Building Secure Servers With Linux - Brossura

Bauer, Michael D.

 
9780596002176: Building Secure Servers With Linux
Brossura
ISBN 10: 0596002173 ISBN 13: 9780596002176
Casa editrice: Oreilly & Associates Inc, 2002

Sinossi

Linux consistently turns up high in the list of popular Internet servers, whether it's for the Web, anonymous FTP, or general services like DNS and routing mail. But security is uppermost on the mind of anyone providing such a service. Any server experiences casual probe attempts dozens of time a day, and serious break-in attempts with some frequency as well.

As the cost of broadband and other high-speed Internet connectivity has gone down, and its availability has increased, more Linux users are providing or considering providing Internet services such as HTTP, Anonymous FTP, etc., to the world at large. At the same time, some important, powerful, and popular Open Source tools have emerged and rapidly matured--some of which rival expensive commercial equivalents--making Linux a particularly appropriate platform for providing secure Internet services.

Building Secure Servers with Linux will help you master the principles of reliable system and network security by combining practical advice with a firm knowledge of the technical tools needed to ensure security. The book focuses on the most common use of Linux--as a hub offering services to an organization or the larger Internet--and shows readers how to harden their hosts against attacks. Author Mick Bauer, a security consultant, network architect, and lead author of the popular Paranoid Penguin column in Linux Journal, carefully outlines the security risks, defines precautions that can minimize those risks, and offers recipes for robust security. The book does not cover firewalls, but covers the more common situation where an organization protects its hub using other systems as firewalls, often proprietary firewalls.

The book includes:

  • Precise directions for securing common services, including the Web, mail, DNS, and file transfer.
  • Ancillary tasks, such as hardening Linux, using SSH and certificates for tunneling, and using iptables for firewalling.
  • Basic installation of intrusion detection tools.
Writing for Linux users with little security expertise, the author explains security concepts and techniques in clear language, beginning with the fundamentals. Building Secure Servers with Linux provides a unique balance of "big picture" principles that transcend specific software packages and version numbers, and very clear procedures on securing some of those software packages. An all-inclusive resource for Linux users who wish to harden their systems, the book covers general security as well as key services such as DNS, the Apache Web server, mail, file transfer, and secure shell. With this book in hand, you'll have everything you need to ensure robust security of your Linux system.

Le informazioni nella sezione "Riassunto" possono far riferimento a edizioni diverse di questo titolo.

Contenuti

Preface; What This Book Is About; The Paranoid Penguin Connection; Audience; What This Book Doesn’t Cover; Assumptions This Book Makes; Conventions Used in This Book; Request for Comments; Acknowledgments; Chapter 1: Threat Modeling and Risk Management; 1.1 Components of Risk; 1.2 Simple Risk Analysis: ALEs; 1.3 An Alternative: Attack Trees; 1.4 Defenses; 1.5 Conclusion; 1.6 Resources; Chapter 2: Designing Perimeter Networks; 2.1 Some Terminology; 2.2 Types of Firewall and DMZ Architectures; 2.3 Deciding What Should Reside on the DMZ; 2.4 Allocating Resources in the DMZ; 2.5 The Firewall; Chapter 3: Hardening Linux; 3.1 OS Hardening Principles; 3.2 Automated Hardening with Bastille Linux; Chapter 4: Secure Remote Administration; 4.1 Why It’s Time to Retire Clear-Text Admin Tools; 4.2 Secure Shell Background and Basic Use; 4.3 Intermediate and Advanced SSH; 4.4 Other Handy Tools; Chapter 5: Tunneling; 5.1 Stunnel and OpenSSL: Concepts; Chapter 6: Securing Domain Name Services (DNS); 6.1 DNS Basics; 6.2 DNS Security Principles; 6.3 Selecting a DNS Software Package; 6.4 Securing BIND; 6.5 djbdns; 6.6 Resources; Chapter 7: Securing Internet Email; 7.1 Background: MTA and SMTP Security; 7.2 Using SMTP Commands to Troubleshoot and Test SMTP Servers; 7.3 Securing Your MTA; 7.4 Sendmail; 7.5 Postfix; 7.6 Resources; Chapter 8: Securing Web Services; 8.1 Web Server Security; 8.2 Build Time: Installing Apache; 8.3 Setup Time: Configuring Apache; 8.4 Runtime: Securing CGI Scripts; 8.5 Special Topics; 8.6 Other Servers and Web Security; Chapter 9: Securing File Services; 9.1 FTP Security; 9.2 Other File-Sharing Methods; 9.3 Resources; Chapter 10: System Log Management and Monitoring; 10.1 syslog; 10.2 Syslog-ng; 10.3 Testing System Logging with logger; 10.4 Managing System-Log Files; 10.5 Using Swatch for Automated Log Monitoring; 10.6 Resources; Chapter 11: Simple Intrusion Detection Techniques; 11.1 Principles of Intrusion Detection Systems; 11.2 Using Tripwire; 11.3 Other Integrity Checkers; 11.4 Snort; 11.5 Resources; Two Complete Iptables Startup Scripts; Colophon;

Product Description

Book by Michael D Bauer

Le informazioni nella sezione "Su questo libro" possono far riferimento a edizioni diverse di questo titolo.

Editore
Oreilly & Associates Inc
Data di pubblicazione
2002
Lingua
Inglese
ISBN 10 
0596002173
ISBN 13 
9780596002176
Rilegatura
Copertina flessibile
Numero di pagine
448
Contatto del produttore
non disponibile
Persona responsabile
non disponibile

Altre edizioni note dello stesso titolo

9788173665622: Building Secure Servers With Linux

Edizione in evidenza

ISBN 10:  8173665621 ISBN 13:  9788173665622
Brossura