|
Halting The Hacker Donald L. Pipkin. 0-13-243718-X Prentice-Hall This book covers the vulnerabilities and configuration errors that are used to gain unauthorized access to your system and how. It covers a great variety of exploits, but does not get into nitty-gritty configuration details. This book is suitable for beginner to intermediate audiences. |
|
Practical UNIX & Internet Security, 3rd Edition Simson Garfinkel and Gene Spafford. 0596003234 O'Reilly This book covers a similar list of topics that are covered in SC-300, plus a few more. It is written at an intermediate level. Many of the examples include Solaris. |
|
Building Internet Firewalls Brent Chapman and Elizabeth Zwicky. 1-56592-124-0 O'Reilly Although this book covers some topics included in the course, it also includes an introduction to firewalls. In particular, it includes good chapters on packet filtering and proxy systems as well as configuration of applications to work through firewalls. It is written at an intermediate level. |
|
Maximum Security Anonymous. 0-672-31341-3 Sams This book covers an assortment of topics, including a short TCP/IP review. It dicusses many of the hacker tools available and how they work. It includes quite a few platforms, including Windows, UNIX, Novell, VAX/VMS and Macintosh. It provides quite a lot of information without advanced detail, so it is intended for an intermediate level audience. The appendixes include an extensive list of additional resources and it includes a CD-ROM with many security whitepapers and RFCs. |
|
Hacking Exposed - Fourth Edition McClure, Scambray and Kurtz. 0-07-222742-7 Osborne This book covers the methodology of compromising security in far greater detail than it is possible to do in the classroom. This book is written at an advanced level. The discussion includes an analysis of a long list of potential weaknesses, step-by-step methods of exploiting them to obtain unauthorized access, and then discusses the possible defenses or prevention of each one. This book will be especially interesting to anyone performing security audits. Separate sections discuss UNIX and Windows systems. The second edition is new (enhanced coverage of Windows 2000 and some recent e-mail attacks), so you may be able to get the first edition on sale. |
|
Hacking Web Applications Exposed Joel Scambray, Mike Shema. 0-07-222438-X Osborne Web servers are particularly vulnerable to attack since they allow attackers to publicly interact with their applications. This book goes into advanced levels of detail regarding vulnerabilities of ISS, Apache and Netscape servers, including enterprise applications utilizing SSL, Java, PHP, ODBC and SOAP and the defensive measures that can be used to minimize risks. |
|
Maximum Apache Security Anonymous. 0-672-32380-X This book covers Apache specifically and includes quite a lot of detail regarding configuration with SSL, authentication and loadable modules. It also covers using Apache as a proxy firewall. |