I agree. System security requires a good dose of paranoia. I think we have it better in the open-source community, since many eyes can check over the coding.
I would like to recommend "Red Hat Linux Firewalls" by Bill McCarty. It really does a good job of explaining Iptables.