Topic: 请教各位DX，现在学Network Security 是否有前途？主要应该掌握那些？都有那些证书？请大家给个意见。先谢过了。 @枫下论坛 The Rolia Forum

工作学习 / IT技术讨论 / 请教各位DX，现在学Network Security 是否有前途？主要应该掌握那些？都有那些证书？请大家给个意见。先谢过了。 -bertha(seed); 2001-11-4 (#248504@0)

没有人知道吗？我在等各位的高见。 -bertha(seed); 2001-11-4 (#248597@0)

好失望啊！难道没人感兴趣？ -bertha(seed); 2001-11-4 (#248756@0)

in my opinion, it should depend on your hands-on experience rather than certification. -songl(风); 2001-11-4 {2242} (#248823@0)
本文发表在 rolia.net 枫下论坛first of all, thanks DENNIS2. I'm pursuing this area also, if you're interested, please read the following post which is coming from DENNIS2, and I'd like to share with you some materials what I have.

我假设你是个新手, 如果你已经是高手, 当我没说就是了.

以下这些书是必读的:
- TCP/IP Illustrated, Volume I- Stevens, Wright - ISBN 0201633469
最经典的有关TCP/IP的书籍, 稍微有些过时(94年出的, 缺少VPN, IPSEC等), 但绝对是
好书.

- Internetworking with TCP/IP, Volume I, 4th Ed. - Comer - ISBN 0130183806
另外一本非常经典的书, 其第四版有许多新的update, 如IPSEC等.

- Building Internet firewalls, 2nd Ed. - Zwicky, et al - ISBN 1565928717
- firewalls and Internet Security: Repelling the Wily Hacker - ISBN 0201633574 (2nd Ed, 020163466X will be published Oct 2001)
两本非常经典的构建防火墙的书. (必读必读)

如果你要拿CISSP, 这本书必读:
- Information Security Management Handbook, Fourth Edition
- ISBN 0849398290

建议读以下这些书: (其实许多也是必读)
- Hacking Exposed, 2nd Ed. - Scambray, et al - ISBN 0072127481
- Practical Unix and Internet Security, 2nd Ed. - Garfinkel, Spafford - ISBN 1565921488
- Applied Cryptography, 2nd Ed. - Schneier - ISBN 0471117099
- Network Intrusion Detection: An Analysts' Handbook, 2nd Ed. - Northcutt -ISBN 0735710082
- Intrusion Signatures and Analysis - Northcutt - ISBN 0735710635
- SSL and TLS: Designing and Building Secure Systems - ISBN 0201615983

网上杂志:
http://packetstorm.securify.com/magazines.html

website:
- http://www.google.com/ -- excellent search engine
- http://www.securityfocus.com/ -- security news and education
- http://www.sans.org/ -- security training and reading
- http://www.cert.org/ -- general security news, alerts, exploit information
- http://packetstorm.securify.com

Mailinglist:
firewalls (http://lists.gnac.net) -- 我从这个list学到了许多.
firewall-wizards

Newsgroup:
comp.*.security

以下这些软件要玩:
- Linux (ipfw, ipchains, iptables)
- ipfw (FreeBSD)
- Ipfilter (for *BSD, solaris, irix, HP/UX)
- TIS FWTK
- SSH/OpenSSH
- PGP/GnuPG
- nmap (network scanner)
- tcpdump (packet sniffer)
- snort (free IDS tool)
- Windows (argh!!): Proxy server, ICA Server

太多了, 有时间我得把这些整理整理放在我的Web site上.更多精彩文章及讨论，请光临枫下论坛 rolia.net

嗨,风! 你有没有安装SOLARIS在PC机上过?最近下了好几天才一半,还不知道可否安装上呢!另外,听说你有房子SHARE可否告知道地理位置及条件,我往你在ROLIA上的信箱发信了,请查收!谢谢啊~~ -firephoenix(雨后会出现彩虹吗?); 2001-11-5 (#248869@0)

I had installed it. No proble. If you need, I have the CDs in my home. -feishazounai(飞沙走奶); 2001-11-16 (#263990@0)

give me a call please, I need it also. -songl(风); 2001-11-16 (#264074@0)

Thank you very much. -bertha(seed); 2001-11-4 (#248894@0)
How about IDS, Cisco router and PKI? -bertha(seed); 2001-11-5 (#248918@0)

could you narrow your requirements. for example, you mentioned about Cisco router, what info do you want, Routing, Switching or BPG, OSPF, etc. I can't throw all stuff I have (4GB) bomb your box. -songl(风); 2001-11-5 (#248929@0)

in long term words, it's very promising -blaise(会爬树的老虎); 2001-11-4 {53} (#248850@0)
but u need to be real expert.not just advanced user.

感谢。 -bertha(seed); 2001-11-4 (#248898@0)

我也很想搞这个，还有个ip telephony也有前途 -avacao(吃草的大老虎白白胖胖); 2001-11-5 (#249930@0)

有人在做IP telephony吗？ -meteo(流星雨-反朴归真); 2001-11-16 (#264083@0)

Cute! -cute(cute); 2001-11-18 (#266462@0)
Furthermore, If you have hands-on experience with H.323, Softswitching and TCL programming please give me a hand. I am strugging on these kinds of stuff. -cute(cute); 2001-11-18 (#266471@0)

Checkpoint Certified Administrator -jeffrey815(Smartiecat); 2001-11-15 (#262686@0)

还有其他的吗? -andy2060(胖胖猴想开飞机); 2001-11-16 (#264218@0)

这里还有一个问题,许多涉及系统安全的职位不仅要求公民身份,还要有政府部门的工作经历. -netee(netee); 2001-11-16 (#264229@0)
Network Security Experts would in demand as more and more enterprise VPNs is connecting to the Internet as same as the various commercial services. But you should have EXTENSIVE and PROFOUND knowledge -cute(cute); 2001-11-18 {730} (#266451@0)
in OSs and programming. A attacker can invade a certain network at a chance but Security Experts must can prevent any kinds of attacks. When I was working as a Unix network administrator, my friend, a talent university guy, invaded my Internet PPP server by using a software loaded from Internet although he knew nothing of Unix at that time. In my opinion a practicable way is to train yourself to be a real Security Expert which requires a excellent network environment to practice and your talent. Checkpoint and Cisco Firewall are nothing because they give you a friendly user interface to implement the rules. If your English is excellent and expecting a good luck in your future job seeking you can try the easy way.

考个CCIP或者CISCO QUALIFIED SPECIALIST - SECURITY现在比较吃香（相对其他CCNP/CCDP而言） -avacao(吃草的大老虎白白胖胖); 2001-11-18 (#266466@0)
"a talent university guy, invaded my Internet PPP server by using a software loaded from Internet although he knew nothing of Unix at that time" -- That's called a script kiddy, not a real hacker. -dennis2(Dennis); 2001-11-18 (#266496@0)

I cannot agree with you more but did I entitle him as a hacker? -cute(cute); 2001-11-18 (#266508@0)

No, you didn't. I was just being picky again :-) -dennis2(Dennis); 2001-11-20 (#267899@0)

I think it will be the most hot in the future and you should contact some professional school to learn it. -smilin(drible); 2001-11-19 (#267406@0)