Practical Unix and Internet Security
Simson Garfinkel, Gene Spafford, Alan Schwartz
Résumé
When Practical Unix Security was first published more than a decade ago, it became an instant classic. Crammed with information about host security, it saved many a Unix system administrator from disaster. The second edition added much-needed Internet security coverage and doubled the size of the original volume. The third edition is a comprehensive update of this very popular book - a companion for the Unix/Linux system administrator who needs to secure his or her organization's system, networks, and web presence in an increasingly hostile world.
Focusing on the four most popular Unix variants today--Solaris, Mac OS X, Linux, and FreeBSD--this book contains new information on PAM (Pluggable Authentication Modules), LDAP, SMB/Samba, anti-theft technologies, embedded systems, wireless and laptop issues, forensics, intrusion detection, chroot jails, telephone scanners and firewalls, virtual and cryptographic filesystems, WebNFS, kernel security levels, outsourcing, legal issues, new Internet protocols and cryptographic algorithms, and much more.
Practical Unix & Internet Security consists of six parts:- Computer security basics: introduction to security problems and solutions, Unix history and lineage, and the importance of security policies as a basic element of system security.
- Security building blocks: fundamentals of Unix passwords, users, groups, the Unix filesystem, cryptography, physical security, and personnel security.
- Network security: a detailed look at modem and dialup security, TCP/IP, securing individual network services, Sun's RPC, various host and network authentication systems (e.g., NIS, NIS+, and Kerberos), NFS and other filesystems, and the importance of secure programming.
- Secure operations: keeping up to date in today's changing security world, backups, defending against attacks, performing integrity management, and auditing.
- Handling security incidents: discovering a break-in, dealing with programmed threats and denial of service attacks, and legal aspects of computer security.
- Appendixes: a comprehensive security checklist and a detailed bibliography of paper and electronic references for further reading and research.
Packed with 1000 pages of helpful text, scripts, checklists, tips, and warnings, this third edition remains the definitive reference for Unix administrators and anyone who cares about protecting their systems and data from today's threats.
Contents
Computer Security Basics- Introduction: Some Fundamental Questions
- Unix History and Lineage
- Policies and Guidelines
- Users, Passwords, and Authentication
- Users, Groups, and the Superuser
- Filesystems and Security
- Cryptography Basics
- Physical Security for Servers
- Personnel Security
- Modems and Dialup Security
- TCP/IP Networks
- Securing TCP and UDP Services
- Sun RPC
- Network-Based Authentication Systems
- Network Filesystems
- Secure Programming Techniques
- Keeping Up to Date
- Backups
- Defending Accounts
- Integrity Management
- Auditing, Logging, and Forensics
- Discovering a Break-in
- Protecting Against Programmed Threats
- Denial of Service Attacks and Solutions
- Computer Crime
- Who Do You Trust?
L'auteur - Simson Garfinkel
Simson Garfinkel is a postdoctoral fellow at the Center for Research on Computers and Society at Harvard University's department of Electrical Engineering and Computer Science. He came to Harvard after completing his Ph.D. in Computer Security at MIT's Computer Science and Artificial Intelligence Laboratory, where he studied computer security, usability, and forensics. Garfinkel is also the founder of Sandstorm Enterprises, Inc., a supplier of computer security auditing tools. Garfinkel writes a monthly column on computer security for CSO Magazine, for which he has received the 2004 and 2005 Neal Business Journalism award. This is Garfinkel's 14th book; he doesn't have any free time.
L'auteur - Gene Spafford
Gene Spafford, Ph.D., CISSP, is an internationally
renowned scientist and educator who has been working in
information security, policy, cybercrime, and software
engineering for nearly two decades. He is a professor at
Purdue University and is the director of CERIAS, the
world's premier multidisciplinary academic center for
information security and assurance. Professor Spafford and
his students have pioneered a number of technologies and
concepts well-known in security today, including the COPS
and Tripwire tools, two-stage firewalls, and vulnerability
databases. Spaf, as he is widely known, has achieved
numerous professional honors recognizing his teaching, his
research, and his professional service. These include being
named a fellow of the AAAS, the ACM, and the IEEE;
receiving the National Computer Systems Security Award;
receiving the William Hugh Murray Medal of the NCISSE;
election to the ISSA Hall of Fame; and receiving the
Charles Murphy Award at Purdue. He was named a CISSP,
honoris causa in 2000. In addition to over 100 technical
reports and articles on his research, Spaf is also the
coauthor of Web Security, Privacy, and Commerce, and was
the consulting editor for Computer Crime: A Crimefighters
Handbook (both from O'Reilly).
L'auteur - Alan Schwartz
Alan Schwartz, Ph.D. is an associate professor of clinical decision-making in the Departments of Medical Education and Pediatrics at the University of Illinois at Chicago. He is also the author of Managing Mailing Lists and the coauthor of Stopping Spam (both from O'Reilly). He serves as a consultant on Unix system administration for several ISPs. In his spare time, he develops and maintains the PennMUSH MUD server and brews beer and mead with his wife, with whom he also develops and maintains their son. Turn-ons for Alan include sailing, programming in Perl, playing duplicate bridge, and drinking Anchor Porter. Turn-offs include spam and watery American lagers.
Caractéristiques techniques
PAPIER | |
Éditeur(s) | O'Reilly |
Auteur(s) | Simson Garfinkel, Gene Spafford, Alan Schwartz |
Parution | 28/04/2003 |
Édition | 3eme édition |
Nb. de pages | 984 |
Format | 17,8 x 23,4 |
Couverture | Broché |
Poids | 1370g |
Intérieur | Noir et Blanc |
EAN13 | 9780596003234 |
ISBN13 | 978-0-596-00323-4 |
Avantages Eyrolles.com
Consultez aussi
- Les meilleures ventes en Graphisme & Photo
- Les meilleures ventes en Informatique
- Les meilleures ventes en Construction
- Les meilleures ventes en Entreprise & Droit
- Les meilleures ventes en Sciences
- Les meilleures ventes en Littérature
- Les meilleures ventes en Arts & Loisirs
- Les meilleures ventes en Vie pratique
- Les meilleures ventes en Voyage et Tourisme
- Les meilleures ventes en BD et Jeunesse