 | | |
| Internet Site Security | 
| Authors: Erik Schetina, Ken Green, Jacob Carlson
Publisher: Pearson Education
Category: Book
List Price: $39.99
Buy New: $1.10
You Save: $38.89 (97%)
Buy Used from $1.10
Avg. Customer Rating:  (5 reviews)
Sales Rank: 1057394
Media: Paperback
Edition: 1st
Number Of Items: 1
Pages: 432
Shipping Weight (lbs): 1.6
Dimensions (in): 9.2 x 7.4 x 1
ISBN: 0672323060
Dewey Decimal Number: 005.8
UPC: 752063320327
EAN: 9780672323065
ASIN: 0672323060
Publication Date: March 11, 2002
Availability: Usually ships in 1-2 business days
|
| Editorial Reviews:
Amazon.com Review
Keeping an Internet server safe from bad guys is a serious undertaking. For one thing, the server's very mission--providing access to information to legitimate users across the Internet--makes it hard to provide security transparently. On top of that, the hacker universe is extremely large and diligent and can devote all kinds of time to devising new attacks. Just keeping up with software publishers' patches and recommended procedures can be a serious drain on your time. Internet Site Security aims to make the server security mission a little easier by briefing its readers on general risks and recommended security strategies. The team of three authors focuses on TCP/IP generically, with a little bit of extra information on HTTP and SNMP. Other Web services, such as mail transport, FTP, and distributed applications, aren't well covered.The authors--all engineers from the same security consultancy, one of whom has his Certified Information Security Systems Professional (CISSP) rating--do a good job of explaining some of the ways in which nefarious types come after your servers. Readers learn what a denial-of-service attack is, and how a man-in-the-middle scheme works. It's all accurate and fairly comprehensive, though there's nothing really revolutionary about it. This is just solid coverage of the security issues surrounding servers that provide Internet services to a wide and generally unsecured audience. If you've not read about that before, this book is a decent choice. --David Wall Topics covered: The sorts of attacks to which Internet-connected servers are subject, explained in a TCP/IP-centric and generally operating-system-neutral way.
|
| Customer Reviews:
A completely "user friendly" instructional guide December 7, 2002
4 out of 4 found this review helpful
Collaboratively written by Erik Schetina (CTO for TrustWave Corporation), and TrustWave Corporation senior security engineers Ken Green and Jacob Carlson, Internet Site Security is a much-needed and completely "user friendly" instructional guide to implementing solid and reliable security measures for a personal or professional internet site. Individual chapters provide an informationally useful overview of basic types of security, and address specific issues such as network and application protocols (TCP/IP), operating system and server software issues from Windows NT and 2000 to Linux and Unix, Intrusion-Detection Systems, common security mistakes in internet applications, and much, much more. Internet Site Security is a very highly recommended (if not downright indispensable) resource for surviving in today's era of cyber-crime.
 A security architects guide to building secure networks November 25, 2002
Building a secure Internet infrastructure is akin to building a house. There are a lot of different entities involved, that all must work together to ensure that the edifice is properly constructed. If the building is not properly constructed, even a small wind can topple it.While a house needs an architect, contractors, plumbers, electricians and much more; networks require similar sets of skills if it is to be deployed in a secure manner. The problem with designing secure Internet sites is that the dynamics of information systems means that the foundation is constantly changing. Just as companies are finishing their migrations, there are new updates to deal with. The threats and vulnerabilities are for the most part increasing quicker than most organizations are able to deal with For those looking to design their Internet information security infrastructure, Internet Site Security is an excellent title to use as their guide. It is like an architects guide to building secure networks. The book is quite comprehensive in its coverage of all critical areas of security. It details how to build a secure infrastructure and how to deploy policies to protect it. It covers various technologies such as intrusion detections systems and firewalls, and shows how they are to be effectively deployed. Then advantage of the book is that it has just the right combination of breath and depth. Topics are covered effectively, and the authors do not waste the reader's time by going into obscure security minutiae or academic threats. Readers looking for an effective guide to fundamental issues involved with information security and Internet security are well advised to read Internet Site Security. Don't design you Internet site without it.
Superb practical book July 26, 2002
2 out of 2 found this review helpful
This really is a superb book. The evidence that the authors are hands on types who have implemented what they describe is very apparent, and take it from someone who has been doing security for years, the problems they describe are what you experience in real life. It's a refreshing change from other books which describe the products/technologies as if they were reading a feature list - it's hard to find a book packed with real life experience.I'd describe it as a 'mid level' book, i.e. if you need detailed knowledge of x509 etc you need a seperate tome - but if you want a fairly detailed overview of the majority of risks affecting your web site, this is the book to choose.
Come inside my firewalls May 3, 2002
1 out of 3 found this review helpful
I only recently became a [website user]. Just a month ago, someone said to me, "Aww heck, they won't let me FTP from behind this firewall at work."And I felt really stupid. Fortunately for me, this very technical book was not at all confusing, as I ran off and bought it immediately after my humiliation. It is written in an informative and relatively jargon-free language. I have been tranformed from a virus-laden security ignoramus to a web geek security know-it-all!!!
practical and intuitive April 25, 2002
6 out of 6 found this review helpful
This book covers the subject of Internet Security in a comprehensive manner. It contains excellent coverage on modern penetration/exploitation techniques as well as proper forensic procedures. The book shows you how to build a secure infrastructure and how to proactively deploy security policies, something that should be emphasized in every organization. It offers valuable insight on integration of a security infrastructure into an existing enterprise environment, covering both technical and political ramifications. The book discusses in-depth the strengths and weaknesses of various Intrusion Detection Systems and FireWall architectures. It also provides excellent coverage on IPSec and PAM; better than any documents that I have read on the Internet. The book provides both breadth and depth. It is neither a book all about theories and policies nor just another compilation of internet articles and mailing list discussions. Many insight gleaned from the authors' industry experience have shined through this book. It is a worth read even for a senior security engineer.
|
|
|
Powered by: Dknc, inc. and Amazon.com | | 
For your safety and security, orders are processed through amazon.com
|
|
|
|