Mastering Linux Security and Hardening

Tevault, Donald a.

買這商品的人也買了...

商品描述

From creating networks and servers to automating the entire working environment, Linux has been extremely popular with system administrators for the last couple of decades. However, security has always been a major concern. With limited resources available in the Linux security domain, this book will be an invaluable guide in helping you get your Linux systems properly secured.

Complete with in-depth explanations of essential concepts, practical examples, and self-assessment questions, this book begins by helping you set up a practice lab environment and takes you through the core functionalities of securing Linux. You'll practice various Linux hardening techniques and advance to setting up a locked-down Linux server. As you progress, you will also learn how to create user accounts with appropriate privilege levels, protect sensitive data by setting permissions and encryption, and configure a firewall. The book will help you set up mandatory access control, system auditing, security profiles, and kernel hardening, and finally cover best practices and troubleshooting techniques to secure your Linux environment efficiently.

By the end of this Linux security book, you will be able to confidently set up a Linux server that will be much harder for malicious actors to compromise.

商品描述(中文翻譯)




從建立網絡和伺服器到自動化整個工作環境,Linux 在過去幾十年一直深受系統管理員的喜愛。然而,安全性一直是一個重大關注點。在 Linux 安全領域資源有限的情況下,本書將成為您在確保 Linux 系統安全方面的寶貴指南。

本書深入解釋了基本概念,提供實用示例和自我評估問題,從幫助您建立實踐實驗環境開始,引導您了解 Linux 安全的核心功能。您將實踐各種 Linux 強化技術,並進一步設置一個鎖定的 Linux 伺服器。隨著進展,您還將學習如何創建具有適當特權級別的使用者帳戶,通過設置權限和加密來保護敏感數據,以及配置防火牆。本書還將幫助您設置強制訪問控制、系統審計、安全配置文件和核心強化,最後介紹最佳實踐和疑難排解技巧,以高效地保護您的 Linux 環境。

通過閱讀本書,您將能夠自信地設置一個 Linux 伺服器,使惡意行為者更難入侵。




作者簡介

Donald A. Tevault

Donald A. Tevault—but you can call him Donnie—got involved with Linux way back in 2006, and has been working with it ever since. He holds the Linux Professional Institute Level 3—Security certification, and the GIAC Incident Handler certification. Donnie is a professional Linux trainer, and thanks to the magic of the internet, teaches Linux classes literally the world over from the comfort of his living room. He's also a Linux security researcher for an IoT security company.

作者簡介(中文翻譯)

Donald A. Tevault

Donald A. Tevault,但你可以稱他為Donnie,於2006年開始涉足Linux,並一直與之合作。他擁有Linux專業協會第三級-安全認證和GIAC事件處理認證。Donnie是一位專業的Linux培訓師,並且通過互聯網的魔力,從他的客廳舒適地教授Linux課程給全球各地的學生。他還是一家物聯網安全公司的Linux安全研究員。

目錄大綱

  1. Running Linux in a Virtual Environment
  2. Securing User Accounts
  3. Securing Your Server with a Firewall - Part 1
  4. Securing Your Server with a Firewall - Part 2
  5. Encryption Technologies
  6. SSH Hardening
  7. Mastering Discretionary Access Control
  8. Access Control Lists and Shared Directory Management
  9. Implementing Mandatory Access Control with SELinux and AppArmor
  10. Kernel Hardening and Process Isolation
  11. Scanning, Auditing, and Hardening
  12. Logging and Log Security
  13. Vulnerability Scanning and Intrusion Detection
  14. Security Tips and Tricks for the Busy Bee

目錄大綱(中文翻譯)


  1. 在虛擬環境中運行Linux

  2. 保護使用者帳戶

  3. 使用防火牆保護您的伺服器 - 第一部分

  4. 使用防火牆保護您的伺服器 - 第二部分

  5. 加密技術

  6. SSH硬化

  7. 精通自由存取控制

  8. 存取控制清單和共享目錄管理

  9. 使用SELinux和AppArmor實施強制存取控制

  10. 核心硬化和進程隔離

  11. 掃描、審計和硬化

  12. 日誌和日誌安全

  13. 漏洞掃描和入侵檢測

  14. 忙碌蜜蜂的安全技巧和訣竅