The Book of PF 3rd Edition

Author: Peter N.M. Hansteen
Publisher: No Starch Press
ISBN: 9781593276218
Release Date: 2014-10-03
Genre: Computers

OpenBSD’s stateful packet filter, PF, is the heart of the OpenBSD firewall. With more and more services placing high demands on bandwidth and an increasingly hostile Internet environment, no sysadmin can afford to be without PF expertise. The third edition of The Book of PF covers the most up-to-date developments in PF, including new content on IPv6, dual stack configurations, the "queues and priorities" traffic-shaping system, NAT and redirection, wireless networking, spam fighting, failover provision ing, logging, and more. You’ll also learn how to: –Create rule sets for all kinds of network traffic, whether crossing a simple LAN, hiding behind NAT, traversing DMZs, or spanning bridges or wider networks –Set up wireless networks with access points, and lock them down using authpf and special access restrictions –Maximize flexibility and service availability via CARP, relayd, and redirection –Build adaptive firewalls to proactively defend against attackers and spammers –Harness OpenBSD’s latest traffic-shaping system to keep your network responsive, and convert your existing ALTQ configurations to the new system –Stay in control of your traffic with monitoring and visualization tools (including NetFlow) The Book of PF is the essential guide to building a secure network with PF. With a little effort and this book, you’ll be well prepared to unlock PF’s full potential.

Book of PF 3rd Edition

Author: Peter N. M. Hansteen
Publisher: No Starch Press
ISBN: 9781593275891
Release Date: 2014-10-03
Genre: Computers

OpenBSD’s stateful packet filter, PF, is the heart of the OpenBSD firewall. With more and more services placing high demands on bandwidth and an increasingly hostile Internet environment, no sysadmin can afford to be without PF expertise. The third edition of The Book of PF covers the most up-to-date developments in PF, including new content on IPv6, dual stack configurations, the “queues and priorities” traffic-shaping system, NAT and redirection, wireless networking, spam fighting, failover provisioning, logging, and more. You’ll also learn how to: * Create rule sets for all kinds of network traffic, whether crossing a simple LAN, hiding behind NAT, traversing DMZs, or spanning bridges or wider networks * Set up wireless networks with access points, and lock them down using authpf and special access restrictions * Maximize flexibility and service availability via CARP, relayd, and redirection * Build adaptive firewalls to proactively defend against attackers and spammers * Harness OpenBSD’s latest traffic-shaping system to keep your network responsive, and convert your existing ALTQ configurations to the new system * Stay in control of your traffic with monitoring and visualization tools (including NetFlow) The Book of PF is the essential guide to building a secure network with PF. With a little effort and this book, you’ll be well prepared to unlock PF’s full potential.

The Book of PF 2nd Edition

Author: Peter N. M. Hansteen
Publisher: No Starch Press
ISBN: 9781593272746
Release Date: 2011
Genre: Computers

This second edition is an up-to-date, no-nonsense guide to harnessing the power of PF. The author covers NAT (network address translation) and redirection, wireless networking, SPAM fighting, failover provisioning, logging, and more.

Absolute OpenBSD 2nd Edition

Author: Michael W. Lucas
Publisher: No Starch Press
ISBN: 9781593274764
Release Date: 2013
Genre: Computers

OpenBSD is widely used as the basis for critical DNS servers, routers, firewalls, and more. With this book, you'll learn the intricacies of the platform, the technical details behind certain design decisions, and best practices. This edition has been updated for OpenBSD 5.3, including new coverage of OpenBSD's boot system, security features like W^X and ProPolice, and advanced networking techniques. You'll also learn how to: manage network traffic with VLANs, trunks, IPv6, and the PF packet filter; make software management quick and effective using the ports and packages system; give users only the access they need with groups, sudo, and chroots; configure OpenBSD's secure implementations of SNMP, DHCP, NTP, hardware sensors, and more; and customize the installation and upgrade processes for your network and hardware, or build a custom OpenBSD release.

PfSense 2 Cookbook

Author: Matt Williamson
Publisher: Packt Publishing Ltd
ISBN: 9781849514873
Release Date: 2011-03-23
Genre: Computers

Master Wicket by example by implementing real-life solutions to every day tasks.

Mastering pfSense

Author: David Zientara
Publisher: Packt Publishing Ltd
ISBN: 9781788993470
Release Date: 2018-05-09
Genre: Computers

Install and configure a pfSense router/firewall, and become a pfSense expert in the process. Key Features You can always do more to secure your software – so extend and customize your pfSense firewall Build a high availability security system that’s fault-tolerant – and capable of blocking potential threats Put the principles of better security into practice by implementing examples provided in the text Book Description pfSense has the same reliability and stability as even the most popular commercial firewall offerings on the market – but, like the very best open-source software, it doesn’t limit you. You’re in control – you can exploit and customize pfSense around your security needs. Mastering pfSense - Second Edition, covers features that have long been part of pfSense such as captive portal, VLANs, traffic shaping, VPNs, load balancing, Common Address Redundancy Protocol (CARP), multi-WAN, and routing. It also covers features that have been added with the release of 2.4, such as support for ZFS partitions and OpenVPN 2.4. This book takes into account the fact that, in order to support increased cryptographic loads, pfSense version 2.5 will require a CPU that supports AES-NI. The second edition of this book places more of an emphasis on the practical side of utilizing pfSense than the previous edition, and, as a result, more examples are provided which show in step-by-step fashion how to implement many features. What you will learn Configure pfSense services such as DHCP, Dynamic DNS, captive portal, DNS, NTP and SNMP Set up a managed switch to work with VLANs Use pfSense to allow, block and deny traffic, and to implement Network Address Translation (NAT) Make use of the traffic shaper to lower and raise the priority of certain types of traffic Set up and connect to a VPN tunnel with pfSense Incorporate redundancy and high availability by utilizing load balancing and the Common Address Redundancy Protocol (CARP) Explore diagnostic tools in pfSense to solve network problems Who this book is for This book is for those with at least an intermediate understanding of networking. Prior knowledge of pfSense would be helpful but is not required. Those who have the resources to set up a pfSense firewall, either in a real or virtual environment, will especially benefit, as they will be able to follow along with the examples in the book.

Mastering FreeBSD and OpenBSD Security

Author: Yanek Korff
Publisher: "O'Reilly Media, Inc."
ISBN: 0596006268
Release Date: 2005
Genre: Computers

FreeBSD and OpenBSD are increasingly gaining traction in educational institutions, non-profits, and corporations worldwide because they provide significant security advantages over Linux. Although a lot can be said for the robustness, clean organization, and stability of the BSD operating systems, security is one of the main reasons system administrators use these two platforms. There are plenty of books to help you get a FreeBSD or OpenBSD system off the ground, and all of them touch on security to some extent, usually dedicating a chapter to the subject. But, as security is commonly named as the key concern for today's system administrators, a single chapter on the subject can't provide the depth of information you need to keep your systems secure. FreeBSD and OpenBSD are rife with security "building blocks" that you can put to use, and Mastering FreeBSD and OpenBSD Security shows you how. Both operating systems have kernel options and filesystem features that go well beyond traditional Unix permissions and controls. This power and flexibility is valuable, but the colossal range of possibilities need to be tackled one step at a time. This book walks you through the installation of a hardened operating system, the installation and configuration of critical services, and ongoing maintenance of your FreeBSD and OpenBSD systems. Using an application-specific approach that builds on your existing knowledge, the book provides sound technical information on FreeBSD and Open-BSD security with plenty of real-world examples to help you configure and deploy a secure system. By imparting a solid technical foundation as well as practical know-how, it enables administrators to push their server's security to the next level. Even administrators in other environments--like Linux and Solaris--can find useful paradigms to emulate. Written by security professionals with two decades of operating system experience, Mastering FreeBSD and OpenBSD Security features broad and deep explanations of how how to secure your most critical systems. Where other books on BSD systems help you achieve functionality, this book will help you more thoroughly secure your deployments.

Secure Architectures with OpenBSD

Author: Brandon Palmer
Publisher: Addison-Wesley Professional
ISBN: 0321193660
Release Date: 2004
Genre: Computers

Secure Architectures with OpenBSD is the insider's guide to building secure systems using OpenBSD. Written by Brandon Palmer and Jose Nazario, this book is a how-to for system and network administrators who need to move to a more secure operating system and a reference for seasoned OpenBSD users who want to fully exploit every feature of the system.

PfSense org

Author: Christopher M. Buechler
Publisher:
ISBN: 0979034280
Release Date: 2009
Genre: Computers

Written by pfSense co-founder Chris Buechler and pfSense consultant Jim Pingle, this Definitive Guide to pfSense covers installation and basic configuration through advanced networking and firewalling with the popular open source firewall and router distribution. This book is designed to be a friendly step-by-step guide to common networking and security tasks, plus a thorough reference of pfSense's capabilities. The book covers hardware and system planning, installation and upgrades, backups, firewalling fundamentals, port forwarding and Network Address Translation, bridging, Virtual LANs (VLAN), Multi-WAN, Virtual Private Networks (VPN) using IPsec, PPTP, and OpenVPN, traffic shaping, load balancing, wireless networking and captive portal setups, redundant firewalls and High Availability, system monitoring, logging, traffic analysis, sniffing, packet capturing, troubleshooting, and software package and third-party software installations and upgrades.

Hacking 2nd Edition

Author: Jon Erickson
Publisher: No Starch Press
ISBN: 9781593271442
Release Date: 2008
Genre: COMPUTERS

An introduction to hacking describes the techniques of computer hacking, covering such topics as stack-based overflows, format string exploits, network security, cryptographic attacks, and shellcode.

Absolute FreeBSD 2nd Edition

Author: Michael W. Lucas
Publisher: No Starch Press
ISBN: 9781593272210
Release Date: 2013-04-12
Genre: Computers

FreeBSD—the powerful, flexible, and free Unix-like operating system—is the preferred server for many enterprises. But it can be even trickier to use than either Unix or Linux, and harder still to master. Absolute FreeBSD, 2nd Edition is your complete guide to FreeBSD, written by FreeBSD committer Michael W. Lucas. Lucas considers this completely revised and rewritten second edition of his landmark work to be his best work ever; a true product of his love for FreeBSD and the support of the FreeBSD community. Absolute FreeBSD, 2nd Edition covers installation, networking, security, network services, system performance, kernel tweaking, filesystems, SMP, upgrading, crash debugging, and much more, including coverage of how to:–Use advanced security features like packet filtering, virtual machines, and host-based intrusion detection –Build custom live FreeBSD CDs and bootable flash –Manage network services and filesystems –Use DNS and set up email, IMAP, web, and FTP services for both servers and clients –Monitor your system with performance-testing and troubleshooting tools –Run diskless systems –Manage schedulers, remap shared libraries, and optimize your system for your hardware and your workload –Build custom network appliances with embedded FreeBSD –Implement redundant disks, even without special hardware –Integrate FreeBSD-specific SNMP into your network management system. Whether you're just getting started with FreeBSD or you've been using it for years, you'll find this book to be the definitive guide to FreeBSD that you've been waiting for.

LDAP System Administration

Author: Gerald Carter
Publisher: "O'Reilly Media, Inc."
ISBN: 0596551916
Release Date: 2003-03-20
Genre: Computers

Be more productive and make your life easier. That's what LDAP System Administration is all about.System administrators often spend a great deal of time managing configuration information located on many different machines: usernames, passwords, printer configurations, email client configurations, and network filesystem configurations, to name a few. LDAPv3 provides tools for centralizing all of the configuration information and placing it under your control. Rather than maintaining several administrative databases (NIS, Active Directory, Samba, and NFS configuration files), you can make changes in only one place and have all your systems immediately "see" the updated information.Practically platform independent, this book uses the widely available, open source OpenLDAP 2 directory server as a premise for examples, showing you how to use it to help you manage your configuration information effectively and securely. OpenLDAP 2 ships with most Linux® distributions and Mac OS® X, and can be easily downloaded for most Unix-based systems. After introducing the workings of a directory service and the LDAP protocol, all aspects of building and installing OpenLDAP, plus key ancillary packages like SASL and OpenSSL, this book discusses: Configuration and access control Distributed directories; replication and referral Using OpenLDAP to replace NIS Using OpenLDAP to manage email configurations Using LDAP for abstraction with FTP and HTTP servers, Samba, and Radius Interoperating with different LDAP servers, including Active Directory Programming using Net::LDAP If you want to be a master of your domain, LDAP System Administration will help you get up and running quickly regardless of which LDAP version you use. After reading this book, even with no previous LDAP experience, you'll be able to integrate a directory server into essential network services such as mail, DNS, HTTP, and SMB/CIFS.

Rails Crash Course

Author: Anthony Lewis
Publisher: No Starch Press
ISBN: 9781593276232
Release Date: 2014-10-08
Genre: Computers

Rails is a robust, flexible development platform that lets you build complex websites quickly. Major websites like GitHub, Hulu, and Twitter have run Rails under the hood, and if you know just enough HTML and CSS to be dangerous, Rails Crash Course will teach you to harness Rails for your own projects and create web applications that are fast, stable, and secure. In Part I, you’ll learn Ruby and Rails fundamentals and then dive straight into models, controllers, views, and deployment. As you work through the basics, you’ll learn how to: –Craft persistent models with Active Record –Build view templates with Embedded Ruby –Use Git to roll back to previous versions of your code base –Deploy applications to Heroku In Part II, you’ll take your skills to the next level as you build a social networking app with more advanced Ruby tools, such as modules and metaprogramming, and advanced data modeling techniques within Rails’s Active Record. You’ll learn how to: –Implement an authentication system to identify authorized users –Write your own automated tests and refactor your code with confidence –Maximize performance with the asset pipeline and turbolinks –Secure your app against SQL injection and cross-site scripting –Set up a server and deploy applications with Capistrano Each chapter is packed with hands-on examples and exercises to reinforce what you’ve learned. Whether you’re completely new to Ruby or you’ve been mucking around for a bit, Rails Crash Course will take you from the basics to shipping your first Rails application, fast.

The Art of Debugging with GDB DDD and Eclipse

Author: Norman Matloff
Publisher: No Starch Press
ISBN: 9781593272319
Release Date: 2008-09-15
Genre: Computers

Debugging is crucial to successful software development, but even many experienced programmers find it challenging. Sophisticated debugging tools are available, yet it may be difficult to determine which features are useful in which situations. The Art of Debugging is your guide to making the debugging process more efficient and effective. The Art of Debugging illustrates the use three of the most popular debugging tools on Linux/Unix platforms: GDB, DDD, and Eclipse. The text-command based GDB (the GNU Project Debugger) is included with most distributions. DDD is a popular GUI front end for GDB, while Eclipse provides a complete integrated development environment. In addition to offering specific advice for debugging with each tool, authors Norm Matloff and Pete Salzman cover general strategies for improving the process of finding and fixing coding errors, including how to: –Inspect variables and data structures –Understand segmentation faults and core dumps –Know why your program crashes or throws exceptions –Use features like catchpoints, convenience variables, and artificial arrays –Avoid common debugging pitfalls Real world examples of coding errors help to clarify the authors’ guiding principles, and coverage of complex topics like thread, client-server, GUI, and parallel programming debugging will make you even more proficient. You'll also learn how to prevent errors in the first place with text editors, compilers, error reporting, and static code checkers. Whether you dread the thought of debugging your programs or simply want to improve your current debugging efforts, you'll find a valuable ally in The Art of Debugging.

Linux Firewalls

Author: Michael Rash
Publisher: No Starch Press
ISBN: 9781593271411
Release Date: 2007
Genre: Computers

Addressing the firewall capabilities of Linux, a handbook for security professionals describes the Netfilter infrastruction in the Linux kernel and explains how to use Netfilter as an intrusion detection system by integrating it with custom open source software and Snort rulesets, discussin such topics as Linux firewall log analysis and policies, passive network authentication and authorization, and more. Original. (Intermediate)