Securing IM and P2P Applications for the Enterprise

Description

Instant Messaging (IM) and Peer-to-Peer (P2P) applications are taking over the workplace as P2P transfers now account for 70% of all Internet traffic and more than 50% of corporate workstations are running an IM application. IT professionals face the challenge of managing and securing these applications, which last year were the point of entry into corporate networks for 40% of all computer viruses and worms. This book is for system administrators and security professionals who need to bring now ubiquitous IM, P2P, and IRC applications under their control. It provides specific protection strategies for the network and application layers by identifying and blocking malicious traffic.

• Grasp Instant Messaging Security Issues
  See how IM bypasses any gateway antivirus scanning that would normally protect a network from infection.
• Bypass AIM Restrictions
  Learn what to do about free AIM proxies that are available throughout the Internet.
• Understand the Yahoo! Messenger Architecture
  Find out why its ability to use any available port to authenticate and begin communication makes it so difficult to block.
• Manage Skype Vulnerabilities
  Do you know the differences between a standard node, a super node, and a Skype server?
• The Biggest P2P You’ve Never Heard Of
  Meet the network behind Kazaa, Morpheus, Grokster, and iMesh.
• Explore the World of Internet Relay Chat (IRC)
  Find out what makes IRC so attractive to cyber-criminals and predators.
• DDoS Botnets Turned Bot-Armies
  Bot Masters make certain each infected machine will connect silently to the IRC server at the point of infection and on startup.
• Methods for Botnet Control
  Understanding these methods will help you locate and remove such threats before they grow and become a problem.

Table of Contents

Part I Instant Messaging ApplicationsChapter 1 Introduction to Instant Messaging
Chapter 2 AOL Instant Messenger (AIM)
Chapter 3 Yahoo! Messenger
Chapter 4 MSN Messenger
Chapter 5 ICQ
Chapter 6 Trillian, Google Talk, and Web-based Clients
Chapter 7 Skype

Part II Peer-to-Peer Networks

Chapter 8 Introduction to P2P
Chapter 9 Gnutella Architecture
Chapter 10 eDonkey and eMule
Chapter 11 BitTorrent
Chapter 12 FastTrack

Part III Internet Relay Chat Networks

Chapter 13 Internet Relay Chat—Major Players of IRC
Chapter 14 IRC Networks and Security
Chapter 15 Global IRC Security
Chapter 16 Common IRC Clients by OS

About the Authors

Paul Piccard serves as Director of Threat Research for Webroot, where he focuses on research and development, and providing early identification, warning, and response services to Webroot customers. Prior to joining Webroot, Piccard was manager of Internet Security Systems’ Global Threat Operations Center. This state of the art detection and analysis facility maintains a constant global view of Internet threats and is responsible for tracking and analyzing hackers, malicious Internet activity, and global Internet security threats on four continents.

Marcus H. Sachs (Technical Editor), P.E., is SRI International’s Deputy Director of the Department of Homeland Security’s Cyber Security Research and Development Center, a portfolio of several dozen cyber security R&D projects managed by DHS and supported by SRI. Marc also volunteers as the director of the SANS Internet Storm Center and is a cyberspace security researcher, writer, and instructor for the SANS Institute. After retiring from the US Army in 2001 following a 20-year career as a Corps of Engineers officer, Marc was appointed by President George W. Bush to serve on the staff of the National Security Council as part of the White House Office of Cyberspace Security from 2002 to 2003. Marc has contributed to Syngress titles IT Ethics Handbook, Cyber Adversary Characterization, and Zero-Day Exploits.
Marc holds a Master of Science in Computer Science with a concentration in Information Security from James Madison University, a Master of Science in Science and Technology Commercialization from the University of Texas, and a Bachelor of Civil Engineering from the Georgia Institute of Technology. He is a graduate of the Army’s Command and General Staff College, the Army Engineer School, the Army Signal School, and the Army’s Airborne and Air Assault schools. Marc holds an advanced class amateur radio license, is a registered Professional Engineer in the Commonwealth of Virginia, and is a life member of the Signal Corps Regimental Association and the Armed Forces Communications and Electronics Association. A native of Tallahassee, Florida, he currently lives in Virginia with his wife and children.

Brian Baskin [MCP, CTT+] is a researcher and developer for Computer Sciences Corporation, on contract to the Defense Cyber Crime Center’s (DC3) Computer Investigations Training Program (DCITP). Here, he researches, develops, and instructs computer forensic courses for members of the military and law enforcement. Brian currently specializes in Linux/Solaris intrusion investigations, as well as investigations of various network applications. He has designed and implemented networks to be used in scenarios, and has also exercised penetration testing procedures.
Brian has been instructing courses for six years, including presentations at the annual DoD Cyber Crime Conference. He is an avid amateur programmer in many languages, beginning when his father purchased QuickC for him when he was 11, and has geared much of his life around the implementations of technology. He has also been an avid Linux user since 1994, and enjoys a relaxing terminal screen whenever he can. He has worked in networking environment for over 10 years from small Novell networks to large, mission-critical, Windows-based networks

George Spillman is a Director for Acadine Informatics, president of the computer consulting group PixelBlip Digital Services, and one of the principals behind ToorCon, the highly respected computer security conference that draws in and educates some of the best hackers and security experts from around the globe. As such, he travels well in hacker circles and takes great pleasure in poking and prodding the deep dark underbelly of the Internet. George is a frequent guest on television news programs for his expertise and his ability to communicate complex computer security and identity theft issues to non-technical audiences. His consulting clients include representatives from both the Fortune 100 and the Fortune 100,000,000. In the past he has been lured away from consulting by large wheelbarrows of stock options to serve as Director of IT for an international pharmaceutical R&D company, and would most likely do that again if the wheelbarrow was included to sweeten the deal. George was a reviewer for the Syngress book, Phishing Exposed, ISBN: 159749030X).

Craig Edwards is the administrator for the ChatSpike IRC network and creator of the IRC security software IRC Defender (ircdefender.org). IRC Defender is a security service that keeps malicious users and programs out of IRC networks and is actively maintained to deal with current threats. Craig is also the creator of the WinBot IRC bot (winbot.co.uk), an automated IRC client which is designed to keep control of IRC channels, and has been instrumental in its design, maintenance, and support and web site for over five years. During this time it has been published on magazine cover CDs in the United Kingdom.

http://rapidshare.de/files/14353919/Syngress.Securing.IM.and.P2P.Applications.for.the.Enterprise.Nov.2005.eBook-BBL.rar.html

pass: ebooksatkoobe

Disclaimer:
Contents of this page are indexed from the Internet. All actions are under your responsability. Email us to report illegal contents or external links and we'll remove them immediately.

Please check the description for download links if any or do a search to find alternative books.

Can't Download?
Please search mirrors if you can't find download links for "Securing IM and P2P Applications for the Enterprise" in "Description" and someone else may update the links. Check the comments when back to find any updates.

Search Mirrors
Maybe some mirror pages will be helpful, search this book at top of this page or click here to find more info.

1. Ebooks list page : 383
2. Securing IM and P2P Applications for the Enterprise
3. Securing.IM.and.P2P.Applications.for.the.Enterprise
4. Securing IM and P2P Applications for the Enterprise Nov 2005
5. Securing IM and P2P Applications for the Enterprise
6. Securing Citrix XenApp Server in the Enterprise
7. VMware ESX Server in the Enterprise: Planning and Securing Virtualization Servers
8. VMware ESX Server in the Enterprise: Planning and Securing Virtualization Servers
9. VMware ESX Server in the Enterprise: Planning and Securing Virtualization Servers
10. Effective Use of Microsoft Enterprise Library: Building Blocks for Creating Enterprise Applications
11. Effective Use of Microsoft Enterprise Library: Building Blocks for Creating Enterprise Applications and Services
12. Securing PHP Web Applications
13. Securing PHP Web Applications
14. Effective Use of Microsoft Enterprise Library: Building Blocks for Creating Enterprise Applications and Services (Repost)
15. Securing Biometrics Applications
16. >>> OReilly - Securing Ajax Applications