Mastering Linux Security and Hardening
暫譯: 精通 Linux 安全與強化

Tevault, Donald a.

Mastering Linux Security and Hardening

買這商品的人也買了...

商品描述

From creating networks and servers to automating the entire working environment, Linux has been extremely popular with system administrators for the last couple of decades. However, security has always been a major concern. With limited resources available in the Linux security domain, this book will be an invaluable guide in helping you get your Linux systems properly secured.

Complete with in-depth explanations of essential concepts, practical examples, and self-assessment questions, this book begins by helping you set up a practice lab environment and takes you through the core functionalities of securing Linux. You'll practice various Linux hardening techniques and advance to setting up a locked-down Linux server. As you progress, you will also learn how to create user accounts with appropriate privilege levels, protect sensitive data by setting permissions and encryption, and configure a firewall. The book will help you set up mandatory access control, system auditing, security profiles, and kernel hardening, and finally cover best practices and troubleshooting techniques to secure your Linux environment efficiently.

By the end of this Linux security book, you will be able to confidently set up a Linux server that will be much harder for malicious actors to compromise.

商品描述(中文翻譯)

從建立網路和伺服器到自動化整個工作環境,Linux 在過去幾十年來一直受到系統管理員的極大歡迎。然而,安全性始終是一個主要的關注點。在 Linux 安全領域資源有限的情況下,本書將成為幫助您正確保護 Linux 系統的寶貴指南。

本書包含對基本概念的深入解釋、實用範例和自我評估問題,首先幫助您設置實驗室環境,然後帶您了解保護 Linux 的核心功能。您將練習各種 Linux 強化技術,並進一步設置一個鎖定的 Linux 伺服器。在進展過程中,您還將學習如何創建具有適當權限級別的使用者帳戶,通過設置權限和加密來保護敏感數據,以及配置防火牆。本書將幫助您設置強制存取控制、系統審計、安全配置檔和核心強化,並最終涵蓋最佳實踐和故障排除技術,以有效保護您的 Linux 環境。

在本書結束時,您將能夠自信地設置一個 Linux 伺服器,使其更難被惡意行為者攻擊。

作者簡介

Donald A. Tevault

Donald A. Tevault—but you can call him Donnie—got involved with Linux way back in 2006, and has been working with it ever since. He holds the Linux Professional Institute Level 3—Security certification, and the GIAC Incident Handler certification. Donnie is a professional Linux trainer, and thanks to the magic of the internet, teaches Linux classes literally the world over from the comfort of his living room. He's also a Linux security researcher for an IoT security company.

作者簡介(中文翻譯)

唐納德·A·特沃特

唐納德·A·特沃特(Donald A. Tevault)——但你可以叫他唐尼(Donnie)——早在2006年就開始接觸Linux,並且從那時起一直在使用它。他擁有Linux專業協會的三級安全認證(Linux Professional Institute Level 3—Security)以及GIAC事件處理員認證(GIAC Incident Handler certification)。唐尼是一位專業的Linux培訓師,得益於互聯網的魔力,他可以在自己家中的客廳裡教導來自世界各地的Linux課程。他也是一家物聯網安全公司的Linux安全研究員。

目錄大綱

  1. Running Linux in a Virtual Environment
  2. Securing User Accounts
  3. Securing Your Server with a Firewall - Part 1
  4. Securing Your Server with a Firewall - Part 2
  5. Encryption Technologies
  6. SSH Hardening
  7. Mastering Discretionary Access Control
  8. Access Control Lists and Shared Directory Management
  9. Implementing Mandatory Access Control with SELinux and AppArmor
  10. Kernel Hardening and Process Isolation
  11. Scanning, Auditing, and Hardening
  12. Logging and Log Security
  13. Vulnerability Scanning and Intrusion Detection
  14. Security Tips and Tricks for the Busy Bee

目錄大綱(中文翻譯)


  1. Running Linux in a Virtual Environment

  2. Securing User Accounts

  3. Securing Your Server with a Firewall - Part 1

  4. Securing Your Server with a Firewall - Part 2

  5. Encryption Technologies

  6. SSH Hardening

  7. Mastering Discretionary Access Control

  8. Access Control Lists and Shared Directory Management

  9. Implementing Mandatory Access Control with SELinux and AppArmor

  10. Kernel Hardening and Process Isolation

  11. Scanning, Auditing, and Hardening

  12. Logging and Log Security

  13. Vulnerability Scanning and Intrusion Detection

  14. Security Tips and Tricks for the Busy Bee

類似商品