From the book lists at Adware Report:

All information current as of 19:13:08 Pacific Time, Monday, 21 February 2005.

Linux Security (Craig Hunt Linux Library)

   by Ramon J. Hontanon

    Sybex Inc
    14 June, 2001


   Usually ships in 24 hours

Click the button below to . . .

(which will add the book to your Amazon U.S.A. "Shopping Cart")

. . . or use your browser's Back button to return to the search-list page.

Editorial description(s):

From the Back Cover
Authoritative Answers to All Your Linux Security Questions-Specifically for Linux Administrators

This is the most complete, most advanced guide to Linux security you'll find anywhere. Written by a Linux security expert with over a decade of experience, Linux Security teaches you, step-by-step, all the standard and advanced techniques you need to know to keep your Linux environment safe from threats of all kinds. Hundreds of clear, consistent examples illustrate these techniques in detail-so you stay on track and accomplish all your goals. Coverage includes:

· Understanding information and system security procedures · Developing a corporate security policy · Designing and deploying an effective system and network monitoring strategy · Managing the network services offered by Linux servers · Understanding Sendmail security, including authentication and privacy · Providing application-level mail security using PGP · Designing and deploying an Apache HTTP server, including SSL extensions · Securing your Samba server · Building a network layer firewall using iptables and Linux kernel v.2.4 · Using the NEC SOCKS5 transport layer firewall · Deploying the TIS firewall toolkit · Offering secure remote connectivity with IPsec and PPTP VPNs · Adding strong user authentication to Linux servers using with Kerberos · Understanding the Linux Pluggable Authentication Modules (PAM)

About the Library

The Craig Hunt Linux Library provides in-depth, advanced coverage of the key topics for Linux administrators.

Topics include Samba, System Administration, DNS Server Administration, Apache, NFS and Automounter, and Sendmail.

Each book in the series is either written by or meticulously reviewed by Craig Hunt to ensure the highest quality and most complete coverage for networking professionals working specifically in Linux environments.

Book Description
--This newest addition to our popular Craig Hunt Linux Library covers everything Linux professionals need to know about security. --With real world examples and expert advice, you will learn how to develop and implement a safe and effective security policy for your Linux workstations, servers, and networks. --Covers additional important topics, such as physical security for hardware, impenetrable file system security, configuring your network to minimize the possibility of outside attack, and remote access and authentication, including a discussion of VPN.

Reader review(s):

Very useful addition to your Linux (Unix) security library, September 11, 2001
This is the first book I have bought from the Craig Hunt Linux library and judging by this volume I will be buying more.

It's an excellent book covering all aspects of Linux security
from physical site security to VPN's. It's up to date: a good section with clear examples on iptables is included.

For each section the author selects a few (or as in the case of file integrity just one product like tripwire) products and explains with good examples how to install and configure from scratch (including installing the rpm's). The language is clear and the author explains both why and how. There is an excellent section on nessus and the tripwire part really shows what a cumbersome beast tripwire now has become ... The focus is almost 100% on freely available tools in true Linux spirit.

It's not without minor faults however - but so far I have only found one major one. The section on "Starting Network Services from /etc/rc.d" is weak: it messes up the runlevels (1 is single user and 5 is X11), it does not mention the fact that Kill scripts are run before the Start script when _entering_ a new run level and there is no mention of ntsysv (or chkconfig).

I do like the fact that Hontanon is not at all afraid of giving strong recommendations - i.e. "Among the password auditing tools ... John the Ripper stands out as the clear winner because of its performance and ease of use".

This is not a beginners book - it assumes general Linux and networking knowledge.

If you are looking for a source for overall Linux security, Unix security tools and how to use these tools look no further. This book should be on your bookshelf along with the 2nd edition of "Maximum Linux Security" and (the now slightly out of date) "Practical Unix&Internet Security".


Disappointing book, June 8, 2002
I was a tad bit disappointed with this book. I was hoping for a more in depth presentation of Linux specific security options, but the majority of the book is a superficial treatment of installing various open source security packages.

The book is also a bit dated. The latest reference to Redhat is for version 7.0 (Redhat is up to 7.3 now); it refers to the "next generation inetd" regarding xinetd.conf; and also refers to TCP-Wrappers as a Linux add-on (both components have been included and installed in a default Linux install for close to 2 years now).

The book is good for an overview of Linux security, but if you're "looking for the beef" it's better to look elsewhere.

{end of page}

(Page code from the SEO Tools, Toys, and Packages site)