Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Book Overview & Buying Practical Linux Security Cookbook
  • Table Of Contents Toc
Practical Linux Security Cookbook

Practical Linux Security Cookbook

By : Tajinder Kalsi
4 (1)
Buy this Book
close
close
Practical Linux Security Cookbook

Practical Linux Security Cookbook

4 (1)
By: Tajinder Kalsi
Buy this Book

Overview of this book

With the growing popularity of Linux, more and more administrators have started moving to the system to create networks or servers for any task. This also makes Linux the first choice for any attacker now. Due to the lack of information about security-related attacks, administrators now face issues in dealing with these attackers as quickly as possible. Learning about the different types of Linux security will help create a more secure Linux system. Whether you are new to Linux administration or experienced, this book will provide you with the skills to make systems more secure. With lots of step-by-step recipes, the book starts by introducing you to various threats to Linux systems. You then get to walk through customizing the Linux kernel and securing local files. Next you will move on to manage user authentication locally and remotely and also mitigate network attacks. Finally, you will learn to patch bash vulnerability and monitor system logs for security. With several screenshots in each example, the book will supply a great learning experience and help you create more secure Linux systems.
Table of Contents (12 chapters)
close
close
close
Preface
Icon
Preface
Icon
What this book covers
Icon
What you need for this book
Icon
Who this book is for
Icon
Sections
Icon
Conventions
Icon
Reader feedback
Icon
Customer support
Lock Free Chapter
1
1. Linux Security Problems
Icon
1. Linux Security Problems
Icon
Introduction
Icon
The security policy of Linux
Icon
Configuring password protection
Icon
Configuring server security
Icon
Security controls
Icon
Conducting integrity checks of the installation medium using checksum
Icon
Using the LUKS disk encryption
Icon
Making use of sudoers – configuring sudo access
Icon
Scanning hosts with Nmap
Icon
Gaining a root on a vulnerable Linux system
2
2. Configuring a Secure and Optimized Kernel
Icon
2. Configuring a Secure and Optimized Kernel
Icon
Introduction
Icon
Requirements for building and using a kernel
Icon
Creating a USB boot media
Icon
Retrieving a kernel source
Icon
Configuring and building a kernel
Icon
Installing and booting from a kernel
Icon
Testing and debugging a kernel
Icon
Configuring a console for debugging using Netconsole
Icon
Debugging a kernel on boot
3
3. Local Filesystem Security
Icon
3. Local Filesystem Security
Icon
Viewing file and directory details using the ls command
Icon
Changing the file permissions using the chmod command
Icon
Implementing access control list (ACL)
Icon
File handling using the mv command (moving and renaming)
Icon
Install and configure a basic LDAP server on Ubuntu
4
4. Local Authentication in Linux
Icon
4. Local Authentication in Linux
Icon
User authentication and logging
Icon
Limiting the login capabilities of users
Icon
Monitoring user activity using acct
Icon
Login authentication using a USB device and PAM
Icon
Defining user authorization controls
5
5. Remote Authentication
Icon
5. Remote Authentication
Icon
Remote server/host access using SSH
Icon
Disabling or enabling SSH root login
Icon
Restricting remote access with key-based login into SSH
Icon
Copying files remotely
Icon
Setting up a Kerberos server with Ubuntu
6
6. Network Security
Icon
6. Network Security
Icon
Managing the TCP/IP network
Icon
Using Iptables to configure a firewall
Icon
Blocking spoofed addresses
Icon
Blocking incoming traffic
Icon
Configuring and using the TCP Wrapper
7
7. Security Tools
Icon
7. Security Tools
Icon
Linux sXID
Icon
PortSentry
Icon
Using Squid proxy
Icon
OpenSSL Server
Icon
Tripwire
Icon
Shorewall
8
8. Linux Security Distros
Icon
8. Linux Security Distros
Icon
Kali Linux
Icon
pfSense
Icon
DEFT – Digital Evidence and Forensic Toolkit
Icon
NST – Network Security Toolkit
Icon
Helix
9
9. Patching a Bash Vulnerability
chevron up
Icon
9. Patching a Bash Vulnerability
Icon
Understanding the bash vulnerability through Shellshock
Icon
Shellshock's security issues
Icon
The patch management system
Icon
Applying patches on the Linux systems
10
10. Security Monitoring and Logging
Icon
10. Security Monitoring and Logging
Icon
Viewing and managing log files using Logcheck
Icon
Monitoring a network using Nmap
Icon
Using glances for system monitoring
Icon
Monitoring logs using MultiTail
Icon
Using system tools – Whowatch
Icon
Using system tools – stat
Icon
Using system tools – lsof
Icon
Using system tools – strace
Icon
Using Lynis
11
Index
Icon
Index

Understanding the bash vulnerability through Shellshock

Shellshock, or Bashdoor, is a vulnerability that's used in most versions of the Linux and Unix operating systems. It was discovered on September 12, 2014, and it affects all the distributions of Linux using a bash shell. The Shellshock vulnerability makes it possible to execute commands remotely using environment variables.

Getting Ready

To understand Shellshock, we need a Linux system that uses a version of bash prior to 4.3, which is vulnerable to this bug.

How to do it…

In this section, we will take a look at how to set up our system to understand the internal details of the Shellshock vulnerability:

  1. The first step is to check the version of bash on the Linux system so that we can figure out whether our system is vulnerable to Shellshock. To check the version of bash, we run this command:

    Bash versions from 4.3 and onwards have been reported to be vulnerable to Shellshock. For our example, we are using the Ubuntu 12.04 LTS desktop version...

CONTINUE READING
83
Tech Concepts
36
Programming languages
73
Tech Tools
Icon Unlimited access to the largest independent learning library in tech of over 8,000 expert-authored tech books and videos.
Icon Innovative learning tools, including AI book assistants, code context explainers, and text-to-speech.
Icon 50+ new titles added per month and exclusive early access to books as they are being written.
Practical Linux Security Cookbook
End of Section 9
Next Section
notes
bookmark Notes and Bookmarks search Search in title playlist Add to playlist download Download options
font-size Font size

Change the font size

margin-width Margin width

Change margin width

day-mode Day/Sepia/Night Modes

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Confirmation

Modal Close icon
claim successful
Order Page Read Now

Buy this book with your credits?

Modal Close icon
Are you sure you want to buy this book with one of your credits?
Close
YES, BUY

Submit Your Feedback

Modal Close icon
Modal Close icon
Modal Close icon