David R. Miller, Michael Gregg9780470102589, 0-470-10258-6
Hit the ground running with the street-smart training you’ll find in this practical book. Using a “year in the life” approach, it gives you an inside look at the common responsibilities of security administrators, with key information organized around the actual day-to-day tasks, scenarios, and challenges you’ll face in the field. This valuable training tool is loaded with hands-on, step-by-step exercises covering all phases of a security administrator’s job, including: Designing a secure network environment Creating and implementing standard security policies and practices Identifying insecure systems in current environment Providing training to on-site and remote users
An invaluable study tool
This no-nonsense book also covers the common tasks that CompTIA expects all of its Security+ candidates to know how to perform. So whether you’re preparing for certification or seeking practical skills to break into the field, you’ll find the instruction you need, including: Performing an initial risk assessment Installing, updating, and running anti-virus Encrypting files and securing e-mail Creating new user accounts Deploying IPSec
The Street Smarts series is designed to help current or aspiring IT professionals put their certification to work for them. Full of practical, real world scenarios, each book features actual tasks from the field and then offers step-by-step exercises that teach the skills necessary to complete those tasks. And because the exercises are based upon exam objectives from leading technology certifications, each Street Smarts book can be used as a lab manual for certification prep.
Table of contents :
Security Administrator Street Smarts: A Real World Guide to CompTIA Security+ Skills……Page 1
Acknowledgments……Page 6
About the Authors……Page 8
Contents at a Glance……Page 10
Contents……Page 12
What Is Security+ Certification?……Page 20
How This Book Is Organized……Page 21
The Security+ Exam Objectives……Page 23
Phase 1: The Grunt Work of Security……Page 34
Task 1.1: Performing an Initial Risk Assessment……Page 35
Task 1.2: Determining Which Security Policy Is Most Important……Page 41
Task 1.3: Establishing a User Awareness Program……Page 46
Task 1.4: Reviewing a Physical Security Checklist……Page 49
Task 1.5: Understanding the Value of Documents……Page 52
Phase 2: Hardening Systems……Page 56
Task 2.1: Managing Services……Page 57
Task 2.2: Managing Ports……Page 72
Task 2.3: Patching the Operating System……Page 84
Task 2.4: Security Templates……Page 100
Task 2.5: Securing Autoruns……Page 110
Phase 3: Protecting Against Malware……Page 122
Task 3.1: Installing, Updating, and Running Antivirus Software……Page 123
Task 3.2: Using a Rootkit Checker……Page 129
Task 3.3: Using Adware Checker……Page 135
Task 3.4: Using Spyware Checker……Page 139
Phase 4: Secure Storage……Page 144
Task 4.1: The Encrypting File System……Page 145
Task 4.2: EFS Data Recovery……Page 160
Task 4.3: Implementing Syskey……Page 164
Task 4.4: Converting FAT to NTFS……Page 167
Task 4.5: Implementing Disk Fault Tolerance with RAID……Page 178
Task 4.6: Backing Up Data……Page 184
Task 4.7: Restoring Data from a Backup……Page 194
Task 4.8: Securing Shares……Page 200
Phase 5: Managing User Accounts……Page 212
Task 5.1: Creating User Accounts……Page 213
Task 5.2: Implementing the Password Policy……Page 220
Task 5.3: Auditing Logons……Page 225
Task 5.4: Securing the Default User Accounts……Page 233
Task 5.5: Implementing a Deny Group……Page 241
Phase 6: Network Security……Page 248
Task 6.1: Deploying IPSec……Page 250
Task 6.2: Configuring the VPN Server……Page 254
Task 6.3: Configuring the VPN Client……Page 261
Task 6.4: Implementing Secure Remote Administration……Page 266
Task 6.5: Secure Administration Using Run As……Page 274
Task 6.6: Configuring a Packet Filter……Page 280
Task 6.7: Implementing 802.11 Wireless Security……Page 285
Phase 7: Securing Internet Activity……Page 298
Task 7.1: Configuring Internet Access……Page 299
Task 7.2: Using Internet Explorer Security Zones……Page 303
Task 7.3: Configuring IE for Secure Use of Cookies……Page 307
Task 7.4: Using Internet Connection Sharing……Page 309
Task 7.5: Securing E-mail……Page 314
Task 7.6: Spam Management……Page 319
Task 7.7: Installing and Using a Digital Certificate……Page 323
Task 7.8: Certificate Backup and Management……Page 327
Task 7.9: Performing Secure File Exchange……Page 331
Task 7.10: Validating Downloads and Checking the Hash……Page 336
Phase 8: Security Testing……Page 340
Task 8.1: Penetration Testing with Nessus……Page 341
Task 8.2: Penetration Testing with Retina……Page 347
Task 8.3: Performing Assessments with Microsoft Baseline Security Analyzer……Page 353
Task 8.4: Performing Security Assessments with HFNetChk……Page 356
Task 8.5: Performing Internet Vulnerability Profiling……Page 359
Phase 9: Investigating Incidents……Page 366
Task 9.1: Configuring an Audit Policy for Object Access……Page 368
Task 9.2: Reviewing the Audit Logs……Page 378
Task 9.3: Forcing a Memory Dump……Page 387
Task 9.4: Capturing Packets with the Packet Analyzer: Ethereal……Page 395
Task 9.5: Recovering Previous Versions of Files……Page 405
Phase 10: Security Troubleshooting……Page 422
Task 10.1: Booting into Safe Mode……Page 424
Task 10.2: Implementing Last Known Good Configuration……Page 428
Task 10.3: Using System Restore……Page 431
Task 10.4: Sanitizing Media……Page 439
Index……Page 444
Reviews
There are no reviews yet.