FWIW I am not a paid endorser for any product, but after watching this
list (with the occasional post), for quite some time there is a repeated
pattern of the 'fill in name/organization here' am new to security and
want to know how to get started...good books to get...understand the
difference between hubs and switches...understand NT
enumeration...understand what port correlates with what
service...understand what {fill in hack du`jour} is
all about and how to prevent it...etc....etc....
Recently a desktop reference for all types SA/NA's was published under the
name "Hacking Exposed."
I cannot emphasize, enough the importance for all subscribers to this
list, just how much information this concise reference provides, not only
to the 'Security Professional' but to all admin's big & small.
As an example of its use as a 'desktop reference' imagine that you were
new to switches in general and had to figure out how to set up port
mirroring...maybe you didn't know the exact command for say a Cisco Cat or
maybe you didn't know what Cisco called their implementation of port
mirroring {they call it SPAN - Short for Switched Port Analyzer BTW}
Consult your trusty reference manual on page 307 and you will be
quickly and thoroughly informed of not only the theory behind port
mirroring but also how to implement SPAN on Cisco switches - with the
bonus URL to the Cisco Web Site which details SPAN thereby saving you the
time and energy of
weeding through the excellent {if volumous} Cisco Web Site.
As an added bonus...the reference does not inundate you with fluff and
amusing anecdotes, but deals with facts, problems and solutions.
I am posting this with the hope that we can move forward as an internet
security concious community.
Please send all flames to this e-mail to /dev/null
Please do not ask me where you can order the book, you know the deal
www.amazon.com or your favorite competitor.
<STDDISCLAIMER>
All opinions are solely my own, not necessarily representative of any
client or employer...
</STDDISCLAIMER>
------------------------------------------------------------------------
Michael Bost
Consultant for: Jacob & Sundstrom, Inc.
-------------------------------------------------------------------------
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
