Amazon.com
With damaging viruses and intrusions in the news almost weekly, an increasing number of organizations are choosing to hire full-time security specialists. They won't, however, hire self-proclaimed "experts" or even general-purpose consultants who reckon they can learn digital crime-fighting on the job. Organizations will hire people who can prove their competence with a certification like the Certified Internet Webmaster (CIW) Security Professional rating, which is what CIW Security Professional Certification Bible provides you with the background to earn. The book does a snappy job of conveying the tested facts and concepts, and though most readers will wish for coverage of security under Windows 2000 and Windows XP (there's none here), those operating systems aren't on the test yet and we can't fault the authors for that.
Some of the advice on how to defeat attackers is entertaining, like the authors' suggestion that you give your Windows NT administrator a user name other than "Administrator," then create another account--one with no access rights--with the "Administrator" user name as a sort of straw man to sap crackers' energy. Other advice makes up more of a litany of technical best practices and policy rules of thumb. Still other sections focus on tools, both offensive (like L0phtCrack and NetBus) and defensive (like Syslog and SuperScan). There are also multiple-choice assessment questions--with annotated answers--and lab exercises accompanying each chapter. --David Wall
Topics covered: The subjects you need to understand in order to pass the Certified Internet Webmaster (CIW) Security Professional Exam (1D0-470), which is accredited by the Association of Internet Professionals (AIP) and the International Webmasters Association (IWA). The authors cover general security principles (everything from user-rights management to physical safety of equipment), and the specifics of attacks and defenses on several popular operating systems.
Book Description
CIW Security Professional Certification Bible follows Prosoft Training's curriculum and objectives for the CIW Security exam, while providing information to help security professionals on the job. It details areas such as encryption technologies, types of incidents and attacks, system and network security, TCP/IP, managing the network boundary, implementing firewalls, intrusion detection and prevention. This book also covers securing the operating system, securing user accounts and file resources, assessing risk, auditing, scanning and discovery, defeating network penetration, creating security control procedures.
Covers: Exam 1D0 470
Book Info
For certification of the CIW Security Exam 1DO-470. Covers securing the operating system, securing user accounts and file resources, assessing risk, auditing, scanning and discovery, defeating network penetration, and creating security control procedures. CD-ROM included.
From the Back Cover
The only guide you need for CIW Security Professional exam success … You're holding in your hands the most comprehensive and effective guide available for the CIW Security Professional exam. Security pros Mandy Andress and Phil Cox deliver incisive, crystal-clear explanations of every topic covered, highlighting exam-critical concepts and offering hands-on tips that can help you in your real-world Web career. Throughout, they provide pre-tests, exam-style assessment questions, scenario problems, and lab exercises — everything you need to master the material and pass the exam. Inside, get complete coverage of CIW Security Professional exam objectivesUnderstand basic computer, systems, and network security conceptsGet a handle on site encryption technologies and TCP/IP securityDelve into DoS, Trojan horses, man-in-the-middle, and other attacksFind out how to select and implement a firewallGet the scoop on defeating and preventing attacks and penetrationDiscover how to run a security audit and act on the resultsMaster the ins and outs of UNIX/Linux and Windows OS securityLock down network file systems, resources, and user accountsTest-Prep Tools on CD-ROMHungry Minds test engine powered by top-rated Boson SoftwarePlus security tools, including BlackICE Defender and Retina trials; evaluation versions of ISS Internet Scanner, SuperScan, and WS_Ping ProPackBoson Software System Requirements: Pentium PC running Windows NT 4 or later. 80 MB RAM (128 MB recommended); 250 MB free hard disk space. See the About the CD appendix for details and complete system requirements. www.hungryminds.com
About the Author
About the Authors Mandy Andress, CISSP, CISA, CPA, is a full-time security professional and consultant. She has written regularly for InfoWorld magazine on security topics and has helped design and maintain enterprise-wide security policies for several Fortune 500 companies. Phil Cox has worked at the Computer Incident Advisory Capability for the Department of Energy and been a columnist for ;login:, the USENIX magazine. The author of Windows 2000 Security Handbook, he speaks on security topics at Networld InterOp and The Internet Security Conference. Ed Tittel is a 19-year computer industry veteran. He is currently the president of LANWrights, Inc., and Vice President of IT Certifications at Leaplt.com. Ed stays busy writing magazine articles and books (he has 110 titles to his credit), teaching, and consulting.
Home
