Web Security Field Guide
            
暫譯: 網路安全實務指南
        
        Steve Kalman
- 出版商: Cisco Press
- 出版日期: 2002-11-08
- 定價: $1,650
- 售價: 2.4 折 $399
- 語言: 英文
- 頁數: 608
- 裝訂: Paperback
- ISBN: 1587050927
- ISBN-13: 9781587050923
- 
    相關分類:
    
      Penetration-test
 
立即出貨(限量) (庫存=4)
買這商品的人也買了...
- 
                
                   $990The FreeBSD Corporate Networker's Guide $990The FreeBSD Corporate Networker's Guide
- 
                
                   $399Core MySQL $399Core MySQL
- 
                
                   Absolute Beginner's Guide to Personal Firewalls (Paperback) Absolute Beginner's Guide to Personal Firewalls (Paperback)$1,260$1,197
- 
                
                   Designing Large Scale LANs Designing Large Scale LANs$1,900$1,805
- 
                
                   BGP BGP$1,470$1,397
- 
                
                   Linux 9.X 指令參考手冊 Linux 9.X 指令參考手冊$650$553
- 
                
                   CCNP CIT Exam Certification Guide, 2/e (CCNP Self-Study 642-831) (Hardcover) CCNP CIT Exam Certification Guide, 2/e (CCNP Self-Study 642-831) (Hardcover)$1,900$1,805
- 
                
                   Java 2 全方位學習(J2SE 5.0 增修版) Java 2 全方位學習(J2SE 5.0 增修版)$750$593
- 
                
                   Java 2 JDK 5.0 教學手冊, 3/e Java 2 JDK 5.0 教學手冊, 3/e$590$460
- 
                
                   深入淺出設計模式 (Head First Design Patterns) 深入淺出設計模式 (Head First Design Patterns)$880$695
- 
                
                   CSS 功能索引式參考手冊 CSS 功能索引式參考手冊$390$332
- 
                
                   鳥哥的 Linux 私房菜基礎學習篇, 2/e 鳥哥的 Linux 私房菜基礎學習篇, 2/e$780$663
- 
                
                   ASP.NET 2.0 深度剖析範例集 ASP.NET 2.0 深度剖析範例集$650$507
- 
                
                   SCJP Java 5 專業認證手冊 (SCJP Sun Certified Programmer for Java 5 Study Guide)(Exam 310-055) SCJP Java 5 專業認證手冊 (SCJP Sun Certified Programmer for Java 5 Study Guide)(Exam 310-055)$880$695
- 
                
                   Dreamweaver 搞不定的網頁設計效果:CSS 關鍵救援密碼 Dreamweaver 搞不定的網頁設計效果:CSS 關鍵救援密碼$520$442
- 
                
                   Microsoft Office SharePoint Server 2007 實戰手冊 Microsoft Office SharePoint Server 2007 實戰手冊$450$356
- 
                
                   Ajax 實戰手冊 (Ajax in Action) Ajax 實戰手冊 (Ajax in Action)$680$537
- 
                
                   Ajax 範例活用辭典 Ajax 範例活用辭典$490$382
- 
                
                   Visual Basic 2005 檔案 IO 與資料存取秘訣 Visual Basic 2005 檔案 IO 與資料存取秘訣$780$616
- 
                
                   深入淺出物件導向分析與設計 (Head First Object-Oriented Analysis and Design) 深入淺出物件導向分析與設計 (Head First Object-Oriented Analysis and Design)$880$695
- 
                
                   ASP.NET 應用程式開發─與 AJAX 共舞 ASP.NET 應用程式開發─與 AJAX 共舞$620$490
- 
                
                   簡單學會 Flash ActionScript 3.0 簡單學會 Flash ActionScript 3.0$400$340
- 
                
                   大話設計模式 大話設計模式$620$490
- 
                
                   Fedora 10 Linux 實務應用 Fedora 10 Linux 實務應用$650$553
- 
                
                   Flash CS4 躍動的網頁 Flash CS4 躍動的網頁$520$442
商品描述
Hands-on techniques for securing Windows(r) servers, browsers, and network communications
- Create effective security policies and establish rules for operating in and maintaining a security- conscious environment
- Learn how to harden Windows multi-user platforms, including NT, 2000, and XP
- Understand secure installation options for Windows web servers and how to enhance security on existing web and FTP server installations
- Improve security at the end user's workstation, including web browsers, desktops, and laptops
- Evaluate the pros and cons of installing a certificate server and becoming your own Certification Authority
- Learn the Cisco PIX Firewall and Cisco IOS Firewall architecture and how to apply Cisco standard and extended access lists
- Discover ways to test the current state of security and keep it up to date
- Learn to engage end users as part of the overall network security solution
While the Internet has transformed and improved the way we do business, this vast network and its associated technologies have opened the door to an increasing number of security threats. The challenge for successful, public web sites is to encourage access to the site while eliminating undesirable or malicious traffic and to provide sufficient levels of security without constraining performance or scalability. The more reliant organizations become on the Internet to perform daily jobs or conduct transactions, the greater the impact a breach of network security has. Just as Cisco Systems has been an innovator in using the Internet to conduct business, so too is it a market leader in the development and sale of products and technologies that protect data traveling across the Internet. Yet a network security solution is only as strong as its weakest link. Network attacks can occur at any point, including the network connection, the firewall, the web server, or the client. Hardening the defenses at all these points is key to creating an effective, all-encompassing network security solution.
Web Security Field Guide provides you with hands-on, proven solutions to help patch the most common vulnerabilities of Windows(r) web servers and browsers within the context of an end-to-end network security architecture. Avoiding conceptual discussions of underlying technologies, the book spends little time discussing how each application works. Using plain language and lots of step-by-step examples, the book instead focuses on helping you secure your web servers and prevent the majority of network attacks. Divided into five parts, the book opens with an overview of essential background information and helps you establish working network security rules and policies. Parts II through IV teach you the techniques for hardening the operating system, the web server, and the browser. Part V of the book addresses overall network security, focusing on preventing and controlling access. Topics such as becoming a Certification Authority, Cisco PIX(r) Firewall, Cisco IOS(r) Firewall, access lists, ongoing security maintenance, and testing are all examined in-depth, providing an overall network security plan that can drastically reduce the risk to your business systems and data.
Full of diagrams, screen captures, and step-by-step instructions for performing simple tasks that can radically improve the security of your Internet business solutions, Web Security Field Guide is a practical tool that can help ensure the integrity and security of your business-critical applications.
Table of Contents
Introduction. 
I. THE FUNDAMENTALS OF WEB SECURITY.
1. Essential Information for Web Security Administrators. 
2. Security Policies. 
II. HARDENING THE SERVER.
3. Windows System Security. 
III. INSTALLING AND PROTECTING IIS.
4. IIS Installation. 
5. Enhancing Web Server 
Security. 
6. Enhancing the FTP Server. 
IV. PROTECTING THE USER.
7. Browser Security. 
8. Desktop/Laptop Security. 
V. PROTECTING THE NETWORK.
9. Becoming a Certification Authority (CA). 
10. 
Firewalls. 
11. Maintaining Ongoing Security. 
12. What You Can Do. 
VI. APPENDIXES.
Appendix A. Customizing Internet Explorer Error 
Messages. 
Appendix B. Decoding Base64. 
Appendix C. Contents of the WSFG 
Web Site. 
商品描述(中文翻譯)
實用的技術來保護 Windows(r) 伺服器、瀏覽器和網路通訊
- 建立有效的安全政策並制定在安全意識環境中運作和維護的規則
- 學習如何加固 Windows 多用戶平台,包括 NT、2000 和 XP
- 了解 Windows 網頁伺服器的安全安裝選項,以及如何增強現有網頁和 FTP 伺服器安裝的安全性
- 改善終端用戶的工作站安全性,包括網頁瀏覽器、桌面和筆記型電腦
- 評估安裝證書伺服器及成為自己的認證機構的利弊
- 學習 Cisco PIX 防火牆和 Cisco IOS 防火牆架構,以及如何應用 Cisco 標準和擴展訪問列表
- 探索測試當前安全狀態並保持其更新的方法
- 學習如何將終端用戶納入整體網路安全解決方案的一部分
雖然互聯網已經改變並改善了我們的商業運作方式,但這個龐大的網路及其相關技術也為安全威脅開啟了大門。成功的公共網站面臨的挑戰是鼓勵訪問同時消除不必要或惡意的流量,並在不限制性能或可擴展性的情況下提供足夠的安全性。隨著組織對互聯網在日常工作或交易中的依賴程度加深,網路安全漏洞的影響也越大。正如 Cisco 系統在利用互聯網進行商業活動方面的創新一樣,它也是開發和銷售保護互聯網上數據的產品和技術的市場領導者。然而,網路安全解決方案的強度取決於其最薄弱的環節。網路攻擊可以在任何點發生,包括網路連接、防火牆、網頁伺服器或客戶端。在所有這些點加固防禦是創建有效、全面的網路安全解決方案的關鍵。
《網頁安全實用指南》為您提供了實用的、經過驗證的解決方案,幫助您在端到端的網路安全架構中修補 Windows(r) 網頁伺服器和瀏覽器的最常見漏洞。該書避免了對底層技術的概念性討論,花費很少的時間討論每個應用程序的工作原理。該書使用簡單的語言和大量逐步示例,專注於幫助您保護網頁伺服器並防止大多數網路攻擊。全書分為五個部分,開篇介紹了必要的背景信息,幫助您建立有效的網路安全規則和政策。第二至第四部分教您加固操作系統、網頁伺服器和瀏覽器的技術。第五部分則針對整體網路安全,重點在於防止和控制訪問。書中深入探討了成為認證機構、Cisco PIX(r) 防火牆、Cisco IOS(r) 防火牆、訪問列表、持續安全維護和測試等主題,提供了一個整體的網路安全計劃,能夠大幅降低對您的商業系統和數據的風險。
《網頁安全實用指南》充滿了圖表、螢幕截圖和執行簡單任務的逐步指導,這些任務可以徹底改善您的互聯網商業解決方案的安全性,是一個實用的工具,可以幫助確保您商業關鍵應用程序的完整性和安全性。
目錄
引言。
I. 網頁安全的基本原則。
1. 網頁安全管理員的基本信息。
2. 安全政策。
II. 加固伺服器。
3. Windows 系統安全。
III. 安裝和保護 IIS。
4. IIS 安裝。5. 增強網頁伺服器安全性。6. 增強 FTP 伺服器。
IV. 保護用戶。
7. 瀏覽器安全。8. 桌面/筆記型電腦安全。
V. 保護網路。
9. 成為認證機構 (CA)。10. 防火牆。11. 持續安全維護。12. 您可以做什麼。
VI. 附錄。
附錄 A. 自訂 Internet Explorer 錯誤訊息。附錄 B. 解碼 Base64。附錄 C. WSFG 網站的內容。

 
     
     
     
     
     
     
     
     
     
     
    
 
    
 
    
 
     
    
