Windows .Net Server Security Handbook [With CDROM]

I was impressed with this book. I was a little nervous getting it as it was .NET security, not 2003 - so I knew it may have been dated to RC1. Regardless, I liked the book and it gave me some great security info related to Windows Server 2003. Hope this helps.

Obvious that much hard work went into the book, it is truly an excellent choice for any level of security needs.

This is a very technical book, and goes into a lot of detail on security configuration, examples, etc. Also includes wireless security, VPNs, etc. The best chapter was "locking down IIS 6.0" -- you should buy the book for this chapter, if for no other reason.It is easy to understand and the author has a wry sense of humor; I'm looking forward to reading his other books.

One of the first titles in the .NET security field. I must confess I haven't been particularly pleased with the titles I've looked at so far in this area; rest assured this is the exception. A lot of the chapters read more like a tutorial than documentation, with lots of screen shots and tables of settings that explain more than you would probably learn by sitting through another teacher-reads-book Microsoft course.When I went through the book in detail I found some very useful nuggets. For example one chapter covers the "security configuration tool set", a complex and confusing aspect of Windows 2000. What's useful here are the series of examples that demonstrate some aspects of how to use these tools. Additionally, the book is full of definitions of security-related terms, insight to new WiFi-based applications and extensive coverage of Windows XP security features. XP's security is much of what is used within the .NET framework, so don't pass it by. Most of the book is like the above--detailed passages of useful information with more-than occasional implementation tips thrown in. This book is a must-have and sure to be the de-facto standard of .NET security references. If .NET is only on the horizon and you have the money to spare, buy the book and skim through it and flag the interesting sections with Post-it notes for later study. Why wait for the definitive .NET security book to come out? If this isn't it, maybe I'll write one!

This book does a surprisingly good job of reviewing the final release code of .NET Server, and showing its complete security architecture. It had good coverage of .NET PKI, VPNs, IPSec, and Kerberos security, etc, with emphasis on what is new in .NET Server. I wish it had more wireless security, but at least there was one chapter on it. The best chapter was by far the "Securing IIS 6.0" chapter. The book shows enough key differences between Windows 2000 Server Security that are upgraded in .NET Server, that you will probably be convinced to upgrade yourself sometime very soon. Security is treated from both a white-hat and a black-hat (underground hacker) perspective, which gives it some color.