CIW Security Professional Certification Bible [Hardcover]

Mandy Andress (Author), Phil Cox (Author), Ed Tittel (Author)

Book Description

ISBN-10: 0764548220 | ISBN-13: 978-0764548222 | Publication Date: October 15, 2001

CIW Security Professional Certification Bible follows Prosoft Training's curriculum and objectives for the CIW Security exam, while providing information to help security professionals on the job. It details areas such as encryption technologies, types of incidents and attacks, system and network security, TCP/IP, managing the network boundary, implementing firewalls, intrusion detection and prevention. This book also covers securing the operating system, securing user accounts and file resources, assessing risk, auditing, scanning and discovery, defeating network penetration, creating security control procedures.

Covers: Exam 1D0 470

Editorial Reviews

Amazon.com Review

With damaging viruses and intrusions in the news almost weekly, an increasing number of organizations are choosing to hire full-time security specialists. They won't, however, hire self-proclaimed "experts" or even general-purpose consultants who reckon they can learn digital crime-fighting on the job. Organizations will hire people who can prove their competence with a certification like the Certified Internet Webmaster (CIW) Security Professional rating, which is what CIW Security Professional Certification Bible provides you with the background to earn. The book does a snappy job of conveying the tested facts and concepts, and though most readers will wish for coverage of security under Windows 2000 and Windows XP (there's none here), those operating systems aren't on the test yet and we can't fault the authors for that.

Some of the advice on how to defeat attackers is entertaining, like the authors' suggestion that you give your Windows NT administrator a user name other than "Administrator," then create another account--one with no access rights--with the "Administrator" user name as a sort of straw man to sap crackers' energy. Other advice makes up more of a litany of technical best practices and policy rules of thumb. Still other sections focus on tools, both offensive (like L0phtCrack and NetBus) and defensive (like Syslog and SuperScan). There are also multiple-choice assessment questions--with annotated answers--and lab exercises accompanying each chapter. --David Wall

Topics covered: The subjects you need to understand in order to pass the Certified Internet Webmaster (CIW) Security Professional Exam (1D0-470), which is accredited by the Association of Internet Professionals (AIP) and the International Webmasters Association (IWA). The authors cover general security principles (everything from user-rights management to physical safety of equipment), and the specifics of attacks and defenses on several popular operating systems.

From the Back Cover

The only guide you need for CIW Security Professional exam success ... You're holding in your hands the most comprehensive and effective guide available for the CIW Security Professional exam. Security pros Mandy Andress and Phil Cox deliver incisive, crystal-clear explanations of every topic covered, highlighting exam-critical concepts and offering hands-on tips that can help you in your real-world Web career. Throughout, they provide pre-tests, exam-style assessment questions, scenario problems, and lab exercises - everything you need to master the material and pass the exam. Inside, get complete coverage of CIW Security Professional exam objectives
* Understand basic computer, systems, and network security concepts
* Get a handle on site encryption technologies and TCP/IP security
* Delve into DoS, Trojan horses, man-in-the-middle, and other attacks
* Find out how to select and implement a firewall
* Get the scoop on defeating and preventing attacks and penetration
* Discover how to run a security audit and act on the results
* Master the ins and outs of UNIX/Linux and Windows OS security
* Lock down network file systems, resources, and user accounts
Test-Prep Tools on CD-ROM
* Hungry Minds test engine powered by top-rated Boson Software
* Plus security tools, including BlackICE Defender and Retina trials; evaluation versions of ISS Internet Scanner, SuperScan, and WS_Ping ProPack
Boson Software System Requirements: Pentium PC running Windows NT 4 or later. 80 MB RAM (128 MB recommended); 250 MB free hard disk space. See the About the CD appendix for details and complete system requirements. www.hungryminds.com

See all Editorial Reviews

Product Details

• Hardcover: 638 pages
• Publisher: Wiley (October 15, 2001)
• Language: English
• ISBN-10: 0764548220
• ISBN-13: 978-0764548222
• Product Dimensions: 9.6 x 7.6 x 1.7 inches
• Shipping Weight: 2.9 pounds
• Average Customer Review: 4.0 out of 5 stars  See all reviews (3 customer reviews)
• Amazon Best Sellers Rank: #2,031,998 in Books (See Top 100 in Books)

More About the Author

Discover books, learn about writers, read author blogs, and more.

Customer Reviews

Most Helpful Customer Reviews

8 of 13 people found the following review helpful:

5.0 out of 5 stars Not just for CIW Security Exam review, November 11, 2001

By A Customer

This review is from: CIW Security Professional Certification Bible (Hardcover)

This is book is not just for those people who want to take the CIW Security Professional test. This book covers many topics in the area of information security including: network security, intrusion detection, and operating system security. The CD includes many cool security tools.

If you want an all-around good security book, this is the one to have on your shelf...

0 of 1 people found the following review helpful:

4.0 out of 5 stars GET THIS BOOK PRIOR TO A CIW BOOT CAMP, March 3, 2007

By 

Howard L. Salter "Defending Liars Writer" (West Allis, WI United States) - See all my reviews
(REAL NAME)   

This review is from: CIW Security Professional Certification Bible (Hardcover)

I enjoy the Bible series of these books and this one is no exception. It screams through everything you wanted to know about the material and it reads more fluidly than other books approaching the subject. I found it an easy read and a great reference for other things. I would recommend this book as the 'one' book to own if you could own no others on the subject. This new and up and coming cert keeps with the traditions of the other things that CompTIA is known for, most importantly their vendor neutral stances on stuff. This book adequately covers the material but I wouldn't use it alone. Find a CBT online or a boot camp to goto when seeking this certification and the Security+ works great in conjunction with this kind of stuff.

If I could put more into this book, I would add an entire section similar to the Exam Cram Series and a CD-ROM/DVD that has a class room instructor lecturing on the materials as well as an installable flash program that tests the crap out of you on this. So consider this a prep, and use the Exam cram for testing.

2 of 5 people found the following review helpful:

3.0 out of 5 stars Good reference book, covers exam topics, May 14, 2002

By A Customer

This review is from: CIW Security Professional Certification Bible (Hardcover)

I found this book to be good. It covered the exam objectives and topics quite well. It also makes for an excellent reference guide to have whether you are taking the exam or not. It did however have a few editing errors, but you would be able to get the point of the authors. The test engine from Boson Software is OK. It does have a few errors (Questions that were answered correctly were marked incorrect, etc.). For a good practice test, try MeasureUP.com. Do the labs that you can, they help reinforce the lessons that you learn. I passed the exam with this book, but I also have the work experience and other training that helped too.