|
libcats.org
OSSEC Host-Based Intrusion Detection GuideAndrew Hay, Daniel Cid, Rory BrayThis book is the definitive guide on the OSSEC Host-based Intrusion Detection system and frankly, to really use OSSEC you are going to need a definitive guide. Documentation has been available since the start of the OSSEC project but, due to time constraints, no formal book has been created to outline the various features and functions of the OSSEC product. This has left very important and powerful features of the product undocumented...until now! The book you are holding will show you how to install and configure OSSEC on the operating system of your choice and provide detailed examples to help prevent and mitigate attacks on your systems.
-- Stephen Northcutt OSSEC determines if a host has been compromised in this manner by taking the equivalent of a picture of the host machine in its original, unaltered state. This ?picture? captures the most relevant information about that machine's configuration. OSSEC saves this ?picture? and then constantly compares it to the current state of that machine to identify anything that may have changed from the original configuration. Now, many of these changes are necessary, harmless, and authorized, such as a system administrator installing a new software upgrade, patch, or application. But, then there are the not-so-harmless changes, like the installation of a rootkit, trojan horse, or virus. Differentiating between the harmless and the not-so-harmless changes determines whether the system administrator or security professional is managing a secure, efficient network or a compromised network which might be funneling credit card numbers out to phishing gangs or storing massive amounts of pornography creating significant liability for that organization. Separating the wheat from the chaff is by no means an easy task. Hence the need for this book. The book is co-authored by Daniel Cid, who is the founder and lead developer of the freely available OSSEC host-based IDS. As such, readers can be certain they are reading the most accurate, timely, and insightful information on OSSEC. * Nominee for Best Book Bejtlich read in 2008! * http://taosecurity.blogspot.com/2008/12/best-book-bejtlich-read-in-2008.html . Ссылка удалена правообладателем ---- The book removed at the request of the copyright holder.
Популярные книги за неделю:
#2
В.Бекетов, К.Харченко. Измерения и испытания при конструировании и регулировке радиолюбительских антенн (djvu)
4.82 Mb
#4
Самодельные детали для сельского радиоприемникаАвторы: З.Б.Гинзбург, Ф.И.Тарасов.Категория: радиоэлектроника
1.40 Mb
#7
Система упражнений по развитию способностей человека (Практическое пособие)Петров Аркадий НаумовичКатегория: Путь к себе
818 Kb
Только что пользователи скачали эти книги:
#3
Адаптация и обучение в автоматических системахЦыпкин Я.З.Категория: Mathematics, Optimization and control
4.70 Mb
#4
Энциклопедия безопасности. Электронное справочное пособиеГромов В.И., Васильев Г.А.Категория: Охрана труда БЖД экология
1.78 Mb
#6
Система упражнений по развитию способностей человека (Практическое пособие)Петров Аркадий НаумовичКатегория: Путь к себе
818 Kb
#7
Фракталы и хаос в динамических системах. Основы теорииКронвер Р.Категория: 527462-Теория хаоса и иже с ней, Haos
14.74 Mb
|
|