Home > Store > Security > Network Security
Open Source Security Tools: Practical Guide to Security Applications, A
- By Tony Howlett
- Published Jul 29, 2004 by Prentice Hall. Part of the Bruce Perens'Open Source Series series.
- Copyright 2005
- Dimensions: 7x9-1/4
- Pages: 608
- Edition: 1st
- Book
- ISBN-10: 0-321-19443-8
- ISBN-13: 978-0-321-19443-5
Register your product to gain access to bonus material or receive a coupon.
Product Author Bios
Tony Howlett is the president of Network Security Services, a computer-security application service provider built entirely on open source software. A Certified Information Systems Security Professional (CISSP) and GIAC Systems and Network Auditor (GNSA), he has fourteen years of experience, including running a major regional ISP/CLEC and building a nationwide ATM/DSL network. Mr. Howlett is a frequent speaker on computer security and technology topics and has written for SysAdmin, Computer Currents, Windows Web Solutions, Security Administrator, and other magazines.
Few frontline system administrators can afford to spend all day worrying about security. But in this age of widespread virus infections, worms, and digital attacks, no one can afford to neglect network defenses.
Written with the harried IT manager in mind, Open Source Security Tools is a practical, hands-on introduction to open source security tools. Seasoned security expert Tony Howlett has reviewed the overwhelming assortment of these free and low-cost solutions to provide you with the “best of breed” for all major areas of information security.
Inside, you’ll find everything from how to harden Linux and Windows systems to how to investigate breaches with Sleuth Kit, Autopsy Forensic Browser, and Forensic Tool Kit. For each security task described, the author reviews the best open source tools and how to use them and also provides a case study and sample implementation. Covered tasks include:
- Installing an open source firewall using Ipchains, Iptables, Turtle firewall, or Smoothwall
- Scanning ports and testing for vulnerabilities using Nmap, Nlog, Nmap for Windows, Nessus,and NessusWX
- Using sniffers and network-intrusion systems, including Tcpdump, Ethereal, Windump, Snort™, and Snort™ for Windows
- Tracking and analyzing collected data with Swatch, ACID, and NCC
- Encrypting communications with PGP, GnuPG, SSH, and Free S/WAN
This handy reference also tackles the emerging field of wireless security and covers tools such as Kismet Wireless, Airsnort, and Netstumber.
Whether you’re a Windows system administrator or a network administrator, you will come away with an understanding of how open source security tools can help protect your organization and further your own career.
Downloads
Download Open Source Security Tools: A Practical Guide to Security Applications in PDF.
CD Contents
Related Articles
|
3 of 3 people found the following review helpful
The High Value of FREE / Open Source Security Tools, By shuumai (Ohio USA) - See all my reviews
This review is from: Open Source Security Tools: Practical Guide to Security Applications, A (Paperback)
This book provides a good overview of security tools. It could help readers get started by explaining security concepts and stepping the reader through installation of useful tools. (The book includes a CD containing the utilities covered in the text.) It doesn't however, give good coverage to interpreting the results of scans and monitoring.About 1/4 to 1/3 of the book is wasted on appendices of readily available information. GPL and BSD licenses, well-known port numbers, and a huge list of Nessus plug-ins. The space might have been better utilized by providing coverage of virus scanners or even common application alternatives that are more resistant to attack. On the positive side, the information is there so you won't need to look for it on the Web. I like the fact that the book covers utilities for both Linux and Windows. And the fact that the utilities are free and Open Source, of course. Just using one of the utilities covered in the book would... Read more
3 of 3 people found the following review helpful
Outstanding Survey of Open Source Security Tools,
This review is from: Open Source Security Tools: Practical Guide to Security Applications, A (Paperback)
This book is an excellent resource to help readers understand what open source tools are available to address every dimension of securing a computing infrastructure.What I liked best about this book is that it did not assume an already-existing base of knowledge in the reader. Other books present information that assumes the reader already understands the topic, and therefor only needs the details of how to use the tool being discussed. Howlett's book provides a graduated discussion of every area, enabling a beginner to start from scratch and an experienced reader to glean the important details. Also outstanding about this book is the fact that it covers pretty much all the areas of security an admin will need to address. If you work through this book, you can be pretty sure that you've covered all your bases. Because of that, the book is like a survey, rather than an exhaustive discussion of any one area. However, the author always provides pointers... Read more
3 of 3 people found the following review helpful
Good for Beginner to Intermediate System Admins, By Atillla Ozgur "Ati" (Ankara-Turkey) - See all my reviews
This review is from: Open Source Security Tools: Practical Guide to Security Applications, A (Paperback)
I consider myself a developer rather than system admin. But I enjoyed and learned quite a bit. I read this book in one 7 hours bus journey. It is very good on introducing new topics. It teaches you how to use programs and give recommandations.I think my money is well spent. Think it, this way. When you start to learn something new, you are bombarded with a lot of buzzwords and jargon. This book will teach you most of this buzzwords and you will learn quite a lot in reading this book. A internet search about tools will bring you more similar tools and new learning points. As I said in the title, this books is about beginners. If you are a expert, I do not think you will gain a lot from this book. |
Online Sample Chapter
Network Sniffers: Is Open Source Right for You?
Index
Download the Index
file related to this title.
Table of Contents
Preface.
Audience.
Contents.
CD-ROM Contents and Organization.
Tools Index.
1. Information Security and Open Source Software.
The Practice of Information Security.
The State of Computer Crime.
Info-Security Business Risks.
Open Source History.
Open Source Advantages.
When Open Source May Not Fit Your Needs.
Windows and Open Source.
Open Source Licenses.
2. Operating System Tools.
Hardening Your Security Tool System.
traceroute (UNIX) or tracert (Windows): Network Diagnostic Tools.
Considerations for Hardening Windows.
3. Firewalls.
Network Architecture Basics.
TCP/IP Networking.
Security Business Processes.
SmoothWall Hardware Requirements.
SmoothWall Express Versus SmoothWall Corporate.
Installing SmoothWall.
Administering the SmoothWall Firewall.
Creating a VPN on the SmoothWall Firewall.
Windows-Based Firewalls.
4. Port Scanners.
Overview of Port Scanners.
Considerations for Port Scanning.
Uses for Port Scanners.
5. Vulnerability Scanners.
Identifying Security Holes in Your Systems.
Vulnerability Scanners to the Rescue.
Considerations for Vulnerability Scanning.
What Vulnerability Testing Doesn’t Find.
6. Network Sniffers.
A Brief History of Ethernet.
Considerations for Network Sniffing.
TCP/IP Packet Headers.
7. Intrusion Detection Systems.
NIDS Signature Examples.
The Problem of NIDS False Positives.
Getting the Most Out of Your IDS.
Configuring Snort for Maximum Performance.
Host-Based Intrusion Detection.
8. Analysis and Management Tools.
Using Databases and Web Servers to Manage Your Security Data.
The Birth of an Open Source Project.
9. Encryption Tools.
Types of Encryption.
Virtual Private Networks.
10.Wireless Tools.
Wireless LAN Technology.
Dangers of Wireless LANs.
The “War-Driving” Phenomenon.
Performing a Wireless Network Security Assessment.
Steps for More Secure Wireless LANs.
11. Forensic Tools.
Uses for Computer Forensic Tools.
Building an Incident Response Plan.
Preparing for Good Forensic Data.
Where to Look for Forensic Data.
Tenets of Good Forensic Analysis.
Forensic Analysis Tools.
Reviewing Log Files.
Making Copies of Forensic Evidence.
12. More on Open Source Software.
Open Source Resources.
Joining the Open Source Movement.
More Open Source Security Tools.
Appendix A Open Source Licenses.
Appendix B Basic Linux/UNIX Commands.
Appendix C Well-Known TCP/IP Port Numbers.
Appendix D General Permission and Waiver Form.
Appendix E.
References.
Index.
Downloadable Sample Chapter
Download the Sample
Chapter related to this title.
This book includes free shipping!
- Request an Instructor or Media review copy.
- Corporate, Academic, and Employee Purchases
- International Buying Options
Get access to thousands of books and training videos about technology, professional development and digital media from more than 40 leading publishers, including Addison-Wesley, Prentice Hall, Cisco Press, IBM Press, O'Reilly Media, Wrox, Apress, and many more. If you continue your subscription after your 30-day trial, you can receive 30% off a monthly subscription to the Safari Library for up to 12 months. That's a total savings of $199.
