Preface Preface Writing a technical book and getting it published is not a particularly difficult project The primary requirements are dogged determination and persistence Writing a technical book that people can use, a book that they keep on their shelf as a reference, a book that becomes the standard in its class, that s quite a bit harder To do озуте that you not only have to know the subject matter and be able to present it in a reasonably interesting manner, you also have to include the information that people need to know and provide the analysis that experience provides In addition, the technology must be presented in a way that is digestible by the average person responsible for implementing it Accuracy, of course, must be ensured Doing all of these things is not easy It is, however, what I set out to do Should You Buy this Book? My ego and my pocketbook say yes My conscience tells me that the book is not one that every techie will need Here are some guidelines: This book is not designed with the Windows end user, advanced or not, in mind It is meant for the server administrator, network administrator, security administrator, IT manager, technology specialist, or other individual who must design, implement, troubleshoot, or configure the security of Windows Server 2003 or the networks it is used on Though it does provide the details that may help anyone studying for an exam, it is not a resource for those whose only interest is in passing an exam There are no study questions and way too much information on topics that may not be on an exam but that are vital to the understanding and operation of server and network security The book does provide important information and the details of securing Windows Sever 2003; it is not a step-by-step guide on how to harden the server Instead, it is a technical resource, and it provides much of the rationale behind hardening steps If you do not use Windows and don t believe it has a place in your network, why are you reading this? I do believe that if you read it, you may find that Windows Server 2003 does have a place in your network However, I must warn youmdyou need to consider the next statement If you have no experience or knowledge of Windows, you will need a companion book that concentrates on the technology, a server you can explore on your own, or a willingness to research basic Windows and basic Windows networking on your own Before you begin studying the more advanced topics, such as securing Active Directory or utilizing Windows Server 2003 resources to provide network security, you will need some understanding of Active Directory The book assumes that you are not new to Active Directory If you are an expert on Windows Server 2003 security, you may learn something new here If you are, like most technical Windows users, solidly savvy in some security areas but lacking information in others, I believe you ll be able to find the information you need to become well rounded within these pages If you are a programmer, this book can do much to help you understand how Windows server security works and how its security technologies are used on a network It should not, however, be your source for the intimate details you need if you must program security or program securely The technical details you need are primarily provided in the Software Development Kit (SDK) available from Microsoft The sound security knowledge and programming skill necessary is a function of training and experience I would especially caution you that the algorithms provided within this book to help readers understand how technology works do not provide enough information for you to produce code that can correctly implement the technology Programming security technologies is especially difficult to get right and is not a subject addressed by this book What s Inside and What s Not Information security is not a new field What is new is the requirement that every information technology worker emerge from being security-challenged to being security-conscious Those who are responsible for any facet of production networks have a higher calling They must not only be awaremdthey must also be proactive They cannot afford to merely react to the latest Internet threat They must apply the principles of information security through their network This book can help them Chapter 1 defines these principles and relates them to the content of each chapter Each chapter deals with a specific Windows Server 2003 security topic and provides both information and instructions for securing the server and for using its security technologies to provide protection for the network Topics include authentication, user rights and permissions, Software Restriction Policies, Authorization Manager, NTFS, the Encrypting File System (EFS), WebDAV, changes in security technologies introduced with Active Directory, securing Active Directo.  Суть романа2005 г Мягкая обложка, 1176 стр ISBN 0321305019.