Saturday, February 4, 2012

Chapter 5

This chapter dealt with physically securing a facility where a computer network was set up, securing an operating system and its network and applications. The first part covered various types of locks, RFID key passes, surveillance and other countermeasures used to defeat physical access to hardware on a site. The second part dealt with how to harden an operating system, including developing a security policy, closing up holes, like guest accounts, in the OS itself and running normal security applications such as anti-malware and using spam filters, firewalls and the like. It also talked about monitoring various logs of system performance to spot abnormalities which could indicate an attack. Application security was next, and covered not only injection attacks (again) but also examined fuzzing, or putting in intentionally wrong information to check for exploitable flaws in programs.

Personally, I found this chapter odd. It almost seemed like the authors had a hodgepodge of information they wanted to cover, but did not want to write another chapter to do it. Much of the information here looks to belong in other areas of the book, and other parts of the chapter were nothing but a re-hash of information from former chapters.

No comments:

Post a Comment