SearchSecurity.com's Web Security School

SearchSecurity.com's Web Security School

Welcome to SearchSecurity.com's Web Security School, where you'll learn how to harden a Web server and apply countermeasures to prevent hackers from breaking into a network. Study at your own pace and learn how to implement security policies and test a Web site's security, as well as how to handle a breach should the unspeakable happen. Guest instructor Michael Cobb will also arm you with tactics for creating a human firewall to combat problems such as phishing and spyware. This course consists of an entrance exam, three lessons -- each consisting of a webcast, technical paper and quiz -- and a final exam. You'll also find handy checklists that you can download and use on the job. All of these resources are available on-demand so you can learn at your convenience.

   Course Outline
   Entrance Exam
   Begin Lesson 1
   Begin Lesson 2
   Begin Lesson 3
   Final Exam
   About the Instructor

(IE only)
SCHOOL HIGHLIGHTS
Send the editor your feedback on this Security School

Visit our Security School for CISSP training

Visit our SOX Security School

Visit our E-mail Security School

SPONSORED LINKS

thawte white paper:
Building customer confidence with thawte SSL Web server certificates and SuperCerts

  Web Security School Course Outline


Web Security School Entrance Exam
Before you begin Web Security School, take this entrance exam to assess your knowledge of Web security and identify the areas you need to focus on. Make note of your score so you can gauge your progress at the end of the School with our final exam.

TAKE THE EXAM   (Download PDF)


Lesson 1
Learn how to plan and perform a secure installation of your Web server's operating system and services. Michael Cobb also explains detailed hardening procedures and how to secure other network services such as FTP and SMTP, as well as setting up access control and security policies. Finally, you will learn how to set up secure remote management and recovery procedures. After you've attended the webcast and read the technical paper, take the quiz to assess your knowledge of Web server security.


Lesson 2
Learn what to expect and look for when analyzing an attack on your Web server. Michael Cobb presents a guide to logging and auditing leads, as well as a review of essential fortification, countermeasures and other recommended security enhancements for your server. After you've attended the webcast and read the technical paper, take the quiz to assess your knowledge of how to defeat Web server attacks.


Lesson 3
Learn how to plan and implement Web directory structures and permissions, and manage Web development. This lesson includes a primer on secure coding and data management, and procedures for combating phishing, adware and spyware. The accompanying quiz will help you assess your knowledge of securing Web applications.


Final Exam
After you've completed Lessons 1, 2 and 3, take the Web Security School final exam to assess your knowledge of Web security based on what you've learned here.

TAKE THE FINAL EXAM   (Download PDF)

  About the Instructor

Michael Cobb, CISSP-ISSAP is a renowned security author with more than 10 years experience in the IT industry and another 16 years experience in finance. He is the founder and managing director of Cobweb Applications Ltd., a consultancy that offers IT training and support in data security and analysis. He co-authored the book IIS Security and has written numerous technical articles for leading IT publications. Cobb is also a Microsoft Certified Database Administrator and a Microsoft Certified Professional.

  

This was first published in June 2005

Join the conversationComment

Share
Comments

    Results

    Contribute to the conversation

    All fields are required. Comments will appear at the bottom of the article.
    Back to top