Review of Firewall Policies and VPN Configurations [ILLUSTRATED] (Paperback)

I am sure that, I wouldn't have bought this book if someone had reviewed this book before me.
Briefly, if you are looking for a deep information on several brand firewall's configuration and especially onVPN subject, belive, this book is not for you.
The first half of the book is full of with just generic information which almost avery avarage IT people have. That is, whithin a few minutes you pass the first two part.
Than you decide your point on this book while reading the VPN part. No detail on the issues, no real time application samples and most important one completely wrong several figures.
For example, on page 247 figure 5.20 says "MPLS Packet Structure", but you see screen snapshot of Putty telnet application's configuration window. I honestly couldn't understand if they are joking or have another purpose.

My only advice, always prefer the books you can look inside it.

Product Description
A firewall is as good as its policies and the security of its VPN connections. The latest generation of firewalls offers a dizzying array of powerful options; they key to success is to write concise policies that provide the appropriate level of access while maximizing security.

This book covers the leading firewall products: Cisco PIX, Check Point NGX, Microsoft ISA Server, Juniper's NetScreen Firewall, and SonicWall. It describes in plain English what features can be controlled by a policy, and walks the reader through the steps for writing the policy to fit the objective. Because of their vulnerability and their complexity, VPN policies are covered in more depth with numerous tips for troubleshooting remote connections.

· The only book that focuses on creating policies that apply to multiple products.
· Included is a bonus chapter on using Ethereal, the most popular protocol analyzer, to monitor and analyze network traffic.
· Shows what features can be controlled by a policy, and walks you through the steps for writing the policy to fit the objective at hand

About the Author
Dale Liu, (MCSE Security, CISSP, MCT, IAM/IEM, CCNA) has been working in the computer and networking field for over 20 years. Dale's experience ranges from programming to networking to information security and project management. He currently teaches networking, routing and security classes, while working in the field performing security audits and infrastructure design for medium to large companies.

Click Here to see more reviews about: Firewall Policies and VPN Configurations [ILLUSTRATED] (Paperback)

Review of Scene of the Cybercrime: Computer Forensics Handbook [ILLUSTRATED] (Paperback)

I'm currently in the middle of the book Scene Of The Cybercrime by Debra Littlejohn Shinder, but I decided to do a review right now.This is a really good book on a number of levels...

Most books on computer and network security are written for the techie trying to secure their assets from outside attack.Obviously, there's a huge need for that information.But it seems that there is virtually nothing written from the law enforcement perspective on computer security.That's a major problem in two ways...For one, there are too few law enforcement personnel that understand exactly what cybercrime is and how it can be detected, fought, and prosecuted.That's probably the audience that would benefit most from this book.Second, most technical personnel don't know what to do in order to successfully build a case and prosecute an attacker once an intrusion has occurred.That's the other audience that will gain the most from reading Shinder's work.

The book includes the following chapters:Facing the Cybercrime Problem Head On; Reviewing the History of Cybercrime; Understanding the People on the Scene; Understanding Computer Basics; Understanding Network Basics; Understanding Network Intrusions and Attacks; Understanding Cybercrime Prevention; Implementing System Security; Implementing Cybercrime Detection Techniques; Collecting and Preserving Digital Evidence; Building the Cybercrime Case

The hardcore network security administrator will probably already know most of the information in the "Understanding..." chapters.But unless they are adept or experienced in forensic analysis, the last three chapters will be crucial information for them.Without the knowledge of how to preserve evidence, there's a good chance that you'll never have the satisfaction of seeing your attacker prosecuted.Higher level managers of a corporate security department will find all of this information useful, as they may not be as hands-on as the administrators and may not understand what threats and risks are present in today's environment.

From the law enforcement perspective, it's all good.Fighting cybercrime is so different than regular law enforcement.This is the perfect volume to give the budding cybercop all the information they need to get up to speed with how crime is conducted electronically.I would recommend that this book be required reading for law enforcement and prosecution personnel.

The book is well written with plenty of real-life examples of criminal activities and legal scenarios.It's one of the most engrossing technical reads I've had in awhile.A definite recommended read...

Product Description
"Cybercrime and cyber-terrorism represent a serious challenge to society as a whole." - Hans Christian Krüger, Deputy Secretary General of the Council of Europe
Crime has been with us as long as laws have existed, and modern technology has given us a new type of criminal activity: cybercrime. Computer and network related crime is a problem that spans the globe, and unites those in two disparate fields: law enforcement and information technology.

This book will help both IT pros and law enforcement specialists understand both their own roles and those of the other, and show why that understanding and an organized, cooperative effort is necessary to win the fight against this new type of crime.

62% of US companies reported computer-related security breaches resulting in damages of $124 million dollars. This data is an indication of the massive need for Cybercrime training within the IT and law enforcement communities.
The only book that covers Cybercrime from forensic investigation through prosecution.
Cybercrime is one of the battlefields in the war against terror.

About the Author
Debra Littlejohn Shinder is a former Police Sergeant and Police Academy Instructor, turned IT professional. She and her husband, Dr. Thomas W. Shinder, have provided network consulting services to businesses and municipalities, conducted training at colleges and technical training centers, and spoken at seminars around the country. Deb specializes in networking and security, and she and Tom have written numerous books, including the best selling Configuring ISA Server 2000 (Syngress Publishing, ISBN: 1-928994-29-6), and Deb is the sole author of Computer Networking Essentials. Deb also is the author of over 100 articles for print publications and electronic magazines such as TechProGuild, CNET, 8Wire, and Cramsession.com. Deb is a member of the editorial board of the Journal of Police Crisis Negotiations and the advisory board of the Eastfield College Criminal Justice Training Center. Ed Tittel (Technical Editor) is a 20-year veteran of the computing industry who's worked as a programmer, systems engineer, technical manager, writer, consultant, and trainer. A contributor to over 100 computer books, Ed created the Exam Cram series of certification guides. Ed also writes for numerous Web sites and magazines on certification topics including InformIT.

Click Here to see more reviews about: Scene of the Cybercrime: Computer Forensics Handbook [ILLUSTRATED] (Paperback)