Halting the Hacker: A Practical Guide to Computer Security, 2/e

Donald L. Pipkin

  • 出版商: Prentice Hall
  • 出版日期: 2002-09-05
  • 售價: $1,580
  • 貴賓價: 9.8$1,548
  • 語言: 英文
  • 頁數: 384
  • 裝訂: Paperback
  • ISBN: 0130464163
  • ISBN-13: 9780130464163
  • 相關分類: 資訊安全駭客 Hack
  • 下單後立即進貨 (約5~7天)

買這商品的人也買了...

相關主題

商品描述

  • Get into the hacker's mind—and outsmart him!
  • Fully updated for the latest threats, tools, and countermeasures
  • Systematically covers proactive, reactive, and preemptive security measures
  • Detailed, step-by-step techniques for protecting HP-UX, Linux, and UNIX systems
"Takes on even more meaning now than the original edition!"

—Denny Georg, CTO, Information Technology, Hewlett-Packard

Secure your systems against today's attacks—and tomorrow's.

Halting the Hacker: A Practical Guide to Computer Security, Second Edition combines unique insight into the mind of the hacker with practical, step-by-step countermeasures for protecting any HP-UX, Linux, or UNIX system.

Top Hewlett-Packard security architect Donald L. Pipkin has updated this global bestseller for today's most critical threats, tools, and responses. Pipkin organizes this book around the processes hackers use to gain access, privileges, and control—showing you exactly how they work and the best ways to respond. Best of all, Pipkin doesn't just tell you what to do, but why. Using dozens of new examples, he gives you the skills and mindset to protect yourself against any current exploit—and attacks that haven't even been imagined yet.

  • How hackers select targets, identify systems, gather information, gain access, acquire privileges, and avoid detection
  • How multiple subsystems can be used in harmony to attack your computers and networks
  • Specific steps you can take immediately to improve the security of any HP-UX, Linux, or UNIX system
  • How to build a secure UNIX system from scratch—with specifics for HP-UX and Red Hat Linux
  • Systematic proactive, reactive, and preemptive security measures
  • Security testing, ongoing monitoring, incident response, and recovery—in depth
  • Legal recourse: What laws are being broken, what you need to prosecute, and how to overcome the obstacles to successful prosecution
About the CD-ROM

The accompanying CD-ROM contains an extensive library of HP-UX and Linux software tools for detecting and eliminating security problems and a comprehensive information archive on security-related topics.

Table of Contents

I: UNDERSTANDING HACKERS.

The Hacking Environment. Historic Perspective. Hacker or Cracker.
1. Who Hackers Are.
Internal Hackers. External Hackers. Categorizing Hackers. Demographics. Classified by Skill Level.
2. Hacker Motives.
Intellectually Motivated. Personally Motivated. Socially Motivated. Politically Motivated. Financially Motivated. Motivated by Ego.
3. What Hackers Do.
Modern Day Robin Hood. Digital Dillinger.
4. How Hackers Do What They Do.
Malicious Code. Modified Source Code. Exploiting Network Protocols. Exploiting Vulnerabilities. Password Crackers.

II. THE HACKING PROCESS.

Selecting the Target. Identifying the Systems to be Attacked. Gathering Information. Gaining Access. Acquiring Privileges. Avoiding Detection. Realizing a Goal.
5. Gathering Information.
Public Sources. People. Going On Site. Computer Systems. Security Experts. Other Hackers.
6. Limiting Information Disclosure.
Public Information Sources. Announcements. Restricting the Scope of the Service. Polling. Eavesdropping. Misinformation.
7. Gaining Access.
Back Doors. Anonymously. Active Sessions. Stolen Credentials. Subverting Protocols.
8. Limiting Access.
Physical System Access. Restricting Users. Over the Network. Restricting Services. File System Access.
9. Getting Credentials.
Identity Management. Account Management. Repositories. Monitoring the Network. Social Engineering. Monitoring User Input.
10. Controlling Authentication.
Authentication Management. Cracking Passwords. Finding Passwords in Clear Text. The Future of Passwords. Implementing Strong Authentication.
11. Gaining Privileges.
Having Another User Run a Program. Exploiting Permission Vulnerabilities. Exploiting Hardware Vulnerabilities. Exploiting Software Vulnerabilities.
12. Controlling Authorizations.
User Authorizations. Program Authorizations. Compartmentalization. Protecting Files. Exploiting Permission Vulnerabilities. Read-only File Systems.
13. Avoiding Detection.
Monitoring Connections. Monitoring Processes. Monitoring Information. Increasing Security. Not Making Tracks. Removing Tracks. Misdirection. Changing Time.
14: Increasing Monitoring.
Monitoring Files. Monitoring Users. Monitoring Resources. The Logging System. Consolidated Logging Server. Log File Monitoring.

III. LEGAL RECOURSE.

Criminal Charges. Civil Remedies.
15. Computer Crimes.
Traditional Offenses Using Computers. Computer-specific Offenses. Intellectual Property Offenses. Content-related Offenses. Privacy Offenses.
16. Legal Prosecution.
Criminal Crime. Law Enforcement Agencies.
17. Obstacles to Prosecution.
Identifying the Hacker. Jurisdiction. Extradition. Evidence. Cost of Prosecution. Corporate Concerns. Personal Concerns.
18. Improving Successful Prosecution.
Enforcing Security Policy. Fair Notice. Marking Information. Proper Evidence Preservation. Trusted Time.

IV. HALTING THE HACKER.

Proactive Security Measures. Reactive Security Measures.
19. Preparation.
Define What Needs Protection. Define How Much Protection Is Required. Define How Much Protection Is Afforded. Define What You Have. Define How to Protect It.
20. Installation.
Software Structure. Install Minimum Base Operating System. Remove Any Unneeded Software. Install Additional Products. Install Standard Patches. Install Security Patches. Remove Software Remnants.
21. Proactive Protection.
Remove What Is Not Needed. Disable What Is Not Used. Restrict the Rest. Host Hardening Systems.
22. Security Testing.
Evaluate Current Status. Compliance with Security Program. Integrity of Installed Software. Integrity of Configuration. Security Scanners.
23. Security Monitoring.
Monitoring for New Vulnerabilities. Intrusion Methods. Determining When a Security Incident Has Occurred. System Monitoring Techniques. Comprehensive Monitoring.
24. Reactive Security.
Review the Incident Response Plan. Preserve the State of the Computer. Report the Incident. Contain the Incident. Gathering Information. Countermeasures.
25. Recovery.
Assess the Scope. Setting Priorities. Secure the System. Repair the Vulnerability. System Recovery. Data Recovery. Monitor for Additional Signs of Attack. Restoration of Confidence.
26. Review.
Determine the Cost of the Incident. Evaluate the Response Plan. Improve the Safeguards. Update Detection. Process Improvement. Postmortem Documentation. Follow-up Communication.
Glossary.
Index.
About the CD-ROM.
Accessing the CD-ROM.
Using the CD-ROM.

商品描述(中文翻譯)

進入駭客的思維,並超越他!全面更新以應對最新的威脅、工具和對策。系統性地涵蓋主動、被動和預防性安全措施。詳細的、逐步的技術,用於保護HP-UX、Linux和UNIX系統。

“現在比原版更有意義!”——Denny Georg,資訊技術首席技術官,惠普公司。

保護您的系統免受今天和明天的攻擊。

《阻止駭客:實用的電腦安全指南,第二版》結合了對駭客思維的獨特洞察力和實用的逐步對策,用於保護任何HP-UX、Linux或UNIX系統。

頂尖的惠普安全架構師Donald L. Pipkin為今天最關鍵的威脅、工具和應對措施更新了這本全球暢銷書。Pipkin將本書組織成駭客用於獲取訪問權限和控制的過程,向您展示他們的工作方式以及最佳應對方法。最重要的是,Pipkin不僅告訴您該做什麼,還告訴您為什麼要這樣做。通過使用數十個新的示例,他給您提供了保護自己免受任何當前攻擊和尚未想像的攻擊的技能和思維方式。

駭客如何選擇目標、識別系統、收集信息、獲取訪問權限、獲得特權並避免檢測。多個子系統如何協同使用來攻擊您的計算機和網絡。立即採取的具體步驟,以提高任何HP-UX、Linux或UNIX系統的安全性。如何從頭開始構建安全的UNIX系統,並針對HP-UX和Red Hat Linux進行具體操作。系統性的主動、被動和預防性安全措施。深入的安全測試、持續監控、事件響應和恢復。法律救濟:違反了哪些法律,您需要起訴什麼,以及如何克服成功起訴的障礙。

關於CD-ROM
附帶的CD-ROM包含了大量用於檢測和消除安全問題的HP-UX和Linux軟件工具,以及有關安全相關主題的全面信息檔案。

目錄
第一部分:了解駭客。
駭客環境。歷史觀點。駭客或破解者。
1. 駭客是誰。
內部駭客。外部駭客。駭客分類。人口統計。按技能水平分類。
2. 駭客動機。
知識動機。個人動機。社交動機。政治動機。經濟動機。自我動機。
3. 駭客做什麼。
現代羅賓漢。數字迪林傑。
4. 駭客如何做到這一點。
惡意代碼。修改源代碼。利用網絡協議。利用漏洞。破解密碼。

第二部分:駭客過程。
選擇目標。識別要攻擊的系統。收集信息。獲取訪問權限。獲得特權。避免檢測。實現目標。
5. 收集信息。
公共資源。人。現場調查。計算機系統。安全專家。其他駭客。
6. 限制信息披露。
公共信息來源。公告。限制服務範圍。調查。竊聽。錯誤信息。
7. 獲取訪問權限。
後門。匿名。活動會話。盜竊憑證。破壞協議。
8. 限制訪問。
物理系統訪問。限制用戶。