Mastering Linux Security and Hardening - Third Edition: A practical guide to protecting your Linux system from cyber attacks (Paperback)

Gain a firm practical understanding of how to secure your Linux system from intruders, malware attacks, and other cyber threats

Purchase of the print or Kindle book includes a free eBook in PDF format.

Key Features

• Discover security techniques to prevent malware from infecting a Linux system, and detect it
• Prevent unauthorized people from breaking into a Linux system
• Protect important and sensitive data from being revealed to unauthorized persons

Book Description

The third edition of Mastering Linux Security and Hardening is an updated, comprehensive introduction to implementing the latest Linux security measures, using the latest versions of Ubuntu and AlmaLinux.

In this new edition, you will learn how to set up a practice lab, create user accounts with appropriate privilege levels, protect sensitive data with permissions settings and encryption, and configure a firewall with the newest firewall technologies. You'll also explore how to use sudo to set up administrative accounts with only the privileges required to do a specific job, and you'll get a peek at the new sudo features that have been added over the past couple of years. You'll also see updated information on how to set up a local certificate authority for both Ubuntu and AlmaLinux, as well as how to automate system auditing. Other important skills that you'll learn include how to automatically harden systems with OpenSCAP, audit systems with auditd, harden the Linux kernel configuration, protect your systems from malware, and perform vulnerability scans of your systems. As a bonus, you'll see how to use Security Onion to set up an Intrusion Detection System.

By the end of this new edition, you will confidently be able to set up a Linux server that will be secure and harder for malicious actors to compromise.

What you will learn

• Prevent malicious actors from compromising a production Linux system
• Leverage additional features and capabilities of Linux in this new version
• Use locked-down home directories and strong passwords to create user accounts
• Prevent unauthorized people from breaking into a Linux system
• Configure file and directory permissions to protect sensitive data
• Harden the Secure Shell service in order to prevent break-ins and data loss
• Apply security templates and set up auditing

Who this book is for

This book is for Linux administrators, system administrators, and network engineers interested in securing moderate to complex Linux environments. Security consultants looking to enhance their Linux security skills will also find this book useful. Working experience with the Linux command line and package management is necessary to understand the concepts covered in this book.

獲得確實實用的知識，了解如何保護您的Linux系統免受入侵者、惡意軟體攻擊和其他網路威脅。

購買印刷版或Kindle電子書，即可免費獲得PDF格式的電子書。

主要特點：

- 發現防止惡意軟體感染Linux系統並檢測它的安全技術
- 防止未經授權的人進入Linux系統
- 保護重要和敏感數據不被未經授權的人揭示

書籍描述：

《Mastering Linux Security and Hardening》第三版是一本更新的、全面介紹如何實施最新Linux安全措施的書籍，使用最新版本的Ubuntu和AlmaLinux。

在這本新版中，您將學習如何建立一個實踐實驗室，創建具有適當特權級別的使用者帳戶，使用權限設置和加密保護敏感數據，並使用最新的防火牆技術配置防火牆。您還將探索如何使用sudo設置只具有執行特定工作所需權限的管理帳戶，並瞥見過去幾年中新增的sudo功能。您還將看到有關如何為Ubuntu和AlmaLinux設置本地憑證授權中心以及如何自動化系統審計的更新信息。您還將學習到如何使用OpenSCAP自動加固系統、使用auditd審計系統、加固Linux內核配置、保護系統免受惡意軟體攻擊以及對系統進行漏洞掃描的重要技能。作為額外的禮物，您還將了解如何使用Security Onion設置入侵檢測系統。

通過閱讀本新版，您將自信地能夠建立一個安全且更難受到惡意行為者侵害的Linux伺服器。

您將學到的內容：

- 防止惡意行為者入侵生產Linux系統
- 在這個新版本中利用Linux的其他功能和能力
- 使用鎖定的家目錄和強密碼創建使用者帳戶
- 防止未經授權的人進入Linux系統
- 配置檔案和目錄權限以保護敏感數據
- 強化Secure Shell服務以防止入侵和數據損失
- 應用安全模板並設置審計

本書適合對保護中到複雜的Linux環境感興趣的Linux管理員、系統管理員和網路工程師。希望提升Linux安全技能的安全顧問也會發現本書有用。理解本書所涵蓋概念需要具備Linux命令行和套件管理的工作經驗。

1. Running Linux in a Virtual Environment
2. Securing Administrative User Accounts
3. Securing Normal User Accounts
4. Securing Your Server with a Firewall - Part 1
5. Securing Your Server with a Firewall - Part 2
6. Encryption Technologies
7. SSH Hardening
8. Mastering Discretionary Access Control
9. Access Control Lists and Shared Directory Management
10. Implementing Mandatory Access Control with SELinux and AppArmor
11. Kernel Hardening and Process Isolation
12. Scanning, Auditing and Hardening
13. Logging and Log Security
14. Vulnerability Scanning and Intrusion Detection
16. Prevent Unwanted Programs from Running
17. Security Tips & Tricks for the Busy Bee

1. 在虛擬環境中運行Linux
2. 保護管理使用者帳戶
3. 保護一般使用者帳戶
4. 使用防火牆保護您的伺服器 - 第一部分
5. 使用防火牆保護您的伺服器 - 第二部分
6. 加密技術
7. SSH硬化
8. 掌握自由存取控制
9. 存取控制清單和共享目錄管理
10. 使用SELinux和AppArmor實施強制存取控制
11. 核心硬化和進程隔離
12. 掃描、審計和硬化
13. 日誌和日誌安全
14. 漏洞掃描和入侵檢測
16. 防止不需要的程式運行
17. 忙碌蜜蜂的安全技巧和訣竅