Direct Download Linux Hardening in Hostile Networks: Server Security from TLS to Tor (Pearson Open Source Software D...

Hits: 58
Linux Hardening in Hostile Networks: Server Security from TLS to Tor (Pearson Open Source Software D...
Linux Hardening in Hostile Networks: Server Security from TLS to Tor (Pearson Open Source Software Development Series) by Kyle Rankin
English | 17 July 2017 | ISBN: 0134173260 | ASIN: B073YCYNNC | 272 Pages | AZW3 | 10.23 MB


Implement Industrial-Strength Security on Any Linux Server
In an age of mass surveillance, when advanced cyberwarfare weapons rapidly migrate into every hacker's toolkit, you can't rely on outdated security methods-especially if you're responsible for Internet-facing services. In Linux® Hardening in Hostile Networks, Kyle Rankin helps you to implement modern safeguards that provide maximum impact with minimum effort and to strip away old techniques that are no longer worth your time.
Rankin provides clear, concise guidance on modern workstation, server, and network hardening, and explains how to harden specific services, such as web servers, email, DNS, and databases. Along the way, he demystifies technologies once viewed as too complex or mysterious but now essential to mainstream Linux security. He also includes a full chapter on effective incident response that both DevOps and SecOps can use to write their own incident response plan.
Each chapter begins with techniques any sysadmin can use quickly to protect against entry-level hackers and presents intermediate and advanced techniques to safeguard against sophisticated and knowledgeable attackers, perhaps even state actors. Throughout, you learn what each technique does, how it works, what it does and doesn't protect against, and whether it would be useful in your environment.
Apply core security techniques including 2FA and strong passwords
Protect admin workstations via lock screens, disk encryption, BIOS passwords, and other methods
Use the security-focused Tails distribution as a quick path to a hardened workstation
Compartmentalize workstation tasks into VMs with varying levels of trust
Harden servers with SSH, use apparmor and sudo to limit the damage attackers can do, and set up remote syslog servers to track their actions
Establish secure VPNs with OpenVPN, and leverage SSH to tunnel traffic when VPNs can't be used
Configure a software load balancer to terminate SSL/TLS connections and initiate new ones downstream
Set up standalone Tor services and hidden Tor services and relays
Secure Apache and Nginx web servers, and take full advantage of HTTPS
Perform advanced web server hardening with HTTPS forward secrecy and ModSecurity web application firewalls
Strengthen email security with SMTP relay authentication, SMTPS, SPF records, DKIM, and DMARC
Harden DNS servers, deter their use in DDoS attacks, and fully implement DNSSEC
Systematically protect databases via network access control, TLS traffic encryption, and encrypted data storage
Respond to a compromised server, collect evidence, and prevent future attacks
Register your product at informit.com/register for convenient access to downloads, updates, and corrections as they become available.
Download

or
or




Related Posts
In this revisionary study, Barbara Foley challenges prevalent myths about left-wing culture in the ...

 

Lina Khatib examines the cinematic depictions of major political issues, from the Arab-Israeli conflict to the Gulf War, to Islamic fundamentalism, looking at films made in the US, in Egypt, Tunisia, Morocco, Lebanon, Syria and Palestine. She explores cinema's role as a tool of national...

 

1 day

 Date: 02/23/18 02:40   in : E-Books & Audio Books 

Cargo crime-including theft, fraud, and the passage of contraband through commercial shipping lanes-poses an enormous threat to security and the economy. By understanding the current methods and operations of those who attack the supply chain, industry professionals can design effective sec...

 

1 day

 Date: 02/23/18 02:40   in : E-Books & Audio Books 

Author of The Worldly Philosophers, a 3-million-copy seller, Robert Heilbroner offers here a compendium of readings from the "worldly philosophers" themselves. The selections range from the earliest economic thought to such towering volumes as Adam Smith's The Wealth of Nation...

 

People often asked Madhu Pandit - "Why did you leave Iit to become a monk? " Had he followed the conventional path, Madhu Pandit would have been a big-shot in some large corporation. Instead, he was the 'Ceo' of a large temple. Guided by his guru A C to Bhaktivedanta Srila...

 

Ranging from Prince to Def Leppard, Lucille Clifton to Frederick Seidel, Robbins's mastery of poetry and popular music shines in Equipment for Living. His singular ability to illustrate points with seemingly disparate examples (Friedrich Kittler and Taylor Swift, W. B. Yeats and Anna Ke...

 

1 day

 Date: 02/23/18 02:40   in : E-Books & Audio Books 

Lonely Planet Turkey is your passport to the most relevant, up-to-date advice on what to see and skip, and what hidden discoveries await you. Bath in a hammam; explore chaotic and colourful bazaars; or hot air balloon over Cappadocia's honeycomb landscape; all with your trusted travel c...

 

1 day

 Date: 02/23/18 02:40   in : E-Books & Audio Books 

This is the perfect training guide for those who practice MMA, Brazilian Jiujitsu, Taekwondo, Karate, Judo, Aikido, Kung Fu, Muay Thai, Krav Maga, Wrestling, or a combination of any of these. Ultimate Conditioning for Martial Arts teaches how to evaluate conditioning along with physical str...

 

Examination of Peripheral Nerve Injuries, Second Edition, ...

 

A black swan is an event, positive or negative, that is deemed improbable yet causes massive consequences. In this groundbreaking and prophetic book, Taleb shows in a playful way that Black Swan events explain almost everything about our world, and yet we-especially the experts-are blind to...