[W3C] The World Wide Web Security FAQ


This information is provided by Lincoln Stein (lstein@cshl.org). The World Wide Web Consortium (W3C) hosts this document as a service to the Web Community; however, it does not endorse its contents. For further information, please contact Lincoln Stein directly.
<<Back to Denial of Service Attacks ^Up to Table of Contents

12. Bibliography

Internet Security Alerts

  1. RISKS, Forum on Risks to the Public in Computers and Related Systems: http://catless.ncl.ac.uk/Risks This is an archive of the comp.risks USENET group, a moderated group with a high information to noise ratio.
  2. CERT advisories: ftp://ftp.cert.org/pub/cert_advisories/.
  3. Computer Incident Advisory Capability (CIAC): http://www.ciac.org
  4. BUGTRAQ forum: http://www.securityfocus.com/

General Security for Web Servers

  1. Web Security: A Step-by-Step Guide, by Lincoln Stein Addison-Wesley Longman, 1998.
  2. Web Security and Commerce, by Simson Garfinkle with Gene Spafford, O'Reilly & Associates, 1997.
  3. Web Security Sourcebook, by Aviel Rubin, Daniel Geer and Marcus Ranum, John Wiley and Sons, 1997.
  4. How to Set Up and Maintain a World Wide Web Site: The Guide for Information Providers, by Lincoln D. Stein (Addison-Wesley), 496 pages, list price $29.95, ISBN 0-201-63389-2 (information available at http://www.genome.wi.mit.edu/WWW/).
  5. Managing Internet Information Systems, by Cricket Liu, Jerry Peek, Russ Jones, Bryan Buus, and Adrian Nye ( O'Reilly & Associates, Inc.), ISBN 1-56592-051-1


  1. Firewalls and Internet Security: Repelling the Wily Hacker, by William R. Cheswick and Steven M. Bellovin ( Addison-Wesley), ISBN 0-201-63357-4
  2. Building Internet Firewalls by D. Brent Chapman and Elizabeth D. Zwicky published by O'Reilly & Associates, 1st Edition September 1995 517 pages, list price $29.95, ISBN 1-56592-124-0 (information also available at http://www.greatcircle.com/firewalls-book/).

Unix System Security

  1. Unix System Security: A Guide for Users and System Administrators, by David Curry (Addison Wesley Longman). ISBN 0-201-56327-4.
  2. Practical Unix and Internet Security, by Simson Garfinkel and Gene Spafford (O'Reilly & Associates,Inc.) ISBN 0-937175-72-2

Windows NT Security

  1. Windows NT Security Guide, by Stephan Sutton, Addison Wesley Developers Press, 1997.

The CGI Security FAQ

  1. CGI security FAQ


  1. Applied Cryptography, by Bruce Schneier, John Wiley & Sons, 618 pages, $44.95, ISBN 0-471-59756-2.
  2. Internet Cryptography, by Richard E. Smith, Addison Wesley, 1997, ISBN 0-201-92480-3.


  1. Programming Perl, by Larry Wall and Randal L. Schwartz (O'Reilly & Associates, Inc.), ISBN 0-937175-64-1

Java Security

  1. Java Security: >From HotJava to Netscape and Beyond, Drew Dean, Edward W. Felten, and Dan S. Wallach. 1996 IEEE Symposium on Security and Privacy, Oakland, CA, May 1996.

Old Versions of this Document

Only versions more recent than 1.3.5 are archived. Sorry!
  1. http://www.w3.org/Security/faq/previous/

<<Back to Denial of Service ^Up to Table of Contents

Lincoln D. Stein (lstein@cshl.org) and John N. Stewart (jns@digitalisland.net)

$Id: wwwsf7.html,v 1.9 2003/02/23 22:46:28 lstein Exp $