| Bestsellers | | • | Practical Unix & Internet Security, 3rd Edition | | • | UNIX and Linux Forensic Analysis DVD Toolkit | | • | Hack Attacks Revealed: A Complete Reference for UNIX, Windows, and Linux with Custom Security Toolkit, Second Edition | | • | UNIX Backup and Recovery | | • | HackNotes(tm) Linux and Unix Security Portable Reference | | • | UNIX, Solaris and Linux: A Practical Security Cookbook: Securing UNIX Operating System without Third-Party Applications | | • | Special Ops: Host and Network Security for Microsoft, UNIX, and Oracle | | • | Practical Unix and Internet Security, 2nd Edition | | • | Hack Attacks Denied: A Complete Guide to Network Lockdown for UNIX, Windows, and Linux, Second Edition | | • | Unix System Security: How to Protect Your Data and Prevent Intruders |
|
|
|
|
Auditing and Security: AS/400, NT, UNIX, Networks, and Disaster Recovery Plans | 
 enlarge | Author: Yusufali F. Musaji
Publisher: Wiley
Category: Book
List Price: $140.00
Buy New: $39.95
You Save: $100.05 (71%)
New (11) Used (11) from $25.00
Avg. Customer Rating:  1 reviews
Sales Rank: 1773098
Media: Hardcover
Edition: 1
Number Of Items: 1
Pages: 552
Shipping Weight (lbs): 2.8
Dimensions (in): 10.2 x 7.3 x 1.3
ISBN: 0471383716
Dewey Decimal Number: 005.8
EAN: 9780471383710
ASIN: 0471383716
Publication Date: February 21, 2001
Availability: Usually ships in 1-2 business days
Shipping: Expedited shipping available
Condition: Brand new book - slight shelf wear only! Quick response.
|
| Editorial Reviews:
Product Description
A complete and definitive guide to auditing the security of IT systems for managers, CIOs, controllers, and auditors
This up-to-date resource provides all the tools you need to perform practical security audits on the entire spectrum of a company's IT platforms-from the mainframe to the individual PC-as well as the networks that connect them to each other and to the global marketplace. Auditing and Security: AS/400, NT, Unix, Networks, and Disaster Recovery Plans is the first book on IT security written specifically for the auditor, detailing what controls are necessary to ensure a secure system regardless of the specific hardware, software, or architecture a company runs. The author uses helpful checklists and diagrams and a practical, rather than theoretical, method to understanding and auditing a company's IT security systems and their requirements. This comprehensive volume covers the full range of issues relating to security audits, including:
* Hardware and software
* Operating systems
* Network connections
* The cooperation of logical and physical security systems
* Disaster recovery planning
|
| Customer Reviews:
Not a good source for recent AS/400 info April 16, 2003
3 out of 4 found this review helpful
Because the book was published in 2001, and it used the AS/400 name in it's title, I expected it to be a good source on recent developments in security on the AS/400 (AKA the IBM iSeries). I am dissapointed. While the information that is included in the book seems generally accurate (I have a few quibbles in areas like QSECURITY, Adopted Authority, CHGSYSLIBL, and CRTAUT to name a few), the big problem is that there are huge chunks of current technologies that are not even addressed in this audit standard. Some examples include, the entire IFS (Integrated File System), Operations Navigator, NetServer and other network servers like SMTP, HTTP, FTP, etc. No reference to exit programs beyond the ancient PCSACC and DDMACC network attirbutes, spotty acknowledgement of System Values added after V3R1 (1995?) and a general lack of understanding of what the potential security exposures might be in areas that were audited. It's one thing to say that you should "discuss with management" the existance on a workstation entry in subsystem QDSNX, but what is an auditor to discuss if the author hasn't explained the potential security exposure? It may be a rally good book with respect ot the other OS's that it purports to cover, but from an OS/400 perspective it is not current enough to be very effective on modern versions.
|
|
|
Powered by Associate-O-Matic
| |
