Hacking Exposed: Network Security Secrets and Solutions
by Stuart McClure, Joel Scambray, George Kurtz
Computing McGraw-Hill
ISBN: 0072121270
Whenever Hollywood does a movie in which someone breaks into a computer, the hacking scenes are completely laughable to anyone who knows the first thing about computer security. Think of "Hacking Exposed: Network Security Secrets and Solutions" as a computer thriller for people with a clue. This is a technical book, certainly -- URLs, procedures, and bits of advice take the place of plot and characters -- but the information about hackers'' tools will leave you wondering about the vulnerability of your system. More to the point, the explicit instructions for stealing supposedly secure information (a Windows NT machine''s Security Access Manager file, for example) will leave you absolutely certain that your computers have gaping holes in their armor.
The book describes the security characteristics of several computer-industry pillars, including Windows NT, Unix, Novell NetWare, and certain firewalls. It also explains what sort of attacks against these systems are feasible, which are popular, and what tools exist to make them easier. The authors walk the reader through numerous attacks, explaining exactly what attackers want, how they defeat the relevant security features, and what they do once they''ve achieved their goal. In what might be called after-action reports, countermeasures that can help steer bad buys toward less-well-defended prey are explained.
ICSA Guide to Cryptography
by Randall K. Nichols
McGraw Hill Text
ISBN: 0079137598
This book provides a survey of the principles and practice of cryptography with respect to business applications and, more specifically, commercial computer systems. The business value gained from implementation of cryptographic countermeasures is discussed. Other issues covered include processes, protocols, key management, implementation mistakes, and product certification. The CD-ROM contains a variety of papers and materials regarding cryptography and cryptographic products.
Intrusion Detection: Network Security Beyond the Firewall
by Terry Escamilla
John Wiley & Sons
ISBN: 0471290009
This superior text on computer security is based on experience and extremely rich in information, as well as a pleasure to read. In addition, the author is donating part of his royalties from this book to various charities -- initially, a foundation that fights child abuse.
Escamilla begins by exploring intrusion prevention systems -- firewalls, user authentication routines, and access controls -- and telling how to properly set up such systems. He then describes mechanisms that identify and minimize damage caused by electronic break-ins once they occur. The author covers both system-level and network-level intrusion-detection systems, describing tools that attempt to catch not only outsiders who have broken in, but also legitimate system users who are up to no good.
Escamilla details several anti-intruder tools, including packet sniffers and vulnerability scanners. He describes a lot of Unix hacks and tells what you can do to prevent them from taking place on your systems. Other chapters focus on intrusions in Windows NT environments and what to do when your system is under attack. Escamilla closes with
references to other sources.
IE 7
Firefox 2.0
