本文发表在 rolia.net 枫下论坛我假设你是个新手, 如果你已经是高手, 当我没说就是了.
以下这些书是必读的:
- TCP/IP Illustrated, Volume I- Stevens, Wright - ISBN 0201633469
最经典的有关TCP/IP的书籍, 稍微有些过时(94年出的, 缺少VPN, IPSEC等), 但绝对是好书.
- Internetworking with TCP/IP, Volume I, 4th Ed. - Comer - ISBN 0130183806
另外一本非常经典的书, 其第四版有许多新的update, 如IPSEC等.
- Building Internet Firewalls, 2nd Ed. - Zwicky, et al - ISBN 1565928717
- Firewalls and Internet Security: Repelling the Wily Hacker - ISBN 0201633574 (2nd Ed, 020163466X will be published Oct 2001)
两本非常经典的构建防火墙的书. (必读必读)
如果你要拿CISSP, 这本书必读:
- Information Security Management Handbook, Fourth Edition
- ISBN 0849398290
建议读以下这些书: (其实许多也是必读)
- Hacking Exposed, 2nd Ed. - Scambray, et al - ISBN 0072127481
- Practical Unix and Internet Security, 2nd Ed. - Garfinkel, Spafford - ISBN
1565921488
- Applied Cryptography, 2nd Ed. - Schneier - ISBN 0471117099
- Network Intrusion Detection: An Analysts' Handbook, 2nd Ed. - Northcutt -ISBN 0735710082
- Intrusion Signatures and Analysis - Northcutt - ISBN 0735710635
- SSL and TLS: Designing and Building Secure Systems - ISBN 0201615983
网上杂志:
http://packetstorm.securify.com/magazines.html
website:
- http://www.google.com/ -- excellent search engine
- http://www.securityfocus.com/ -- security news and education
- http://www.sans.org/ -- security training and reading
- http://www.cert.org/ -- general security news, alerts, exploit information
- http://packetstorm.securify.com
Mailinglist:
Firewalls (http://lists.gnac.net) -- 我从这个list学到了许多.
Firewall-wizards
Newsgroup:
comp.*.security
以下这些软件要玩:
- Linux (ipfw, ipchains, iptables)
- ipfw (FreeBSD)
- Ipfilter (for *BSD, solaris, irix, HP/UX)
- TIS FWTK
- SSH/OpenSSH
- PGP/GnuPG
- nmap (network scanner)
- tcpdump (packet sniffer)
- snort (free IDS tool)
- Windows (argh!!): Proxy server, ICA Server
太多了, 有时间我得把这些整理整理放在我的Web site上.更多精彩文章及讨论,请光临枫下论坛 rolia.net
以下这些书是必读的:
- TCP/IP Illustrated, Volume I- Stevens, Wright - ISBN 0201633469
最经典的有关TCP/IP的书籍, 稍微有些过时(94年出的, 缺少VPN, IPSEC等), 但绝对是好书.
- Internetworking with TCP/IP, Volume I, 4th Ed. - Comer - ISBN 0130183806
另外一本非常经典的书, 其第四版有许多新的update, 如IPSEC等.
- Building Internet Firewalls, 2nd Ed. - Zwicky, et al - ISBN 1565928717
- Firewalls and Internet Security: Repelling the Wily Hacker - ISBN 0201633574 (2nd Ed, 020163466X will be published Oct 2001)
两本非常经典的构建防火墙的书. (必读必读)
如果你要拿CISSP, 这本书必读:
- Information Security Management Handbook, Fourth Edition
- ISBN 0849398290
建议读以下这些书: (其实许多也是必读)
- Hacking Exposed, 2nd Ed. - Scambray, et al - ISBN 0072127481
- Practical Unix and Internet Security, 2nd Ed. - Garfinkel, Spafford - ISBN
1565921488
- Applied Cryptography, 2nd Ed. - Schneier - ISBN 0471117099
- Network Intrusion Detection: An Analysts' Handbook, 2nd Ed. - Northcutt -ISBN 0735710082
- Intrusion Signatures and Analysis - Northcutt - ISBN 0735710635
- SSL and TLS: Designing and Building Secure Systems - ISBN 0201615983
网上杂志:
http://packetstorm.securify.com/magazines.html
website:
- http://www.google.com/ -- excellent search engine
- http://www.securityfocus.com/ -- security news and education
- http://www.sans.org/ -- security training and reading
- http://www.cert.org/ -- general security news, alerts, exploit information
- http://packetstorm.securify.com
Mailinglist:
Firewalls (http://lists.gnac.net) -- 我从这个list学到了许多.
Firewall-wizards
Newsgroup:
comp.*.security
以下这些软件要玩:
- Linux (ipfw, ipchains, iptables)
- ipfw (FreeBSD)
- Ipfilter (for *BSD, solaris, irix, HP/UX)
- TIS FWTK
- SSH/OpenSSH
- PGP/GnuPG
- nmap (network scanner)
- tcpdump (packet sniffer)
- snort (free IDS tool)
- Windows (argh!!): Proxy server, ICA Server
太多了, 有时间我得把这些整理整理放在我的Web site上.更多精彩文章及讨论,请光临枫下论坛 rolia.net