Customer Reviews

ASP/MTS/ADSI Web Security

5 star:		(2)
4 star:		(2)
3 star:		(2)
2 star:		(1)
1 star:		(0)

 

 

The techie title and different cover caught my eye in a bookshop and I'm glad it did as I have gained a lot from this book.

It's the best technical book I have bought this year, and I've bought twenty or so for MCSE/I, CCNA study.<

I bought it about 6 months ago and keep going back to it as my work and interests change: digital certificates for IIS, MTS security, interaction with NTFS permissions, encryption, firewalling, ASP, Scripting Hosts, Active Directory and recently Site Server Commerce Edition.

These topics are clearly explained as is their use and position in the microsoft infrastructure.

I found it covered a lot of ground,was interesting to read, also good as a reference, and a source of code examples while learning simple ASP and VB.

It's a great book if you want to understand multiple security issues which cross disciplines: software/infrastructure design/support.

I found that understanding the security actually clarified the technologies.

Excellent value and very interesting.

Congratulations and thanks to the author, he knows his stuff and makes it all seem easy.

I'm glad he didn't split it into the three or more full books that it could have been.

I'm working my way through this book as I type this. There have been many errors in the first couple of hundred pages. Some of them so fundamental (such as: he said "restore" when "backup" was clearly what he meant) that if you aren't reading it carefully, you'll be very confused by his seeming contradictions. I don't believe many of these are the author's fault, and could probably be put down to poor editing and even worse proofing. But readers beware: It'll trip you if you aren't careful!

This book has the worst title in the world. That's just about its only flaw. For those of us frustrated by the alphabet soup of Microsoft Web and Security technologies this book is a godsend. Harrison demystifies important tools and technologies like digital certificates, IIS security pitfalls, and NT security issues. He provides very useful documentation and examples for some of the new components of the NT Option Pack. The down-to-earth style is perfect. The book is full of meaningful, simple, but non-trivial examples. This book is not much use for non-Microsoft web developers, and it probably could be a little clearer about features that are IE-specific. But if you want to understand security as Microsoft implements it, this book will do it, and do it much better than any of Microsoft's white papers or MSDN information.

Due to staffing problems, I recently found my job expanding from the position of a trainee ASP developer to taking care of my company's ecommerce web server and sql server (not a good indication of my company's commitment to proper solutions, obviously). This book has helped me to quickly implement security measures and get to grips with NT and IIS security models (of which I had no experience of a few months ago!). A commendable and expansive book that has given me some piece of mind with a treacherous and continually evolving subject.

Richard Harrison's book is a worthwhile read if you are looking to scale a web project to safe, unbreachable levels. The writing is fluid and lucid and Harrison does a great job of making you feel like you could use this book to criticize your own company's NT setup. The part I have enjoyed most, though, is the actual .asp code and the discussion for potential applications of projects using ASPs.

I have always loved books that give you simple tricks that you can use right away, just to see if they work. This book has a few of those nuggets. Overall, a good read, and worth the read.

This book has very good materials on ASP security. Easy reading, occasionally, you will have to turn to previous pages for clarifications. Other than that, it shows an organized way to implement security for ASP. However, when it comes to MTS & ADSI, it is just an introductory at best. If you need to know more about MTS & ADSI, this is not the book for you.

This book got a little bit of everything. Do not expect that you'll be proficient on any of the subjects discussed