Linux Hardening in Hostile Networks: Server Security from TLS to Tor | Agenda Bookshop Skip to content
Online orders placed from 19/12 onward will not arrive in time for Christmas.
Online orders placed from 19/12 onward will not arrive in time for Christmas.
A01=Kyle Rankin
Age Group_Uncategorized
Age Group_Uncategorized
Author_Kyle Rankin
automatic-update
Category1=Non-Fiction
Category=ULL
Category=UTN
COP=United States
Delivery_Delivery within 10-20 working days
Language_English
PA=In stock
Price_€20 to €50
PS=Active
softlaunch

Linux Hardening in Hostile Networks: Server Security from TLS to Tor

English

By (author): Kyle Rankin

Implement Industrial-Strength Security on Any Linux Server

In an age of mass surveillance, when advanced cyberwarfare weapons rapidly migrate into every hackers toolkit, you cant rely on outdated security methodsespecially if youre responsible for Internet-facing services. In Linux® Hardening in Hostile Networks, Kyle Rankin helps you to implement modern safeguards that provide maximum impact with minimum effort and to strip away old techniques that are no longer worth your time.

Rankin provides clear, concise guidance on modern workstation, server, and network hardening, and explains how to harden specific services, such as web servers, email, DNS, and databases. Along the way, he demystifies technologies once viewed as too complex or mysterious but now essential to mainstream Linux security. He also includes a full chapter on effective incident response that both DevOps and SecOps can use to write their own incident response plan.

Each chapter begins with techniques any sysadmin can use quickly to protect against entry-level hackers and presents intermediate and advanced techniques to safeguard against sophisticated and knowledgeable attackers, perhaps even state actors. Throughout, you learn what each technique does, how it works, what it does and doesnt protect against, and whether it would be useful in your environment.

  • Apply core security techniques including 2FA and strong passwords
  • Protect admin workstations via lock screens, disk encryption, BIOS passwords, and other methods
  • Use the security-focused Tails distribution as a quick path to a hardened workstation
  • Compartmentalize workstation tasks into VMs with varying levels of trust
  • Harden servers with SSH, use apparmor and sudo to limit the damage attackers can do, and set up remote syslog servers to track their actions
  • Establish secure VPNs with OpenVPN, and leverage SSH to tunnel traffic when VPNs cant be used
  • Configure a software load balancer to terminate SSL/TLS connections and initiate new ones downstream
  • Set up standalone Tor services and hidden Tor services and relays
  • Secure Apache and Nginx web servers, and take full advantage of HTTPS
  • Perform advanced web server hardening with HTTPS forward secrecy and ModSecurity web application firewalls
  • Strengthen email security with SMTP relay authentication, SMTPS, SPF records, DKIM, and DMARC
  • Harden DNS servers, deter their use in DDoS attacks, and fully implement DNSSEC
  • Systematically protect databases via network access control, TLS traffic encryption, and encrypted data storage
  • Respond to a compromised server, collect evidence, and prevent future attacks

Register your product at informit.com/register for convenient access to downloads, updates, and corrections as they become available.

See more
Current price €37.04
Original price €38.99
Save 5%
A01=Kyle RankinAge Group_UncategorizedAuthor_Kyle Rankinautomatic-updateCategory1=Non-FictionCategory=ULLCategory=UTNCOP=United StatesDelivery_Delivery within 10-20 working daysLanguage_EnglishPA=In stockPrice_€20 to €50PS=Activesoftlaunch
Delivery/Collection within 10-20 working days
Product Details
  • Weight: 380g
  • Dimensions: 179 x 20mm
  • Publication Date: 16 Aug 2017
  • Publisher: Pearson Education (US)
  • Publication City/Country: United States
  • Language: English
  • ISBN13: 9780134173269

About Kyle Rankin

Kyle Rankin is the vice president of engineering operations for Final Inc.; the author of DevOps Troubleshooting The Official Ubuntu Server Book Knoppix Hacks Knoppix Pocket Reference Linux Multimedia Hacks and Ubuntu Hacks; and a contributor to a number of other books. Rankin is an award-winning columnist for Linux Journal and has written for PC Magazine TechTarget websites and other publications. He speaks frequently on Open Source software including a keynote at SCALE 11x and numerous other talks at SCALE OReilly Security Conference OSCON CactusCon Linux World Expo Penguicon and a number of Linux Users Groups. In his free time Kyle does much of what he does at workplays with Linux and computers in general. Hes also interested in brewing BBQing playing the banjo 3D printing and far too many other hobbies.

Customer Reviews

Be the first to write a review
0%
(0)
0%
(0)
0%
(0)
0%
(0)
0%
(0)
We use cookies to ensure that we give you the best experience on our website. If you continue we'll assume that you are understand this. Learn more
Accept