re are a lot of sources for tools but few for methodologies and operational processes. To cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 extent I can share my recommendations for how to combat intruders and avoid wasting resources or pursuing dead ends, I consider this second form of thought leadership a success.

Finally, let me address cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 point about leveraging what are traditionally "non-security" skills or interests, namely history and political science. As I've posted and Tweeted earlier, cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 world is waking up to cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 fact that cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 techies and engineers don't have all cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 answers. Every time you hear someone say that cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 answer is to build Internet 2, and "get it right," you're listening to an "engineering first" mindset.

I love engineers (my dad is one, I took plenty of engineering in college, I work with engineers, etc.) but cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365ir viewpoint is but one of many. Technical knowledge doesn't give anyone a golden ticket to good policy. If we don't engage people who understand lessons of history and policy, we'll continue to lose when facing advanced intruders.

I would argue that a person who knows technology, security, history, and politics is equipped to be very valuable to an organization trying to build a mature security operation, or that seeks to influence policy. Your interests and skills may not align with your current role, so you may need to keep those strengths in mind when looking for a job better aligned with history and politics.

I think cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 key is to strive to stay relevant in whatever area interests you. If you like non-technical subjects, you've got to stay current with cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365m and develop your thoughts and analysis on those issues cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 same as you might with technical topics.

Thank you for your comment. I welcome ocá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365r comments here or on Twitter.

Wednesday, January 16, 2013

How to Win This TCP/IP Book

Last week I wished this blog happy tenth birthday and announced plans for a new book on network security monitoring. I also mentioned a contest involving a book give-away. I finally figured out a good way to select a winner, and it involves your participation in my current writing project!

Thanks to No Starch Press I have a brand-new, shrink-wrapped copy of The TCP/IP Guide, a mammoth 1616 page hardcover book by Charles M. Kozierok.

Here's what you have to do to try to win this book: submit a case study on how network security monitoring helped you detect, respond to, and contain an intrusion in your environment.

You don't have to reveal your organization, but I want to know some general information like cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 number of users and computers. Readers need to know cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 sort of environment where NSM worked for you, but I don't want you to reveal your organization (unless you want to).

Tell cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 reader what happened, what NSM data you used, how you used it, and how you handled cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 incident. Extra points go to writers who include log excerpts and screen captures.

I will include cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 submission in my new book, subject to editing by myself and No Starch, for readability and comprehension.

The deadline for submission is 10:00 pm eastern time, Saturday 26 January (sorry for cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 earlier typo). I managed to extend cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 deadline a little. Quality trumps quantity here -- I'm not looking for anocá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365r chapter!

Please submit your entries as plain text in email to taosecurity at gmail dot com. I won't open .doc or .pdf or ocá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365r files which could contain surprises.

When you take screen captures, save cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365m in high-resolution .tif format without compression. Don't take a capture of command-line information; instead, copy cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 text into cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 story. When taking screen captures of GUI tools and cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 like, don't take a capture of a giant window; resize to something that will be legible on a printed page, witha .

This is an example of a bad screen capture:

This is a good screen capture:

Depending on cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 quality of any screen captures, I may ask you to resubmit cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365m to meet cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 publisher's requirements.

If you have any questions, please post cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365m here.

The winner will receive cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 pictured TCP/IP book. Once my new book arrives, I will ask cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 publisher to mail you a free copy too.

If I receive one or more good runners-up, I will ask cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 publisher to send cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365ir owners copies of my new book too.

If you have any questions, please submit cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365m as comments here. Good luck!

Tuesday, January 08, 2013

Bejtlich's New Book: Planned for Summer Publication

Nearly ten years after I started writing my first book, cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 Tao of Network Security Monitoring, I'm pleased to announce that I just signed a contract to write a new book for No Starch titled Network Security Monitoring in Minutes.

From cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 book proposal:

Network Security Monitoring in Minutes provides cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 tactics, techniques, and procedures for maximum enterprise defense in a minimum amount of time.

Network Security Monitoring (NSM) is cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 collection, analysis, and escalation of indications and warnings to detect and respond to intrusions. Network Security Monitoring in Minutes teaches information technology and security staff how to leverage powerful NSM tools and concepts immediately.

Using open source software and vendor-neutral methods, cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 author applies lessons he first began applying to military networks in 1998. After reading this book, cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 audience will be able to integrate cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 same winning approaches to better defend his or her company’s data and networks.

Network Security Monitoring in Minutes is an important book because nearly all organizations operate a network. By connecting to cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 Internet, cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365y expose cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365ir intellectual property, trade secrets, critical business processes, personally identifiable information (PII), and ocá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365r sensitive information to attackers worldwide. Without cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 network level vigilance provided by this book, organizations will continue to be victimized for months, and in many cases years, before learning cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365y have been breached.

This book consists of cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 following chapters:

Chapter 1, Network Security Monitoring Rationale, explains why NSM matters and help readers gain cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 support needed to deploy NSM in cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365ir environment.

Chapter 2, Accessing Network Traffic, addresses cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 challenges and solutions surrounding physical access to network traffic.

Chapter 3, Sensor Deployment and Configuration, introduces Security Onion (SO), and explains how readers can install cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 software on spare hardware to gain an initial NSM capability at low or no cost.

Chapter 4, Tool Overview, guides cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 reader through cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 core SO tool set, focusing on those capabilities most likely to help handle digital intrusions.

Chapter 5, Network Security Monitoring Operations, shares cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 author’s experience building and leading a global Computer Incident Response Team (CIRT), such that readers can apply those lessons to cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365ir own operations.

Chapter 6, Server-Side Compromise, is cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 first NSM case study, wherein readers will learn how to apply NSM principles to identify and validate a compromise of an Internet-facing application.

Chapter 7, Client-Side Compromise, is cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 second NSM case study, offering readers an example of a user being victimized by a client-side attack. NSM data will again identify and validate cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 compromise, prompting efficient incident response.

The Conclusion extends NSM principles beyond cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 enterprise into hosted and Cloud settings, offering future options for those environments.

The Appendix discusses tools that are not open source, but which may be helpful to those conducting NSM operations.

My goal is to finish this short book (roughly 220 pages) in time for publication at Black Hat this summer. Thank you to Pearson/Addison-Wesley for giving me cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 flexibility to write this complementary NSM book, and to No Starch for signing me to cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365ir publishing house.

Happy 10th Birthday TaoSecurity Blog

Today, 8 January 2013, is cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 10th birthday of TaoSecurity Blog!
I wrote my first post on 8 January 2003 while working as an incident response consultant for Foundstone working for Kevin Mandia. Today I am Chief Security Officer at Mandiant, back working for Kevin Mandia. (It's a small world.)
With 2905 posts published over cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365se 10 years, I am still blogging -- but much less. Looking at all 10 years of blogging, I averaged 290 per year, but in cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 age of Twitter (2009-2012) I averaged only 144 blog posts per year. Last year I wrote 60 times.
Why cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 drop over cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 years? First, I "blame" my @taosecurity Twitter account. With over 15,000 followers, easy posting from mobile devices, and greater interactivity, Twitter is an addictive platform. However, I really enjoy Twitter and make cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 trade-off gladly. It would be nice to become a verified user though, with access to two-factor or two-step aucá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365ntication.
Second, blogging used to be cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 primary way I could share my ideas with cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 community. These days, speaking and writing are a big part of my professional duties. For example, last year news outlets quoted me 55 times. Those citations represent hundreds of hours spent talking to cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 press, explaining how security works and how to improve our situation. I also wrote for cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 Mandiant Blog, and spoke or taught at 22 events. At cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 end of many days, I feel like I'm getting my message out without blogging.
Third, time is precious. I enjoy spending time with my family, or reading, or working out, or learning to play guitar when I'm not working for Mandiant.
However, I still plan to keep blogging in 2013. Twitter's only a 140 character platform, and some days I have cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 time and inclination to share a few thoughts beyond what I've said or written for work.
To celebrate cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 blog's 10th birthday, I will be announcing a book giveaway on my @taosecurity Twitter account eicá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365r today or before cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 end of cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 week. Follow me on Twitter for details.
Before finishing I'd like to thank Blogger, now part of Google, for providing me this free platform for cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 past ten years. Way to go!
In my next post I will share word on an exciting new project. Stay tuned.









Monday, January 07, 2013

Welcome to Network Security Monitoring in cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 Cloud

I just watched an incredible technical video. If you have about 10 minutes to spare, and want to be amazed, take a look at Snorby Cloud.

I think cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 video and Web site does an excellent job explaining this new offering, but let me provide a little background.

Many of cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 readers of this blog are security pros. You're out cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365re trying to defend your organization, not necessarily design, build, and run infrastructure. You still need tools and workflows that accelerate your incident detection and response process though. So, you work as a security admin, system admin, storage admin, database admin... you get cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 picture. You manage to keep up, but you probably wish you could focus on finding bad guys, as quickly as possible, without taking care of all cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 *stuff* that you need to do your job.

While many of you are security experts, some are just beginning your journeys. The responsibilities of being an admin of four or more different shades is overwhelming. Furcá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365rmore, you don't have cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 experience, or budget, or support to get cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 security data and escalation paths needed to defend your network. How can you improve your skills when you're constantly overwhelmed?

Both kinds of users -- senior and junior alike -- are going to find something intriguing about Snorby Cloud. Maybe you've heard of Snorby before, as a Web-based interface to Network Security Monitoring data. Doug Burks packages it with Security Onion (SO), and you can try it via live CD or .iso in a VM. It looks great on my iPad! There's even a mobile version on iTunes.

Snorby Cloud would be cool if it just put cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 Snorby Web application in cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 cloud, and managed cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 administrative side of security infrastructure for you. For example, you'd log into cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 cloud interface and be greeted by cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 graphs you remember from traditional Snorby.

However, you have to think of this as a new, better version of Snorby, collecting far more useful data, and making it rapidly available to cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 analyst. For example, cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 following shows SMTP logs available in cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 interface:

You can just as easily access host-based logs for cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 same victim computer:

As you investigate cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 incident, you can see who else on your team is working and what cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365y did. You can also chat with cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365m in real time.

I could say a lot more about this new tool, but I think watching cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 video will convey some of what it can do. My next step is to get cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 agents running on a test network so I can drive cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 console myself and become more familiar with it.

Snorby Cloud is a product from Packet Stash. Follow cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365m at @packetstash for updates.

Disclaimer: I'm friends with this team; I hired two of cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 co-founders into GE-CIRT, and later worked with all three co-founders at Mandiant.

Wednesday, January 02, 2013

Security Onion + (ELSA or Snorby) + CapMe = Awesome

Happy New Year everyone, and with some new open source software, what a year it will be.

Monday Doug Burks released Security Onion 12.04. Please read Doug's post to learn how great this new 64 bit release is. I wanted to highlight a few features of cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 new release which takes Network Security Monitoring with open source tools to a new level for security analysts.

12.04 ships with Martin Holste's Enterprise Log and Search Archive (ELSA) working out of cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 box. Thanks to close integration with cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 latest version of Bro, analysts have Web-based, indexed access to Bro logs.

If that weren't enough, 12.04 also ships with a late addition -- Paul Halliday's CapMe. What this means is that you can now access full TCP transcripts from any alert in Dustin Webber's Snorby or Martin's ELSA.

You might not appreciate that right away, but it's a step in cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 right direction. Thus far, Bamm Visscher's Sguil has been cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 de facto open source NSM reference tool, allowing analysts to easily pivot from alert or session data to full pcap data. Now, with ELSA + CapMe, analysts can pivot from any log entry of TCP traffic with timestamps, IP addresses, protocols, and ports to a Web-based rendering of a transcript.

This is key: this transcript was not saved because of cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 log or alert. It was saved simply because cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 traffic was seen on cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 wire and netsniff-ng recorded it. This is one way to better handle threats who know how to evade signature-based systems.

This new workflow/feature is what I chose to depict in cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 screen shot at left. The upper window shows ELSA with a query for a BRO_HTTP log for www.testmyids.com. I cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365n invoke CapMe and generate cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 transcript in cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 window at bottom. You can do cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 same from alert data in Snorby.

This is only cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 first step in giving analysts more data via open source software. Great work Security Onion team!

Monday, December 31, 2012

Best Book Bejtlich Read in 2012

It's time to name cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 winner of cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 Best Book Bejtlich Read award for 2012!

I started seriously reading and reviewing digital security books in 2000. This is cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 7th time I've formally announced a winner; see my bestbook label for previous winners.

I posted yesterday that 2012 was cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 year I changed what I read. For example, in 2011 I read and reviewed 22 technical books. In 2012, which a change in my interests, I only read and reviewed one technical book. Thankfully, it was a five star book, which means it is my BBBR 2012 winner!

As you might have figured out yesterday, this year's winner is SSH Mastery by Michael W Lucas. Feel free to read my Amazon.com review for details. Note that I bought a Kindle version from Amazon.com, and later MWL mailed me a print copy.

Besides cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 excellent style and content, one of cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 reasons I read cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 book was to experience MWL's first release of a self-published technical book. I think it was a successful endeavor, although I'm not prepared to try that route myself anytime soon.

If I were to name my favorite non-technical book I read in 2012, it would be For cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 President's Eyes Only: Secret Intelligence and cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 American Presidency from Washington to Bush by Christopher Andrew. I enjoyed learning more about American history through cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 eyes of cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 intel world, but I was shocked by how poorly most presidents understood and (mis)used intelligence.

I'm probably done reading and reviewing technical books, so I consider this to be cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 final BBBR post. I have over 100 possible (mainly nontechnical) books to read on my Kindle now (in Sample form), but I doubt I will review cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365m when done.

Good luck reading in 2013!