[Book Cover]

Halting the Hacker: A Practical Guide to Computer Security (Bk/CD-ROM), 1/e

Donald L. Pipkin, Tulsa, Oklahoma
Hewlett-Packard Professional Books

Published December, 1996 by Prentice Hall PTR (ECS Professional)

Copyright 1997, 224 pp.
Paper Bound w/CD-ROM
ISBN 0-13-243718-X

[CD Included]


Sign up for future
mailings on this subject.

See other books about:
    Network Security-Computer Science


Summary



Features




Table of Contents
1. WHERE THE HACKER STARTS.

    1. Understanding Hackers.

      Know the Hacker. About the System Manager. Know the System. Know the Law. Computer Crime. Know the Risk. Epilogue.
    Sidebar 1: The History of Hacking.
    2. Information: The Hacker's Best Tool.

      Gathering Information from People. Going On-Site. Gathering Information from the Computer. Gathering Information from the Experts. Gathering Information from Other Hackers. Epilogue.

    3. How the Hacker Gains Access.

      Serial Line Access. Gaining Network Access. Using Network Access. Epilogue.
    Sidebar 2: Understanding Password Cracking.
    4. How the Hacker Gains Privileges.

      Getting a User's Password. Finding Passwords in Clear Text. Having Another User Run a Program. Exploiting Permission Vulnerabilities. Exploiting Hardware Vulnerabilities. Exploiting Software Vulnerabilities. Epilogue.

2. THE HACKER AT WORK.
    5. Watching the Hacker Watch You.

      Connection Monitoring. Process Monitoring. Information Monitoring. Security Monitoring. Epilogue.
    Sidebar 3: The History of UNIX.
    6. How the Hacker Covers His Tracks.

      Connection Hiding. Process Hiding. Information Doctoring. Changing Time. Beware of Backups. Epilogue.

    7. Backdoors.

      Network Services. Loosening Permissions. Modifying Source Code. Software Developers. Security Tools. Epilogue.
    Sidebar 4: Understanding UNIX File Permissions.
    8. Keeping the Hacker Contained.

      Finding Other Systems. Finding Out About Users. Accessing the System over the Network. Epilogue.

    9. The Hacker's Goal.

      Gathering Information. Compromising Information. Utilizing Resources. Using Malicious Code. Epilogue.
    Sidebar 5: Understanding UNIX Accounts.
3. HALTING THE HACKER.
    10. Protecting the System.

      Limit Information. Restrict Access. Keep the System Current. Remove Tools for Hackers. Epilogue.

    11. Detecting Break-Ins.

      Determining When a Security Incident Has Occurred. Determining the Severity of a Security Incident. Hacker Profile. Detection Software. System Monitoring. File System Monitoring. Determining the Scope of Damage. Determining the Length of the Security Incident. Epilogue.
    Sidebar 6: Creating an Information Security Policy.
    12. Responding to a Security Incident.

      Restoration of Services. Securing the System. Finding a Hacker. Legal Prosecution. Public Relations. Process Improvement. Epilogue.
APPENDICES.
    Appendix A. Computer Security Organizations.
    Appendix B. Other Sources of Information.

      Printed Periodicals. On-line Periodicals (Mail Lists). News Groups.

    Appendix C. About the CD-ROM.

      Information Archive. Software Tools.

    Glossary.
    Index.

[Help]

© Prentice-Hall, Inc. A Simon & Schuster Company
Comments To webmaster@prenhall.com