Mastering Linux Security and Hardening: Secure your Linux server and protect it from intruders, malware attacks, and other external threats

Donald A. Tevault


A comprehensive guide to mastering the art of preventing your Linux system from getting compromised.

Key Features

  • Leverage this guide to confidently deliver a system that reduces the risk of being hacked
  • Perform a number of advanced Linux security techniques such as network service detection, user authentication, controlling special permissions, encrypting file systems, and much more
  • Master the art of securing a Linux environment with this end-to-end practical guide

Book Description

This book has extensive coverage of techniques that will help prevent attackers from breaching your system, by building a much more secure Linux environment. You will learn various security techniques such as SSH hardening, network service detection, setting up firewalls, encrypting file systems, protecting user accounts, authentication processes, and so on. Moving forward, you will also develop hands-on skills with advanced Linux permissions, access control, special modes, and more. Lastly, this book will also cover best practices and troubleshooting techniques to get your work done efficiently.

By the end of this book, you will be confident in delivering a system that will be much harder to compromise.

What you will learn

  • Use various techniques to prevent intruders from accessing sensitive data
  • Prevent intruders from planting malware, and detect whether malware has been planted
  • Prevent insiders from accessing data that they aren't authorized to access
  • Do quick checks to see whether a computer is running network services that it doesn't need to run
  • Learn security techniques that are common to all Linux distros, and some that are distro-specific

Who This Book Is For

If you are a systems administrator or a network engineer interested in making your Linux environment more secure, then this book is for you. Security consultants wanting to enhance their Linux security skills will also benefit from this book. Prior knowledge of Linux is mandatory.

Table of Contents

  1. Running Linux in a virtual environment
  2. Securing user accounts
  3. Securing your server with a Firewall
  4. Encrypting and SSH Hardening
  5. Mastering Discretionary Access Control
  6. Access Control Lists and Shared Directory Management
  7. Implementing Mandatory Access Control with SELinux and AppArmor
  8. Scanning, Auditing and Hardening
  9. Vulnerability Scanning and Intrusion Detection
  10. Security Tips & Tricks for the Busy Bee


一本全面指南,教你如何防止 Linux 系統被入侵的藝術。

- 利用本指南,自信地提供一個減少被駭客攻擊風險的系統
- 執行多種高級 Linux 安全技術,如網絡服務檢測、用戶身份驗證、控制特殊權限、加密文件系統等
- 通過這本全面實用的指南,掌握保護 Linux 環境的藝術

本書廣泛介紹了各種技術,幫助防止駭客入侵您的系統,建立一個更安全的 Linux 環境。您將學習各種安全技術,如 SSH 強化、網絡服務檢測、設置防火牆、加密文件系統、保護用戶帳戶、身份驗證過程等。此外,您還將開發高級 Linux 權限、訪問控制、特殊模式等實踐技能。最後,本書還將介紹最佳實踐和疑難排解技巧,以提高工作效率。


- 使用各種技術防止入侵者訪問敏感數據
- 防止入侵者植入惡意軟件,並檢測是否已植入惡意軟件
- 防止內部人員訪問未經授權的數據
- 快速檢查計算機是否運行不需要運行的網絡服務
- 學習適用於所有 Linux 發行版的安全技術,以及一些特定於發行版的技術

如果您是系統管理員或網絡工程師,並希望使您的 Linux 環境更安全,那麼本書適合您。安全顧問也可以從本書中受益,以提升他們的 Linux 安全技能。需要具備 Linux 的先備知識。

1. 在虛擬環境中運行 Linux
2. 保護用戶帳戶
3. 使用防火牆保護您的服務器
4. 加密和 SSH 強化
5. 掌握自由存取控制
6. 存取控制列表和共享目錄管理
7. 使用 SELinux 和 AppArmor 實施強制存取控制
8. 掃描、審計和加固
9. 漏洞掃描和入侵檢測
10. 忙碌蜜蜂的安全技巧和技巧