本文发表在 rolia.net 枫下论坛first of all, thanks DENNIS2. I'm pursuing this area also, if you're interested, please read the following post which is coming from DENNIS2, and I'd like to share with you some materials what I have.
我假设你是个新手, 如果你已经是高手, 当我没说就是了.
以下这些书是必读的:
- TCP/IP Illustrated, Volume I- Stevens, Wright - ISBN 0201633469
最经典的有关TCP/IP的书籍, 稍微有些过时(94年出的, 缺少VPN, IPSEC等), 但绝对是
好书.
- Internetworking with TCP/IP, Volume I, 4th Ed. - Comer - ISBN 0130183806
另外一本非常经典的书, 其第四版有许多新的update, 如IPSEC等.
- Building Internet firewalls, 2nd Ed. - Zwicky, et al - ISBN 1565928717
- firewalls and Internet Security: Repelling the Wily Hacker - ISBN 0201633574 (2nd Ed, 020163466X will be published Oct 2001)
两本非常经典的构建防火墙的书. (必读必读)
如果你要拿CISSP, 这本书必读:
- Information Security Management Handbook, Fourth Edition
- ISBN 0849398290
建议读以下这些书: (其实许多也是必读)
- Hacking Exposed, 2nd Ed. - Scambray, et al - ISBN 0072127481
- Practical Unix and Internet Security, 2nd Ed. - Garfinkel, Spafford - ISBN 1565921488
- Applied Cryptography, 2nd Ed. - Schneier - ISBN 0471117099
- Network Intrusion Detection: An Analysts' Handbook, 2nd Ed. - Northcutt -ISBN 0735710082
- Intrusion Signatures and Analysis - Northcutt - ISBN 0735710635
- SSL and TLS: Designing and Building Secure Systems - ISBN 0201615983
网上杂志:
http://packetstorm.securify.com/magazines.html
website:
- http://www.google.com/ -- excellent search engine
- http://www.securityfocus.com/ -- security news and education
- http://www.sans.org/ -- security training and reading
- http://www.cert.org/ -- general security news, alerts, exploit information
- http://packetstorm.securify.com
Mailinglist:
firewalls (http://lists.gnac.net) -- 我从这个list学到了许多.
firewall-wizards
Newsgroup:
comp.*.security
以下这些软件要玩:
- Linux (ipfw, ipchains, iptables)
- ipfw (FreeBSD)
- Ipfilter (for *BSD, solaris, irix, HP/UX)
- TIS FWTK
- SSH/OpenSSH
- PGP/GnuPG
- nmap (network scanner)
- tcpdump (packet sniffer)
- snort (free IDS tool)
- Windows (argh!!): Proxy server, ICA Server
太多了, 有时间我得把这些整理整理放在我的Web site上.更多精彩文章及讨论,请光临枫下论坛 rolia.net
我假设你是个新手, 如果你已经是高手, 当我没说就是了.
以下这些书是必读的:
- TCP/IP Illustrated, Volume I- Stevens, Wright - ISBN 0201633469
最经典的有关TCP/IP的书籍, 稍微有些过时(94年出的, 缺少VPN, IPSEC等), 但绝对是
好书.
- Internetworking with TCP/IP, Volume I, 4th Ed. - Comer - ISBN 0130183806
另外一本非常经典的书, 其第四版有许多新的update, 如IPSEC等.
- Building Internet firewalls, 2nd Ed. - Zwicky, et al - ISBN 1565928717
- firewalls and Internet Security: Repelling the Wily Hacker - ISBN 0201633574 (2nd Ed, 020163466X will be published Oct 2001)
两本非常经典的构建防火墙的书. (必读必读)
如果你要拿CISSP, 这本书必读:
- Information Security Management Handbook, Fourth Edition
- ISBN 0849398290
建议读以下这些书: (其实许多也是必读)
- Hacking Exposed, 2nd Ed. - Scambray, et al - ISBN 0072127481
- Practical Unix and Internet Security, 2nd Ed. - Garfinkel, Spafford - ISBN 1565921488
- Applied Cryptography, 2nd Ed. - Schneier - ISBN 0471117099
- Network Intrusion Detection: An Analysts' Handbook, 2nd Ed. - Northcutt -ISBN 0735710082
- Intrusion Signatures and Analysis - Northcutt - ISBN 0735710635
- SSL and TLS: Designing and Building Secure Systems - ISBN 0201615983
网上杂志:
http://packetstorm.securify.com/magazines.html
website:
- http://www.google.com/ -- excellent search engine
- http://www.securityfocus.com/ -- security news and education
- http://www.sans.org/ -- security training and reading
- http://www.cert.org/ -- general security news, alerts, exploit information
- http://packetstorm.securify.com
Mailinglist:
firewalls (http://lists.gnac.net) -- 我从这个list学到了许多.
firewall-wizards
Newsgroup:
comp.*.security
以下这些软件要玩:
- Linux (ipfw, ipchains, iptables)
- ipfw (FreeBSD)
- Ipfilter (for *BSD, solaris, irix, HP/UX)
- TIS FWTK
- SSH/OpenSSH
- PGP/GnuPG
- nmap (network scanner)
- tcpdump (packet sniffer)
- snort (free IDS tool)
- Windows (argh!!): Proxy server, ICA Server
太多了, 有时间我得把这些整理整理放在我的Web site上.更多精彩文章及讨论,请光临枫下论坛 rolia.net