- General AAS
- Medical, Legal & Social Sciences
- Repair & Maintenance
- By Series
- Groups & Group Theory
- Remedial Teaching
- Urdu
- Maine
- Netscape Communicator
- Somtow, S. P.
- Trollope, Joanna
- Blackwood, Alegernon
- Rosten, Leo
- Smith, Deborah
- Variety Shows & Cabaret
- Dubbs, Chris
- Trevanian
- Nepal
- Tropical Agriculture
- Haldeman, Jack C.
- American Football
- Egan, Greg
- Middle East
- Monet, Claude
- Faulks, Sebastian
- Watches
- Home and Garden
- UK Electronics
- UK Books
- Health and Personal Care
- UK Sporting Goods
- Clothing, Shoes and Accessories
- Electronics, Gadgets and Computers
- CDs and Music Downloads
- UK Software and Video Games
- UK Toys and Games
- UK Home and Garden
- UK Video Games
- UK Baby Clothes and Accessories
- Books On
- German Electronics
Books : Study Books : Professional : Computing : Operating Systems : UNIX & Linux : Linux & Unix
-
Solaris™ 10 Security Essentials describes the various security technologies contained in the Solaris operating system. The book describes how to make installations secure and how to configure the OS to the particular needs of your environment, whether your systems are on the edge of the Internet or running a data center. The authors present the material in a straightforward way that makes a seemingly arcane subject accessible to system administrators at all levels.
The strengths of the Solaris operating system’s security model are its scalability and its adaptability. It can protect a single user with login authentication or multiple users with Internet and intranet configurations requiring user-rights management, authentication, encryption, IP security, key management, and more. This book is written for users who need to secure their laptops, network administrators who must secure an entire company, and everyone in between.
The book’s topics include
- Zones virtualization security
- System hardening
- Trusted Extensions (Multi-layered Security)
- Privileges and role-based access control (RBAC)
- Cryptographic services and key management
- Auditing
- Network security
- Pluggable Authentication Modules (PAM)
Solaris™ 10 Security Essentials is the first in a new series on Solaris system administration. It is a superb guide to deploying and managing secure computer environments.
-
Linux, like every other networkable OS, is vulnerable to a variety of local and remote attacks. Hacking Linux Exposed seeks to do two jobs: explain where the vulnerabilities lie and provide ways to minimise or eliminate the risks.The authors' slightly breathless hands-on approach--coupled with the wealth of relevant technical detail--produces an unusually pacey read. Much of the spiciness comes from the emphasis on exploiting Linux's weaknesses. This is helped with lots of case studies of successful intrusions. You won't be in any doubt that you should be taking security seriously.
Much of the advice is common sense: use secure passwords, shadow password files, turn off unwanted services, set up an efficient firewall, apply security patches and so on. But the devil is in the detail. Successfully hardening a Linux system is non-trivial (as with other OS's). It's also an ongoing process. What really sets Hacking Linux Exposed apart is the way it walks you through each vulnerability and then explains the technical aspects of implementing a defense against it--converting to shadow password files, setting up IPChains, automating log file checking, testing your own security and more are all detailed.
Linux sysadmins will love this book. However, any Linux user with the confidence to edit a configuration file and a copy of Hacking Linux Exposed to hand can also ha
-
-
-
As we've all become well aware lately, every complex system has flaws. When the complex system is a computer operating system, such as Linux, or a piece of software running under it, those flaws can provide black-hat hackers with the access they need to steal your data, damage your system, or use your computing resources as a base for attacking other computers. Maximum Linux Security reveals security holes in Linux and does so explicitly. You can follow instructions in this book and break into unsecured Linux machines in a variety of ways. The newest edition of this book includes newer information about Linux security exploits and updated links to information and tools.The anonymous author of this book has done a fine job of recognising that his readers, despite the fact that they're probably pretty accomplished power users just because they're messing around with Linux, aren't really experienced with Linux or with computer security. He's careful to explain his subjects carefully. For example, he goes to considerable effort to explain how to set up user accounts properly (with emphasis on preventing obvious security holes), in addition to documenting offensive and defensive weapons like SAINT and Crack. Most entries on software include URL references to the latest versions, as well as cross-references to related programs. --David Wall
Topics covered: Good Linu
-
-
Linux machines serve scores of purposes on networks but their very integration with networked environments means they're constantly exposed to attack. Maximum Linux Security: A Hacker's Guide to Protecting Your Linux Server and Network provides a comprehensive picture of Linux's strengths and weaknesses when it comes to protecting your systems from bad guys. The author offers explicit advice (e.g., replace sendmail with Qmail)and general recommendations (e.g., be on the lookout for unused services and disable them). In case you're wondering which Anonymous this is, he's the same guy who wrote the very highly regarded Maximum Security.In Maximum Linux Security, readers become familiar with scores of offensive and defensive weapons, including Crack, Tripwire, linux_sniffer, mendax and many more. For each program, the author documents the required infrastructure (such as C or Perl), the required permissions and a URL from which the program can be downloaded. Most valuably, he walks you through the use of each program (using Red Hat Linux 5.1 and Caldera Open Linux 1.3 on his test bed machines). Readers can follow along as the author performs various hacks, including an IP spoofing attack. He lists hundreds of hacking tools in an appendix and includes a lot of software (Linux security products, code examples, technical documents, system logs
-
The third edition of Practical UNIX & Internet Security contains--to an even greater extent than its favourably received predecessors--an enormous amount of accumulated wisdom about how to protect Internet-connected UNIX machines from intrusion and other forms of attack. The world's most business-critical transactions run on UNIX machines, which means the machines running those transactions attract evildoers. Furthermore, a lot of those machines have Internet connections, which means it's always possible that some nefarious remote user will find a way in. This book is fat with practical advice on specific defensive measures (to defeat known attacks) and generally wise policies (to head off as-yet-undiscovered ones).The authors' approach to UNIX security is holistic and clever; they devote as much space to security philosophy as to advice about closing TCP ports and disabling unnecessary services. They also recognise that lots of UNIX machines are development platforms, and make many recommendations to consider as you design software. It's rare that you read a page in this carefully compiled book that does not impart some obscure nugget of knowledge, or remind you to implement some important policy. What's more, the authors have a style that reminds their readers that computing is supposed to be about intellectual exercise and fun, an attitude that's absent from too much of the
-
'Netfilter: Intrusion Detection & Response' deals with computers/software.
-
Based on the Linux 2.6 kernel, this title reveals Linux attacks, countermeasures, and case studies. It helps to learn how to secure any version of Linux that you are running.
-
System administrators need to stay ahead of new security vulnerabilities that leave their networks exposed every day. A firewall and an intrusion detection systems (IDS) are two important weapons in that fight, enabling you to proactively deny access and monitor network traffic for signs of an attack.
Linux Firewalls discusses the technical details of the iptables firewall and the Netfilter framework that are built into the Linux kernel, and it explains how they provide strong filtering, Network Address Translation (NAT), state tracking, and application layer inspection capabilities that rival many commercial tools. You'll learn how to deploy iptables as an IDS with psad and fwsnort and how to build a strong, passive authentication layer around iptables with fwknop.
Concrete examples illustrate concepts such as firewall log analysis and policies, passive network authentication and authorization, exploit packet traces, Snort ruleset emulation, and more with coverage of these topics:
- Passive network authentication and OS fingerprinting
- iptables log analysis and policies
- Application layer attack detection with the iptables string match extension
- Building an iptables ruleset that emulates a Snort ruleset
- Port knocking vs. Single Packet Authorization (SPA)
- Tools for visualizing iptables logs
Perl and C code sni
Practical Unix & Internet Security is on its second edition, and its maturity shows. To call this highly readable book comprehensive is an understatement. The breadth is vast, from fundamentals (definitions of computer security; the history of Unix) and commonsense but little-observed security basics (making backups; physical and personnel security; buggy software) to modern software (NFS, WWW, firewalls) and the handling of security incidents. The section on users and passwords alone is 21 pages long--and worth every page. Useful appendices include a Unix security checklist, a list of emergency response organisations, and many references to electronic and paper resources.The Internet covers too much and moves too quickly for any book to cover every security aspect of every piece of software, but this book comes close. More importantly, it gives you an exceptional grounding in the fundamental issues of security and teaches the right questions to ask--something that will stay with you long after today's software is obsolete. --Jake Bond
TCP/IP packet handling may sound crystal clear when you first hear it, but after you've configured your ethernet card's netmask address, the details become rather remote. You might find yourself asking--if you were a Danish prince--"What is a packet, if its chief good and market of its time be but to route and wrap?" If routing and wrapping were all packets did, we would all enjoy our ignorance blissfully. But packets--like men, as the prince learned--can be hollow carriers of ill will, and excluding the bad ones requires us to understand what they really, truly are. At last.Just how interesting packets turn out to be is revealed in Linux Firewalls, Robert L. Zeigler's sober, agile and subtle text. Narrowing consideration to threats faced by small networks from external sources, Zeigler and his editors introduce security by delivering pre-requisite tutorials on packet architecture and normal, network-based client-server daemon-to-daemon communications. Non-threatening daemon-to-daemon communication is part of the regular operation of a networked, POSIX-compliant operating system (like Linux or NT), but the incessant background chatter makes finding hostile intrusions a search for sometimes-subtle irregularities in a high throughput environment.
In fact, bombardment of networks with useless packets can create diversions for more pernicious attacks. Telling the good packets fro