Hack Proofing Your Web Applications is the only book specifically written for Webmasters and application developers. Hackers and programmers would both agree that it will never be possible to write an antivirus program that can shield against all conceivable viruses - that would be like trying to protect every bank, cash machine, and convenience store from every type of bank robber, thief, and shoplifter. Since this is not possible, programmers must develop secure scripts and programs to ward off hackers. This book shows programmers how to design tight code that will deter hackers from the start. It covers Java applications, XML, ColdFusion, and other database applications. The CDROM includes all of the book’s source code and sample applications.

The Linux operating system continues to gain market share based largely on its reputation as being the most secure operating system available. The challenge faced by system administrators installing Linux is that it is secure only if installed and configured properly, constantly and meticulously updated, and carefully integrated with a wide variety of Open Source security tools. The fact that Linux source code is readily available to every hacker means that system administrators must continually learn security and anti-hacker techniques.Hack Proofing Linux will provide system administrators with all of the techniques necessary to properly configure and maintain Linux systems and counter malicious attacks.

*Linux operating systems and Open Source security tools are incredibly powerful, complex, and notoriously under-documented - this book addresses a real need
*CD-Rom contains Red Hat/Mandrake Linux RPMs as well as tarballs for other Linux distributions and the BSD community
*Uses forensics-based analysis to give the reader an insight to the mind of a hacker

Forward
1 Inroduction to Open Source Security
2 Hardening Security
3 System Scanning and Probing
4 Implementing an Intrusion Detection System
5 Troubleshooting the Network with Sniffers
6 Network Authentication and Encryption
7 Avoiding Sniffer Attacks through Encryption
8 Creating Virtual Private Networks
9 Implementing a Firewall with Ipchains and Iptables
10 Deployong the Squid Web Proxy Cache Server
11 Maintaining Firewalls
Appendix A Bastille Log
Appendix B Hack Proofing Linux Fast Track

The Complete Guide to Protecting Your Wireless Network

Traditionally, someone had to be sitting in front of your computer to read your documents, see your e-mail, and play with your settings. Today, however, someone can be sitting in the office next door, a few floors up, or even in the next building, and have the same abilities as if he were in front of your computer. Are you using an 802.11 or Bluetooth device on your computer? Are you using a PDA to communicate with other systems or to get onto the Internet? Are you using a cellular phone to initiate a network connection back to your office? Have you just set up the latest wireless gateway at home? Are you planning on implementing a wireless solution in your office? Then you need Hack Proofing Your Wireless Network.

1. Understand the Limitations of Wireless Security
Review how incomplete standards and changing protocols affect your networks.
2. Establish Information Classification Procedures
Learn the 7 steps to establishing a classification system, which provides the first step in the creation of your security standards and policies.
3. Understand the Broadcast Nature of Wireless
Learn about the most commonly used radio transmission protocols, including Frequency-Hopping Spread Spectrum (FHSS), Direct-Sequence Spread Spectrum (DRSS), and Infrared (IR).
4. Find Coverage of Sniffing, Interception, and Eavesdropping
Sniffing remains one of the most effective techniques in attacking a wireless network. Review sniffing and spoofing tools and protect against unauthorized attacks.
5. Design and Deploy a Secure Network
Review the WEP authentication process and it’s advantages and disadvantages.
6. Think Like a Hacker
Understand how hackers choose the tools and equipment required for an attack and see how their techniques like “war driving” can be used against you.
7. Read about Intrusion Detection Strategies
Watch for unauthorized traffic and protocols and review popular monitoring products.
8. Design and Plan a Successful Audit
Learn the types of audits and best practices for auditing and security standards.
9. Develop a Wireless Security Checklist
Follow the steps to show what type of equipment and planning will be necessary.

Syngress wireless books can help prepare you to take the CWNA certification exam

The ultimate reference for home, office, or wherever technology takes you!

From broadband to wireless, XML to Xbox™, Tablet PCs to digital TV—here’s the one resource that defines over 10,000 technical terms for home and office! The fifth edition of the award-winning MICROSOFT COMPUTER DICTIONARY has been fully updated and expanded with thousands of new entries. You get simple, concise definitions for understanding even the most arcane terms—as well as the newest high-tech acronyms and jargon. From A: (drive) to zettabyte, the MICROSOFT COMPUTER DICTIONARY makes the latest technology accessible to all!

COMPREHENSIVE CONTENT
Covers everything from smartphones to superservers, 10Base2 to ;-)

DEFINES AND ILLUSTRATES
Helpful diagrams and drawings complete the picture for complex topics

RELEVANT TO ALL
Whether you’re a home user or an industry professional, you’ll find terms and concepts essential to your understanding

The Complete Guide to Protecting Your Network

Called “a bold, unsparing tour of information that never swerves from the practical,” this updated and considerably expanded bestseller will quickly achieve top shelf placement on your information security bookshelf. Hack Proofing Your Network, Second Edition shows you that the only way to stop a hacker is to think like one.

1. Know the Laws of Security
Review the authors’ guidelines for discovering security problems when reviewing or designing a system.
2. Learn the Seven Categories of Attack
See how denial of service, information leakage, regular file access, misinformation, special file/database access, remote arbitrary code execution, and elevation of privileges can hurt you!
3. Prevent Diffing
See how the comparison of a program, library, or file before and after some action can affect your network data.
4. Learn about Standard Cryptographic Algorithms
See how secure your encrypted files and passwords really are.
5. Understand Format String Vulnerabilities
Learn about one of the newest additions to the hacker’s bag of tricks.
6. Read About Session Hijacking Types
Review TCP session hijacking, ARP attacks, route table modification, UDP hijacking, and man-in-the-middle attacks.
7. Understand the Strategic Constraints of Tunnel Design
Create tunnels that are end-to-end secure and learn how to use authentication in OpenSSH.
8. Hack Proof Your Hardware
Design products with tamper mechanisms: resistance, evidence, detection, and response.
9. Download a Free Sniffer from the Book’s Web Site
Access the Hack Proofing Web site for complete source code and Carnivore Source Code.
10. Register for Your 1 Year Upgrade
The Syngress Solutions upgrade plan protects you from content obsolescence and provides monthly mailings, whitepapers, and more!

Table of Contents

1: How to Hack 2: The Laws of Security 3: Classes of Attack 4: Methodology 5: Diffing 6: Cryptography 7: Unexpected Input 8: Buffer Overflow 9: Format Strings 10: Sniffing 11: Session Hijacking 12: Spoofing: Attacks on Identity 13: Tunneling 14: Hardware Hacking 15: Viruses, Trojan Horses, and Worms 16: IDS Evasion 17: Automated Security Review and Attack Tools 18: Reporting Security Problems

Home Office Computing Made Easy!

Today’s busy families depend on their home PCs now more than ever. From managing the family budget to digitizing memories or composing the term paper from Hades, home computers are being pressed into service by family members of all ages as never before.

As the number of homes that are equipped with multiple PCs continues to expand, so does the need for trusted resources that can help your family gain maximum benefit from its computer investments. TechRepublic’s Home Office Computing Survival Guide, Second Edition is just such a resource.

With its strong emphasis on the features that make Windows 2000 and Windows XP the home and small office network operating systems of choice, this essential guide will help you do all this and more:

• Determine what kind of computer network is right for your family.
• Select the most appropriate Internet connection for your home network.
• Understand the basics of TCP/IP and file sharing.
• Configure your network to use a DSL or cable modem.
• Secure your Windows XP network with Internet Connection Firewall.
• Set access levels and file-sharing permissions.
• Protect data using proper backup and recovery methods.

Planning Today Means Quicker Recovery from Your IT OutagesDon’t put off your emergency planning until after the disaster happens. Careful preparation now can save you precious time whenever an IT outage strikes. Whether it’s an electrical disruption, an overloaded server, or a natural disaster like a tornado, flood, or fire, each event can wreak havoc on your IT department and across your organization. Having systems, processes, and policies in place can lessen the overall impact and keep your valuable data safe.

Secure Your Enterprise Systems and DataLocking down enterprise computer networks is one of the most challenging responsibilities facing today’s systems administrators and IT support personnel. Ensuring that corporate servers and networked PCs are protected from attack is a huge and ongoing task. As an IT professional, your career success depends largely on your ability to flawlessly implement and administer today’s sophisticated IT security products and services. Are you up to the task?

If IT security issues keep you up at night, let TechRepublic’s IT Security Survival Guide, Second Edition ease your mind. In addition to all the great information you’ll find in the book, the accompanying CD-ROM contains a wide variety of security-related resources designed to make your job easier. If your organization has not yet implemented security policies or if your existing policies need updating, our ready-to-customize policy templates will help you make quick work of that task. Together, this valuable reference volume and its companion CD-ROM will help you:

• Evaluate your systems’ security risks
• Gain physical control over your network
• Secure Windows NT/2000/2003 networks
• Identify and neutralize internal as well as external security threats
• Implement firewalls and intrusion detection systems
• Institute formal IT security policies in your organization
• Teach end users best practices for securing workstations and data

Security+ Certification Training Kit. This training kit introduces the basic concepts of computer security. It is designed to prepare you to take the Security+ Certification exam administered by the Computing Technology Industry Association (CompTIA). The Security+ Certification program covers the computer security technologies most commonly used today. Passing the Security+ Certification exam means you are certified as possessing the basic knowledge and skills needed to work in computer security. However, this book is not just about getting you through the exam. The lessons in these chapters also provide you with knowledge you’ll use to create a more secure computing environment.Each chapter in this book is divided into lessons. Most lessons include hands-on procedures that allow you to practice or demonstrate a particular concept or skill. Each lesson ends with a short summary and a set of review questions to test your knowledge of the lesson material.

Conquer Wireless Networking ChallengesWireless networking has revolutionized the small office workspace. Employees are no longer tethered to their desks. And cord length is no longer the deciding factor in setting up an office or workstation. Wireless connectivity presents a true form of mobility—meaning new freedoms, new opportunities, and new challenges.

As wireless computing demands increase, you must have the knowledge to meet needs without sacrificing security. Introducing a wireless network requires careful planning up front, knowledgeable configuration, and diligent attention and administration. With TechRepublic’s Wireless Networking Survival Guide, you’ll learn how to integrate, troubleshoot, secure, and administer a wireless network for your small office and discover how to select the right products and devices for your organization. Know how to:

• Understand wireless network operation
• Add and configure network adapters
• Establish file access permissions
• Select the best products for your needs
• Secure wireless systems and networks
• Configure wireless network connections
• Roll out and maintain a local area network