GitBook makes it easy to publish great books.

Discover gorgeous books from the community.

Publish your books easily thanks to a great workflow.

Monetize your paid books in less than 5 minutes.

Simple to update, publish and update your books easily using Git or the editor.

Responsive, books can be read on all devices, laptops, tablets, phones, kindles, etc.

Editor, use the GitBook editor to write beautiful books, on Mac, Windows or Linux.

Git, books are versionned and collaborative using the GIT scm.

Markdown, books are written using the markdown syntax.

Open Source, built on top of the open source GitBook technology.

o more thanks to powerful integrations.

E-book readers, books are readable on the Amazon Kindle, Nook and other readers.

iBooks, books are readable on iPad, iPhone and Mac using iBooks.

GitHub, write your book on GitHub and publish it in seconds through GitBook.

Monetize your books

Choose your own minimum and suggested prices, from $0 (or free) to $100.

Let everybody buy your book easily. GitBook accepts most credit & debit cards.

You keep the rights to your book, not us. So you can do a deal with a publisher at any time.

GitBook charges 20% per transaction.

Violation of any of the terms below will result in the termination of your Account. While FriendCode prohibits such conduct and Content on the Service, you understand and agree that FriendCode cannot be responsible for the Content posted on the Service and you nonetheless may be exposed to such materials. You agree to use the Service at your own risk.

Account Terms

• You must be a human, bots are not allowed
• You must be 10 years or older to use this Service.
• You must provide your legal full name (as name) and a valid email address (as email)
• You are responsible for maintaining the security of your account and password.
• You are responsible for all Content posted and activity that occurs under your account (even when Content is posted by others who have accounts under your account).
• One person may not maintain more than one free account.
• You may not use the Service for any illegal or unauthorized purpose. You must not, in the use of the Service, violate any laws in your jurisdiction
• Your use of the Service is at your sole risk
• You must not modify, adapt or hack the Service

Hi,

I'm a prospective user of gitbook.io, and I had a concern.  I don't want to write under my real name.  I have business concerns that I use my real name for, and don't want any contract or other issues, which is why I don't use my real name for either my hobby coding nor writing concerns.

However, it seems that things published must be connected to my legal name?  Or I'm subject to summary termination of account?

I just wanted to make sure of what was actually meant, i.e. was this absolute?  Especially in publishing where people ghost write and use pseudonyms, it seems that this is a bit short sighted.

Thanks for your time, and any response!

Hi,

If your book is a paid book, you have to use your legal name, because otherwise we can't legally transfer you the money.

But if the book is a free or private book, feel free to use a pseudonym, we'll suspend the book only if the content is a stolen or illegal content.

You can only signup using twitter or github, so if you want to use a pseudonym, please make sure that your real name is not written on your Twitter/Github user profile.

Drupal has patched a critical SQL injection vulnerability in version 7.x of the content management system that can allow arbitrary code execution. The flaw lies in an API that is specifically designed to help prevent against SQL injection attacks. "Drupal 7 includes a database abstraction API to ensure that queries executed against the database are sanitized to prevent SQL injection attacks," the Drupal advisory says. "A vulnerability in this API allows an attacker to send specially crafted requests resulting in arbitrary SQL execution. Depending on the content of the requests this can lead to privilege escalation, arbitrary PHP execution, or other attacks."

From the researchers that brought you BEAST and CRIME comes another attack against Secure Sockets Layer (SSL), one of the protocols that's used to secure Internet traffic from eavesdroppers both government and criminal.

Calling the new attack POODLE—that's "Padding Oracle On Downgraded Legacy Encryption"—the attack allows a man-in-the-middle, such as a malicious Wi-Fi hotspot or a compromised ISP, to extract data from secure HTTP connections. This in turn could let that attacker do things such as access online banking or e-mail systems. The flaw was documented by Bodo Möller, Thai Duong, and Krzysztof Kotowicz, all of whom work at Google. Thai Duong, working with Juliano Rizzo, described the similar BEAST attack in 2011 and the CRIME attack in 2012.

The attack depends on the fact that most Web servers and Web browsers allow the use of the ancient SSL version 3 protocol to secure their communications. Although SSL has been superseded by Transport Layer Security, it's still widely supported on both servers and clients alike and is still required for compatibility with Internet Explorer 6. SSLv3, unlike TLS 1.0 or newer, omits validation of certain pieces of data that accompany each message. Attackers can use this weakness to decipher an individual byte and time of the encrypted data, and in so doing, extract the plain text of the message byte by byte.

As with previous attacks of this kind against SSL, the most vulnerable application is HTTP. An example attack scenario would work something like this. An adversary (typically in cryptography literature known as Mallory) sets up a malicious Wi-Fi hotspot. That Wi-Fi hotspot does two things. On non-secure HTTP connections, it injects a piece of JavaScript. And on secure HTTP connections, it intercepts the outgoing messages and reorganizes them.

• http://www.washingto...artoons-are-no-more/
• http://en.wikipedia....rday-morning_cartoon
• http://www.inthe80s.com/saturdays.shtml <-- schedules from the 1980s
• http://www.imdb.com/list/ls000946691/

As a young man, Kevin Mitnick became the world’s most notorious black hat hacker, breaking into the networks of companies like IBM, Nokia, Motorola, and other targets. After a stint in prison, he reinvented himself as a white hat hacker, selling his skills as a penetration tester and security consultant.

With his latest business venture, Mitnick has switched hats again: This time to an ambiguous shade of gray.

Late last week, Mitnick revealed a new branch of his security consultancy business he calls Mitnick’s Absolute Zero Day Exploit Exchange. Since its quiet inception six months ago, he says the service has offered to sell corporate and government clients high-end “zero-day” exploits, hacking tools that take advantage of secret bugs in software for which no patch yet exists. Mitnick says he’s offering exploits developed both by his own in-house researchers and by outside hackers, guaranteed to be exclusive and priced at no less than $100,000 each, including his own fee.

And what will his clients do with those exploits? “When we have a client that wants a zero-day vulnerability for whatever reason, we don’t ask, and in fact they wouldn’t tell us,” Mitnick tells WIRED in an interview. “Researchers find them, they sell them to us for X, we sell them to clients for Y and make the margin in between.”

Mitnick declined to name any of his customers, and wouldn’t say how many, if any, exploits his exchange has brokered so far. But the website he launched to reveal the project last week offers to use his company’s “unique positioning among security researchers and the hacker community” to connect exploit developers with “discerning government and corporate buyers.”