Cisco.Press.Advanced.Host.Intrusion.Prevention.with.CSA.pdf

Advanced Host Intrusion Prevention

with CSA

Chad Sullivan, CCIE No. 6394

Paul Mauvais

Jeff Asher

Cisco Press

800 East 96th Street

Indianapolis, IN 46290 USA

Advanced Host Intrusion Prevention with CSA

Chad Sullivan

Paul Mauvais

Jeff Asher

Cisco Press logo is a trademark of Cisco Systems, Inc.

Published by:

Cisco Press

800 East 96th Street

Indianapolis, IN 46240 USA

or mechanical, including photocopying, recording, or by any information storage and retrieval system, without writ-

ten permission from the publisher, except for the inclusion of brief quotations in a review.

Printed in the United States of America 1 2 3 4 5 6 7 8 9 0

First Printing May 2006

Library of Congress Cataloging-in-Publication Number: 2005931071

ISBN: 1-58705-252-0

Warning and Disclaimer

This book is designed to provide information about the Cisco Security Agent product from Cisco Systems, Inc.

Every effort has been made to make this book as complete and as accurate as possible, but no warranty or ﬁtness is

implied.

The information is provided on an “as is” basis. The authors, Cisco Press, and Cisco Systems, Inc. shall have neither

liability nor responsibility to any person or entity with respect to any loss or damages arising from the information

contained in this book or from the use of the discs or programs that may accompany it.

The opinions expressed in this book belong to the author and are not necessarily those of Cisco Systems, Inc.

Trademark Acknowledgments

All terms mentioned in this book that are known to be trademarks or service marks have been appropriately capital-

ized. Cisco Press or Cisco Systems, Inc. cannot attest to the accuracy of this information. Use of a term in this book

should not be regarded as affecting the validity of any trademark or service mark.

Corporate and Government Sales

Cisco Press offers excellent discounts on this book when ordered in quantity for bulk purchases or special sales. For

more information, please contact:

and

Government Sales

1-800-382-3419

corpsales@pearsontechgroup.com

For sales outside the U.S., please contact:

International Sales

international@pearsoned.com

U.S. Corporate

Feedback Information

At Cisco Press, our goal is to create in-depth technical books of the highest quality and value. Each book is crafted

with care and precision, undergoing rigorous development that involves the unique expertise of members from the

professional technical community.

Readers’ feedback is a natural continuation of this process. If you have any comments regarding how we could

improve the quality of this book, or otherwise alter it to better suit your needs, you can contact us through email at

feedback@ciscopress.com. Please make sure to include the book title and ISBN in your message.

We greatly appreciate your assistance.

Publisher

John Wait

Editor-in-Chief

John Kane

Executive Editor

Brett Bartow

Cisco Representative

Anthony Wolfenden

Cisco Press Program Manager

Jeff Brady

Production Manager

Patrick Kanouse

Development Editor

Betsey Henkels

Project Editor and Copy Editor

Deadline Driven Publishing

Technical Editors

Larry Boggis and Joe Stinson

Editorial Assistant

Raina Han

Book and Cover Designer

Louisa Adair

Compositor

Tolman Creek Design

Indexer

Julie Bess

About the Author

Chad Sullivan

is a founder and senior security consultant with Priveon, Inc., which provides leading security solu-

tions to customer facilities around the world. He is recognized as one of the premier CSA architects and implement-

ers. Prior to joining Priveon, Chad was a security CSE with Cisco Systems, Inc. During that time, Chad wrote the

ﬁrst Cisco Security Agent book and assisted customers with numerous Cisco security product implementations.

Chad holds numerous certiﬁcations including three CCIEs (Security, Routing and Switching, and SNA/IP), a

CISSP, and CHSP. He resides in Atlanta, GA with his wife and children.

Paul S. Mauvais

has been securing and administering varying operating systems ranging from most UNIX ﬂavors

available to VMS to VM/CMS and to Microsoft Windows for 18 years. He currently holds the position of senior

security architect working in the Cisco Corporate Security Programs Organization, where he has worked for the

past six years to secure Cisco and improve Cisco security products. Paul was responsible for leading the deploy-

ment of Cisco Security Agent inside Cisco and speaks on many occasions to customers on endpoint security. He has

worked for a wide range of organizations including Portland State University, Apple Computer, and University of

California LLNL.

Jeff Asher

is a network systems engineer at Internetwork Engineering in Charlotte, NC. Jeff has focused on secu-

rity and storage technologies for the last eight years and has a degree in geography from Virginia Tech.

About the Technical Reviewers

Larry Boggis, CCIE No. 4047 (R&S)

is a senior security consultant with Priveon, Inc., based in RTP, NC. He has

a strong background in host and network security design and implementation. At Priveon, a premier security con-

sulting organization in the U.S., Larry’s focus is on security design, consulting, and research. Larry previously sup-

ported large enterprise security projects throughout the U.S. as a security consulting systems engineer for Cisco

Systems, Inc. for over eight years. Beyond his CCIE certiﬁcation, Larry holds many network and security certiﬁca-

tions including CISSP. He is an avid cyclist and he also enjoys camping, hiking, and ﬂy-ﬁshing in his down time.

Larry’s greatest joy comes from his wife Michelle and their two children Logan and Alex.

Joe Stinson, CCIE No. 4766 (R&S)

is a consulting systems engineer with Cisco Systems, based in Atlanta, GA.

He is currently the lead engineer responsible for architecting and building the internetworking solutions demonstra-

tions for the Cisco Atlanta Commercial Customer Brieﬁng Center. His responsibilities heavily utilize the network-

ing, security, and IP telephony skills he has acquired, as a security-focused systems engineer for Cisco. Joe is a

CISSP and is currently working toward his CCIE Security certiﬁcation. He is a graduate of the Georgia Institute of

Technology with a B.S. in information and computer science. His greatest joy comes from his wife of 15 years,

Brenda, and their three beautiful children Jabria, Janai, and Joseph III.

Plik z chomika:

Inne pliki z tego folderu:

Inne foldery tego chomika: