Customer Reviews

CompTIA Security+ All-in-One Exam Guide, Second Edition (Exam SY0-201)

5 star:		(12)
4 star:		(8)
3 star:		(1)
2 star:		(0)
1 star:		(0)

 

 

According to CompTIA's website, while not a prerequisite, they recommend that an individual sitting the Security+ exam have "at least two years of on-the-job technical networking experience, with an emphasis on security." They further recommend having the Network+ certification. My review of this book is based on an assumption that the individual using this book either meets these recommendations or, through some other means, has equivalent knowledge and experience.

As the author of an eLearning program that helps prepare people for the Security+ exam, I have considered the Security+ 2008 objectives more than most. This book covers everything you need to know to pass the Security+ exam - assuming you have the fundamentals of networking down. As an example, on page 15 (very early in the book) the authors assume you know what a port is when they say, "A network administrator can, for instance, move a service from its default port to a different port..." There is no explanation as to what a "port" is and, according to CompTIA's recommendations, there need not be.

I've given this as a simple example, but the book is filled with assumptions. It's probably a good thing. The book is nearly 700 pages now; imagine how large it would be if all of the knowledge were provided in this single resource. If you don't meet the recommendations that CompTIA suggests, I would encourage you to get this book along with your choice of a Network+ study guide. Then, even if you don't wish to acquire the Network+ certification, you will have the knowledge you need for the assumed information in this book.

I particularly liked the organization of this book. Part I deals with the theory of security (principles, organizational requirements, legal issues, etc.) and provides a foundation for the rest of the book. Part II deals with confidentiality in quite a bit more depth than is required by the Security+ exam. The coverage is closer to that needed for the CISSP exam. The next two parts, Security in the Infrastructure and Security in Transmission address the security needs for network access, data access and data transfer. The final part, excluding the Appendices, is Part V; here, issues related to operational and administrative security are addressed.

Overall, the information is presented in a sequence that makes it both digestible and memorable. I have to say that, in my opinion, this is the best Security+ book to come along yet.

Just passed the Security + 2008 exam with an 830. Used the book, plus Transcender and TestKing (2007 version) to prepare. I also used selective chapters from the Shon Harris CISSP book. Have to admit the test was a little harder than I anticipated. If you are a novice to Networks and System Administration, I highly recommend reading the CISSP book. It covers all the material, plus more. This book was a good book, but not enough by itself to adequately prepare for the 2008 Security + exam.

This is a great study guide for reviewing before taking the CompTIA Security+ exam.

I say a review because it assumes you know certain things first. For example, it assumes you know about networking, computers, and security in general. This book is not for the novice who doesn't know anything about PC security or networking and hopes to pass the exam.

The tips about what you should pay exact attention to are very valuable. There was a discussion early on in the book about security basics that I was just breezing through and the tip suggested that I could expect questions on the test regarding this because it was fundamental to security. Because I thought that was a "given" I didn't expect that there would be questions on the test about it. So the tips are very helpful.

In general, the book is a good study guide and review source for what you already know. The CD with the test review on it was also helpful. I shared it with someone who had actually tested and didn't pass and he said he wished he'd had that to study with before he took the test!

Highly recommended!

Debbie Mahler

So I passed my test...but not by using this book...I used the following...

1) Another book called "CompTIA get certified: get ahead" ($28.51) also here on amazon.

2) Googling "Security+ exams" and doing lots of practice tests online (FREE if you search around)

This "all-in-one" book actually came in through my mail AFTER I passed the test. (Amazon shipping takes forever to get here to Japan.)

And after reading through it, I can honestly say that if you would like to pass your test NOW, purchase the "CompTIA get certified: get ahead" book. Basically it takes what this book says, cuts out the BS, side jokes, and in-depth explanations and says:

apples = red. Remember it. Bananas = yellow. Remember it. But in a more readable/enjoyable manner. (I'm merely explaining how it skips the details more than this "all-in-one" book does.)

However if you would like to actually UNDERSTAND what was on the test and be able to PERFORM the tasks after getting hired to a new job because of your new shiny Security+ certificate, I would recommend reading this "all-in-one" book as well (but it isn't really "necessary" to read this entire book in order to pass your test).

So if you get the get certified get ahead, this all-in-one, and hit up those online practice tests. You will start to see repetition amongst all three study materials, and when you take your cert test, you will read the first 3 words and know EXACTLY what the question is asking and be able to recognize the right answer.


Hope this helped! and Good luck guys! YOU CAN DOO ITTT!!!!!

I ordered this book a couple months ago and used this as my only preparation for the exam. I don't work the field but I understand the concepts because of my current job which has a lot of security concepts. This book was great in breaking down everything to someone like me with no experience. I read it cover to cover and did the reviews for each chapter and re-read the area for the questions I didn't understand. This book was a great tool in preparing me for test day.

I'd recommend this book to anyone who's looking to add to their resume like I have with this book.
Considering that I don't work the field and this is also my first ever certification, I believe this book is all that is needed.

I passed with a score of 805.

If you're like me and haven't had any experience and need a crash course then this is probably the book for you.

I used this book as part of my exam prep. Good intro to the topics, with somewhat more detail than is required in many areas. Better to have too much info than too little in this case, however.

Starting with this volume and moving on to the Sybex Security+ Study Guide, then Security+ 2008 In Depth, passed with 855/900.

As noted in other reviews, you should have some networking background before attempting this material, as it does not review those topics sufficiently for a beginner.

This is a great book if you are ready to take the exam. "Theory" bests describes this book, Much of it resembles the net+ objectives, just with a PKI, viruses, algorithm and authentication twist. If you are in the IT field(like I am), this will be probably all that you need, because the theory will make sense to you. The only downside is, if you aren't a network admin or sys admin that deals with managing or securing a network environment. The scenerios questions in the exam might be hard to answer.

Am I happy to have this book: Yes

Did I pass the test: Yes

Is this my only source of material: NO

Let me get into the basics... For someone who has NO certifications under their belt, NO experience, and NO network security knowledge, this will be a great read for you. However, someone like me who has job experience (Military) as well as my new contractor position, I found myself doing more page flipping rather than reading the book. Also, I would try and understand the basics about computers, and networking in general, before tackling this book. That is my opinion only however, as I worked 4 years in the military doing actual computer work with networks as well as earning my Network+ Certification... didn't bother with A+ as I do not want to be a helpdesk technician- I already have that under my belt.

I bought this book thinking "I am going to read this front to back, on my kindle"

First off, do not buy it for the kindle. I made that mistake. I thought, "I love my kindle, why not?" Well, the diagrams that they have although you can see them, are not as easy to see if say you were reading the PDF or the book.

Second off, the book comes with the PDF for FREE on the CD, so by buying the book you get a digital copy for free anyway.

PLUS- studying on a kindle is difficult, as scanning through a book digitally will never be as seamless as flipping through a book with your hands... never. Trust me, studying with an actual book is better, as you can flip to pages, go back and forward, and see the diagrams so much better... Don't be afraid to mark in the book if you need to take notes- most people keep their books on their bookshelf for reference.

If you really do want it for kindle, you will be happy to see there are highlights from other readers for you to reflect on and study. However, I found the highlights too few to really rely on.

Reading the book does get boring... I am someone who already understands the concepts of network security, so reading about things that I already understand is stale and does not really contribute to my current knowledge. It did however reinforce what I already knew, and did teach me quite a bit about certificate authorities and encryption algorithms.

To me, it went too long between each actual bullet of knowledge I was trying to reach. For someone who wants to just eat information, a smaller book with lots of information crammed in a small space will work better for you. However, small books that does not elaborate requires you to be able to "fill in the blanks" yourself, meaning you must understand and adapt to a new concept quickly and see where it fits into the big picture. For some, this may be the best way to go as it completely and thoroughly walks you through every concept, painfully giving you the most information to offer you the greatest understanding of the situation.

Overall, I was satisfied that I purchased this book, as it is a great reference to material I needed to understand, offering me the bigger picture in situations I had little experience. I would buy this book along with a book with pure information, like a Security+ Quick Prep, and call it a day.

Good book. Please be aware that there are things covered on the exam that I didn't seem to find in the book (I'm still giving it a five). Unless you _know_ that you know everything that's going to be on the exam, I don't believe that you'll do well on this exam if you rely on this book alone.

Some things to make sure you understand before the exam (whether or not it's in the book):

- SQL Injection/XSS and examples of what these may _look_ like when auditing
- Cloud computing, particularly the layers
- Find additional sources for SSO
- Self Service Password resetting
- Know your ports
- Be sure you remember "manual dotted decimal to binary conversion"; I got caught off my guard on this one.
- I don't remember seeing this on the exam, but remember that SFTP is not the same as FTPS
- Know the different authentication methods for accessing systems

I passed the exam (well). I have no _formal_ IT background, but for this exam I studied at least an hour a night after work (eight weeks before exam) and read the book three times. About three weeks before the test I studied at least two hours/night. The last five days I studied immensely up to an hour before the exam almost exclusively using internet sources, but I'd recommend using internet sources at least a month prior to the exam. I wanted to mention, though, that I have no kids or wife. ;)

One more thing: make sure you reduce any distractions you may have to an absolute minimum while studying for this exam (except for the occasional game of Modern Warfare).

This book and others I purchased assisted many of my soldiers in passing the CompTia exams where other study material failed. The information is in an easy to understand format far better than other study guides and not as vague as exam cram guides. I would recommend this book to any one looking for a detail exam guide.