How to Cheat at Securing Your Network

How to Cheat at Securing Your Network
Author: Ido Dubrawsky
Publisher: Syngress
Total Pages: 433
Release: 2011-04-18
Genre: Computers
ISBN: 008055864X

Most Systems Administrators are not security specialists. Keeping the network secure is one of many responsibilities, and it is usually not a priority until disaster strikes. How to Cheat at Securing Your Network is the perfect book for this audience. The book takes the huge amount of information available on network security and distils it into concise recommendations and instructions, using real world, step-by-step instruction. The latest addition to the best selling "How to Cheat..." series of IT handbooks, this book clearly identifies the primary vulnerabilities of most computer networks, including user access, remote access, messaging, wireless hacking, media, email threats, storage devices, and web applications. Solutions are provided for each type of threat, with emphasis on intrusion detection, prevention, and disaster recovery.* A concise information source - perfect for busy System Administrators with little spare time* Details what to do when disaster strikes your network* Covers the most likely threats to small to medium sized networks

How to Cheat at Securing a Wireless Network

How to Cheat at Securing a Wireless Network
Author: Chris Hurley
Publisher: Elsevier
Total Pages: 481
Release: 2006-08-22
Genre: Computers
ISBN: 0080508227

Wireless connectivity is now a reality in most businesses. Yet by its nature, wireless networks are the most difficult to secure and are often the favorite target of intruders. This book provides the busy network administrator with best-practice solutions to securing the wireless networkWith the increased demand for mobile connectivity and the decrease in cost and in the time required for installation, wireless network connections will make up 20% of all corporate network connections by the end of 2006. With this increase in usage comes a commensurate increase in the network's vulnerability to intrusion. This book provides the typical network administrator with the basic tools and instruction they need to maintain a secure network while allowing acceptable access to users.· A practical product and technology specific guideline to securing a wireless networks for the busy System Administrator· Takes a simplified multi-layered approach into easily deployed plans for a straight forward understanding· Does not bog you down with history, but offers practical useful information for today

How to Cheat at Designing Security for a Windows Server 2003 Network

How to Cheat at Designing Security for a Windows Server 2003 Network
Author: Chris Peiris
Publisher: Elsevier
Total Pages: 654
Release: 2005-12-15
Genre: Computers
ISBN: 008048896X

Windows 2003 Server is unquestionably the dominant enterprise level operating system in the industry, with 95% of all companies running it. And for the last tow years, over 50% of all product upgrades have been security related. Securing Windows Server, according to bill gates, is the company's #1 priority.While considering the security needs of your organiztion, you need to balance the human and the technical in order to create the best security design for your organization. Securing a Windows Server 2003 enterprise network is hardly a small undertaking, but it becomes quite manageable if you approach it in an organized and systematic way. This includes configuring software, services, and protocols to meet an organization's security needs.* The Perfect Guide if "System Administrator is NOT your primary job function * Avoid "time drains" configuring the many different security standards built into Windows 2003 * Secure VPN and Extranet Communications

How to Cheat at Configuring Open Source Security Tools

How to Cheat at Configuring Open Source Security Tools
Author: Michael Gregg
Publisher: Elsevier
Total Pages: 529
Release: 2011-04-18
Genre: Computers
ISBN: 0080553567

The Perfect Reference for the Multitasked SysAdminThis is the perfect guide if network security tools is not your specialty. It is the perfect introduction to managing an infrastructure with freely available, and powerful, Open Source tools. Learn how to test and audit your systems using products like Snort and Wireshark and some of the add-ons available for both. In addition, learn handy techniques for network troubleshooting and protecting the perimeter.* Take InventorySee how taking an inventory of the devices on your network must be repeated regularly to ensure that the inventory remains accurate.* Use NmapLearn how Nmap has more features and options than any other free scanner.* Implement FirewallsUse netfilter to perform firewall logic and see how SmoothWall can turn a PC into a dedicated firewall appliance that is completely configurable.* Perform Basic HardeningPut an IT security policy in place so that you have a concrete set of standards against which to measure. * Install and Configure Snort and WiresharkExplore the feature set of these powerful tools, as well as their pitfalls and other security considerations.* Explore Snort Add-OnsUse tools like Oinkmaster to automatically keep Snort signature files current.* Troubleshoot Network ProblemsSee how to reporting on bandwidth usage and other metrics and to use data collection methods like sniffing, NetFlow, and SNMP.* Learn Defensive Monitoring ConsiderationsSee how to define your wireless network boundaries, and monitor to know if they're being exceeded and watch for unauthorized traffic on your network. - Covers the top 10 most popular open source security tools including Snort, Nessus, Wireshark, Nmap, and Kismet - Follows Syngress' proven "How to Cheat" pedagogy providing readers with everything they need and nothing they don't

How to Cheat at Securing Linux

How to Cheat at Securing Linux
Author: James Stanger
Publisher: Elsevier
Total Pages: 433
Release: 2011-04-18
Genre: Computers
ISBN: 0080558682

Linux servers now account for 33% of all networks servers running worldwide (Source: IDC). The top 3 market share holders in the network server space (IBM, Hewlett-Packard, and Dell) all use Linux as their standard operating system. This book teaches Linux system administrators how to protect their servers from malicious threats.As with any technologies, increased usage results in increased attention from malicious hackers. For years a myth existed that Windows was inherently less secure than Linux, because there were significantly more attacks against Windows machines than Linux. This was a fallacy. There were more attacks against Windows machines because there were simply so many more Windows machines to attack. Now, the numbers tell the exact opposite story. Linux servers account for 1/3 of all servers worldwide, but in 2005 there were 3 times as many high-severity security vulnerabilities discovered on Linux servers (Source: IDC).This book covers Open Source security, implementing an intrusion detection system, unearthing Rootkits, defending against malware, creating Virtual Private Networks, and much more.The Perfect Reference for the Multitasked SysAdmin* Discover Why "Measure Twice, Cut Once" Applies to Securing Linux* Complete Coverage of Hardening the Operating System, Implementing an Intrusion Detection System, and Defending Databases* Short on Theory, History, and Technical Data that Is Not Helpful in Performing Your Job

How to Cheat at VoIP Security

How to Cheat at VoIP Security
Author: Thomas Porter CISSP CCNP CCDA CCS
Publisher: Syngress
Total Pages: 433
Release: 2011-04-18
Genre: Computers
ISBN: 0080553532

The Perfect Reference for the Multitasked SysAdminThis is the perfect guide if VoIP engineering is not your specialty. It is the perfect introduction to VoIP security, covering exploit tools and how they can be used against VoIP (Voice over IP) systems. It gives the basics of attack methodologies used against the SIP and H.323 protocols as well as VoIP network infrastructure. * VoIP Isn't Just Another Data ProtocolIP telephony uses the Internet architecture, similar to any other data application. However, from a security administrator's point of view, VoIP is different. Understand why. * What Functionality Is Gained, Degraded, or Enhanced on a VoIP Network?Find out the issues associated with quality of service, emergency 911 service, and the major benefits of VoIP.* The Security Considerations of Voice MessagingLearn about the types of security attacks you need to protect against within your voice messaging system.* Understand the VoIP Communication ArchitecturesUnderstand what PSTN is and what it does as well as the H.323 protocol specification, and SIP Functions and features.* The Support Protocols of VoIP EnvironmentsLearn the services, features, and security implications of DNS, TFTP, HTTP, SNMP, DHCP, RSVP, SDP, and SKINNY.* Securing the Whole VoIP InfrastructureLearn about Denial-of-Service attacks, VoIP service disruption, call hijacking and interception, H.323-specific attacks, and SIP-specific attacks.* Authorized Access Begins with AuthenticationLearn the methods of verifying both the user identity and the device identity in order to secure a VoIP network.* Understand Skype SecuritySkype does not log a history like other VoIP solutions; understand the implications of conducting business over a Skype connection.* Get the Basics of a VoIP Security PolicyUse a sample VoIP Security Policy to understand the components of a complete policy. - Provides system administrators with hundreds of tips, tricks, and scripts to complete administration tasks more quickly and efficiently - Short on theory, history, and technical data that ultimately is not helpful in performing their jobs - Avoid the time drains associated with securing VoIP

How to Cheat at Managing Information Security

How to Cheat at Managing Information Security
Author: Mark Osborne
Publisher: Elsevier
Total Pages: 345
Release: 2006-08-22
Genre: Computers
ISBN: 0080508286

This is the only book that covers all the topics that any budding security manager needs to know! This book is written for managers responsible for IT/Security departments from mall office environments up to enterprise networks. These individuals do not need to know about every last bit and byte, but they need to have a solid understanding of all major, IT security issues to effectively manage their departments. This book is designed to cover both the basic concepts of security, non – technical principle and practices of security and provides basic information about the technical details of many of the products - real products, not just theory. Written by a well known Chief Information Security Officer, this book gives the information security manager all the working knowledge needed to: • Design the organization chart of his new security organization • Design and implement policies and strategies • Navigate his way through jargon filled meetings • Understand the design flaws of his E-commerce and DMZ infrastructure* A clearly defined guide to designing the organization chart of a new security organization and how to implement policies and strategies* Navigate through jargon filled meetings with this handy aid* Provides information on understanding the design flaws of E-commerce and DMZ infrastructure

Windows Forensic Analysis DVD Toolkit

Windows Forensic Analysis DVD Toolkit
Author: Harlan Carvey
Publisher: Elsevier
Total Pages: 386
Release: 2007-06-05
Genre: Computers
ISBN: 0080556442

Windows Forensic Analysis DVD Toolkit addresses and discusses in-depth forensic analysis of Windows systems. The book takes the reader to a whole new, undiscovered level of forensic analysis for Windows systems, providing unique information and resources not available anywhere else. This book covers both live and post-mortem response collection and analysis methodologies, addressing material that is applicable to law enforcement, the federal government, students, and consultants. This book also brings this material to the doorstep of system administrators, who are often the front line troops when an incident occurs, but due to staffing and budgets do not have the necessary knowledge to effectively respond. All disc-based content for this title is now available on the Web. - Contains information about Windows forensic analysis that is not available anywhere else. Much of the information is a result of the author's own unique research and work - Contains working code/programs, in addition to sample files for the reader to work with, that are not available anywhere else - The companion DVD for the book contains significant, unique materials (movies, spreadsheet, code, etc.) not available any place else

The Real MCTS/MCITP Exam 70-649 Prep Kit

The Real MCTS/MCITP Exam 70-649 Prep Kit
Author: Brien Posey
Publisher: Syngress
Total Pages: 1107
Release: 2011-04-18
Genre: Computers
ISBN: 0080877915

This exam is designed to validate Windows Server 2003 Microsoft Certified Systems Administrators (MCSEs) AD, Network Infrastructure, and Application Platform Technical Specialists skills. The object of this exam is to validate only the skills that are are different from the existing MCSE skills. This exam will fulfill the Windows Server 2008 Technology Specialist requirements of Exams 70-640, 70-642, and 70-643.The Microsoft Certified Technology Specialist (MCTS) on Windows Server 2008 credential is intended for information technology (IT) professionals who work in the complex computing environment of medium to large companies. The MCTS candidate should have at least one year of experience implementing and administering a network operating system in an environment that has the following characteristics: 250 to 5,000 or more users; three or more physical locations; and three or more domain controllers. MCTS candidates will manage network services and resources such as messaging, a database, file and print, a proxy server, a firewall, the Internet, an intranet, remote access, and client computer management. In addition MCTS candidates must understant connectivity requirements such as connecting branch offices and individual users in remote locations to the corporate network and connecting corporate networks to the Internet. - THE independent source of exam day tips, techniques, and warnings not available from Microsoft - Comprehensive study guide guarantees 100% coverage of all Microsoft's exam objectives - Interactive FastTrack e-learning modules help simplify difficult exam topics - Two full-function ExamDay practice exams guarantee double coverage of all exam objectives - Free download of audio FastTracks for use with iPods or other MP3 players - 1000 page "DRILL DOWN" reference for comprehensive topic review

How to Cheat at Managing Windows Server Update Services

How to Cheat at Managing Windows Server Update Services
Author: B. Barber
Publisher: Elsevier
Total Pages: 393
Release: 2005-12-12
Genre: Computers
ISBN: 0080488986

Over 95% of computers around the world are running at least one Microsoft product. Microsoft Windows Software Update Service is designed to provide patches and updates to every one of these computers. The book will begin by describing the feature set of WSUS, and the benefits it provides to system administrators. Next, the reader will learn the steps that must be taken to configure their servers and workstations to make the compatible with WSUS. A special section then follows to help readers migrate from Microsoft's earlier update service, Software Update Service (SUS) to WSUS. The next chapters will then address the particular needs and complexities of managing WSUS on an enterprise network. Although WSUS is designed to streamline the update process, this service can still be a challenge for administrators to use effectively. To address these issues, the next chapters deal specifically with common problems that occur and the reader is provides with invaluable troubleshooting information. One of the other primary objectives of WSUS is to improve the overall security of Windows networks by ensuring that all systems have the most recent security updates and patches. To help achieve this goal, the next sections cover securing WSUS itself, so that critical security patches are always applied and cannot be compromised by malicious hackers.* Only book available on Microsoft's brand new, Windows Server Update Services* Employs Syngress' proven "How to Cheat" methodology providing readers with everything they need and nothing they don't* WSUS works with every Microsoft product, meaning any system administrator running a Windows-based network is a potential customer for this book