Linux Hardening in Hostile Networks

Author: Kyle Rankin
Publisher: Addison-Wesley Professional
ISBN: 0134173325
Category : Computers
Languages : en
Pages : 834

Book Description
Implement Industrial-Strength Security on Any Linux Server In an age of mass surveillance, when advanced cyberwarfare weapons rapidly migrate into every hacker’s toolkit, you can’t rely on outdated security methods–especially if you’re responsible for Internet-facing services. In Linux® Hardening in Hostile Networks, Kyle Rankin helps you to implement modern safeguards that provide maximum impact with minimum effort and to strip away old techniques that are no longer worth your time. Rankin provides clear, concise guidance on modern workstation, server, and network hardening, and explains how to harden specific services, such as web servers, email, DNS, and databases. Along the way, he demystifies technologies once viewed as too complex or mysterious but now essential to mainstream Linux security. He also includes a full chapter on effective incident response that both DevOps and SecOps can use to write their own incident response plan. Each chapter begins with techniques any sysadmin can use quickly to protect against entry-level hackers and presents intermediate and advanced techniques to safeguard against sophisticated and knowledgeable attackers, perhaps even state actors. Throughout, you learn what each technique does, how it works, what it does and doesn’t protect against, and whether it would be useful in your environment. Apply core security techniques including 2FA and strong passwords Protect admin workstations via lock screens, disk encryption, BIOS passwords, and other methods Use the security-focused Tails distribution as a quick path to a hardened workstation Compartmentalize workstation tasks into VMs with varying levels of trust Harden servers with SSH, use apparmor and sudo to limit the damage attackers can do, and set up remote syslog servers to track their actions Establish secure VPNs with OpenVPN, and leverage SSH to tunnel traffic when VPNs can’t be used Configure a software load balancer to terminate SSL/TLS connections and initiate new ones downstream Set up standalone Tor services and hidden Tor services and relays Secure Apache and Nginx web servers, and take full advantage of HTTPS Perform advanced web server hardening with HTTPS forward secrecy and ModSecurity web application firewalls Strengthen email security with SMTP relay authentication, SMTPS, SPF records, DKIM, and DMARC Harden DNS servers, deter their use in DDoS attacks, and fully implement DNSSEC Systematically protect databases via network access control, TLS traffic encryption, and encrypted data storage Respond to a compromised server, collect evidence, and prevent future attacks Register your product at informit.com/register for convenient access to downloads, updates, and corrections as they become available.

Linux Hardening in Hostile Networks

Author: Kyle Rankin
Publisher:
ISBN: 9780134173337
Category :
Languages : en
Pages :

Book Description

Mastering Linux Security and Hardening

Author: Donald A. Tevault
Publisher: Packt Publishing Ltd
ISBN: 1838983597
Category : Computers
Languages : en
Pages : 652

Book Description
A comprehensive guide to securing your Linux system against cyberattacks and intruders Key Features Deliver a system that reduces the risk of being hacked Explore a variety of advanced Linux security techniques with the help of hands-on labs Master the art of securing a Linux environment with this end-to-end practical guide Book DescriptionFrom creating networks and servers to automating the entire working environment, Linux has been extremely popular with system administrators for the last couple of decades. However, security has always been a major concern. With limited resources available in the Linux security domain, this book will be an invaluable guide in helping you get your Linux systems properly secured. Complete with in-depth explanations of essential concepts, practical examples, and self-assessment questions, this book begins by helping you set up a practice lab environment and takes you through the core functionalities of securing Linux. You'll practice various Linux hardening techniques and advance to setting up a locked-down Linux server. As you progress, you will also learn how to create user accounts with appropriate privilege levels, protect sensitive data by setting permissions and encryption, and configure a firewall. The book will help you set up mandatory access control, system auditing, security profiles, and kernel hardening, and finally cover best practices and troubleshooting techniques to secure your Linux environment efficiently. By the end of this Linux security book, you will be able to confidently set up a Linux server that will be much harder for malicious actors to compromise.What you will learn Create locked-down user accounts with strong passwords Configure firewalls with iptables, UFW, nftables, and firewalld Protect your data with different encryption technologies Harden the secure shell service to prevent security break-ins Use mandatory access control to protect against system exploits Harden kernel parameters and set up a kernel-level auditing system Apply OpenSCAP security profiles and set up intrusion detection Configure securely the GRUB 2 bootloader and BIOS/UEFI Who this book is for This book is for Linux administrators, system administrators, and network engineers interested in securing moderate to complex Linux environments. Security consultants looking to enhance their Linux security skills will also find this book useful. Working experience with the Linux command line and package management is necessary to understand the concepts covered in this book.

Linux Network Security (B/Cd)

Author: Peter G. Smith
Publisher:
ISBN: 9788173665349
Category : Computer networks
Languages : en
Pages : 564

Book Description
Linux networks are becoming more and more common, but security is often an overlooked issue. Unfortunately, in today s environment all networks are potential hacker targets, from top-secret military research networks to small home LANs. Linux Network Security focuses on securing Linux in a networked environment, where the security of the entire network needs to be considered rather than just isolated machines. It uses a mix of theory and practical techniques to teach administrators how to install and use security applications, as well as how the applications work and why they are necessary. Starting with the need for security and understanding the problem, the book teaches administrators about packet filtering (firewalling) with iptables, hardening services such as Apache, BIND, Sendmail, FTP, and MySQL to prevent attacks, network analysis, encryption, local security, DoS attacks, and rootkits. Auditing networks for potential vulnerabilities and creating secure passwords is also explored. This is the one book that really details how to secure a Linux network.

Hacking Exposed Linux

Author: ISECOM
Publisher: McGraw Hill Professional
ISBN: 0071596429
Category : Computers
Languages : en
Pages : 650

Book Description
The Latest Linux Security Solutions This authoritative guide will help you secure your Linux network--whether you use Linux as a desktop OS, for Internet services, for telecommunications, or for wireless services. Completely rewritten the ISECOM way, Hacking Exposed Linux, Third Edition provides the most up-to-date coverage available from a large team of topic-focused experts. The book is based on the latest ISECOM security research and shows you, in full detail, how to lock out intruders and defend your Linux systems against catastrophic attacks. Secure Linux by using attacks and countermeasures from the latest OSSTMM research Follow attack techniques of PSTN, ISDN, and PSDN over Linux Harden VoIP, Bluetooth, RF, RFID, and IR devices on Linux Block Linux signal jamming, cloning, and eavesdropping attacks Apply Trusted Computing and cryptography tools for your best defense Fix vulnerabilities in DNS, SMTP, and Web 2.0 services Prevent SPAM, Trojan, phishing, DoS, and DDoS exploits Find and repair errors in C code with static analysis and Hoare Logic

Linux Network Security

Author: Peter G. Smith
Publisher:
ISBN: 9781584503965
Category : Computers
Languages : en
Pages : 541

Book Description
A focus on securing Linux in a networked environment, where the security of the entire network needs to be considered rather than just isolated machines, provides a mix of theory and practical techniques to teach administrators how to install and use security applications such as packet filtering, Apache, BIND, Sendmail, FTP, and MySQL, as well as how they work and why they are necessary in networks. Original. (Intermediate)

Hardening Linux

Author: John H. Terpstra
Publisher: McGraw-Hill/Osborne Media
ISBN:
Category : Computers
Languages : en
Pages : 452

Book Description
This title shows network administrators and IT pros how to harden the Linux system against hackers.

Cybersecurity for Small Networks

Author: Seth Enoka
Publisher: No Starch Press
ISBN: 171850148X
Category : Computers
Languages : en
Pages : 225

Book Description
A guide to implementing DIY security solutions and readily available technologies to protect home and small-office networks from attack. This book is an easy-to-follow series of tutorials that will lead readers through different facets of protecting household or small-business networks from cyber attacks. You’ll learn how to use pfSense to build a firewall, lock down wireless, segment a network into protected zones, configure a VPN (virtual private network) to hide and encrypt network traffic and communications, set up proxies to speed up network performance and hide the source of traffic, block ads, install and configure an antivirus, back up your data securely, and even how to monitor your network for unauthorized activity and alert you to intrusion.

Telematics and Computing

Author: Miguel Félix Mata-Rivera
Publisher: Springer Nature
ISBN: 3030895866
Category : Computers
Languages : en
Pages : 269

Book Description
This book constitutes the thoroughly refereed proceedings of the 10th International Congress on Telematics and Computing, WITCOM 2021, held in November 2021. Due to the COVID-19 pandemic the conference was held online. The 12 full papers and 7 short papers in this volume were carefully reviewed and selected from 48 submissions. The papers are focused on the topics of deep and machine learning, cybersecurity, wireless networks, computer vision, communications, and education applied to different sceneries of study and COVID-19.

Hacking

Author: John Medicine
Publisher:
ISBN: 9781914053405
Category :
Languages : en
Pages : 0

Book Description
*55% OFF for Bookstores! Discounted Retail Price NOW at $14.84 instead of $32.99* The complete guide to learn how to set up a new network, get the best performance of it, and how to prevent all forms of attacks. Your customers Will Find Useful this Awesome Guide! The various forms of internet communication have changed the whole concept of communication across a long distance. Networking has adapted the concepts of wireless functioning which have helped in wiping out various redundancies. The wired form of network is still in use owing to its special features and working capabilities. Networking is a complex concept and if done right it can do wonders. Having a brief overview of the networking concepts is very essential for setting up a new network or for improving the functionality of an existing network. It is not at all easy to constantly look out for the various forms of threats that are always ready to attack your system of network. It is your prime duty to analyze your network and check out for the various loopholes that are present within the system. Failing to do so might result in serious loss data and security breach. For having a proper idea about the security threats, it is crucial to learn about the process of hacking in the first place. When you have proper knowledge about the complete process of hacking, you can easily trace out the threats for your system and also improve the security measures for the same. You can perform various functions with the help of Kali Linux. It not only helps in hacking but also provides the users with various tools that can help in testing the networks for security vulnerabilities. It is a very process to set up the OS and can be installed on any form of system. There are various types of cyber-attacks and as the owner of an organization you are required to have proper knowledge about the same. This will help you in planning out preventive measures for the future attacks. As every disease comes with an antidote, cyber-attacks also come with antivirus software for preventing them from attacking the systems. You will learn: The basic format of networking The successful networking processes The master controller who holds all necessary information required by the recipient The necessary components of networking The types of networks Wireless Networking Peer to Peer Connection OSI Model Network Mode Security Circuit and Packet Switching FTP - File Transfer Protocol Network structure and management Concepts of cyber security How to implement security measures Bash and Python Scripting Wireless network security Types of attacks Firewall security Cryptography and Network security Penetration Testing ...and much more! It need to start from the beginning in order to setup a proper security system or want to learn how to hack networks! The chapters of this book have been arranged in a unique way that will provide the reader with the answers to all his questions regarding hacking and security of network. Buy it NOW and let your customers get addicted to this amazing guide!