- page 1
- Real World Linux Security: Intrusion Prevention, Detection, and Recovery, Second Edition
- Real World Linux Security: Intrusion Prevention, Detection, and Recovery, Second Edition
- Table of Contents
- Copyright
- Prentice Hall PTR Open Source Technology Series
- About Prentice Hall Professional Technical Reference
- List of Figures
- List of Tables
- Foreword
- Acknowledgments
- About the Author
- Chapter 1. Introduction
- Section 1.1 Introduction to the Second Edition
- Section 1.2 Who Should Read This Book?
- Section 1.3 How This Book Is Organized
- Section 1.4 What Are You Protecting?
- Section 1.5 Who Are Your Enemies?
- Section 1.6 What They Hope to Accomplish
- Section 1.7 Costs: Protection versus Break-Ins
- Section 1.8 Protecting Hardware
- Section 1.9 Protecting Network and Modem Access
- Section 1.10 Protecting System Access
- Section 1.11 Protecting Files
- Section 1.12 Preparing for and Detecting an Intrusion
- Section 1.13 Recovering from an Intrusion
- Part I: Securing Your System
- Chapter 2. Quick Fixes for Common Problems
- Section 2.1 Understanding Linux Security
- Section 2.2 The Seven Most Deadly Sins
- Section 2.3 PasswordsA Key Point for Good Security
- Section 2.4 Advanced Password Techniques
- Section 2.5 Protecting the System from User Mistakes
- Section 2.6 Forgiveness Is Better than Permission
- Section 2.7 Dangers and Countermeasures During Initial System Setup
- Section 2.8 Limiting Unreasonable Access
- Section 2.9 Firewalls and the Corporate Moat
- Section 2.10 Turn Off Unneeded Services
- Section 2.11 High Security Requires Minimum Services
- Section 2.12 Replace These Weak Doors with Brick
- Section 2.13 New Lamps for Old
- Section 2.14 United We Fall, Divided We Stand
- Chapter 3. Quick and Easy Hacking and How to Avoid It
- Section 3.1 X Marks the Hole
- Section 3.2 Law of the JunglePhysical Security
- Section 3.3 Physical Actions
- Section 3.4 Selected Short Subjects
- Section 3.5 Terminal Device Attacks
- Section 3.6 Disk Sniffing
- Chapter 4. Common Hacking by Subsystem
- Section 4.1 NFS, mountd, and portmap
- Section 4.2 Sendmail
- Section 4.3 Telnet
- Section 4.4 FTP
- Section 4.5 The rsh, rcp, TTrexecTT, and TTrloginTT Services
- Section 4.6 DNS (named, a.k.a. BIND)
- Section 4.7 POP and IMAP Servers
- Section 4.8 Doing the Samba
- Section 4.9 Stop Squid from Inking Out Their Trail
- Section 4.10 The syslogd Service
- Section 4.11 The print Service (lpd)
- Section 4.12 The ident Service
- Section 4.13 INND and News
- Section 4.14 Protecting Your DNS Registration
- Chapter 5. Common Hacker Attacks
- Section 5.1 Rootkit Attacks (Script Kiddies)
- Section 5.2 Packet Spoofing Explained
- Section 5.3 SYN Flood Attack Explained
- Section 5.4 Defeating SYN Flood Attacks
- Section 5.5 Defeating TCP Sequence Spoofing
- Section 5.6 Packet Storms, Smurf Attacks, and Fraggles
- Section 5.7 Buffer Overflows or Stamping on Memory with gets()
- Section 5.8 Spoofing Techniques
- Section 5.9 Man-in-the-Middle Attack
- Chapter 6. Advanced Security Issues
- Section 6.1 Configuring Netscape for Higher Security
- Section 6.2 Stopping Access to IO Devices
- Section 6.3 Scouting Out Apache (httpd) Problems
- Section 6.4 Special Techniques for Web Servers
- Section 6.5 One-Way Credit Card Data Path for Top Security
- Section 6.6 Hardening for Very High Security