Linux Firewalls

Author: Michael Rash
Publisher: No Starch Press
ISBN: 9781593271411
Release Date: 2007
Genre: Computers

Addressing the firewall capabilities of Linux, a handbook for security professionals describes the Netfilter infrastruction in the Linux kernel and explains how to use Netfilter as an intrusion detection system by integrating it with custom open source software and Snort rulesets, discussin such topics as Linux firewall log analysis and policies, passive network authentication and authorization, and more. Original. (Intermediate)

Linux Firewalls

Author: Michael Rash
Publisher: No Starch Press
ISBN: 9781593272289
Release Date: 2007-09-07
Genre: Computers

System administrators need to stay ahead of new security vulnerabilities that leave their networks exposed every day. A firewall and an intrusion detection systems (IDS) are two important weapons in that fight, enabling you to proactively deny access and monitor network traffic for signs of an attack. Linux Firewalls discusses the technical details of the iptables firewall and the Netfilter framework that are built into the Linux kernel, and it explains how they provide strong filtering, Network Address Translation (NAT), state tracking, and application layer inspection capabilities that rival many commercial tools. You'll learn how to deploy iptables as an IDS with psad and fwsnort and how to build a strong, passive authentication layer around iptables with fwknop. Concrete examples illustrate concepts such as firewall log analysis and policies, passive network authentication and authorization, exploit packet traces, Snort ruleset emulation, and more with coverage of these topics: –Passive network authentication and OS fingerprinting –iptables log analysis and policies –Application layer attack detection with the iptables string match extension –Building an iptables ruleset that emulates a Snort ruleset –Port knocking vs. Single Packet Authorization (SPA) –Tools for visualizing iptables logs Perl and C code snippets offer practical examples that will help you to maximize your deployment of Linux firewalls. If you're responsible for keeping a network secure, you'll find Linux Firewalls invaluable in your attempt to understand attacks and use iptables—along with psad and fwsnort—to detect and even prevent compromises.

Linux iptables Pocket Reference

Author: Gregor N. Purdy
Publisher: "O'Reilly Media, Inc."
ISBN: 1449378986
Release Date: 2004-08-25
Genre: Computers

Firewalls, Network Address Translation (NAT), network logging and accounting are all provided by Linux's Netfilter system, also known by the name of the command used to administer it, iptables. The iptables interface is the most sophisticated ever offered onLinux and makes Linux an extremely flexible system for any kind of network filtering you might do. Large sets of filtering rules can be grouped in ways that makes it easy to test them and turn them on and off.Do you watch for all types of ICMP traffic--some of them quite dangerous? Can you take advantage of stateful filtering to simplify the management of TCP connections? Would you like to track how much traffic of various types you get?This pocket reference will help you at those critical moments when someone asks you to open or close a port in a hurry, either to enable some important traffic or to block an attack. The book will keep the subtle syntax straight and help you remember all the values you have to enter in order to be as secure as possible. The book has an introductory section that describes applications,followed by a reference/encyclopaedic section with all the matches and targets arranged alphabetically.

Linux Firewalls

Author: Steve Suehring
Publisher: Pearson Education
ISBN: 9780134000022
Release Date: 2015-01-01
Genre: Computers

The Definitive Guide to Building Firewalls with Linux As the security challenges facing Linux system and network administrators have grown, the security tools and techniques available to them have improved dramatically. In Linux® Firewalls, Fourth Edition, long-time Linux security expert Steve Suehring has revamped his definitive Linux firewall guide to cover the important advances in Linux security. An indispensable working resource for every Linux administrator concerned with security, this guide presents comprehensive coverage of both iptables and nftables. Building on the solid networking and firewalling foundation in previous editions, it also adds coverage of modern tools and techniques for detecting exploits and intrusions, and much more. Distribution neutral throughout, this edition is fully updated for today's Linux kernels, and includes current code examples and support scripts for Red Hat/Fedora, Ubuntu, and Debian implementations. If you're a Linux professional, it will help you establish an understanding of security for any Linux system, and for networks of all sizes, from home to enterprise. Inside, you'll find just what you need to Install, configure, and update a Linux firewall running either iptables or nftables Migrate to nftables, or take advantage of the latest iptables enhancements Manage complex multiple firewall configurations Create, debug, and optimize firewall rules Use Samhain and other tools to protect filesystem integrity, monitor networks, and detect intrusions Harden systems against port scanning and other attacks Uncover exploits such as rootkits and backdoors with chkrootkit

Building Linux Virtual Private Networks VPNs

Author: Oleg Kolesnikov
Publisher: Sams Publishing
ISBN: 1578702666
Release Date: 2002
Genre: Computers

Building Linux Virtual Private Networks (VPNs) covers the most popular VPN technologies available for the Linux platform. In the early chapters the theory behind VPNs is discussed, including needs and uses. Common network and host configurations are also covered. Subsequent chapters drill down into the implementation and configuration of specific software packages. Specific, detailed instructions are included as well as troubleshooting information. This book will be an indispensable resource for anyone who wants to implement a Linux-based VPN. This book will meet the needs of anyone, from the Linux user to the experienced administrator to the security professional. --Oleg Kolesnikov

The Official Damn Small Linux Book

Author: Robert Shingledecker
Publisher: Pearson Education
ISBN: 9780321630186
Release Date: 2007-08-06
Genre: Computers

Ma> Damn Small Linux (DSL) is a super-efficient platform for everything from custom desktops to professional servers. Now, DSL’s creator and lead developer have written the first definitive, practical guide to this remarkable system. The Official Damn Small Linux Book brings together everything you need to put DSL to work in just minutes. Simply learn a few essentials and master the rest...one step at a time, hands-on. If you’re new to Linux, you can quickly discover how to use DSL to take your data on the road, safely running your programs and personal environment on nearly any computer. Easily adapt DSL to run on anything from an alternative device (Internet appliance, hand-held, diskless PC, or mini-ITX system) to an older PC that might otherwise be headed for landfill. Use this book to Run DSL at blazing speed, USB pen drive, or directly from RAM Run DSL from your hard drive or in a virtual environment within Windows Add applications and create shareable extensions Customize and remaster DSL to create your own distribution Build a complete music and multimedia server Use Skype VoIP phone service in DSL Quickly set up an XAMPP Web server, complete with MySQL, PHP, and Perl, to host your personal Web pages

LPIC 2 Linux Professional Institute Certification Study Guide

Author: Roderick W. Smith
Publisher: John Wiley & Sons
ISBN: 9781118100448
Release Date: 2011-05-09
Genre: Computers

The first book to cover the LPIC-2 certification Linux allows developers to update source code freely, making it an excellent, low-cost, secure alternative to alternate, more expensive operating systems. It is for this reason that the demand for IT professionals to have an LPI certification is so strong. This study guide provides unparalleled coverage of the LPIC-2 objectives for exams 201 and 202. Clear and concise coverage examines all Linux administration topics while practical, real-world examples enhance your learning process. On the CD, you’ll find the Sybex Test Engine, electronic flashcards, and a glossary containing the most important terms you need to understand.. Prepares you for exams 201 and 202 of the Linux Professional Institute Certification Offers clear, concise coverage on exam topics such as the Linux kernel, system startup, networking configuration, system maintenance, domain name server, file sharing, and more Addresses additional key topics for the exams including network client management, e-mail services, system security, and troubleshooting This must-have study guide serves as an invaluable roadmap to attaining LPI certification.

The Book of Xen

Author: Chris Takemura
Publisher: No Starch Press
ISBN: 9781593271862
Release Date: 2010
Genre: Computers

Xen allows administrators to run many virtual operating systems on one physical server, including Linux, BSD, OpenSolaris, and Microsoft Windows. In the process, users save money on hardware, maintenance, and electricity. Not only is Xen open source, the Xen hypervisor (the virtual machine monitor) is the best-performing hypervisor available. "The Book of Xen" explains everything a sysadmin needs to know to use this powerful technology, with coverage of installation, networking, virtualized storage, and managing guest and host operating systems. Written for administrators who have worked with *NIX before but who may be new to virtualization, "The Book of Xen" covers both the basics and the trickier aspects of Xen administration, like profiling and benchmarks, migration, XenSource administration, and hardware assisted virtualization (HVM).

Building Internet Firewalls

Author: Elizabeth D. Zwicky
Publisher: "O'Reilly Media, Inc."
ISBN: 0596551886
Release Date: 2000-06-26
Genre: Computers

In the five years since the first edition of this classic book was published, Internet use has exploded. The commercial world has rushed headlong into doing business on the Web, often without integrating sound security technologies and policies into their products and methods. The security risks--and the need to protect both business and personal data--have never been greater. We've updated Building Internet Firewalls to address these newer risks. What kinds of security threats does the Internet pose? Some, like password attacks and the exploiting of known security holes, have been around since the early days of networking. And others, like the distributed denial of service attacks that crippled Yahoo, E-Bay, and other major e-commerce sites in early 2000, are in current headlines. Firewalls, critical components of today's computer networks, effectively protect a system from most Internet security threats. They keep damage on one part of the network--such as eavesdropping, a worm program, or file damage--from spreading to the rest of the network. Without firewalls, network security problems can rage out of control, dragging more and more systems down. Like the bestselling and highly respected first edition, Building Internet Firewalls, 2nd Edition, is a practical and detailed step-by-step guide to designing and installing firewalls and configuring Internet services to work with a firewall. Much expanded to include Linux and Windows coverage, the second edition describes: Firewall technologies: packet filtering, proxying, network address translation, virtual private networks Architectures such as screening routers, dual-homed hosts, screened hosts, screened subnets, perimeter networks, internal firewalls Issues involved in a variety of new Internet services and protocols through a firewall Email and News Web services and scripting languages (e.g., HTTP, Java, JavaScript, ActiveX, RealAudio, RealVideo) File transfer and sharing services such as NFS, Samba Remote access services such as Telnet, the BSD "r" commands, SSH, BackOrifice 2000 Real-time conferencing services such as ICQ and talk Naming and directory services (e.g., DNS, NetBT, the Windows Browser) Authentication and auditing services (e.g., PAM, Kerberos, RADIUS); Administrative services (e.g., syslog, SNMP, SMS, RIP and other routing protocols, and ping and other network diagnostics) Intermediary protocols (e.g., RPC, SMB, CORBA, IIOP) Database protocols (e.g., ODBC, JDBC, and protocols for Oracle, Sybase, and Microsoft SQL Server) The book's complete list of resources includes the location of many publicly available firewall construction tools.

Instant Buildroot

Author: Daniel Manchón
Publisher: Packt Publishing Ltd
ISBN: 9781783289462
Release Date: 2013-09-25
Genre: Computers

Filled with practical, step-by-step instructions and clear explanations for the most important and useful tasks. A concise guide full of step-by-step recipes to help you learn how to generate and configure an embedded Linux system using Buildroot.Instant Buildroot is for developers who want to know how to use Buildroot tools to generate and configure their own embedded system. It is assumed that the reader has some experience with Linux and basic programming and is familiar with basic hardware development boards.

SSH the Secure Shell

Author: Daniel J. Barrett
Publisher: "O'Reilly Media, Inc."
ISBN: 0596000111
Release Date: 2001
Genre: Computers

A guide to the TCP/IP-based network security and privacy solution covers installation, configuration, maintenance, SSH server control, application tunneling, forced commands, port and agent forwarding, and troubleshooting.

Metasploit Penetration Testing Cookbook

Author: Monika Agarwal
Publisher: Packt Publishing Ltd
ISBN: 9781782166795
Release Date: 2013-10-25
Genre: Computers

This book follows a Cookbook style with recipes explaining the steps for penetration testing with WLAN, VOIP, and even cloud computing. There is plenty of code and commands used to make your learning curve easy and quick.This book targets both professional penetration testers as well as new users of Metasploit, who wish to gain expertise over the framework and learn an additional skill of penetration testing, not limited to a particular OS. The book requires basic knowledge of scanning, exploitation, and the Ruby language.

Zabbix Cookbook

Author: Patrik Uytterhoeven
Publisher: Packt Publishing Ltd
ISBN: 9781784392253
Release Date: 2015-03-20
Genre: Computers

If you have some experience with Zabbix and wish to take your infrastructure to the next level, then this book is for you. Before you start with Zabbix, or monitoring in general, it is best to have some basic Linux knowledge and a good understanding of snmp, virtualization, and scripting.

Snort 2 1 Intrusion Detection Second Edition

Author: Brian Caswell
Publisher: Syngress
ISBN: 0080480993
Release Date: 2004-06-06
Genre: Computers

Called "the leader in the Snort IDS book arms race" by Richard Bejtlich, top Amazon reviewer, this brand-new edition of the best-selling Snort book covers all the latest features of a major upgrade to the product and includes a bonus DVD with Snort 2.1 and other utilities. Written by the same lead engineers of the Snort Development team, this will be the first book available on the major upgrade from Snort 2 to Snort 2.1 (in this community, major upgrades are noted by .x and not by full number upgrades as in 2.0 to 3.0). Readers will be given invaluable insight into the code base of Snort, and in depth tutorials of complex installation, configuration, and troubleshooting scenarios. Snort has three primary uses: as a straight packet sniffer, a packet logger, or as a full-blown network intrusion detection system. It can perform protocol analysis, content searching/matching and can be used to detect a variety of attacks and probes. Snort uses a flexible rules language to describe traffic that it should collect or pass, a detection engine that utilizes a modular plug-in architecture, and a real-time alerting capability. A CD containing the latest version of Snort as well as other up-to-date Open Source security utilities will accompany the book. Snort is a powerful Network Intrusion Detection System that can provide enterprise wide sensors to protect your computer assets from both internal and external attack. * Completly updated and comprehensive coverage of snort 2.1 * Includes free CD with all the latest popular plug-ins * Provides step-by-step instruction for installing, configuring and troubleshooting