[Book Cover]

Linux System Security: The Administrator's Guide to Open Source Security Tools, 1/e

Scott Mann, Golden, Colorado

Coming December, 1999 by Prentice Hall PTR (ECS Professional)

Copyright 2000, 800 pp.
Cloth
ISBN 0-13-015807-0


Sign up for future
mailings on this subject.

See other books about:
    LINUX-Computer Science


Summary

For courses in LINUX. This tutorial gives detailed instructions on the implementation, configuration, and use of publicly available tools and features of Linux as they relate to Linux security. Essential background information is provided in the book's introductory chapters. Administrative concepts and tasks are reviewed only at points where such coverage is absolutely necessary.

Features


Fundamental discussions of functionality—Includes discussion of TCP/IP.
Coverage of topics relating to security preparedness—Examines concepts essential to placing a system in a production environment, regardless of ultimate purpose.
Coverage of most major applications, their security weaknesses, and risk minimization.
Outline of steps needed to test a system prior to its incorporation into a production network—Assists administrators in identifying network vulnerabilities.
Discussion of ongoing administrative requirements associated with maintaining security.
Exploration of special case systems which will operate as firewalls or otherwise in a DMZ/Perimeter Network (Part VI).
End-of-book summary—Ties together all text contents, focusing on when certain steps should be taken and on how to implement new utilities on systems after they have entered production.
Exclusive focus on the Apache Web server which ships with Linux.


Table of Contents
I. INTRODUCTION.

    1. How Did THAT Happen? (A Survey of Linux Vulnerabilities).
    2. Aren't There Enough Fascists in the World? (What Is Security?)

II. PREPARING YOUR SYSTEM FOR A PRODUCTION ENVIRONMENT.
    3. Of Course I Trust My Users! (User Account Management).
    4. Space, the Final Frontier (File System Management).
    5. Bean Counting (System Accounting).
    6. And You Thought Wiretapping Was for the Feds! (System Logs and the syslog Utility).
    7. Which Doors Are Open? (Network Services).
    8. Want To Be Root? (Using sudo).
    9. Oh, No! Math! (A Primer on Cryptography).
    10. Let 'em Sniff the Net! (The Secure Shell and SSLeay).
    11. Setting the Trap (Tripwire).
    12. The System Administrator's Bane (Backups).
    13. What Was That, Again? (System Checklist).
III. SECURING MAJOR APPLICATIONS.
    14. I Need More Space! (NFS).
    15. Windows Users Need More Space, Too! (SAMBA).
    16. Now, Can I Stay in One Place? (NIS and NIS+).
    17. What Was That Number? (DNS).
    18. Neither Spiders, Nor 'Bots... (Mail Transfer Agents).
    19. Spread the Views (X-Windows and General Video Issues).
    20. There Be Spiders... (Web Security).
    21. One More Time, Again? (Major Application Checklist).
IV. PREPARING FOR THE NETWORK.
    22. Who's Knocking at the Door? (SATAN or SANTA).
    23. Who's Calling Now? (Courtney).
    24. Eye Spy (nmap).
    25. I Think I Got It, But... (Network Checklist).
V. ADMINISTRATING SECURE ENVIRONMENTS.
    26. Wiretapping Is Not So Much Fun After All (Managing All Those Log Files).
    27. What's Been Happening? (Using TIGER to Audit Your System).
    28. So, You THINK You've Got a Good Password! (Crack).
    29. What Was That? (Administrator's Checklist).
VI. FIREWALLS AND PERIMETER NETWORKS.
    30. Building a Moat with Crocodiles (Firewall and Perimeter Network Concepts).
    31. We Must Censor! (Linux Packet Filters).
    32. Let Me Do That for You (SOCKS and the TIS Firewall Toolkit).
    33. The Picket Line (Configuring Sacrificial Machines).
    34. One More Time, Please! (Perimeter Network Checklist).
VII. SECURING DATA WITH ENCRYPTION.
    35. Thanks, Phil! (Pretty Good Privacy).
    36. Issue Each User a New Decoder! (Cryptographic File System).
    37. The Mystery Inside (IPSec and CIPE).
    38. Guarding the Gates of Hell! (Kerberos).
VIII. INTRUSION DETECTION.
    39. Intruder Alert! (Intrusion Detection Concepts).
    40. First Spiders, Now Aphids! (Autonomous Agents for Intrusion Detection).
IX. SECURITY COMPROMISES.
    41. They're In! (Break-Ins: They Will Occur).
    42. Don't Panic! (Recovering from a Break-In).
    43. Tracking Down the Perpetrator.
X. SUMMARY. XI. APPENDICES.
    A: Keeping Up to Date.
    B: LINUX on SPARC.
    C: Tools Not Discussed.

[Help]

© Prentice-Hall, Inc. A Simon & Schuster Company
Comments To webmaster@prenhall.com