Authors: Michael Davis.
Paperback, 400 pages
Publisher: McGraw-Hill Osborne Media
Publication Date: 2009-05-06
Edition: 1

Reviews :

   

The bestselling series now covers these dangerous and evolving computer security threats

Providing real-world attacks and detailed countermeasures, this new volume is a comprehensive guide to the Andquot;black artAndquot; of malware and rootkits. You will learn how to identify and defend against malicious software and dangerous hidden scripts. The book includes practical examples, case studies, and risk ratings--all in the bestselling Hacking Exposed format.

Hacking Exposed: Malware Andamp; Rootkits walks you through the processes of analyzing malicious software from start to finish. The book covers different kinds of malware and rootkits, methods of infection, and the latest detection and prevention technologies.

...

Authors: Douglas Thomas.
Hardcover, 266 pages
Publisher: University of Minnesota Press
Publication Date: 2002-03


Reviews :

    Demonized by governments and the media as criminals, glorified within their own subculture as outlaws, hackers have played a major role in the short history of computers and digital culture-and have continually defied our assumptions about technology and secrecy through both legal and illicit means. In Hacker Culture, Douglas Thomas provides an in-depth history of this important and fascinating subculture, contrasting mainstream images of hackers with a detailed firsthand account of the computer underground.

Programmers in the 1950s and '60s-"old school" hackers-challenged existing paradigms of computer science. In the 1960s and '70s, hacker subcultures flourished at computer labs on university campuses, making possible the technological revolution of the next decade. Meanwhile, on the streets, computer enthusiasts devised ingenious ways to penetrate AT&T, the Department of Defense, and other corporate entities in order to play pranks (and make free long-distance telephone calls). In the 1980s and '90s, some hackers organized to fight for such causes as open source coding while others wreaked havoc with corporate Web sites.

Even as novels and films (Neuromancer, WarGames, Hackers, and The Matrix) mythologized these "new school" hackers, destructive computer viruses like "Melissa" prompted the passage of stringent antihacking laws around the world. Addressing such issues as the commodification of the hacker ethos by Silicon Valley entrepreneurs, the high-profile arrests of prominent hackers, and conflicting self-images among hackers themselves, Thomas finds that popular hacker stereotypes reflect the public's anxieties about the information age far more than they do the reality of hacking.

Douglas Thomas is associate professor in the Annenberg School for Communication at the University of Southern California. He is coeditor (with Brian D. Loader) of Cybercrime: Law Enforcement, Security, and Surveillance in the Information Age (2000)....

Authors: Richard Deal.
Paperback, 912 pages
Publisher: Cisco Press
Publication Date: 2004-08-20


Reviews :

   

Harden perimeter routers with Cisco firewall functionality and features to ensure network security

• Detect and prevent denial of service (DoS) attacks with TCP Intercept, Context-Based Access Control (CBAC), and rate-limiting techniques
• Use Network-Based Application Recognition (NBAR) to detect and filter unwanted and malicious traffic
• Use router authentication to prevent spoofing and routing attacks
• Activate basic Cisco IOS filtering features like standard, extended, timed, lock-and-key, and reflexive ACLs to block various types of security threats and attacks, such as spoofing, DoS, Trojan horses, and worms
• Use black hole routing, policy routing, and Reverse Path Forwarding (RPF) to protect against spoofing attacks
• Apply stateful filtering of traffic with CBAC, including dynamic port mapping
• Use Authentication Proxy (AP) for user authentication
• Perform address translation with NAT, PAT, load distribution, and other methods
• Implement stateful NAT (SNAT) for redundancy
• Use Intrusion Detection System (IDS) to protect against basic types of attacks
• Obtain how-to instructions on basic logging and learn to easily interpret results
• Apply IPSec to provide secure connectivity for site-to-site and remote access connections
• Read about many, many more features of the IOS firewall for mastery of router security

The Cisco IOS firewall offers you the feature-rich functionality that you've come to expect from best-of-breed firewalls: address translation, authentication, encryption, stateful filtering, failover, URL content filtering, ACLs, NBAR, and many others. Cisco Router Firewall Security teaches you how to use the Cisco IOS firewall to enhance the security of your perimeter routers and, along the way, take advantage of the flexibility and scalability that is part of the Cisco IOS Software package.

Each chapter in Cisco Router Firewall Security addresses an important component of perimeter router security. Author Richard Deal explains the advantages and disadvantages of all key security features to help you understand when they should be used and includes examples from his personal consulting experience to illustrate critical issues and security pitfalls. A detailed case study is included at the end of the book, which illustrates best practices and specific information on how to implement Cisco router security features.

Whether you are looking to learn about firewall security or seeking how-to techniques to enhance security in your Cisco routers, Cisco Router Firewall Security is your complete reference for securing the perimeter of your network.

This book is part of the Networking Technology Series from Cisco Press, which offers networking professionals valuable information for constructing efficient networks, understanding new technologies, and building successful careers.

...

Authors: Fredrick Thomas Martin.
Paperback, 380 pages
Publisher: Prentice Hall
Publication Date: 1998-11-15


Reviews :

    Using the example of "Intelink", the classified worldwide Intranet for the intelligence community, this book is one of the first on current intelligence operations written by an "insider". The CD-ROM includes sample Intelink software demos relating to collaboration tools, security products, and other applications....

Authors: Duane Wessels.
Paperback, 318 pages
Publisher: O'Reilly Media, Inc.
Publication Date: 2001-06


Reviews :

    A properly designed web cache reduces network traffic and improves access times to popular web sites--a boon to network administrators and web users alike. Web Caching hands you all the technical information you need to design, deploy, and operate a web caching service. It spells out in practical detail how to design an effective cache solution, configure both web servers and web browsers to use a cache, set up a collection of caches that can talk to each other, and monitor and fine-tune the performance of a cache. The book also covers the important political aspects of web caching, including privacy and security issues. Internet service providers, large corporations, and educational institutions--in short, any network that provides connectivity to a wide variety of users--can reap enormous benefit from running a well-tuned web caching service. Web Caching shows how to do it right....

    Web Caching explores the intricacies of implementing caching in Web server environments to reduce network traffic and improve performance. Like so many areas of Internet technology, the topic of Web caching comprises a number of architectural and practical issues that could take a career to learn the hard way. Fortunately, author Duane Wessels has organized all the nuts-and-bolts technical information in this short book.

This guide to turbo-charging the Web is primarily geared toward system administrators; however, Web developers can also learn much about the proper--and improper--use of caching their pages. The book begins with excellent chapters on the big picture of how Web caching works, including the various types of caches, hit measurements, validation, and cache refreshing. Before turning to this guide's core focus--designing and implementing caching--the author spends a chapter to explore the political issues surrounding the technology, such as privacy, content distribution, and copyrights.

Both client and server configurations are considered, and the benefits of Netscape and Microsoft implementations are explored. The journey through the efficient travels of Web requests is fascinating as you learn about proxies, intercache protocols, cache hierarchies, and benchmarking methodologies for measuring the efficiency of your solutions. Dishing up requests elegantly is not a trivial task on today's Web, but this no-nonsense book is a great help toward that goal. --Stephen W. Plain

Topics covered:

• Web transport protocols
• HTTP and proxy requests
• Cache replacement and refreshing
• Political concerns
• Client configuration
• Interception proxying
• Server configuration
• Cache hierarchies
• Intercache protocols
• Cache clustering
• Monitoring/benchmarking
• Cache trace analysis

...

Authors: J. D. Biersdorfer. David Pogue.
Paperback, 460 pages
Publisher: Pogue Press
Publication Date: 2006-07-21
Edition: 1

Reviews :

   

The Internet is almost synonymous with change--that's one of its charms, and one of its headaches. You may think you know the Internet, but are you really up to speed on internet telephones, movie and TV downloading, blogging, gaming, online banking, dating, and photosharing?

This utterly current book covers:

Getting Online. Readers will have all the information they need to decide what kind of broadband connection works best for them, which browser they should use, and what kind of spyware-fighting and virus-and spam-protection measures they need to protect themselves.

Finding Information. Google may be the leading search site, but it's certainly not the only game in town. This book introduces a diverse and useful collection of sites that help uncover everything from health care information, to shopping, travel and finance, to dependable reviews and ratings.

Movies, music, and photos. The Web's teeming with entertainment--and not just the sort of postage-stamp sized videos that only a geek could love. Learn where to download movies, watch TV online, listen to music, play games, and post and share photos with friends.

Keeping in touch. Email's only the beginning. This book introduces readers to the many tools that make the modern Internet such a great way to stay connected. From Web-based discussion groups to instant messaging programs, and from blogs and podcasts to Internet-based phone calls, this book will help you join the conversation.

Ideal for anyone just venturing into cyberspace, this book is also perfect for more experienced users who could use an update to today's most exciting internet applications.

...

Authors: Mark Merkow. James Breithaupt.
Paperback, 448 pages
Publisher: Prentice Hall
Publication Date: 2005-08-29


Reviews :

   

For an introductory course in information security covering principles and practices.

 

This text covers the ten domains in the Information Security Common Body of Knowledge, which are Security Management Practices, Security Architecture and Models, Business Continuity Planning (BCP) and Disaster Recovery Planning (DRP), Law, Investigations, and Ethics, Physical Security, Operations Security, Access Control Systems and Methodology, Cryptography, Telecommunications, Network, and Internet Security.

...

Authors: Microsoft Corporation.
Paperback, 958 pages
Publisher: Microsoft Press
Publication Date: 2003-09-24


Reviews :

    The authoritative guide to implementing fundamental security principles in .NET applications. This guide helps you design, build, and configure hack-resilient Web applications that reduce the likelihood of successful attacks and mitigate the extent of damage should an attack occur. It was created for architects and developers who need a holistic and systematic approach to securing their network, host, and application across phases and roles throughout the product lifecycle....

Authors:
Paperback, 300 pages
Publisher: McGraw-Hill Osborne Media
Publication Date: 2001-10-18


Reviews :

    "Hacker's Challenge" will consist of 20-25 hacking scenarios followed by the solution for each. The challenges/chapters are organized by increasing levels of complexity, and covers many hot topics, including Web content, VPNs, Denial of Service, wireless issues, e-commerce, email attacks and more. It includes input from top names in the industry - in addition to Mike Schiffman, consultants from the top security firms, such as Guardent, Foundstone, @Stake, SecurityFocus.com, In-Q-Tel, Arbor Networks, LoudCloud and more contribute their expertise. It is intended for a broad audience - "Hacker's Challenge" is for anyone who wants to solve the latest hacking challenges. It is a great companion to "Hacking Exposed" - an entire book of hands-on scenarios that compliment the "Hacking Exposed" text....

    Mike Schiffman has hit upon a great formula for Hacker's Challenge. Rather than try to research, fully understand, and adequately explain attacks that have taken place on other people's networks--the approach taken by too many writers of books about computer security--Schiffman lets network administrators and security experts tell their stories first-hand. This is good. What's better is that Schiffman has edited each of their war stories into two sections: one that presents the observations the sysadmin or security consultant made at the time of the attack, and another (in a separate part of the book) that ties the clues together and explains exactly what was going on. The challenge in the title is for you to figure out what the bad guys were doing--and how best to stop them--before looking at the printed solution. Let's call this book what it is: an Encyclopedia Brown book for people with an interest in network security.

It doesn't really matter, from a value-for-money standpoint, whether your skills are up to the challenge or not. The accounts of intrusions--these are no-kidding, real-life attacks that you can probably learn from, by the way--are written like chapters from a novel (though log file listings, network diagrams, and performance graphs appear alongside the narrative text). Recall every time you've seen a movie or read a book with computer scenes so technically inaccurate they made you wish for a writer with a clue. Schiffman and Hacker's Challenge is what you wished for. --David Wall

Topics covered: The sorts of attacks that black-hat hackers (everyone from script kiddies to accomplished baddies) launch against Internet-linked computers and networks. Everything is presented from the perspective of the defenders--i.e., the network administrators--who have to look at log files and process activity to figure out what's going on....

Authors: James Edwards. Richard Bramante. Al Martin.
Hardcover, 768 pages
Publisher: Wiley
Publication Date: 2006-08-14


Reviews :

    Here's your handbook to Nortel VPN Router

If you're a beginning-to-intermediate-level networking professional, this guide lays the groundwork you need to establish and manage your network with VPN Router. Everything is here-hardware, software, laboratory set-ups, real-world examples, and, most importantly, advice gleaned from the authors' first-hand experiences.

From understanding the equipment to deployment strategies, management and administration, authentication, and security issues, you'll gain a working knowledge of VPN Router. You will explore tunneling protocols, VoIP, troubleshooting, and exercises to help you apply the Nortel VPN Router in your own environment. This book prepares you to handle the project and provides a resource for future reference.

Manage the complexities of Nortel's VPN Router

• Review the newest networking standards
• Become acquainted with all the tools in the Nortel VPN Router portfolio, and apply them to your organization's needs
• Deploy a VPN Router in a Small Office or Home Office (SOHO) network or a large corporate network
• Learn to apply security features such as a stateful firewall, Network Address Translation (NAT), port forwarding, and user and Branch Office Tunnel (BOT) termination
• Establish security for VoIP and roaming wireless connections
• Explore the Nortel VPN Client software, supported platforms, installation and configuration information, and basic VPN Client concepts
• Maximize the effectiveness of your Nortel VPN Router solution

...