Practical Linux Security Cookbook

Book Description

Key Features

• This book provides code-intensive discussions with detailed recipes that help you understand better and learn faster.
• More than 50 hands-on recipes to create and administer a secure Linux system locally as well as on a network
• Enhance file system security and local and remote user authentication by using various security tools and different versions of Linux for different tasks

Book Description

With the growing popularity of Linux, more and more administrators have started moving to the system to create networks or servers for any task. This also makes Linux the first choice for any attacker now. Due to the lack of information about security-related attacks, administrators now face issues in dealing with these attackers as quickly as possible. Learning about the different types of Linux security will help create a more secure Linux system.

Whether you are new to Linux administration or experienced, this book will provide you with the skills to make systems more secure.

With lots of step-by-step recipes, the book starts by introducing you to various threats to Linux systems. You then get to walk through customizing the Linux kernel and securing local files. Next you will move on to manage user authentication locally and remotely and also mitigate network attacks. Finally, you will learn to patch bash vulnerability and monitor system logs for security.

With several screenshots in each example, the book will supply a great learning experience and help you create more secure Linux systems.

What you will learn

• Learn about various vulnerabilities and exploits in relation to Linux systems
• Configure and build a secure kernel and test it
• Learn about file permissions and security and how to securely modify files
• Explore various ways to authenticate local users while monitoring their activities.
• Authenticate users remotely and securely copy files on remote systems
• Review various network security methods including firewalls using iptables and TCP Wrapper
• Explore various security tools including Port Sentry, Squid Proxy, Shorewall, and many more
• Understand Bash vulnerability/security and patch management

About the Author

Tajinder Kalsi is an innovative professional with more than 9 years of progressive experience within the information security industry. He has a good amount of knowledge and experience in web application testing, vulnerability assessment, network penetration testing, and risk assessment.

At present, he is working as an independent information security consultant. He started his career with Wipro as a technical associate, and later on he became an ISMS consultant cum technical evangelist. In his free time, he conducts seminars in colleges all across India on various topics, and he has covered more than 125 colleges and spoken to 10,000+ students.

In the past, he has reviewed books such as Web Application Penetration Testing with Kali Linux, Mastering Kali Linux for Advanced Penetration Testing, and Advanced Wireless Penetration Testing for Highly-Secured Environments.

You can find him on Facebook at www.facebook.com/tajinder.kalsi.tj, or contact him on his website at www.tajinderkalsi.com.

Table of Contents

Chapter 1. Linux Security Problems
Chapter 2. Configuring A Secure And Optimized Kernel
Chapter 3. Local Filesystem Security
Chapter 4. Local Authentication In Linux
Chapter 5. Remote Authentication
Chapter 6. Network Security
Chapter 7. Security Tools
Chapter 8. Linux Security Distros
Chapter 9. Patching A Bash Vulnerability
Chapter 10. Security Monitoring And Logging

中文：

书名：实用Linux安全指南

主要特点

• 这本书提供了代码密集的讨论和详细的食谱，帮助您更好地理解和更快地学习。
• 在本地和网络上创建和管理安全的Linux系统的50多个实践食谱
• 通过使用各种安全工具和不同版本的Linux来执行不同的任务，增强文件系统安全性以及本地和远程用户身份验证

图书描述

随着Linux的日益流行，越来越多的管理员开始转向系统来为任何任务创建网络或服务器。这也使Linux成为现在任何攻击者的首选。由于缺乏与安全相关的攻击信息，管理员现在面临着尽快应对这些攻击者的问题。了解不同类型的Linux安全将有助于创建更安全的Linux系统。

无论您是刚接触Linux管理，还是经验丰富，本书都将为您提供使系统更安全的技能。

这本书有很多循序渐进的食谱，一开始就向你介绍了Linux系统面临的各种威胁。然后，您将逐步了解定制Linux内核和保护本地文件的过程。接下来，您将继续在本地和远程管理用户身份验证，并减轻网络攻击。最后，您将学习修补bash漏洞并监视系统日志的安全性。

在每个示例中都有几个屏幕截图，这本书将提供很好的学习体验，并帮助您创建更安全的Linux系统。

What you will learn

• 了解与Linux系统相关的各种漏洞和利用
• Configure and build a secure kernel and test it
• 了解文件权限和安全性以及如何安全地修改文件
• 探索在监视本地用户活动的同时对其进行身份验证的各种方法。
• 远程验证用户身份并安全地复制远程系统上的文件
• 查看各种网络安全方法，包括使用iptable和tcp包装器的防火墙
• 探索各种安全工具，包括Port Sentry、Squid Proxy、Shorewall等
• 了解Bash漏洞/安全和补丁程序管理

About the Author

塔金德尔·卡尔西 是一名创新的专业人士，在信息安全行业拥有9年以上的进步经验。他在Web应用程序测试、漏洞评估、网络渗透测试和风险评估方面拥有丰富的知识和经验。

目前，他是一名独立的信息安全顾问。他的职业生涯始于Wipro的一名技术助理，后来他成为了ISMS顾问兼技术布道者。在业余时间，他在印度各地的大学举办各种主题的研讨会，他覆盖了125多所大学，并向1万多名学生发表了演讲。

在过去，他曾评论过一些书籍，如使用Kali Linux进行Web应用程序渗透测试、针对高级渗透测试掌握Kali Linux以及针对高度安全的环境进行高级无线渗透测试。

你可以在Facebook上找到他，网址是www.facebook.com/tajinder.kalsi.tj，或者在他的网站www.tajinderkalsi.com上联系他。

Table of Contents

第1章.Linux安全问题
第2章：配置安全和优化的内核
第3章.本地文件系统安全
第4章.Linux中的本地身份验证
Chapter 5. Remote Authentication
Chapter 6. Network Security
Chapter 7. Security Tools
Chapter 8. Linux Security Distros
第9章：修补Bash漏洞
第10章.安全监控和日志记录