February 2002
COVER STORY
FEATURES
COLUMNS
DEPARTMENTS
COVER STORY

Analyze This!
COVER STORY
Network forensics analysis tools (NFATs) reveal insecurities, turn sysadmins into systems detectives.
By Nate King & Errol Weiss

High Performance, High Maintenance
CASE STUDY  By Anne Saita

NFR: Ahead of its Time?
SIDEBAR   By Nate King

Comparison Chart

FEATURES

Feeling Vulnerable?
VULNERABILITY MANAGEMENT
If you're bedeviled by swarms of vulnerability alerts, you can take control by practicing good management.
By Al Berg

Patching Across the Enterprise
SIDEBAR   By Scott Sidel & Andy Briney

Cracking Infosec's Paradigms
Q&A
Is your company spending too much on the wrong threats? Author and crypto maven Ross Anderson takes aim at infosec assumptions.
Interviewed by Jay Heiser

Windows Security Scripting
SCRIPTING
A common technique in the *nix world can help Windows admins simplify routine tasks.
by JP Vossen

Sample Scripts

Scripting Resources

Shell Script Security


COLUMNS

Trustworthy
NOTE   By Andy Briney

Judge Favors Finger Tapping
ON THE LIGHTER SIDE
A monthly look at the foibles, follies and felons of infosec.
By Lawrence M. Walsh

Defense-in-Breadth
EXECUTIVE VIEW
How to reduce risk using "synergistic security."
By Peter Tippett

Patchworks
ASK THE SURGEON GENERAL
Patching an IIS server-- what, how and when.
By Russ Cooper

Startups: A Recipe for Success
LOGOFF
Add one part technologist, one part experienced CEO, some VC money, and stir.
By Robert Logan


DEPARTMENTS

Viewpoint
Readers respond to Jay Heiser's "Pay Your Dues" column, CIA triad and PKI problems.

Talk Back
What's your biggest infosecurity-related concern for 2002? Have your priorities changed from 2001 to 2002? Why or why not?

News & Analysis
- Hacker, malware lull may lead to complacency
- Indian teen earns CISSP
- FOIA exemption falls flat
- @work
- Profile: G. Mark Hardy
- Security rebound in doubt

Products
TEST CENTER
SecurityExpressions
By Gary C. Kessler

HOT PICK
Open Snort Sensor and Management Console

SOLUTIONS
Profiles of Finjan Software's SurfinGate for E-Mail, BLADE-Software's IDS Informer v3.5 and United Messaging's Enterprise Instant Messaging

SECURE READS
Two new CISSP exam-preparation guides

Happenings
CALENDAR OF EVENTS
Late winter and early spring security events on tap