Practical Unix & Internet Security, 3rd Edition
| |||||||||||||||||||||||||||||
|
| |||||||||||||||||||||||||||||
| Sort customer reviews by: | |||||||||||||||||||||||||||||
|
Show All Reviews on Page
Hide All Reviews on Page
| |||||||||||||||||||||||||||||
| Practical Unix & Internet Security, 3rd Edition | |||||||||||||||||||||||||||||
|
When Practical Unix Security was first published more than a decade ago, it became an instant classic. Crammed with information about host security, it saved many a Unix system administrator from disaster. The second edition added much-needed Internet security coverage and doubled the size of the original volume. The third edition is a comprehensive update of this very popular book - a companion for the Unix/Linux system administrator who needs to secure his or her organization's system, networks, and web presence in an increasingly hostile world. Focusing on the four most popular Unix variants today--Solaris, Mac OS X, Linux, and FreeBSD--this book contains new information on PAM (Pluggable Authentication Modules), LDAP, SMB/Samba, anti-theft technologies, embedded systems, wireless and laptop issues, forensics, intrusion detection, chroot jails, telephone scanners and firewalls, virtual and cryptographic filesystems, WebNFS, kernel security levels, outsourcing, legal issues, new Internet protocols and cryptographic algorithms, and much more. Practical Unix & Internet Security consists of six parts:
|
|||||||||||||||||||||||||||||
|
The world's most business-critical transactions run on Unix machines, which means the machines running those transactions attract evildoers. Furthermore, a lot of those machines have Internet connections, which means it's always possible that some nefarious remote user will find a way in. The third edition of Practical Unix & Internet Security contains--to an even greater extent than its favorably reputed ancestors--an enormous amount of accumulated wisdom about how to protect Internet-connected Unix machines from intrusion and other forms of attack. This book is fat with practical advice on specific defensive measures (to defeat known attacks) and generally wise policies (to head off as-yet-undiscovered ones).
The authors' approach to Unix security is holistic and clever; they devote as much space to security philosophy as to advice about closing TCP ports and disabling unnecessary services. They also recognize that lots of Unix machines are development platforms, and make many recommendations to consider as you design software. It's rare that you read a page in this carefully compiled book that does not impart some obscure nugget of knowledge, or remind you to implement some important policy. Plus, the authors have a style that reminds their readers that computing is supposed to be about intellectual exercise and fun, an attitude that's absent from too much of the information technology industry lately. Read this book if you use any flavor of Unix in any mission-critical situation. --David Wall Topics covered: Security risks (and ways to limit them) under Linux, Solaris, Mac OS X, and FreeBSD. Coverage ranges from responsible system administration (including selection of usernames and logins) to intrusion detection, break-in forensics, and log analysis. |
|||||||||||||||||||||||||||||
| Reader Reviews 1 - 16 of 16 | |||||||||||||||||||||||||||||
| Review Date |
Review Rating(5 High) |
Review Helpful to: |
Customer Review | Reviewer Info |
Permanent Link |
||||||||||||||||||||||||
| Reader Reviews Below Sorted by Newest First | |||||||||||||||||||||||||||||
| 03-05-06 | 5 | (NA) |
| Reviewer | Permalink | ||||||||||||||||||||||||
|
This book is just what I was looking for. Excellent Security Guide to day to day security issues at my workplace. Information about TPC and UDP ports and their security risks have been very useful.
This book must be part of every UNIX System Security Profesional. (Review Data Last Updated: 2007-04-11 21:57:00 EST)
|
|||||||||||||||||||||||||||||
| 03-04-06 | 5 | (NA) |
| Reviewer | Permalink | ||||||||||||||||||||||||
|
This book is just what I was looking for. Excellent Security Guide to day to day security issues at my workplace. Information about TPC and UDP ports and their security risks have been very useful.
This book must be part of every UNIX System Security Profesional. (Review Data Last Updated: 2007-04-11 10:09:51 EST)
|
|||||||||||||||||||||||||||||
| 09-25-05 | 5 | 1\1 |
| Reviewer | Permalink | ||||||||||||||||||||||||
|
Excellent Book on Unix Security, discusses various aspects. A very practical book for a very practical field. It discusses various dialects of unix, but mainly sticks to an overall approach. For this price it's really really worth it.
(Review Data Last Updated: 2006-06-09 12:48:01 EST)
|
|||||||||||||||||||||||||||||
| 09-17-05 | 2 | 0\10 |
| Reviewer | Permalink | ||||||||||||||||||||||||
|
I saw that there is a bargain of another paperback edition on the page of 3rd edition, so I didn't recheck whether it is 3rd edition. So I end up in buying 2 books, 2nd and 3rd editions, because I need the 3rd edition for my class. It would be better to put edition number up in the page, not only paperback or library binding!
(Review Data Last Updated: 2007-12-14 19:33:50 EST)
|
|||||||||||||||||||||||||||||
| 09-16-05 | 2 | 0\9 |
| Reviewer | Permalink | ||||||||||||||||||||||||
|
I saw that there is a bargain of another paperback edition on the page of 3rd edition, so I didn't recheck whether it is 3rd edition. So I end up in buying 2 books, 2nd and 3rd editions, because I need the 3rd edition for my class. It would be better to put edition number up in the page, not only paperback or library binding!
(Review Data Last Updated: 2007-03-20 04:23:10 EST)
|
|||||||||||||||||||||||||||||
| 11-01-03 | 5 | 6\6 |
| Reviewer | Permalink | ||||||||||||||||||||||||
|
I hate to repeat the cliche, but if you can only buy one security book this year and you are a *nix geek, this should be it, hands down. As some point out, you can probably find everything in this book online, but then again you can find anything online, so why buy any books at all? I don't like giving 5 stars; this book left me no choice.
The strength of this book lies in several areas. First, the authors probably have 50+ years experience between them and it shows. You really get the impression that they've "been there, done that". But they don't try and "wow" you with their intelligence and they aren't condescending, in fact they write quite clearly. The "mile wide" crack I made in the title refers to the fact that this book covers everything from physical security and social engineering, to how to setup up integrity checking with tripwire and use PAM. Basically I found this book to be invaluable because while I could breeze through certain sections, there was a ton of material that I needed more knowledge about, but either never got around to it, or didn't even know I was lacking. An example is NFS. I knew I needed more background about NFS because I work in infosec, but every place I've ever worked has banned NFS outright, which makes it a little more difficult to learn.... Another 2 technologies pop into my mind: LDAP and PAM. I knew what they were, but now I know how to set up the basics and can branch out on my own. In our infosec world it's simply not possible to know everything. This book gives the reader a solid grounding in a ton of stuff, which enables him to go out and Google around intelligently for more advanced information. In a pinch it can also be used as an anti-theft device since it weighs in at 900+ pages and is quite heavy. (Review Data Last Updated: 2007-12-14 19:33:50 EST)
|
|||||||||||||||||||||||||||||
| 08-31-03 | 5 | 1\7 |
| Reviewer | Permalink | ||||||||||||||||||||||||
|
Practical Unix & Internet Security, the 3rd Edition has a ton of new useful information.
If you have but one security reference, this should be it! (Review Data Last Updated: 2007-12-14 19:33:50 EST)
|
|||||||||||||||||||||||||||||
| 08-02-03 | 3 | 11\11 |
| Reviewer | Permalink | ||||||||||||||||||||||||
|
As a Linux administrator, I ordered this book hoping to find out how hackers typically gain access to systems and neat little tricks for locking down my system, as well as detecting and dealing with intruders. While Practical Unix & Internet Security did cover these topics, it covered little I didn't already know.
Significant time is spent explaining how unix-based systems work. The book covers things such as file systems, partition structure, file ownership/permissions, users and groups, inodes, ssh, backups, etc. Each command, utility, procedure or feature is detailed over several pages followed by an explanation of what you should be doing with said topic. There are also a few real-world examples here and there; stories most of us have heard before, like the admin who had . in his path. Unlike many computer books, this one is well written and an easy read, and it's certainly a lot more friendly than some unix geek's advice which consists of RTFM. I think this book would be great for someone who has a very basic understanding of unix-based systems but has never administrated one before, but for those of us who've already had some experience running unix there's probably not anything new here for you. (Review Data Last Updated: 2007-12-14 19:33:50 EST)
|
|||||||||||||||||||||||||||||
| 08-01-03 | 3 | 11\11 |
| Reviewer | Permalink | ||||||||||||||||||||||||
|
As a Linux administrator, I ordered this book hoping to find out how hackers typically gain access to systems and neat little tricks for locking down my system, as well as detecting and dealing with intruders. While Practical Unix & Internet Security did cover these topics, it covered little I didn't already know.
Significant time is spent explaining how unix-based systems work. The book covers things such as file systems, partition structure, file ownership/permissions, users and groups, inodes, ssh, backups, etc. Each command, utility, procedure or feature is detailed over several pages followed by an explanation of what you should be doing with said topic. There are also a few real-world examples here and there; stories most of us have heard before, like the admin who had . in his path. Unlike many computer books, this one is well written and an easy read, and it's certainly a lot more friendly than some unix geek's advice which consists of RTFM. I think this book would be great for someone who has a very basic understanding of unix-based systems but has never administrated one before, but for those of us who've already had some experience running unix there's probably not anything new here for you. (Review Data Last Updated: 2007-03-20 04:23:10 EST)
|
|||||||||||||||||||||||||||||
| 08-01-03 | 3 | 11\11 |
| Reviewer | Permalink | ||||||||||||||||||||||||
|
As a Linux administrator, I ordered this book hoping to find out how hackers typically gain access to systems and neat little tricks for locking down my system, as well as detecting and dealing with intruders. While Practical Unix & Internet Security did cover these topics, it covered little I didn't already know.
Significant time is spent explaining how unix-based systems work. The book covers things such as file systems, partition structure, file ownership/permissions, users and groups, inodes, ssh, backups, etc. Each command, utility, procedure or feature is detailed over several pages followed by an explanation of what you should be doing with said topic. There are also a few real-world examples here and there; stories most of us have heard before, like the admin who had . in his path. Unlike many computer books, this one is well written and an easy read, and it's certainly a lot more friendly than some unix geeks who's advice consists of RTFM. I think this book would be great for someone who has a very basic understanding of unix-based systems but has never administrated one before, but for those of us who've already had some experience running unix there's probably not anything new here for you. (Review Data Last Updated: 2006-06-08 12:33:51 EST)
|
|||||||||||||||||||||||||||||
| 07-19-03 | 5 | 3\4 |
| Reviewer | Permalink | ||||||||||||||||||||||||
|
Practical, indeed, and insightful! Loaded with security principles and procedures to enforce those principles. A valuable, lasting security guide for its principles alone; this is not one of those books that will be obsolete in a couple years. Very broad, covering all major aspects of computer security; it's like many books in one. Teaches the whats, whys, and hows of each aspect. Also contains some history as well as some humorous accounts. Descriptions and procedures are applied to the most popular Unix systems (focuses on Solaris, Mac OS X, Linux, & FreeBSD, but discusses many more). Very educational, understandable, and practical--even for newbies like me desiring to lock down their system. Appendix contains a helpful security checklist summarizing each chapter's content.
(Review Data Last Updated: 2007-12-14 19:33:50 EST)
|
|||||||||||||||||||||||||||||
| 05-19-03 | 5 | 3\4 |
| Reviewer | Permalink | ||||||||||||||||||||||||
|
Book Review
By: Brett Practical Unix & Internet Security Wow where to begin, First I would like to say that my forte is Network security and this book really covered it all. (Review Data Last Updated: 2006-07-06 11:52:26 EST)
|
|||||||||||||||||||||||||||||
| 04-19-03 | 5 | 2\2 |
| Reviewer | Permalink | ||||||||||||||||||||||||
|
Being relatively new to unix security, I've found this book to be an immense help. It provides both a quick and easy reference to the generalities of security, while providing more indepth information when necessary. With its help, I feel relatively confident about the security of my home network.
I was also pleased to see that many of the concepts covered for larger implementations were noticable in the security policies and paradigm of my workplace, which makes use of numerous LANs and WANs for day to day business, many of which requiring security anbd confidentiality. I would highly recommend this book to anyone interested in unix and internet security, be they new to the field or firmly established. (Review Data Last Updated: 2006-07-06 11:52:26 EST)
|
|||||||||||||||||||||||||||||
| 03-01-03 | 5 | 18\19 |
| Reviewer | Permalink | ||||||||||||||||||||||||
|
The second edition of this book was my security vade mecum for the last 8 years. For what I can foresee, this third edition, will play the same role for (at least) the next three years.
When you are required as an security expert, several tasks are usually to be faced: Excellent book. A Must for security people. (Review Data Last Updated: 2006-07-06 11:52:26 EST)
|
|||||||||||||||||||||||||||||
| 03-05-02 | 4 | 3\3 |
| Reviewer | Permalink | ||||||||||||||||||||||||
|
Practical UNIX and Internet Security by Garfinkel and Spafford is a fundamental work on the subject. The authors not only are widely respected professionals in the field, but good writers as well (or is this O'Reilly's editors? :-). Anyway, this book despite its size is readable, still has lots of information, and comes highly recommended. As one of the other reviewers of this book has written, the details of systems and software may change, but the underlying security and good management practices will not. The reason I give it 4 out of 5 stars is because it is published a while ago.
(Review Data Last Updated: 2006-07-06 11:52:26 EST)
|
|||||||||||||||||||||||||||||
| 03-05-02 | 4 | 3\3 |
| Reviewer | Permalink | ||||||||||||||||||||||||
|
Practical UNIX and Internet Security by Garfinkel and Spafford is a fundamental work on the subject. The authors not only are widely respected professionals in the field, but good writers as well (or is this O'Reilly's editors? :-). Anyway, this book despite its size is readable, still has lots of information, and comes highly recommended. As one of the other reviewers of this book has written, the details of systems and software may change, but the underlying security and good management practices will not. The reason I give it 4 out of 5 stars is because it is published a while ago.
Edgar Danielyan CCNP(Security) ISA www.danielyan.com (Review Data Last Updated: 2006-03-04 10:54:01 EST)
|
|||||||||||||||||||||||||||||
| Reader Reviews 1 - 16 of 16 | |||||||||||||||||||||||||||||
| All Books | Arts | Biography | Click Here For An A-Z Index Of All 213 Best-Seller Subjects | Business | Children's | Comics | ||||||
| Computers | Cooking | Engineering | Entertainment | Health | History | Home | Horror | Humor | Law | Fiction | Medicine | Mystery |
| Nonfiction | Outdoors | Parenting | Professional | Reference | Religion | Romance | Science | Sci-Fi | Sports | Teens | Travel | |
