Windows .Net Server Security Handbook (With CD-ROM) [Paperback]

Cyrus Peikari (Author), Seth Fogie (Author)

Book Description

Publication Date: April 15, 2002

Windows XP Security Handbook is the complete, practical, step-by-step guide to maximizing Windows XP security. In this book, two leading experts show how to take advantage of every important new Windows XP security feature, from XP's new firewall to its updated Encrypting File System. They review the critical security implications of new features such as raw sockets and Remote Desktop, then demonstrate how to use Microsoft's latest tools to configure security in a wide range of scenarios, and to lock down any Windows XP system -- Professional or Home. Dr. Cyrus Peikari and Seth Fogie present in-depth coverage of utilizing Microsoft's new Internet Connection Firewall; securing Microsoft IIS Web services in Windows XP environments; configuring Windows XP VPNs, PKI, and Smart Cards; and much more. Along the way, they show how to make the most of Microsoft's new security toolset, including the Security Configuration and Analysis snap-in, Secedit.exe, and Security Templates. They illuminates the core security architecture Microsoft's .NET platform is built upon, and offer a practical strategy for staying ahead of newly-identified security problems, both current and future.

Editorial Reviews

From the Back Cover

Windows .NET Security: step-by-step techniques and fast answers.

• The practical, start-to-finish guide to Windows .NET security
• New Windows .NET security features: Location-Aware Firewalling, Offline File Encryption, and more
• Locking down .NET servers and XP clients-step by step
• Securing new Windows .NET features: Raw Sockets, Remote Desktop, Remote Assistance, and more
• Anticipating future threats-including threats to 802.1x wireless networks

Windows .NET Server Security Handbook is your practical, step-by-step guide to maximizing Windows .NET security. Two leading experts show you how to take advantage of every important new Windows .NET and XP security feature, from .NET's new firewall to its updated Encrypting File System. You'll discover the critical security implications of new features such as Remote Desktop and Remote Assistance, then learn how to use Microsoft(r)'s latest tools to configure security in a wide range of scenarios. By the time you're finished, you'll know how to lock down any Windows .NET system-from the largest enterprise to the smallest home network.

• The Internet Connection Firewall: configuration, adding programs, logging, ICMP, and more
• Windows .NET raw sockets: the reality-and what you should do about it
• Anticipating emerging threats, including wireless 802.11 hacking and "War Driving"
• Windows .NET Security Toolset: using the Security Configuration and Analysis snap-in, Secedit.exe, Security Templates, and more
• Configuring Windows .NET VPNs, PKI, and Smart Cards
• Kerberos: server authentication, policies, security environments, and interoperability issues
• Securing Microsoft IIS Web services in Windows .NET environments
• Understanding the core security architecture Microsoft's .NET platform is built upon
• Discovering new security holes fast: how you can beat BugTraq by seven days!

About the CD-ROM

Powerful library of Windows .NET security tools!

• VirusMD Personal Firewall 3.0: diagnose and treat Trojan horse infections
• eEye RetinaTM network security scanner (demo): scan your network for vulnerabilities
• eEye SecureIIS application firewall (demo): Maximize app-layer security
• eEye IrisTM sniffer (demo): Perform advanced protocol analysis
• LC3 password testing: Audit NT/Win2K user passwords
• MIRC, MultiProxy, and Socks2HTTP: perform anonymous counterintelligence against hackers
• NetStumbler wireless security tester: scan wireless networks for security flaws

About the Author

DR. CYRUS PEIKARI, Chief Technology Officer of VirusMD Corporation, has won numerous awards for his security software and holds several pending patents in the anti-virus field. He has spoken at Defcon and is frequently interviewed on television for breaking Internet security news.

SETH FOGIE, Senior Security Consultant at VirusMD Corporation, hosts a weekly Internet Security radio segment on CBS affiliate KRLD Radio in Dallas, TX. He is an MCSE and former US Navy Nuclear Engineer. Peikari and Fogie co-authored Windows Internet Security: Protecting Your Critical Data (Prentice Hall PTR).

Chief technical reviewer: Dr. Warwick Ford, Vice President of Research and Chief Technology Officer, VeriSign, Inc., and world-renowned expert on Internet security and cryptography.

See all Editorial Reviews

Product Details

• Paperback: 368 pages
• Publisher: Prentice Hall PTR (April 15, 2002)
• Language: English
• ISBN-10: 0130477265
• ISBN-13: 978-0130477262
• Product Dimensions: 9.2 x 7 x 1 inches
• Shipping Weight: 1.6 pounds
• Average Customer Review: 4.0 out of 5 stars  See all reviews (7 customer reviews)
• Amazon Best Sellers Rank: #3,150,766 in Books (See Top 100 in Books)

More About the Author

Discover books, learn about writers, read author blogs, and more.

Customer Reviews

Most Helpful Customer Reviews

7 of 8 people found the following review helpful:

5.0 out of 5 stars Excellent Book, May 2, 2002

By 

Gerald Frenkel (Washington D.C.) - See all my reviews

This review is from: Windows .Net Server Security Handbook (With CD-ROM) (Paperback)

This book does a surprisingly good job of reviewing the final release code of .NET Server, and showing its complete security architecture. It had good coverage of .NET PKI, VPNs, IPSec, and Kerberos security, etc, with emphasis on what is new in .NET Server. I wish it had more wireless security, but at least there was one chapter on it. The best chapter was by far the "Securing IIS 6.0" chapter. The book shows enough key differences between Windows 2000 Server Security that are upgraded in .NET Server, that you will probably be convinced to upgrade yourself sometime very soon. Security is treated from both a white-hat and a black-hat (underground hacker) perspective, which gives it some color.

9 of 11 people found the following review helpful:

5.0 out of 5 stars SecuredSite.org Review of Windows .NET Server Security, May 5, 2002

By 

Don Wolf (Toronto, ON Canada) - See all my reviews

This review is from: Windows .Net Server Security Handbook (With CD-ROM) (Paperback)

One of the first titles in the .NET security field. I must confess I haven't been particularly pleased with the titles I've looked at so far in this area; rest assured this is the exception. A lot of the chapters read more like a tutorial than documentation, with lots of screen shots and tables of settings that explain more than you would probably learn by sitting through another teacher-reads-book Microsoft course.

When I went through the book in detail I found some very useful nuggets. For example one chapter covers the "security configuration tool set", a complex and confusing aspect of Windows 2000. What's useful here are the series of examples that demonstrate some aspects of how to use these tools. Additionally, the book is full of definitions of security-related terms, insight to new WiFi-based applications and extensive coverage of Windows XP security features. XP's security is much of what is used within the .NET framework, so don't pass it by.

Most of the book is like the above--detailed passages of useful information with more-than occasional implementation tips thrown in. This book is a must-have and sure to be the de-facto standard of .NET security references. If .NET is only on the horizon and you have the money to spare, buy the book and skim through it and flag the interesting sections with Post-it notes for later study.

Why wait for the definitive .NET security book to come out? If this isn't it, maybe I'll write one!

1 of 1 people found the following review helpful:

4.0 out of 5 stars Excellent - very good book, June 19, 2003

By 

jake M (MD) - See all my reviews

This review is from: Windows .Net Server Security Handbook (With CD-ROM) (Paperback)

I was impressed with this book. I was a little nervous getting it as it was .NET security, not 2003 - so I knew it may have been dated to RC1. Regardless, I liked the book and it gave me some great security info related to Windows Server 2003. Hope this helps.