Customer Reviews

Windows NT Security Handbook

5 star:		(1)
4 star:		(2)
3 star:		(2)
2 star:		(1)
1 star:		(0)

 

 

Whereas I initially thought that this verbose book could teach you a lot, this is not true. The author has compiled NT related information which would not stand up when (for instance) used as course material.

Two examples: 1. On cumalative file access permissions (page 205) the auther says that permissions are added up but forgets to mention that a DENY preceeds this. He also includes a huge list of what can be done with which permission but forgets to mention that COPY is possible with READ rights only. 2. On shares: The author describes that NT share level rights and File level rights intertwine, he claims its may be confusing at first and then fails to list the sequence of checks NT performs to know whether you have access: (logon->)share security->folder security->file security. In other words, you do not know how access controls on shares work from this book!

To finalise: a lot of info, very much scattered around, something to pick some info from, show off with maybe, but not really for reading :-(. The problem examples are just a few from the bunch. Clearly a rush to the NT security quick bucks job, not even fun reading, a pitty. Have a look at (NCSA-McGraw-Hill) Rutstein's book first (ISBN 0070578338), at least this author knows his stuff and sticks to facts.

For those wanting a good overview on NT security, this is a good book to read. Don't get this book to cram exam, as you will be wasting your time. I have had this book since mid-97 and it still sits in my book shelf. A good easy reading book.

This book was a good read and very informative. I've been administrator for awhile but never paid much attention to security. This got me up to speed fast.

If you look for "what NT itself can do to improve your security" and you're not an NT expert yet, good book. It get's a bit long at times, with repeating stuff a just to make sure you got it. A bit of buzzwords compatability ... but if you have the time to read ... you'll learn a lot.

For people born with NT, buy the Mc-Graw-Hill-NCSA book, a lot quicker and to the point. Neither really give you much of a 'NT bugs and flaws' insight. Go to www.ntsecurity.net (not .com) and other related sites for that ;-).

I think that Mr. Sheldon has the concepts of NT security down cold, but he needs to understand that most of us do not work for the CIA or NSA. Most of the examples and suggestions were very helpful, but if implemented would have resulted in a completed paranoid and limited use system. Good prose, great examples..

It missed several key concepts, though the book is good enough but the author thought some points in the wrong concept. it all appeared a little paranoid to me.