Linux Security Cookbook

( 2 )
Paperback (New Edition)
$35.95
BN.com price
$39.99 List Price (Save 10%)
Marketplace (New and Used)
from
$1.60
$39.99 List Price (Save 96%)
Usually ships in 1-2 business days
All (17)  
Used (10)  
New (7)  
Close
Sort by
Page 1 of 2
Showing 1 – 9 of 17 (2 pages)
$1.60
(Save 96%)
SellBackYourBook
Seller since 2008

Feedback rating:

(841)

Condition:

New — never opened or used in original packaging.

Like New — packaging may have been opened. A "Like New" item is suitable to give as a gift.

Very Good — may have minor signs of wear on packaging but item works perfectly and has no damage.

Good — item is in good condition but packaging may have signs of shelf wear/aging or torn packaging. All specific defects should be noted in the Comments section associated with each item.

Acceptable — item is in working order but may show signs of wear such as scratches or torn packaging. All specific defects should be noted in the Comments section associated with each item.

Used — An item that has been opened and may show signs of wear. All specific defects should be noted in the Comments section associated with each item.

Refurbished — A used item that has been renewed or updated and verified to be in proper working condition. Not necessarily completed by the original manufacturer.

Good
0596003919 Item in good condition. Textbooks may not include supplemental items i.e. CDs, access codes etc... All day low prices, buy from us sell to us we do it all!!

Ships from: Aurora, IL

Usually ships in 1-2 business days

  • Standard, 48 States
  • Standard (AK, HI)
  • Express, 48 States
  • Express (AK, HI)
$1.62
(Save 96%)
Thrift It
Seller since 2009

Feedback rating:

(909)

Condition: Acceptable
Acceptable Book is in good reading condition. Cover has wear at edges and corners, and may have creases. Spine has wear at edges and may have creases.

Ships from: Washington, DC

Usually ships in 1-2 business days

  • Canadian
  • Standard, 48 States
  • Standard (AK, HI)
  • Express, 48 States
  • Express (AK, HI)
$1.75
(Save 96%)
Auriga Distribution Group VA
Seller since 2008

Feedback rating:

(301)

Condition: Very Good
2003 Paperback Very good condition. Absolutely no highlighting or markings inside the books. Good covers subject to prior use. (Some items may have small creases or dings but ... are otherwise in excellent condition) NB: If an item is listed as having a CD/DVD, it will be included. Read more Show Less

Ships from: Front Royal, VA

Usually ships in 1-2 business days

  • Canadian
  • International
  • Standard, 48 States
  • Standard (AK, HI)
  • Express, 48 States
  • Express (AK, HI)
$1.99
(Save 95%)
ThriftIt
Seller since 2010

Feedback rating:

(269)

Condition: Acceptable
Book is in good reading condition. Cover has wear at edges and corners, and may have creases. Spine has wear at edges and may have creases.

Ships from: Washington, DC

Usually ships in 1-2 business days

  • Canadian
  • International
  • Standard, 48 States
  • Standard (AK, HI)
  • Express, 48 States
  • Express (AK, HI)
$5.03
(Save 87%)
Extremely_Reliable
Seller since 2007

Feedback rating:

(3210)

Condition: Acceptable
Buy with confidence. Excellent Customer Service & Return policy.

Ships from: Richmond, TX

Usually ships in 1-2 business days

  • Canadian
  • International
  • Standard, 48 States
  • Standard (AK, HI)
$11.99
(Save 70%)
Magers&Quinn
Seller since 2008

Feedback rating:

(2449)

Condition: Very Good
Previously read with moderate shelf wear. No underlining or margin notes present. We are the Twin Cities' largest independent book store.

Ships from: Minneapolis, MN

Usually ships in 1-2 business days

  • Canadian
  • International
  • Standard, 48 States
  • Standard (AK, HI)
  • Express, 48 States
  • Express (AK, HI)
$16.95
(Save 58%)
savethetrees
Seller since 2012

Feedback rating:

(37)

Condition: Good

Ships from: Lookout Mountain, GA

Usually ships in 1-2 business days

  • Standard, 48 States
  • Express, 48 States
  • Express (AK, HI)
$22.95
(Save 43%)
SuperCheapTextbooks2020
Seller since 2012

Feedback rating:

(2)

Condition: Good

Ships from: Brentwood, TN

Usually ships in 1-2 business days

  • Standard, 48 States
  • Standard (AK, HI)
  • Express, 48 States
$30.23
(Save 24%)
BargainBookStores
Seller since 2010

Feedback rating:

(7946)

Condition: New
BRAND NEW FROM PUBLISHER! 100% Satisfaction Guarantee. Tracking provided on most orders. Buy with Confidence! Millions of books sold!

Ships from: Grand Rapids, MI

Usually ships in 1-2 business days

  • Canadian
  • International
  • Standard, 48 States
  • Standard (AK, HI)
  • Express, 48 States
  • Express (AK, HI)
Page 1 of 2
Showing 1 – 9 of 17 (2 pages)
Close
Sort by

Overview

Computer security is an ongoing process, a relentless contest between system administrators and intruders. A good administrator needs to stay one step ahead of any adversaries, which often involves a continuing process of education. If you're grounded in the basics of security, however, you won't necessarily want a complete treatise on the subject each time you pick up a book. Sometimes you want to get straight to the point. That's exactly what the new Linux Security Cookbook does. Rather than provide a total security solution for Linux computers, the authors present a series of easy-to-follow recipes—short, focused pieces of code that administrators can...

See more details below
Sending request ...

More About This Book

Overview

Computer security is an ongoing process, a relentless contest between system administrators and intruders. A good administrator needs to stay one step ahead of any adversaries, which often involves a continuing process of education. If you're grounded in the basics of security, however, you won't necessarily want a complete treatise on the subject each time you pick up a book. Sometimes you want to get straight to the point. That's exactly what the new Linux Security Cookbook does. Rather than provide a total security solution for Linux computers, the authors present a series of easy-to-follow recipes—short, focused pieces of code that administrators can use to improve security and perform common tasks securely.

The Linux Security Cookbook includes real solutions to a wide range of targeted problems, such as sending encrypted email within Emacs, restricting access to network services at particular times of day, firewalling a webserver, preventing IP spoofing, setting up key-based SSH authentication, and much more. With over 150 ready-to-use scripts and configuration files, this unique book helps administrators secure their systems without having to look up specific syntax. The book begins with recipes devised to establish a secure system, then moves on to secure day-to-day practices, and concludes with techniques to help your system stay secure.

Some of the "recipes" you'll find in this book are:

  • Controlling access to your system from firewalls down to individual services, using iptables, ipchains, xinetd, inetd, and more
  • Monitoring your network with tcpdump, dsniff, netstat, and other tools
  • Protecting network connections with Secure Shell (SSH) and stunnel
  • Safeguarding email sessions with Secure Sockets Layer (SSL)
  • Encrypting files and email messages with GnuPG
  • Probing your own security with password crackers, nmap, and handy scripts
This cookbook's proven techniques are derived from hard-won experience. Whether you're responsible for security on a home Linux system or for a large corporation, or somewhere in between, you'll find valuable, to-the-point, practical recipes for dealing with everyday security issues. This book is a system saver.

Product Details

  • ISBN-13: 9780596003913
  • Publisher: O'Reilly Media, Incorporated
  • Publication date: 6/9/2003
  • Edition description: New Edition
  • Pages: 336
  • Sales rank: 805,143
  • Product dimensions: 0.70 (w) x 7.00 (h) x 9.19 (d)

Meet the Author

Daniel J. Barrett has been immersed in Internet technology since 1985. Currently working as a software engineer, Dan has also been a heavy metal singer, Unix system administrator, university lecturer, web designer, and humorist. He is the author of O'Reilly's Linux Pocket Guide, and is the coauthor of Linux Security Cookbook, and the first edition of SSH, The Secure Shell: The Definitive Guide. He also writes monthly columns for Compute! and Keyboard Magazine, and articles for the O'Reilly Network.

Richard E. Silverman has a B.A. in computer science and an M.A. in pure mathematics. Richard has worked in the fields of networking, formal methods in software development, public-key infrastructure, routing security, and Unix systems administration. He co-authored the first edition of SSH, The Secure Shell: The Definitive Guide.

Robert G. Byrnes, Ph.D., has been hacking on Unix systems for twenty years, and has been involved with security issues since the original Internet worm was launched from Cornell University, while he was a graduate student and system administrator. Currently, he's a software engineer at Curl Corporation, and has worked in the fields of networking, telecommunications, distributed computing, financial technology, and condensed matter physics.

Table of Contents

Preface; A Cookbook About Security?!?; Intended Audience; Roadmap of the Book; Our Security Philosophy; Supported Linux Distributions; Trying the Recipes; Conventions Used in This Book; We'd Like to Hear from You; Acknowledgments; Chapter 1: System Snapshots with Tripwire; 1.1 Setting Up Tripwire; 1.2 Displaying the Policy and Configuration; 1.3 Modifying the Policy and Configuration; 1.4 Basic Integrity Checking; 1.5 Read-Only Integrity Checking; 1.6 Remote Integrity Checking; 1.7 Ultra-Paranoid Integrity Checking; 1.8 Expensive, Ultra-Paranoid Security Checking; 1.9 Automated Integrity Checking; 1.10 Printing the Latest Tripwire Report; 1.11 Updating the Database; 1.12 Adding Files to the Database; 1.13 Excluding Files from the Database; 1.14 Checking Windows VFAT Filesystems; 1.15 Verifying RPM-Installed Files; 1.16 Integrity Checking with rsync; 1.17 Integrity Checking Manually; Chapter 2: Firewalls with iptables and ipchains; 2.1 Enabling Source Address Verification; 2.2 Blocking Spoofed Addresses; 2.3 Blocking All Network Traffic; 2.4 Blocking Incoming Traffic; 2.5 Blocking Outgoing Traffic; 2.6 Blocking Incoming Service Requests; 2.7 Blocking Access from a Remote Host; 2.8 Blocking Access to a Remote Host; 2.9 Blocking Outgoing Access to All Web Servers on a Network; 2.10 Blocking Remote Access, but Permitting Local; 2.11 Controlling Access by MAC Address; 2.12 Permitting SSH Access Only; 2.13 Prohibiting Outgoing Telnet Connections; 2.14 Protecting a Dedicated Server; 2.15 Preventing pings; 2.16 Listing Your Firewall Rules; 2.17 Deleting Firewall Rules; 2.18 Inserting Firewall Rules; 2.19 Saving a Firewall Configuration; 2.20 Loading a Firewall Configuration; 2.21 Testing a Firewall Configuration; 2.22 Building Complex Rule Trees; 2.23 Logging Simplified; Chapter 3: Network Access Control; 3.1 Listing Your Network Interfaces; 3.2 Starting and Stopping the Network Interface; 3.3 Enabling/Disabling a Service (xinetd); 3.4 Enabling/Disabling a Service (inetd); 3.5 Adding a New Service (xinetd); 3.6 Adding a New Service (inetd); 3.7 Restricting Access by Remote Users; 3.8 Restricting Access by Remote Hosts (xinetd); 3.9 Restricting Access by Remote Hosts (xinetd with libwrap); 3.10 Restricting Access by Remote Hosts (xinetd with tcpd); 3.11 Restricting Access by Remote Hosts (inetd); 3.12 Restricting Access by Time of Day; 3.13 Restricting Access to an SSH Server by Host; 3.14 Restricting Access to an SSH Server by Account; 3.15 Restricting Services to Specific Filesystem Directories; 3.16 Preventing Denial of Service Attacks; 3.17 Redirecting to Another Socket; 3.18 Logging Access to Your Services; 3.19 Prohibiting root Logins on Terminal Devices; Chapter 4: Authentication Techniques and Infrastructures; 4.1 Creating a PAM-Aware Application; 4.2 Enforcing Password Strength with PAM; 4.3 Creating Access Control Lists with PAM; 4.4 Validating an SSL Certificate; 4.5 Decoding an SSL Certificate; 4.6 Installing a New SSL Certificate; 4.7 Generating an SSL Certificate Signing Request (CSR); 4.8 Creating a Self-Signed SSL Certificate; 4.9 Setting Up a Certifying Authority; 4.10 Converting SSL Certificates from DER to PEM; 4.11 Getting Started with Kerberos; 4.12 Adding Users to a Kerberos Realm; 4.13 Adding Hosts to a Kerberos Realm; 4.14 Using Kerberos with SSH; 4.15 Using Kerberos with Telnet; 4.16 Securing IMAP with Kerberos; 4.17 Using Kerberos with PAM for System-Wide Authentication; Chapter 5: Authorization Controls; 5.1 Running a root Login Shell; 5.2 Running X Programs as root; 5.3 Running Commands as Another User via sudo; 5.4 Bypassing Password Authentication in sudo; 5.5 Forcing Password Authentication in sudo; 5.6 Authorizing per Host in sudo; 5.7 Granting Privileges to a Group via sudo; 5.8 Running Any Program in a Directory via sudo; 5.9 Prohibiting Command Arguments with sudo; 5.10 Sharing Files Using Groups; 5.11 Permitting Read-Only Access to a Shared File via sudo; 5.12 Authorizing Password Changes via sudo; 5.13 Starting/Stopping Daemons via sudo; 5.14 Restricting root's Abilities via sudo; 5.15 Killing Processes via sudo; 5.16 Listing sudo Invocations; 5.17 Logging sudo Remotely; 5.18 Sharing root Privileges via SSH; 5.19 Running root Commands via SSH; 5.20 Sharing root Privileges via Kerberos su; Chapter 6: Protecting Outgoing Network Connections; 6.1 Logging into a Remote Host; 6.2 Invoking Remote Programs; 6.3 Copying Files Remotely; 6.4 Authenticating by Public Key (OpenSSH); 6.5 Authenticating by Public Key (OpenSSH Client, SSH2 Server, OpenSSH Key); 6.6 Authenticating by Public Key (OpenSSH Client, SSH2 Server, SSH2 Key); 6.7 Authenticating by Public Key (SSH2 Client, OpenSSH Server); 6.8 Authenticating by Trusted Host; 6.9 Authenticating Without a Password ((((((Interactively); 6.10 Authenticating in cron Jobs; 6.11 Terminating an SSH Agent on Logout; 6.12 Tailoring SSH per Host; 6.13 Changing SSH Client Defaults; 6.14 Tunneling Another TCP Session Through SSH; 6.15 Keeping Track of Passwords; Chapter 7: Protecting Files; 7.1 Using File Permissions; 7.2 Securing a Shared Directory; 7.3 Prohibiting Directory Listings; 7.4 Encrypting Files with a Password; 7.5 Decrypting Files; 7.6 Setting Up GnuPG for Public-Key Encryption; 7.7 Listing Your Keyring; 7.8 Setting a Default Key; 7.9 Sharing Public Keys; 7.10 Adding Keys to Your Keyring; 7.11 Encrypting Files for Others; 7.12 Signing a Text File; 7.13 Signing and Encrypting Files; 7.14 Creating a Detached Signature File; 7.15 Checking a Signature; 7.16 Printing Public Keys; 7.17 Backing Up a Private Key; 7.18 Encrypting Directories; 7.19 Adding Your Key to a Keyserver; 7.20 Uploading New Signatures to a Keyserver; 7.21 Obtaining Keys from a Keyserver; 7.22 Revoking a Key; 7.23 Maintaining Encrypted Files with Emacs; 7.24 Maintaining Encrypted Files with vim; 7.25 Encrypting Backups; 7.26 Using PGP Keys with GnuPG; Chapter 8: Protecting Email; 8.1 Encrypted Mail with Emacs; 8.2 Encrypted Mail with vim; 8.3 Encrypted Mail with Pine; 8.4 Encrypted Mail with Mozilla; 8.5 Encrypted Mail with Evolution; 8.6 Encrypted Mail with mutt; 8.7 Encrypted Mail with elm; 8.8 Encrypted Mail with MH; 8.9 Running a POP/IMAP Mail Server with SSL; 8.10 Testing an SSL Mail Connection; 8.11 Securing POP/IMAP with SSL and Pine; 8.12 Securing POP/IMAP with SSL and mutt; 8.13 Securing POP/IMAP with SSL and Evolution; 8.14 Securing POP/IMAP with stunnel and SSL; 8.15 Securing POP/IMAP with SSH; 8.16 Securing POP/IMAP with SSH and Pine; 8.17 Receiving Mail Without a Visible Server; 8.18 Using an SMTP Server from Arbitrary Clients; Chapter 9: Testing and Monitoring; 9.1 Testing Login Passwords (John the Ripper); 9.2 Testing Login Passwords (CrackLib); 9.3 Finding Accounts with No Password; 9.4 Finding Superuser Accounts; 9.5 Checking for Suspicious Account Use; 9.6 Checking for Suspicious Account Use, Multiple Systems; 9.7 Testing Your Search Path; 9.8 Searching Filesystems Effectively; 9.9 Finding setuid (or setgid) Programs; 9.10 Securing Device Special Files; 9.11 Finding Writable Files; 9.12 Looking for Rootkits; 9.13 Testing for Open Ports; 9.14 Examining Local Network Activities; 9.15 Tracing Processes; 9.16 Observing Network Traffic; 9.17 Observing Network Traffic (GUI); 9.18 Searching for Strings in Network Traffic; 9.19 Detecting Insecure Network Protocols; 9.20 Getting Started with Snort; 9.21 Packet Sniffing with Snort; 9.22 Detecting Intrusions with Snort; 9.23 Decoding Snort Alert Messages; 9.24 Logging with Snort; 9.25 Partitioning Snort Logs Into Separate Files; 9.26 Upgrading and Tuning Snort's Ruleset; 9.27 Directing System Messages to Log Files (syslog); 9.28 Testing a syslog Configuration; 9.29 Logging Remotely; 9.30 Rotating Log Files; 9.31 Sending Messages to the System Logger; 9.32 Writing Log Entries via Shell Scripts; 9.33 Writing Log Entries via Perl; 9.34 Writing Log Entries via C; 9.35 Combining Log Files; 9.36 Summarizing Your Logs with logwatch; 9.37 Defining a logwatch Filter; 9.38 Monitoring All Executed Commands; 9.39 Displaying All Executed Commands; 9.40 Parsing the Process Accounting Log; 9.41 Recovering from a Hack; 9.42 Filing an Incident Report; Colophon;

Dan Barrett has been immersed in Internet technology since 1985. Currently working as a software engineer, Dan has also been a heavy metal singer, Unix system administrator, university lecturer, web designer, and humorist. He has written several O'Reilly books, as well as monthly columns for Compute! and Keyboard Magazine. Dan and his family reside in Boston.

Richard E. Silverman has a B.A. in computer science and an M.A. in pure mathematics. Richard has worked in the fields of networking, formal methods in software development, public-key infrastructure, routing security, and Unix systems administration. He is the co-author of SSH, The Secure Shell: The Definitive Guide.

Customer Reviews

Average Rating 4.5
( 2 )

Rating Distribution

5 Star

(1)

4 Star

(1)

3 Star

(0)

2 Star

(0)

1 Star

(0)

Your Rating:

Review Guidelines
Add Recommendations
Your Name: Create a Pen Name or Leave Anonymously

Barnes & Noble.com Review Rules

Our reader reviews allow you to share your comments on titles you liked, or didn't, with others. By submitting an online review, you are representing to Barnes & Noble.com that all information contained in your review is original and accurate in all respects, and that the submission of such content by you and the posting of such content by Barnes & Noble.com does not and will not violate the rights of any third party. Please follow the rules below to help ensure that your review can be posted.

Reviews by Our Customers Under the Age of 13

We highly value and respect everyone's opinion concerning the titles we offer. However, we cannot allow persons under the age of 13 to have accounts at BN.com or to post customer reviews. Please see our Terms of Use for more details.

What to exclude from your review:

Please do not write about reviews, commentary, or information posted on the product page. If you see any errors in the information on the product page, please send us an email.

Reviews should not contain any of the following:

  • - HTML tags, profanity, obscenities, vulgarities, or comments that defame anyone
  • - Time-sensitive information such as tour dates, signings, lectures, etc.
  • - Single-word reviews. Other people will read your review to discover why you liked or didn't like the title. Be descriptive.
  • - Comments focusing on the author or that may ruin the ending for others
  • - Phone numbers, addresses, URLs
  • - Pricing and availability information or alternative ordering information
  • - Advertisements or commercial solicitation

Reminder:

  • - By submitting a review, you grant to Barnes & Noble.com and its sublicensees the royalty-free, perpetual, irrevocable right and license to use the review in accordance with the Barnes & Noble.com Terms of Use.
  • - Barnes & Noble.com reserves the right not to post any review -- particularly those that do not follow the terms and conditions of these Rules. Barnes & Noble.com also reserves the right to remove any review at any time without notice.
  • - See Terms of Use for other conditions and disclaimers.
Search for Products You'd Like to Recommend

Recommend other products that relate to your review. Just search for them below and share!

Create a Pen Name

Your Pen Name is your unique identiy on BN.com. It will appear on the reviews you write and other website activities. Your Pen Name cannot be edited, changed or deleted once submitted.

Your Pen Name can be any combination of alphanumeric characters (plus - and _), and must be at least two characters long.

Continue Anonymously

We're sorry, but penname is already taken.

Please select one of the following:
Your Pen Name can be any combination of alphanumeric characters (plus - and _), and must be at least two characters long.

Continue Anonymously

penname is available!

By visiting the BN.com website or marking a purchase on BN.com, a User is deemed to have accepted the Terms of Use.

Continue Anonymously

Welcome, penname

You have successfully created your Pen Name. Start enjoying the benefits of the BN.com Community today.

Sort by: Showing all of 2 Customer Reviews

  • Anonymous

    Posted April 15, 2004

    Pensacola LUG review book

    The Linux Security Cookbook is a good hands-on guide to the major aspects of securing your Linux box. This book offers many quick reference guides to pieces of software for securing or testing your system and goes through many different means of fortifying your box including: -controlling system access with firewalls -monitoring your network -using SSH and SSL -intrusion detection systems -authentication and cryptographic keys -encrypting files and email messages -system security probing The recipes in this book allows administrators to learn quick and easy ways to secure their systems including over 150 ready-to-use scripts and configuration files without having to look up or research specific syntax. This book is definitely a quick hands-on guide to securing and monitoring your system and would recommend it to anyone looking for a good source of guides and ready-to-use scripts and configurations.

    Was this review helpful? Yes  NoThank you for your feedback.   Report this reviewThank you, this review has been flagged.

  • Anonymous

    Posted July 16, 2003

    Understandable and concise

    Given the increasing frequency of attacks against computers, by virus writers, spammers and others, any sysadmin needs to pay careful attention to securing your system. All the more so if the computer acts as a server, rather than just a desktop leaf on a network. On the server side, you often have unix or linux systems. This recent book by OReilly is hence timely. Concise, with a good contents and index. The authors write clearly, in what may be considered a 'standard' cookbook style. Each problem is summarised, and a brief but entirely adequate how-to answer is then given. It is part of this style that they do not go into the theory of public/private key encryption, for example. But they readily provide references to fuller discussions on many topics. Checking the index for comprehensiveness revealed one curious omission. There is no entry for 'virus'. While it seems like a glaring oversight, I think the authors are correct in doing so. Antivirus software exists, and you would merely have to run it against a set of files. And this software is not usually part of an operating system. Also, most viruses are written for Microsoft desktops. Thus far, linux viruses are actually pretty rare. The title says 'Linux'. Actually, if you are running any major unix (Solaris, HPUX...), don't take that title too literally. The problems you face will often be the same as those described here. The solutions will often likewise be the same. Most unixes now have many utilities in common with each other and linux. You may be able to map an answer given here to a similar approach on your machine.

    Was this review helpful? Yes  NoThank you for your feedback.   Report this reviewThank you, this review has been flagged.
Sort by: Showing all of 2 Customer Reviews
If you find inappropriate content, please report it to Barnes & Noble
Why is this product inappropriate?
Comments (optional)
500 character limit