Network

http://www.immunityinc.com/products-canvas.shtml Immunity Debugger, vulns, sploits, and other good stuff

http://nfws.inl.fr/nfws_userday/Jesper-Brouer_Large-iptables-rulesets.pdf Netfilter: Making large iptables rulesets scale

http://nuclight.livejournal.com/125747.html A way to detect BT protocol traffic – instead of looking at every packet, traffic to torrent tracker websites is redirected (via divert(4) ) and then analyzed. Analyzer script (PERL) produces the src_ip, dst_ip, dst_port triplet, this info can be used to produce firewall rules

http://openvswitch.org/ right now ppl are using linux bridges as virtual switches for XEN/KVM VMs. Open vSwitch is an improvement over linux bridge that supports industry standard protocol and features and IOS-like CLI – [when project matures] ]you should be able trunk your VM server with cisco switch and expand it into the server with all features supported and backed by a standard config.

http://vger.kernel.org/~davem/skb.html details about important linux kernel networking subsystem data structure called “skb”

http://www.ietf.org/proceedings/10mar/slides/tsvarea-1.pdf “secret of ChatRoulette”. Describes details of RTMFP protocol, that Flash Player (from v.10.1 and above ) uses for media delivery. Protocol is closed/proprietary, encrypted, UDP-based, uses “forward” servers to establish direct session between the nodes. It is not clear if C&C; structure is distributed.

http://forum.nag.ru/forum/index.php?s=8b3a4967a6e80673cbe5518c91520d10&showtopic=53979&pid=482449&st=20&#entry482449 pieces of info about how to compile and use ipt_netflow kernel module on centos 5

http://www.robtex.com/ websites that provides a lot of useful info, like RBL (Relay Black Lists ), DNS, AS, BGP, etc

http://kbase.redhat.com/faq/docs/DOC-17338 writing udev rules for ethernet inteffaces

http://vger.kernel.org/netconf2009_slides/ Notes performance of the recent linux kernels on Nehalem hadrware, linux kernel bridges, DCCP protocol, visualization (cgroups), configuration protocol, etc.