Chapter 41. Security Overview

Chapter 41. Security Overview

41.1. Introduction to Security
41.1.1. What is Computer Security?
41.1.2. Security Controls
41.1.3. Conclusion
41.2. Vulnerability Assessment
41.2.1. Thinking Like the Enemy
41.2.2. Defining Assessment and Testing
41.2.3. Evaluating the Tools
41.3. Attackers and Vulnerabilities
41.3.1. A Quick History of Hackers
41.3.2. Threats to Network Security
41.3.3. Threats to Server Security
41.3.4. Threats to Workstation and Home PC Security
41.4. Common Exploits and Attacks
41.5. Security Updates
41.5.1. Updating Packages

Because of the increased reliance on powerful, networked computers to help run businesses and keep track of our personal information, industries have been formed around the practice of network and computer security. Enterprises have solicited the knowledge and skills of security experts to properly audit systems and tailor solutions to fit the operating requirements of the organization. Because most organizations are dynamic in nature, with workers accessing company IT resources locally and remotely, the need for secure computing environments has become more pronounced.

Unfortunately, most organizations (as well as individual users) regard security as an afterthought, a process that is overlooked in favor of increased power, productivity, and budgetary concerns. Proper security implementation is often enacted postmortem — after an unauthorized intrusion has already occurred. Security experts agree that the right measures taken prior to connecting a site to an untrusted network, such as the Internet, is an effective means of thwarting most attempts at intrusion.


[11] Source: http://www.cert.org

[12] Source: http://www.cert.org/stats/

[13] Source: http://www.newsfactor.com/perl/story/16407.html

[14] Source: http://www.sans.org/newlook/resources/errors.html