Use coupon code “WINTER20” for a 20% discount on all items! Valid until 30-11-2024

Site Logo
Search Suggestions

      Royal Mail  express delivery to UK destinations

      Regular sales and promotions

      Stock updates every 20 minutes!

      Linux Hardening in Hostile Networks: Server Security from TLS to Tor

      2 in stock

      Firm sale: non returnable item
      SKU 9780134173269 Categories ,
      Select Guide Rating

      In an age of mass surveillance, when advanced cyberwarfare weapons rapidly migrate into every hacker’s toolkit, you can’t rely on outdated security methods–especially if you’re responsible for Internet-facing services. In Linux® Hardening in Hostile Networks, Kyle ...

      £29.48

      Buy new:

      Delivery: UK delivery Only. Usually dispatched in 1-2 working days.

      Shipping costs: All shipping costs calculated in the cart or during the checkout process.

      Standard service (normally 2-3 working days): 48hr Tracked service.

      Premium service (next working day): 24hr Tracked service – signature service included.

      Royal mail: 24 & 48hr Tracked: Trackable items weighing up to 20kg are tracked to door and are inclusive of text and email with ‘Leave in Safe Place’ options, but are non-signature services. Examples of service expected: Standard 48hr service – if ordered before 3pm on Thursday then expected delivery would be on Saturday. If Premium 24hr service used, then expected delivery would be Friday.

      Signature Service: This service is only available for tracked items.

      Leave in Safe Place: This option is available at no additional charge for tracked services.

      Description

      Product ID:9780134173269
      Product Form:Paperback / softback
      Country of Manufacture:US
      Series:Pearson Open Source Software Development Series
      Title:Linux Hardening in Hostile Networks
      Subtitle:Server Security from TLS to Tor
      Authors:Author: Kyle Rankin
      Page Count:272
      Subjects:Linux, Linux, Network security, Network security
      Description:Select Guide Rating

      In an age of mass surveillance, when advanced cyberwarfare weapons rapidly migrate into every hacker’s toolkit, you can’t rely on outdated security methods–especially if you’re responsible for Internet-facing services. In Linux® Hardening in Hostile Networks, Kyle Rankin helps you to implement modern safeguards that provide maximum impact with minimum effort and to strip away old techniques that are no longer worth your time.

      Rankin provides clear, concise guidance on modern workstation, server, and network hardening, and explains how to harden specific services, such as web servers, email, DNS, and databases. Along the way, he demystifies technologies once viewed as too complex or mysterious but now essential to mainstream Linux security. He also includes a full chapter on effective incident response that both DevOps and SecOps can use to write their own incident response plan.

      Each chapter begins with techniques any sysadmin can use quickly to protect against entry-level hackers and presents intermediate and advanced techniques to safeguard against sophisticated and knowledgeable attackers, perhaps even state actors. Throughout, you learn what each technique does, how it works, what it does and doesn’t protect against, and whether it would be useful in your environment.

      • Apply core security techniques including 2FA and strong passwords
      • Protect admin workstations via lock screens, disk encryption, BIOS passwords, and other methods
      • Use the security-focused Tails distribution as a quick path to a hardened workstation
      • Compartmentalize workstation tasks into VMs with varying levels of trust
      • Harden servers with SSH, use apparmor and sudo to limit the damage attackers can do, and set up remote syslog servers to track their actions
      • Establish secure VPNs with OpenVPN, and leverage SSH to tunnel traffic when VPNs can’t be used
      • Configure a software load balancer to terminate SSL/TLS connections and initiate new ones downstream
      • Set up standalone Tor services and hidden Tor services and relays
      • Secure Apache and Nginx web servers, and take full advantage of HTTPS
      • Perform advanced web server hardening with HTTPS forward secrecy and ModSecurity web application firewalls
      • Strengthen email security with SMTP relay authentication, SMTPS, SPF records, DKIM, and DMARC
      • Harden DNS servers, deter their use in DDoS attacks, and fully implement DNSSEC
      • Systematically protect databases via network access control, TLS traffic encryption, and encrypted data storage
      • Respond to a compromised server, collect evidence, and prevent future attacks

      Implement Industrial-Strength Security on Any Linux Server

      In an age of mass surveillance, when advanced cyberwarfare weapons rapidly migrate into every hacker’s toolkit, you can’t rely on outdated security methods–especially if you’re responsible for Internet-facing services. In Linux® Hardening in Hostile Networks, Kyle Rankin helps you to implement modern safeguards that provide maximum impact with minimum effort and to strip away old techniques that are no longer worth your time.

      Rankin provides clear, concise guidance on modern workstation, server, and network hardening, and explains how to harden specific services, such as web servers, email, DNS, and databases. Along the way, he demystifies technologies once viewed as too complex or mysterious but now essential to mainstream Linux security. He also includes a full chapter on effective incident response that both DevOps and SecOps can use to write their own incident response plan.

      Each chapter begins with techniques any sysadmin can use quickly to protect against entry-level hackers and presents intermediate and advanced techniques to safeguard against sophisticated and knowledgeable attackers, perhaps even state actors. Throughout, you learn what each technique does, how it works, what it does and doesn’t protect against, and whether it would be useful in your environment.

      • Apply core security techniques including 2FA and strong passwords
      • Protect admin workstations via lock screens, disk encryption, BIOS passwords, and other methods
      • Use the security-focused Tails distribution as a quick path to a hardened workstation
      • Compartmentalize workstation tasks into VMs with varying levels of trust
      • Harden servers with SSH, use apparmor and sudo to limit the damage attackers can do, and set up remote syslog servers to track their actions
      • Establish secure VPNs with OpenVPN, and leverage SSH to tunnel traffic when VPNs can’t be used
      • Configure a software load balancer to terminate SSL/TLS connections and initiate new ones downstream
      • Set up standalone Tor services and hidden Tor services and relays
      • Secure Apache and Nginx web servers, and take full advantage of HTTPS
      • Perform advanced web server hardening with HTTPS forward secrecy and ModSecurity web application firewalls
      • Strengthen email security with SMTP relay authentication, SMTPS, SPF records, DKIM, and DMARC
      • Harden DNS servers, deter their use in DDoS attacks, and fully implement DNSSEC
      • Systematically protect databases via network access control, TLS traffic encryption, and encrypted data storage
      • Respond to a compromised server, collect evidence, and prevent future attacks

      Register your product at informit.com/register for convenient access to downloads, updates, and corrections as they become available.


      Imprint Name:Addison Wesley
      Publisher Name:Pearson Education (US)
      Country of Publication:GB
      Publishing Date:2017-08-16

      Additional information

      Weight392 g
      Dimensions178 × 230 × 18 mm