📄 book-index.html
字号:
<HTML>
<HEAD>
<META name=vscategory content="Network Services Security">
<META name=vsisbn content="0471290009">
<META name=vstitle content="Intrusion Detection: Network Security beyond the Firewall">
<META name=vsauthor content="Terry Escamilla">
<META name=searchdescription content="The first ever hands-on guidebook on intrusion detection.<P>The new intrusion detection products watch your network full-time, looking out for suspicious behavior. This how-to book provides clear steps for hardening your network against attacks and leaks. The author teaches you how to distinguish what each product can and can't do to fill your network's particular gaps.<P>Companion Web site features standards updates, industry news, and product information.">
<META name=vsimprint content="Wiley Computer Publishing ">
<META name=vspublisher content="John Wiley & Sons, Inc.">
<META name=vspubdate content="11/1/98">
<TITLE>Intrusion Detection: Network Security Beyond the Firewall:Index</TITLE>
<!-- BEGIN HEADER -->
<META NAME="ROBOTS" CONTENT="NOINDEX, NOFOLLOW">
<SCRIPT>
<!--
function displayWindow(url, width, height) {
var Win = new Object() ;
}
//-->
</SCRIPT>
</HEAD>
<body bgcolor="ffffff" link="#006666" alink="#006666" vlink="#006666">
<table width="640" border="0" cellpadding="0" cellspacing="0">
<tr valign="top">
<td>
<!-- Begin Ads ITKBAN.BOOKS //-->
<CENTER><!------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------>
<BR><A HREF="/adclick.html/CID=0000034933d6f71200000000/site=itknowledge/area=itk.books/aamsz=468x60" TARGET=_top>
Click Here!
</A></CENTER><BR>
<!-- ITKBAN.BOOKS End Ads //--></td>
<td>
<!-- Begin Ads ITKBAN //-->
<CENTER><!---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------->
<BR><A HREF="/adclick.html/CID=00000ac52954e8a400000000/site=itknowledge/area=itk/aamsz=160x60/position=top" TARGET=_top>
</A></CENTER><BR>
<!-- ITKBAN End Ads //--></td>
</tr>
<tr><td height="1" colspan="2" bgcolor="#CCCCCC"><img src="/images/white.gif" border=0 alt=""></td></tr>
</TABLE>
<!-- END HEADER -->
<!-- BEGIN SUB HEADER -->
<table bgcolor="#FFFFFF" cellpadding="0" cellspacing="0" border="0" width="100%">
<!-- ITK LOGO Banner -->
<tr>
<td align="left" valign="top" bgcolor="#FFFFFF"><script>
function GetCookie (name)
{
var arg = name + "=";
var alen = arg.length;
var clen = document.cookie.length;
var i = 0;
while (i < clen)
{
var j = i + alen;
if (document.cookie.substring(i, j) == arg) {
var end = document.cookie.indexOf (";", j);
if (end == -1)
end = document.cookie.length;
return unescape(document.cookie.substring(j, end));
}
i = document.cookie.indexOf(" ", i) + 1;
if (i == 0) break;
}
return null;
}
var m1='<IMG SRC="';
var m2='/images/itk-logo.gif';
var m3='" VSPACE="10" WIDTH=434 HEIGHT=58 ALT="ITKnowledge" border="0">';
var gifstr=GetCookie("UsrType");
if((gifstr!=0 ) && (gifstr!=null)) { m2=gifstr; }
document.write(m1+m2+m3);
</script>
</td>
</tr>
<!-- END of ITK LOGO Banner -->
<!-- ITK TOPNAV -->
<tr>
<td align="left" valign="top" nowrap>
<a href="/"><img src="/images/home1.gif" width=38 height=37 alt="home" border="0"></a> <a href="/pick-account.html"><img src="/images/accountinfo.gif" width=70 height=37 alt="account info" border="0"></a> <a href="/PSUser/usrreg.htm?AdminAction=InitAdd&Locale=en&URI=/"><img src="/images/subscribe2.gif" width=56 height=37 alt="subscribe" border="0" hspace="6"></a> <a href="/PSUser/psuserauth.htm?cmd=login&URI=/"><img src="/images/login1.gif" width=33 height=37 alt="login" hspace="5" border="0"></a> <a href="/search/"><img src="/images/search1.gif" width=43 height=37 alt="search" border="0" hspace="10"></a> <a href="/faq/faq.html"><img src="/images/faqs1.gif" width=40 height=37 alt="FAQ/help" border="0" hspace="0"></a> <a href="/sitemap.html"><img src="/images/sitemap1.gif" width=46 height=37 alt="site map" border="0" hspace="2"></a> <a href="/contactus.html"><img src="/images/contact1.gif" width=61 height=37 alt="contact us" border="0" hspace="4"></a><br>
<img src="/images/white.gif" width="1" height="5" alt="" border="0">
</td>
</tr>
</table>
<!-- END of ITK TOPNAV -->
<!-- begin of ITK left NAV -->
<!-- BEGIN LEFT NAV -->
<table width=99% border="0" cellpadding="2" cellspacing="0">
<tr>
<td bgcolor="#ffffff" width=120 valign="top" rowspan=8>
<form name="Search" method="GET" action="http://search.earthweb.com/search97/search_redir.cgi">
<INPUT TYPE="hidden" NAME="Action" VALUE="Search">
<INPUT TYPE="hidden" NAME="SearchPage" VALUE="http://search.earthweb.com/search97/samples/forms/srchdemo.htm">
<INPUT TYPE="hidden" NAME="Collection" VALUE="ITK">
<INPUT TYPE="hidden" NAME="ViewTemplate" VALUE="view.hts">
<img src="/images/search5.gif" width=115 height=27 alt="" border="0"><br>
<img src="/images/white.gif" width="1" height="5" alt="" border="0"><br>
<table width="116" height="135" bgcolor="#e0e0e0" border="1" bordercolor="#006666" cellpadding="3" cellspacing="0">
<tr>
<td width="116">
<input type="text" name="metaqueryText" value="" size="8"> <input type="submit" name="submitbutton" value="Go!">
<INPUT type="hidden" NAME="section_on" VALUE="on">
<font face="Arial,helvetica" size="1">
<SELECT NAME="metatags" style="font-size: 10; font-family: sans-serif;" size="1">
<option value="keyword" SELECTED>Keyword
<option value="vstitle">Title
<option value="vsauthor">Author
<option value="vsisbn">ISBN
<option value="vspublisher">Publisher
<option value="vsimprint">Imprint
</SELECT></font><br>
<input type="radio" name="ResultTemplate" value="itk-brief.hts" checked style="background-color: #e0e0e0;"><font face="arial, helvetica" color="#006666" size="1">Brief</font>
<input type="radio" name="ResultTemplate" value="itk-full.hts" style="background-color: #e0e0e0;"><font face="arial, helvetica" color="#006666" size="1">Full</font><br>
<font face="arial, helvetica" size="1">
<img src="/images/bullet.gif" width=5 height=5 hspace="5" alt="" border="0"> <a href="/search/"><font color="#006666">Advanced</font></a><br> <a href="/search/"><font color="#006666">Search</font></a><br>
<img src="/images/bullet.gif" width=5 height=5 hspace="5" alt="" border="0"> <a href="/search/search-tips.html"><font color="#006666">Search Tips</font></a>
</font>
</td>
</tr>
</table>
</form>
<!-- BROWSE BY TOPIC -->
<form action="" name="catlist">
<img src="/images/browse5.gif" width=115 height=34 alt="" border="0">
<table width="120" height="32" border="1" cellspacing="0" cellpadding="3" bordercolor="#006666" bgcolor="#e0e0e0">
<tr>
<td width="117" align="center">
<font face="Arial,helvetica" size="1">
<SELECT NAME="cat" onChange='top.location.href=this.options[selectedIndex].value;' style="font-size: 10; font-family: sans-serif;">
<option value="" selected>Please Select
<option value="">-----------
<option value="/reference/dir.components.html">Components
<option value="/reference/dir.contentmanagement.html">Content Mgt
<option value="/reference/dir.certification1.html">Certification
<option value="/reference/dir.databases.html">Databases
<option value="/reference/dir.enterprisemanagement1.html">Enterprise Mgt
<option value="/reference/dir.funandgames1.html">Fun/Games
<option value="/reference/dir.groupwareandcollaboration1.html">Groupware
<option value="/reference/dir.hardware1.html">Hardware
<option value="/reference/dir.intranetandextranetdevelopment1.html">Intranet Dev
<option value="/reference/dir.middleware.html">Middleware
<option value="/reference/dir.multimediaandgraphicdesign1.html">Multimedia
<option value="/reference/dir.networkservices1.html">Networks
<option value="/reference/dir.operatingsystems.html">OS
<option value="/reference/dir.productivityapplications1.html">Prod Apps
<option value="/reference/dir.programminglanguages.html">Programming
<option value="/reference/dir.security1.html">Security
<!-- <option value="/reference/dir.ewtraining1.html">Training Guides -->
<option value="/reference/dir.userinterfaces.html">UI
<option value="/reference/dir.webservices.html">Web Services
<option value="/reference/dir.webmasterskills1.html">Webmaster
<option value="/reference/dir.y2k1.html">Y2K
<option value="">-----------
<option value="/reference/whatsnew.html">New Titles
<option value="">-----------
<option value="/reference/dir.archive1.html">Free Archive
</SELECT>
</font></td>
</tr>
</table>
</form>
<!-- LEFT NAV SEARCH END -->
</td>
<!-- PUB PARTNERS END -->
<!-- END LEFT NAV -->
<td rowspan="8" align="right" valign="top"><img src="/images/iswbls.gif" width=1 height=400 alt="" border="0"></td>
<td><img src="/images/white.gif" width="5" height="1" alt="" border="0"></td>
<!-- end of ITK left NAV -->
<!-- begin main content -->
<td width="100%" valign="top" align="left">
<!-- END SUB HEADER -->
<!--Begin Content Column -->
<FONT FACE="Arial,Helvetica" SIZE="-1">
To access the contents, click the chapter and section titles.
</FONT>
<P>
<B>Intrusion Detection: Network Security beyond the Firewall</B>
<FONT SIZE="-1">
<BR>
<I>(Publisher: John Wiley & Sons, Inc.)</I>
<BR>
Author(s): Terry Escamilla
<BR>
ISBN: 0471290009
<BR>
Publication Date: 11/01/98
</FONT>
<P>
<form name="Search" method="GET" action="http://search.earthweb.com/search97/search_redir.cgi">
<INPUT TYPE="hidden" NAME="Action" VALUE="Search">
<INPUT TYPE="hidden" NAME="SearchPage" VALUE="http://search.earthweb.com/search97/samples/forms/srchdemo.htm">
<INPUT TYPE="hidden" NAME="Collection" VALUE="ITK">
<INPUT TYPE="hidden" NAME="ResultTemplate" VALUE="itk-full.hts">
<INPUT TYPE="hidden" NAME="ViewTemplate" VALUE="view.hts">
<font face="arial, helvetica" size=2><b>Search this book:</b></font><br>
<INPUT NAME="queryText" size=50 VALUE=""> <input type="submit" name="submitbutton" value="Go!">
<INPUT type=hidden NAME="section_on" VALUE="on">
<INPUT type=hidden NAME="section" VALUE="http://www.itknowledge.com/reference/standard/0471290009/">
</form>
<!-- Empty Reference Subhead -->
<!--ISBN=0471290009//-->
<!--TITLE=Intrusion Detection: Network Security Beyond the Firewall//-->
<!--AUTHOR=Terry Escamilla//-->
<!--PUBLISHER=John Wiley & Sons, Inc.//-->
<!--IMPRINT=Wiley Computer Publishing//-->
<!--CHAPTER=0//-->
<!--PAGES=333-348//-->
<!--UNASSIGNED1//-->
<!--UNASSIGNED2//-->
<CENTER>
<TABLE BORDER>
<TR>
<TD><A HREF="ewtoc.html">Table of Contents</A></TD>
</TR>
</TABLE>
</CENTER>
<P><BR></P>
<H2><A NAME="Heading1"></A><FONT COLOR="#000077">Index</FONT></H2>
<P><FONT SIZE="+1"><B>A</B></FONT></P>
<DL>
<DD>abstract syntax notation 1 (ASN 1), Kerberos, 66
<DD>access class labels, 18–20
<DD>access control, 3–4, 9–14, 18–20, 22, 163–164, 314, 315
<DL>
<DD>access class labels, 18–20, 18
<DD>access control entries (ACEs), 86
<DD>access control lists (ACLs), 86
<DD>access type, 84
<DD>administering access control, 85–86
<DD>application level access control, 128
<DD>attacks to access control, 102–104
<DD>authorization, 10–12
<DD>buffer overflow attacks, 83, 104, 164
<DD>bugs, 81, 82–83
<DD>category labels, 18–20
<DD>common desktop environment (CDE), 85–86
<DD>configuration problems, 81, 82
<DD>discretionary access control, 18
<DD>explicit access control, 126
<DD>GetAdmin hack, 104
<DD>identification & authentication (I&A), 15
<DD>identifiers, 84
<DD>implicit access control, 126
<DD>improving access control, 104–110
<DD>inter-process communication (IPC), 85
<DD>intrusion detection systems (IDS), 104, 111
<DD>labels, 18–20
<DD>mandatory access control, 18–20
<DD>network security, 126–128
<DD>objects, 84
<DD>operating system security, 7
<DD>packet filtering, 128
<DD>permissive rules, 103
<DD>privileged programs, 107
<DD>read access, 10
<DD>reference monitors, 164
<DD>role-based models, 110
<DD>root access problems, 103
<DD>SeOS (Memco) to improve access control, 104–110
<DD>subjects, 84
<DD>Tivoli Management Environment (TME), 110
<DD>tracing path of access, 200–206
<DD>trust, 128
<DD>UNIX security (<I>See</I> <I>also</I> Unix security), 81, 84–85, 87–97
<DD>Windows NT security (<I>See</I> <I>also</I> Windows NT security), 81, 84–85, 97–102, 285–287
<DD>wrapper attacks, 90
<DD>write access, 10
</DL>
<DD>access control entries (ACEs), 86, 98, 283
<DD>access control list (ACL), 86, 98, 283
<DD>access tokens, Windows NT security, 283
<DD>accountability, 163, 321
<DD>ACE/Server (Security Dynamics), 74–77
<DD>activity profiles, 176–178, <B>177</B>
<DD>address resolution protocol (ARP), 139–140
<DD>address-based authentication, 16, 125
<DD>addressing, Internet Protocol (IP), 130, 131
<DD>administering security, 3
<DD>AIX operating system, identification & authentication (I&A), 29–30
<DD>algorithms, cryptographic, 53
<DD>alive addresses, Internet Protocol (IP), 130
<DD>Andrew File System (AFS), Kerberos, 63
<DD><I>Anonymous</I> vulnerability, Windows NT security, 291
<DD>application program interfaces (APIs), SeOS, 107
<DD>application-level security, 125–126, 128, 320–321
<DL>
<DD>intrusion detection systems (IDS), 176
<DD>network security, 149
<DD>transmission control protocol (TCP), 145–146
</DL>
<DD>ARPAnet, 128
<DD>assignment of addresses, Internet Protocol (IP), 130
<DD>assurance level, 6
<DD>asymmetric cryptography, 53
<DD>attack classification, 182–208
<DD>attack signatures, 322
<DD>attribute-value pairs, X.509 digital certificates, 68
<DD>audit ID (AUID), UNIX security, 88, 199–200
<DD>audit logs, 244–245
<DD>audit trails, 198–200
<DD>auditing, 14, 20–21, 175, 244–245, 307–308
<DL>
<DD>audit IDs (AUID), 88, 199–200
<DD>audit trails, 198–200
⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -