“Every C++ professional needs a copy of Effective C++. It is an absolute must-read for anyone thinking of doing serious C++ development. If you’ve never read Effective C++ and you think you know everything about C++, think again.”
— Steve Schirripa, Software Engineer, Google

“C++ and the C++ community have grown up in the last fifteen years, and the third edition of Effective C++ reflects this. The clear and precise style of the book is evidence of Scott’s deep insight and distinctive ability to impart knowledge.”
— Gerhard Kreuzer, Research and Development Engineer, Siemens AG

The first two editions of Effective C++ were embraced by hundreds of thousands of programmers worldwide. The reason is clear: Scott Meyers’ practical approach to C++ describes the rules of thumb used by the experts — the things they almost always do or almost always avoid doing — to produce clear, correct, efficient code.

The book is organized around 55 specific guidelines, each of which describes a way to write better C++. Each is backed by concrete examples. For this third edition, more than half the content is new, including added chapters on managing resources and using templates. Topics from the second edition have been extensively revised to reflect modern design considerations, including exceptions, design patterns, and multithreading.

Important features of Effective C++ include:

• Expert guidance on the design of effective classes, functions, templates, and inheritance hierarchies.
• Applications of new “TR1” standard library functionality, along with comparisons to existing standard library components.
• Insights into differences between C++ and other languages (e.g., Java, C#, C) that help developers from those languages assimilate “the C++ way” of doing things.

Covers Red Hat and SUSE

When something goes wrong with your Linux firewall, you need to fix it—right now. You don't have time for endless newsgroup searches, confusing man pages, emails to the developers... it's an emergency! One book brings together all the step-by-step solutions and proven problem-solving techniques you'll need when the time comes: Troubleshooting Linux® Firewalls.

Authors Michael Shinn and Scott Shinn are among the world's leading firewall experts; they've even been hired to protect computer security at the White House. In this book, they cover every area where Linux firewalls can go wrong: rules and filtering problems, Layer 2/3/4 issues, trouble with individual services, DNS/DHCP failures, even misconfigured VPNs. They also present an easy, start-to-finish troubleshooting methodology that'll help you identify even the newest or most obscure firewall problem fast—and solve it!

Inside, you will find in-depth information on the following areas:

• What you must know about iptables and netfilter to troubleshoot and avoid problems

• Using loggers, sniffers, and other tools to diagnose even the most obscure firewall problems

• Making sure your firewall rules work the way they're supposed to

• Resolving problems with Network Address Translation and IP Forwarding

• Troubleshooting SMTP, Apache, Squid, NFS, FTP, instant messaging, and other Web-based services

• Finding and fixing common problems with IPsec VPN configuration

• Making your firewalls more failure-resistant: recommendations from the experts

If you depend on a Linux firewall, what will you do if it goes down? With Troubleshooting Linux® Firewalls, you can be confident that the solutions are right at hand—so you can sleep at night!

© Copyright Pearson Education. All rights reserved.

Many software projects fail because their leaders don't know how to estimate, schedule, or measure them accurately. Fortunately, proven tools and techniques exist for every facet of software estimation. Estimating Software-Intensive Systems brings them together in a real-world guidebook that will help software managers, engineers, and customers immediately improve their estimates—and drive continuing improvements over time.

Dick Stutzke presents here a disciplined and repeatable process that can produce accurate and complete

estimates for any project, product, or process, no matter how new or unusual. Stutzke doesn't just describe formal techniques: He offers simple, easy-to-use templates, spreadsheets, and tools you can start using today to identify and estimate product size, performance, and quality—as well as project cost, schedule, and risk reserves.

Stutzke shows how to quickly "get your arms around" users' problems and requirements, the structure of a solution, and the process needed to deliver it. You'll learn how to choose the most appropriate estimating techniques and tools; collect accurate data, track progress, and update estimates; and recalibrate estimating models to improve estimation accuracy.

Stutzke's techniques apply whether you're creating custom in-house business software, purchasing or customizing "off-the-shelf" technology, or constructing complex, one-of-a-kind military, industrial, or commercial systems. These techniques apply to small and large projects, and to all project life cycles—from agile to plan-driven. This book will help you plan, estimate, budget, schedule, purchase, design, build, test, deploy, operate, and maintain software-intensive systems. It explains how to size software, identify all cost components, calculate the associated costs, and set a competitive price.

A separate section covers topics of interest for large projects: designing an appropriate work breakdown structure, collecting data from cost accounting systems, and using earned value measurement.

An accompanying CD-ROM contains templates, supplemental notes, and Microsoft Excel spreadsheets to estimate and track projects, product characteristics, and processes. It contains an extensive bibliography and links to web resources on software estimation, measurement, and related topics. You'll find updates and even more information on this book's companion web site, http://www.sw-estimation.com.

© Copyright Pearson Education. All rights reserved.

“A highly readable and comprehensive reference to data access capabilities of the .NET Framework. Suitable for the newcomer and ‘guru’ alike.”
—Arpan Desai, program manager, System.Xml, Webdata XML Team, Microsoft Corporation

“This book goes beyond the typical API reference and goes in detail into why you would use each new feature, what scenarios they were designed for, and how things work from end to end. Great way of getting started with data access in .NET 2.0.”
—Pablo Castro, program manager, ADO.NET Team, Microsoft Corporation

“An insightful look at the XML features in version 2.0 of the .NET Framework v. 2.0 by one of the minds behind many of the innovations in the System.Xml namespace. Even though I was one of the Program Managers who worked on version 2.0 of System.Xml, Mark Fussell’s chapters still taught me a few things I didn’t know about working with XML in the .NET Framework. Truly an excellent work.”
—Dare Obasanjo, program manager, Communication Services Platform, Microsoft Corporation

ADO.NET 2.0 delivers dramatic improvements in relational data access and XML support, as well as outstanding integration with SQL Server 2005. Now’s the time to get a running start with ADO.NET and System.Xml v. 2.0—The Beta Version, the one book that delivers all the insights, best practices, and sample code you’ll need.

Two renowned .NET and XML experts, along with a lead program manager at Microsoft, reveal everything that’s new in ADO.NET and System.Xml—including major changes since 2004’s “Technology Preview.” Using realistic code examples, the authors illuminate improvements to data access and management, the DataSet class, security, schema discovery, and much more. You’ll discover how SQL Server 2005’s in-process CLR hosting will help you build faster, more robust applications—and how to make the most of advances in XML performance, schema support, usability, querying, and serialization. Topics include

• Doing more with less code: asynchronous command execution, promotable transactions, batched update, bulk data copy, and other SqlClient class enhancements
• Leveraging ADO.NET improvements that work with any database platform, including provider factories and the Database Schema Discovery API
• Using the enhanced features of the DataSet class to increase flexibility, simplify coding, and improve erformance
• Integrating with SQL Server 2005, via Multiple Active Result Sets, query notifications, and user-defined types
• Utilizing SQL Server 2005 as an XML database: using, accessing, and updating the XML data type
• Mastering System.Xml v. 2.0 classes for reading/writing XML, document editing, validation, transformations, security, and more
• Discovering new techniques for customizing XML serialization and working with XML document stores
• Maximizing application and service performance with insider tips and tricks from ADO.NET’s creators

Already assessing ADO.NET and System.Xml v. 2.0? Piloting them? Building production applications? Wherever you stand, wherever you’re headed with these technologies, this book will get you there.

In this authoritative book, widely respected practitioner and teacher Matt Bishop presents a clear and useful introduction to the art and science of information security. Bishop's insights and realistic examples will help any practitioner or student understand the crucial links between security theory and the day-to-day security challenges of IT environments.

Bishop explains the fundamentals of security: the different types of widely used policies, the mechanisms that implement these policies, the principles underlying both policies and mechanisms, and how attackers can subvert these tools--as well as how to defend against attackers. A practicum demonstrates how to apply these ideas and mechanisms to a realistic company.

Coverage includes

• Confidentiality, integrity, and availability
• Operational issues, cost-benefit and risk analyses, legal and human factors
• Planning and implementing effective access control
• Defining security, confidentiality, and integrity policies
• Using cryptography and public-key systems, and recognizing their limits
• Understanding and using authentication: from passwords to biometrics
• Security design principles: least-privilege, fail-safe defaults, open design, economy of mechanism, and more
• Controlling information flow through systems and networks
• Assuring security throughout the system lifecycle
• Malicious logic: Trojan horses, viruses, boot sector and executable infectors, rabbits, bacteria, logic bombs--and defenses against them
• Vulnerability analysis, penetration studies, auditing, and intrusion detection and prevention
• Applying security principles to networks, systems, users, and programs

Introduction to Computer Security is adapted from Bishop's comprehensive and widely praised book, Computer Security: Art and Science. This shorter version of the original work omits much mathematical formalism, making it more accessible for professionals and students who have a less formal mathematical background, or for readers with a more practical than theoretical interest.

“Fully updated and revised for Eclipse 3.0, this book is the definitive Eclipse reference—an indispensable guide for tool builders, rich client application developers, and anyone customizing or extending the Eclipse environment.”
—Dave Thomson, Eclipse Project Program Director, IBM

Eclipse is a world-class Java integrated development environment (IDE) and an open source project and community. Written by members of the IBM Eclipse Jumpstart team, The Java™ Developer’s Guide to Eclipse, Second Edition, is the definitive Eclipse companion. As in the best-selling first edition, the authors draw on their considerable experience teaching Eclipse and mentoring developers to provide guidance on how to customize Eclipse for increased productivity and efficiency.

In this greatly expanded edition, readers will find

• A total update, including the first edition’s hallmark, proven exercises—all revised to reflect Eclipse 3.0 changes to the APIs, plug-ins, UI, widgets, and more
• A special focus on rich client support with a new chapter and two exercises
• A comprehensive exercise on using Eclipse to develop a Web commerce application using Apache’s Tomcat
• A new chapter on JFace viewers and added coverage of views
• A new chapter on internationalization and accessibility
• New chapters on performance tuning and Swing interoperability

Using this book, those new to Eclipse will become proficient with it, while advanced developers will learn how to extend Eclipse and build their own Eclipse-based tools. The accompanying CD-ROM contains Eclipse 3.0, as well as exercise solutions and many code examples.

Whether you want to use Eclipse and Eclipse-based offerings as your integrated development environment or customize Eclipse further, this must-have book will quickly bring you up to speed.

"If you're a systems-level 32-bit or 64-bit Windows developer, whether using the Windows API directly or via .NET interop, you'll definitely want to take a look at this update to Johnson Hart's well-respected and well-loved book. Johnson starts with Windows history and cultural issues and moves through basic and advanced system services in a thoughtful, thorough manner. If Mr. Rogers wrote a book with David Cutler, this is what they'd come up with."
—Chris Sells, Longhorn Content Strategist,
Microsoft Corporation

"While focusing on UNIX developers that are looking to augment their skills or simply jump ship, Windows System Programming, Third Edition is a book that even some seasoned systems-level Windows developers will undoubtedly find useful. This is not your average bland GUI treatise; Hart takes you down to the metal, explains all the relevant concepts clearly and in-depth, and gives you an extensive library of high-quality code examples that can be easily adapted for your own larger applications. Even if you've created server applications before, Windows System Programming will teach you new tricks, shed new light on concepts you thought you'd mastered, and offer new strategies for creating robust and secure solutions."
—Klaus H. Probst, Senior Architect,
Spherion Technology Services; Microsoft MVP

"This book is quite easy to follow; there are clear explanations of everything. Even the explanation of the standards is readable! For a developer not familiar with developing with Windows, Hart's book also provides basic information on where Windows was and where it is today, plus a great explanation of how it is different from Posix and Unix."
—Eric Landes, Microsoft MVP,
www.aspalliance.com/corporatecoder

"Even advanced developers will always need to have a book like this one on hand when the abstractions of a platform like .NET are inadequate or when they need to know more about how .NET is implemented. And the focus on low-level programming (specifically memory management and IO) and other non-GUI topics makes it stand out as superior among other Windows programming books. In keeping the GUI focus to a minimum, Hart's book is able to be comprehensive on the topics contained within."
—Michael Davidson, IT Analyst

Windows System Programming, Third Edition gives a solid grounding on using the core Windows APIs, includingWin64; is updated for Windows Server 2003, Windows XP, and the Microsoft Visual Studio .NET Framework, and has extensive examples illustrate all topics and show performance impact and tradeoffs

A practical guide to the central features and functions of the Windows API, Windows System Programming, Third Edition, will get you up and running with Windows XP and 2003, as well as other Windows systems. Unlike most Windows programming resources, this book focuses exclusively on the core system services—file system, memory, processes and threads, synchronization, communication, and security—rather than on the more commonly featured graphical user interface functions. Especially geared for those already familiar with UNIX or other high-end operating systems, Windows System Programming, Third Edition, helps you to build on your knowledge base to learn the most important features quickly and easily.

This new edition has been updated and enhanced with coverage of new API functions, network programming, Windows Services, process and thread management, synchronization, and application performance on single and multiprocessor systems. It also describes techniques for porting applications to Win64, the new Windows 64-bit API.

Beginning with an examination of the features required in a single-process application, the text gradually progresses to increasingly sophisticated functions relating to a multithreaded environment. Each chapter contains realistic examples to illustrate the topics. You will find extensive coverage of such critical Windows topics as:

• File and directory management
• Character I/O and Unicode
• The registry
• Structured exception handling
• Security services
• Memory management and DLLs
• Threads, process management, and scheduling
• Thread synchronization, including the condition variable model for event and mutex usage
• Interprocess communication, featuring pipes and mailslots
• Network programming with sockets
• Developing Windows Services
• Timers,Asynchronous I/O, and I/O completion ports
• Guidelines and trade-offs to improve application performance and reliability
• Win64, covering architecture, data types, and legacy code migration

Short, practical examples illustrate each topic and are included on the companion Web site (www.awprofessional/com/titles/0321256190). The appendixes provide performance measurements and compare Windows, UNIX, and the C library.

Leverage the quality and productivity benefits of patterns--without the complexity! Design Patterns Explained, Second Edition is the field's simplest, clearest, most practical introduction to patterns. Using dozens of new C# and updated Java examples, it shows programmers and architects exactly how to use patterns to design, develop, and deliver software far more effectively.

You'll start with a complete overview of the fundamental principles of patterns, and the role of object-oriented analysis and design in contemporary software development. Then, using easy-to-understand sample code, Alan Shalloway and James Trott illuminate dozens of today's most useful patterns: their underlying concepts, advantages, tradeoffs, implementation techniques, and pitfalls to avoid. Many patterns are accompanied by UML diagrams.

Building on their best-selling First Edition, Shalloway and Trott have thoroughly updated this book to reflect new software design trends, patterns, and implementation techniques. Reflecting extensive reader feedback, they have deepened and clarified coverage throughout, and reorganized content for even greater ease of understanding. New and revamped coverage in this edition includes:

• Better ways to start "thinking in patterns"
• How design patterns can facilitate agile development using eXtreme Programming and other methods
• How to use commonality and variability analysis to design application architectures
• The key role of testing into a patterns-driven development process
• How to use factories to instantiate and manage objects more effectively
• The Object-Pool Pattern--a new pattern not identified by the "Gang of Four"
• New study/practice questions at the end of every chapter

Gentle yet thorough, this book assumes no patterns experience whatsoever. It's the ideal "first book" on patterns, and a perfect complement to Gamma's classic Design Patterns. If you're a programmer or architect who wants the clearest possible understanding of design patterns--or if you've struggled to make them work for you--read this book.

Praise for The Executive Guide to Information Security

"Every CEO is responsible for protecting the assets of their corporation–the people, intellectual property, corporate and customer information, infrastructure, network, and computing resources. This is becoming both more important and more difficult with the rise in the number and sophistication of cyber threats. This book helps the CEO understand the issues and ask the right questions to implement a more effective strategy for their business."

–Steve Bennett, president and CEO, Intuit

"Mark Egan and Tim Mather help nontechnical executives gain a comprehensive perspective over the security challenges that all companies face today. This book is well structured and practical. Yet, it also stresses that a strategic approach to cyber security is essential, and that "tone at the top" will determine the effectiveness of any corporate cyber security policy."

–Eric Benhamou, chairman of the board of directors, 3Com Corporation, palmOne, and PalmSource, Inc

"This book is not about cyber security; it's about managing one's company and the role that cyber security plays in that scenario. It's chilling to think of how vulnerable the assets of a business are on a computer network; this book is a fire alarm in the night for business executives to realize computer security is not a tech issue–it's a business issue worthy of the same attention and priority that business executives might place on any other mission-critical element of their company."

–George Reyes, CFO, Google

"This is a must read for any executive of any size company. The Internet makes all businesses equal in that they are subject to the same types of threats regardless of their product. In this book, the CIO and security director of one of the top security companies makes the business case for security and tells you what to do to successfully mitigate threats."

–Howard A. Schmidt, former cyber security advisor to the White House, CSO Microsoft, and VP CISO eBay

"This book gives an excellent overview of the issues around securing information at a time in our history when information is extremely vulnerable to outside attack, retrieval, or manipulation. Steps taken now can make a huge difference to a company's ability to survive and thrive in a heterogeneous attack culture."

–Bob Concannon, Global Practice Leader, Boyden Global Executive Search

"Few if any books expose the business executive to the serious and critical nature of existing and evolving security issues using nontechnical terms. Executives can no longer afford to delegate the responsibility and accountability for security without understanding the issues and without assuming the ultimate responsibility for security in the firm. This book should become required reading for every business executive, regardless of product or company size."

–John Moreno, chair, MS in Information Technology, Golden Gate University

"This book details the what, why, and how to solve issues of information security in business today. It gives examples many people will recognize from the press, discusses the basics of information security in a very understandable way, and reviews approaches for addressing these risks and threats."

–David Schwartz, managing director, Derivative Products Risk Advisors, Inc.

"This book fills a void by addressing the key criteria executives need to consider when implementing an effective information security plan within their organization."

–Shobana Gubbi, former project manager of IOS Technologies, Cisco

Today, every executive must understand information security from a business perspective. Now, this concise book tells business leaders exactly what they need to know to make intelligent decisions about security–without ever getting lost in the technical complexities.

The Executive Guide to Information Security offers realistic, step-by-step recommendations for evaluating and improving information security in any enterprise. From start to finish, the focus is on action: what works and how to get it done. Here are just a few of the things you will be learning:

• Understanding your security challenges and obligations

• Trends in security attacks

• Systematically identifying your risks and vulnerabilities

• Implementing best-practice processes for access, acceptable use, training, strategy, and emergency response

• Effective executive leadership, governance, and metrics

• Staffing security–coping with a shortage of expertise

Whether you're a CxO, a line-of-business executive, or an IT executive who needs to get colleagues up to speed, this is the nontechnical, business-driven security briefing you've been searching for.

Mark Egan is chief information officer and vice president of the Information Technology Division of Symantec. In this role, he is responsible for all internal systems and security at Symantec. Egan is the co-chair of TechNet's Cyber Security Best Practices Campaign and a frequent speaker on best practices for information security and information technology.

TIM MATHER, Symantec's vice president and chief information security officer, is responsible for Symantec's information security program. Mather is a Certified Information Systems Security Professional and a Certified Information Systems Manager.

The authors' profits from this book will support a scholarship program for underprivileged students planning IT careers.

© Copyright Pearson Education. All rights reserved.

"There are many books that shine light on the darkest corners of the UML, but Eric and Bob present just the essentials needed to make you effective in modeling all the important aspects of a software-intensive system."

—Grady Booch

"Bob and Eric have managed to capture key system and software design techniques in a style that is refreshingly straightforward to understand and apply, and to distill their ideas and insight from more than a decade of practical use of UML into a book that will increase your appreciation for UML and make you more effective."

—Dr. Alan W. Brown, Distinguished Engineer, IBM Rational

"A practical introduction to designing real-world business systems using UML, explained from first principles. A great book for anyone who wants to start learning the industry's standard modeling language."

—Andrew Watson, Vice President and Technical Director, Object Management Group

Need to get results with UML...without unnecessary complexity or mind-numbing jargon? You need UML for Mere Mortals®. This easy-to-read introduction is perfect for technical professionals and business stakeholders alike: anyone who needs to create, understand, or review UML models, without becoming a hard-core modeler.

There's nothing theoretical about this book. It explains UML in the context of your real-world challenges. It's organized around the activities you'll need to perform. It focuses on the UML elements you'll find most useful. And it offers specific answers for the problems you're most likely to face.

Drawing on extensive experience, the authors offer pragmatic explanations and guidance on core techniques ranging from use cases to component diagrams, architectural patterns to application and database modeling. You'll find practical coverage for using UML to support testing, as well as discussion of UML 2.0 and its implications.

Whether you're a manager, programmer, architect, database designer, or documentation specialist, UML for Mere Mortals is the handy resource you need to help you achieve your goals with UML...simply, quickly, painlessly.

© Copyright Pearson Education. All rights reserved.