Securing Citrix XenApp Server in the Enterprise (Paperback)
暫譯: 企業環境中保護 Citrix XenApp 伺服器

Tariq Azad

Securing Citrix XenApp Server in the Enterprise (Paperback)
  • 出版商: Syngress Media
  • 出版日期: 2008-06-24
  • 定價: $1,980
  • 售價: 5.0$990
  • 語言: 英文
  • 頁數: 528
  • 裝訂: Paperback
  • ISBN: 1597492817
  • ISBN-13: 9781597492812
  • 相關分類: 資訊安全

    • 立即出貨 (庫存=1)

買這商品的人也買了...

相關主題

商品描述

Citrix Presentation Server allows remote users to work off a network server as if they weren't remote. That means: Incredibly fast access to data and applications for users, no third party VPN connection, and no latency issues. All of these features make Citrix Presentation Server a great tool for increasing access and productivity for remote users. Unfortunately, these same features make Citrix just as dangerous to the network it's running on. By definition, Citrix is granting remote users direct access to corporate servers?..achieving this type of access is also the holy grail for malicious hackers. To compromise a server running Citrix Presentation Server, a hacker need not penetrate a heavily defended corporate or government server. They can simply compromise the far more vulnerable laptop, remote office, or home office of any computer connected to that server by Citrix Presentation Server.
All of this makes Citrix Presentation Server a high-value target for malicious hackers. And although it is a high-value target, Citrix Presentation Servers and remote workstations are often relatively easily hacked, because they are often times deployed by overworked system administrators who haven't even configured the most basic security features offered by Citrix. "The problem, in other words, isn't a lack of options for securing Citrix instances; the problem is that administrators aren't using them." (eWeek, October 2007). In support of this assertion Security researcher Petko D. Petkov, aka "pdp", said in an Oct. 4 posting that his recent testing of Citrix gateways led him to "tons" of "wide-open" Citrix instances, including 10 on government domains and four on military domains.

* The most comprehensive book published for system administrators providing step-by-step instructions for a secure Citrix Presentation Server.
* Special chapter by Security researcher Petko D. Petkov'aka "pdp detailing tactics used by malicious hackers to compromise Citrix Presentation Servers.
* Companion Web site contains custom Citrix scripts for administrators to install, configure, and troubleshoot Citrix Presentation Server.

商品描述(中文翻譯)

Citrix Presentation Server 允許遠端使用者像在本地一樣使用網路伺服器。這意味著:使用者可以快速存取資料和應用程式,無需第三方 VPN 連線,且不會有延遲問題。所有這些功能使得 Citrix Presentation Server 成為提高遠端使用者存取和生產力的絕佳工具。不幸的是,這些相同的特性也使得 Citrix 對其運行的網路構成了危險。根據定義,Citrix 允許遠端使用者直接存取企業伺服器……而實現這種存取對於惡意駭客來說也是一個聖杯。要攻陷運行 Citrix Presentation Server 的伺服器,駭客不需要突破防守嚴密的企業或政府伺服器。他們只需攻陷任何連接到該伺服器的 Citrix Presentation Server 的更脆弱的筆記型電腦、遠端辦公室或家庭辦公室。

所有這些使得 Citrix Presentation Server 成為惡意駭客的高價值目標。儘管它是一個高價值目標,Citrix Presentation Servers 和遠端工作站通常相對容易被攻陷,因為它們往往是由過度工作的系統管理員部署的,而這些管理員甚至沒有配置 Citrix 提供的最基本的安全功能。「問題,換句話說,不在於缺乏保護 Citrix 實例的選項;問題在於管理員沒有使用這些選項。」(eWeek,2007 年 10 月)。為了支持這一說法,安全研究員 Petko D. Petkov,別名「pdp」,在 10 月 4 日的帖子中表示,他最近對 Citrix 閘道的測試使他發現了「大量」的「完全開放」的 Citrix 實例,包括 10 個在政府域名上和 4 個在軍事域名上。

* 本書是針對系統管理員發表的最全面的書籍,提供了安全配置 Citrix Presentation Server 的逐步指導。
* 特別章節由安全研究員 Petko D. Petkov(別名「pdp」)撰寫,詳細說明了惡意駭客用來攻陷 Citrix Presentation Servers 的策略。
* 附屬網站包含供管理員安裝、配置和排除 Citrix Presentation Server 問題的自訂 Citrix 腳本。

類似商品

最後瀏覽商品 (20)