|
Firewalls & Internet Security 2nd Edition
I. GETTING STARTED.
1. Introduction.
Security Truisms.
Picking a Security Policy.
Host-Based Security.
Perimeter Security.
Strategies for a Secure Network.
The Ethics of Computer Security.
WARNING.
2. A Security Review of Protocols: Lower Layers.
Basic Protocols.
Managing
Addresses and Names.
IP version 6.
Network Address Translators.
Wireless Security.
3. Security Review: The Upper Layers.
Messaging.
Internet Telephony.
RPC-Based Protocols.
File Transfer Protocols.
Remote Login.
Simple Network Management Protocol?SNMP.
The Network Time Protocol.
Information Services.
Proprietary Protocols.
Peer-to-Peer Networking.
The X11 Window System.
The Small Services.
4. The Web: Threat or Menace?
The Web Protocols.
Risks to the Clients.
Risks to the Server.
Web Servers vs. Firewalls.
The Web and Databases.
Parting Thoughts.
II. THE THREATS.
5. Classes of Attacks.
Stealing Passwords.
Social Engineering.
Bugs and Back Doors.
Authentication Failures.
Protocol Failures.
Information Leakage.
Exponential Attacks?Viruses and Worms.
Denial-of-Service Attacks.
Botnets.
Active Attacks.
6. The Hacker?s Workbench, and Other Munitions.
Introduction.
Hacking Goals.
Scanning a Network.
Breaking into the Host.
The Battle for the Host.
Covering Tracks.
Metastasis.
Hacking Tools.
Tiger Teams.
III. SAFER TOOLS AND SERVICES.
7. Authentication.
Remembering Passwords.
Time-Based One-Time Passwords.
Challenge/Response One-Time Passwords.
Lamport?s One-Time Password Algorithm.
Smart Cards.
Biometrics.
RADIUS.
SASL: An Authentication Framework.
Host-to-Host Authentication.
PKI.
8. Using Some Tools and Services.
Inetd?Network Services.
Ssh?Terminal and File Access.
Syslog.
Network Administration Tools.
Chroot?Caging Suspect Software
Jailing the Apache Web Server.
Aftpd?A Simple Anonymous FTP Daemon.
Mail Transfer Agents.
POP3 and IMAP.
Samba: An SMB Implementation.
Taming Named.
Adding SSL Support with Sslwrap.
IV. FIREWALLS AND VPNS.
9. Kinds of Firewalls.
Packet Filters.
Application-Level Filtering.
Circuit-Level Gateways.
Dynamic Packet Filters.
Distributed Firewalls.
What Firewalls Cannot Do.
10. Filtering Services.
Reasonable Services to Filter.
Digging for Worms.
Services We Don?t Like.
Other Services.
Something New.
11. Firewall Engineering.
Rulesets.
Proxies.
Building a Firewall from Scratch.
Firewall Problems.
Testing Firewalls.
12. Tunneling and VPNs.
Tunnels.
Virtual Private Networks (VPNs).
Software vs. Hardware.
V. PROTECTING AN ORGANIZATION.
13. Network Layout.
Intranet Explorations.
Intranet Routing Tricks.
In Host We Trust.
Belt and Suspenders.
Placement Classes.
14. Safe Hosts in a Hostile Environment.
What Do We Mean by Secure ?
Properties of Secure Hosts.
Hardware Configuration.
Field-Stripping a Host.
Loading New Software.
Administering a Secure Host.
Skinny-Dipping: Life Without a Firewall.
15. Intrusion Detection.
Where to Monitor.
Types of IDSs.
Administering an IDS.
IDS Tools.
VI. LESSONS LEARNED.
16. An Evening with Berferd.
Unfriendly Acts.
An Evening with Berferd.
The Day After.
The Jail.
Tracing Berferd.
Berferd Comes Home.
17. The Taking of Clark.
Prelude.
CLARK.
Crude Forensics.
Examining CLARK.
The Password File.
How Did They Get In?
Better Forensics.
Lessons Learned.
18. Secure Communications over Insecure Networks.
The Kerberos Authentication System.
Link-Level Encryption.
Network-Level Encryption.
Application-Level Encryption.
19. Where Do We Go from Here?
IPv6.
DNSsec.
Microsoft and Security.
Internet Ubiquity.
Internet Security.
Conclusion.
VII. APPENDIXES.
A. An Introduction to Cryptography.
Notation.
Secret-Key Cryptography.
Modes of Operation.
Public Key Cryptography.
Exponential Key Exchange.
Digital Signatures.
Secure Hash Functions.
Timestamps.
B. Keeping Up.
Mailing Lists.
Web Resources.
Peoples? Pages.
Vendor Security Sites.
Conferences.
Bibliography.
List of "Bombs" .
List of Acronyms.
|
