Linux Hardening in Hostile Networks

Linux Hardening in Hostile Networks PDF Author: Kyle Rankin
Publisher: Addison-Wesley Professional
ISBN: 0134173325
Category : Computers
Languages : en
Pages : 834

Book Description
Implement Industrial-Strength Security on Any Linux Server In an age of mass surveillance, when advanced cyberwarfare weapons rapidly migrate into every hacker’s toolkit, you can’t rely on outdated security methods–especially if you’re responsible for Internet-facing services. In Linux® Hardening in Hostile Networks, Kyle Rankin helps you to implement modern safeguards that provide maximum impact with minimum effort and to strip away old techniques that are no longer worth your time. Rankin provides clear, concise guidance on modern workstation, server, and network hardening, and explains how to harden specific services, such as web servers, email, DNS, and databases. Along the way, he demystifies technologies once viewed as too complex or mysterious but now essential to mainstream Linux security. He also includes a full chapter on effective incident response that both DevOps and SecOps can use to write their own incident response plan. Each chapter begins with techniques any sysadmin can use quickly to protect against entry-level hackers and presents intermediate and advanced techniques to safeguard against sophisticated and knowledgeable attackers, perhaps even state actors. Throughout, you learn what each technique does, how it works, what it does and doesn’t protect against, and whether it would be useful in your environment. Apply core security techniques including 2FA and strong passwords Protect admin workstations via lock screens, disk encryption, BIOS passwords, and other methods Use the security-focused Tails distribution as a quick path to a hardened workstation Compartmentalize workstation tasks into VMs with varying levels of trust Harden servers with SSH, use apparmor and sudo to limit the damage attackers can do, and set up remote syslog servers to track their actions Establish secure VPNs with OpenVPN, and leverage SSH to tunnel traffic when VPNs can’t be used Configure a software load balancer to terminate SSL/TLS connections and initiate new ones downstream Set up standalone Tor services and hidden Tor services and relays Secure Apache and Nginx web servers, and take full advantage of HTTPS Perform advanced web server hardening with HTTPS forward secrecy and ModSecurity web application firewalls Strengthen email security with SMTP relay authentication, SMTPS, SPF records, DKIM, and DMARC Harden DNS servers, deter their use in DDoS attacks, and fully implement DNSSEC Systematically protect databases via network access control, TLS traffic encryption, and encrypted data storage Respond to a compromised server, collect evidence, and prevent future attacks Register your product at informit.com/register for convenient access to downloads, updates, and corrections as they become available.

Cybersecurity for Small Networks

Cybersecurity for Small Networks PDF Author: Seth Enoka
Publisher: No Starch Press
ISBN: 171850148X
Category : Computers
Languages : en
Pages : 225

Book Description
A guide to implementing DIY security solutions and readily available technologies to protect home and small-office networks from attack. This book is an easy-to-follow series of tutorials that will lead readers through different facets of protecting household or small-business networks from cyber attacks. You’ll learn how to use pfSense to build a firewall, lock down wireless, segment a network into protected zones, configure a VPN (virtual private network) to hide and encrypt network traffic and communications, set up proxies to speed up network performance and hide the source of traffic, block ads, install and configure an antivirus, back up your data securely, and even how to monitor your network for unauthorized activity and alert you to intrusion.

UNIX System Security Tools

UNIX System Security Tools PDF Author: Seth T. Ross
Publisher: McGraw-Hill Companies
ISBN:
Category : Computers
Languages : en
Pages : 472

Book Description
This text focuses on the security fixes and tools used to fend off hackers. Topics include: passwords; permissions; cryptography; backups; and auditing and logging. The CD-ROM contains UNIX security programs available for security checkers IIS, SATAN and Kerberos.

Telematics and Computing

Telematics and Computing PDF Author: Miguel Félix Mata-Rivera
Publisher: Springer Nature
ISBN: 3030895866
Category : Computers
Languages : en
Pages : 269

Book Description
This book constitutes the thoroughly refereed proceedings of the 10th International Congress on Telematics and Computing, WITCOM 2021, held in November 2021. Due to the COVID-19 pandemic the conference was held online. The 12 full papers and 7 short papers in this volume were carefully reviewed and selected from 48 submissions. The papers are focused on the topics of deep and machine learning, cybersecurity, wireless networks, computer vision, communications, and education applied to different sceneries of study and COVID-19.

DevOps Troubleshooting

DevOps Troubleshooting PDF Author: Kyle Rankin
Publisher: Addison-Wesley
ISBN: 0133035506
Category : Computers
Languages : en
Pages : 387

Book Description
“If you’re a developer trying to figure out why your application is not responding at 3 am, you need this book! This is now my go-to book when diagnosing production issues. It has saved me hours in troubleshooting complicated operations problems.” –Trotter Cashion, cofounder, Mashion DevOps can help developers, QAs, and admins work together to solve Linux server problems far more rapidly, significantly improving IT performance, availability, and efficiency. To gain these benefits, however, team members need common troubleshooting skills and practices. In DevOps Troubleshooting: Linux Server Best Practices, award-winning Linux expert Kyle Rankin brings together all the standardized, repeatable techniques your team needs to stop finger-pointing, collaborate effectively, and quickly solve virtually any Linux server problem. Rankin walks you through using DevOps techniques to troubleshoot everything from boot failures and corrupt disks to lost email and downed websites. You’ll master indispensable skills for diagnosing high-load systems and network problems in production environments. Rankin shows how to Master DevOps’ approach to troubleshooting and proven Linux server problem-solving principles Diagnose slow servers and applications by identifying CPU, RAM, and Disk I/O bottlenecks Understand healthy boots, so you can identify failure points and fix them Solve full or corrupt disk issues that prevent disk writes Track down the sources of network problems Troubleshoot DNS, email, and other network services Isolate and diagnose Apache and Nginx Web server failures and slowdowns Solve problems with MySQL and Postgres database servers and queries Identify hardware failures–even notoriously elusive intermittent failures

Real-World SRE

Real-World SRE PDF Author: Nat Welch
Publisher: Packt Publishing Ltd
ISBN: 1788626443
Category : Computers
Languages : en
Pages : 341

Book Description
This hands-on survival manual will give you the tools to confidently prepare for and respond to a system outage. Key Features Proven methods for keeping your website running A survival guide for incident response Written by an ex-Google SRE expert Book DescriptionReal-World SRE is the go-to survival guide for the software developer in the middle of catastrophic website failure. Site Reliability Engineering (SRE) has emerged on the frontline as businesses strive to maximize uptime. This book is a step-by-step framework to follow when your website is down and the countdown is on to fix it. Nat Welch has battle-hardened experience in reliability engineering at some of the biggest outage-sensitive companies on the internet. Arm yourself with his tried-and-tested methods for monitoring modern web services, setting up alerts, and evaluating your incident response. Real-World SRE goes beyond just reacting to disaster—uncover the tools and strategies needed to safely test and release software, plan for long-term growth, and foresee future bottlenecks. Real-World SRE gives you the capability to set up your own robust plan of action to see you through a company-wide website crisis. The final chapter of Real-World SRE is dedicated to acing SRE interviews, either in getting a first job or a valued promotion.What you will learn Monitor for approaching catastrophic failure Alert your team to an outage emergency Dissect your incident response strategies Test automation tools and build your own software Predict bottlenecks and fight for user experience Eliminate the competition in an SRE interview Who this book is for Real-World SRE is aimed at software developers facing a website crisis, or who want to improve the reliability of their company's software. Newcomers to Site Reliability Engineering looking to succeed at interview will also find this invaluable.

SIP Security

SIP Security PDF Author: Dorgham Sisalem
Publisher: John Wiley & Sons
ISBN: 9780470516980
Category : Technology & Engineering
Languages : en
Pages : 350

Book Description
This book gives a detailed overview of SIP specific security issues and how to solve them While the standards and products for VoIP and SIP services have reached market maturity, security and regulatory aspects of such services are still being discussed. SIP itself specifies only a basic set of security mechanisms that cover a subset of possible security issues. In this book, the authors survey important aspects of securing SIP-based services. This encompasses a description of the problems themselves and the standards-based solutions for such problems. Where a standards-based solution has not been defined, the alternatives are discussed and the benefits and constraints of the different solutions are highlighted. Key Features: Will help the readers to understand the actual problems of using and developing VoIP services, and to distinguish between real problems and the general hype of VoIP security Discusses key aspects of SIP security including authentication, integrity, confidentiality, non-repudiation and signalling Assesses the real security issues facing users of SIP, and details the latest theoretical and practical solutions to SIP Security issues Covers secure SIP access, inter-provider secure communication, media security, security of the IMS infrastructures as well as VoIP services vulnerabilities and countermeasures against Denial-of-Service attacks and VoIP spam This book will be of interest to IT staff involved in deploying and developing VoIP, service users of SIP, network engineers, designers and managers. Advanced undergraduate and graduate students studying data/voice/multimedia communications as well as researchers in academia and industry will also find this book valuable.

Linux Multimedia Hacks

Linux Multimedia Hacks PDF Author: Kyle Rankin
Publisher: "O'Reilly Media, Inc."
ISBN: 0596100760
Category : Computers
Languages : en
Pages : 330

Book Description
Presents Linux's multimedia tools with step-by-step instructions to maximize entertainment capabilities for images, audio, and video.

Network and System Security

Network and System Security PDF Author: John R. Vacca
Publisher: Elsevier
ISBN: 0124166954
Category : Computers
Languages : en
Pages : 429

Book Description
Network and System Security provides focused coverage of network and system security technologies. It explores practical solutions to a wide range of network and systems security issues. Chapters are authored by leading experts in the field and address the immediate and long-term challenges in the authors' respective areas of expertise. Coverage includes building a secure organization, cryptography, system intrusion, UNIX and Linux security, Internet security, intranet security, LAN security; wireless network security, cellular network security, RFID security, and more. - Chapters contributed by leaders in the field covering foundational and practical aspects of system and network security, providing a new level of technical expertise not found elsewhere - Comprehensive and updated coverage of the subject area allows the reader to put current technologies to work - Presents methods of analysis and problem solving techniques, enhancing the reader's grasp of the material and ability to implement practical solutions
Proudly powered by WordPress | Theme: Rits Blog by Crimson Themes.