Network Security Assessment--New from O'Reilly Media

For Immediate Release
For more information, a review copy, cover art, or interview with the
author, contact:
Mary Rotman (707) 827-7119 or maryr@oreilly.com

Network Security Assessment--New from O'Reilly Media
Identify and Assess Risks in Your Network

Sebastopol, CA--How secure is your network? The best way to find out is to
attack it. "Network Security Assessment" provides you with the tricks and
tools professional security consultants use to identify and assess risks
in Internet-based networks--the same penetration testing model they use to
secure government, military, and commercial networks. With this book, you
can adopt, refine, and reuse this testing model to design and deploy
networks that are hardened and immune from attack.

"Network Security Assessment" demonstrates how a determined attacker
scours Internet-based networks in search of vulnerable components, from
the network to the application level. This new edition is up-to-date on
the latest hacking techniques, but rather than focus on individual issues,
it looks at the bigger picture by grouping and analyzing threats at a high
level. By grouping threats in this way, you learn to create defensive
strategies against entire attack categories, providing protection now and
into the future.

"Network Security Assessment" helps you assess:

- Web services, including Microsoft IIS, Apache, Tomcat, and subsystems
such as OpenSSL, Microsoft FrontPage, and Outlook Web Access (OWA)
- Web application technologies, including ASP, JSP, PHP, middleware, and
backend databases such as MySQL, Oracle, and Microsoft SQL Server 
- Microsoft Windows networking components, including RPC, NetBIOS, and
CIFS services
- SMTP, POP-3, and IMAP email services 
- IP services that provide secure inbound network access, including IPsec,
Microsoft PPTP, and SSL VPNs
- Unix RPC services on Linux, Solaris, IRIX, and other platforms
- Various types of application-level vulnerabilities that hacker tools and
scripts exploit

Assessment is the first step any organization should take to start
managing information risks correctly. With techniques to identify and
assess risks in line with CESG CHECK and NSA IAM government standards,
Network Security Assessment gives you a precise method to do just that.

Chris McNab is a Technical Director of London-based security firm Matta,
which provides technical training and penetration testing services. A
full-time network security analyst for more than nine years, Chris has
worked with many large clients and government organizations throughout the
world to help them improve network security through penetration testing
and security training.

For more information about the book, including table of contents, index,
author bio, and samples, see:
http://www.oreilly.com/catalog/9780596510305/index.html

Network Security Assessment
Chris McNab
ISBN: 0-596-51030-6, $39.99 US
order@oreilly.com
1-800-998-9938
1-707-827-7000
http://www.oreilly.com
1005 Gravenstein Highway North
Sebastopol, CA  95472

About O'Reilly
O'Reilly Media spreads the knowledge of innovators through its books,
online services, magazines, and conferences. Since 1978, O'Reilly Media
has been a chronicler and catalyst of cutting-edge development, homing in
on the technology trends that really matter and spurring their adoption by
amplifying "faint signals" from the alpha geeks who are creating the
future. An active participant in the technology community, the company has
a long history of advocacy, meme-making, and evangelism.

# # #

O'Reilly is a registered trademark of O'Reilly Media, Inc. All other
trademarks are property of their respective owners.