{"product_id":"linux-server-security-isbn-9781119277651","title":"Linux Server Security","description":"\u003cp\u003e\u003cb\u003eLearn how to attack and defend the world’s most popular web server platform \u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eLinux Server Security: Hack and Defend presents a detailed guide for experienced admins, aspiring hackers and other IT professionals seeking a more advanced understanding of Linux security. Written by a 20-year veteran of Linux server deployment this book provides the insight of experience along with highly practical instruction.\u003c\/p\u003e \u003cp\u003eThe topics range from the theory of past, current, and future attacks, to the mitigation of a variety of online attacks, all the way to empowering you to perform numerous malicious attacks yourself (in the hope that you will learn how to defend against them). By increasing your understanding of a hacker’s tools and mindset you're less likely to be confronted by the all-too-common reality faced by many admins these days: someone else has control of your systems.\u003c\/p\u003e \u003cul\u003e \u003cli\u003eMaster hacking tools and launch sophisticated attacks: perform SQL injections, deploy multiple server exploits and crack complex passwords.\u003c\/li\u003e \u003cli\u003eDefend systems and networks: make your servers invisible, be confident of your security with penetration testing and repel unwelcome attackers.\u003c\/li\u003e \u003cli\u003eIncrease your background knowledge of attacks on systems and networks and improve all-important practical skills required to secure any Linux server.\u003c\/li\u003e \u003c\/ul\u003e \u003cp\u003eThe techniques presented apply to almost all Linux distributions including the many Debian and Red Hat derivatives and some other Unix-type systems. Further your career with this intriguing, deeply insightful, must-have technical book. Diverse, broadly-applicable and hands-on practical, Linux Server Security: Hack and Defend is an essential resource which will sit proudly on any techie's bookshelf.\u003c\/p\u003e Preface xiii \u003cp\u003eIntroduction xv\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 1: Invisibility Cloak 1\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eBackground 1\u003c\/p\u003e \u003cp\u003eProbing Ports 1\u003c\/p\u003e \u003cp\u003eConfusing a Port Scanner 2\u003c\/p\u003e \u003cp\u003eInstalling knockd 2\u003c\/p\u003e \u003cp\u003ePackages 3\u003c\/p\u003e \u003cp\u003eChanging Default Settings 3\u003c\/p\u003e \u003cp\u003eAltering Filesystem Locations 4\u003c\/p\u003e \u003cp\u003eSome Config Options 5\u003c\/p\u003e \u003cp\u003eStarting the Service 5\u003c\/p\u003e \u003cp\u003eChanging the Default Network Interface 5\u003c\/p\u003e \u003cp\u003ePacket Types and Timing 5\u003c\/p\u003e \u003cp\u003eTesting Your Install 6\u003c\/p\u003e \u003cp\u003ePort Knocking Clients 7\u003c\/p\u003e \u003cp\u003eMaking Your Server Invisible 7\u003c\/p\u003e \u003cp\u003eTesting Your iptables 8\u003c\/p\u003e \u003cp\u003eSaving iptables Rules 9\u003c\/p\u003e \u003cp\u003eFurther Considerations 10\u003c\/p\u003e \u003cp\u003eSmartphone Client 10\u003c\/p\u003e \u003cp\u003eTroubleshooting 10\u003c\/p\u003e \u003cp\u003eSecurity Considerations 10\u003c\/p\u003e \u003cp\u003eEphemeral Sequences 11\u003c\/p\u003e \u003cp\u003eSummary 12\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 2: Digitally Fingerprint Your Files 13\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eFilesystem Integrity 13\u003c\/p\u003e \u003cp\u003eWhole Filesystem 16\u003c\/p\u003e \u003cp\u003eRootkits 17\u003c\/p\u003e \u003cp\u003eConfi guration 19\u003c\/p\u003e \u003cp\u003eFalse Positives 21\u003c\/p\u003e \u003cp\u003eWell Designed 22\u003c\/p\u003e \u003cp\u003eSummary 23\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 3: Twenty-First-Century Netcat 25\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eHistory 25\u003c\/p\u003e \u003cp\u003eInstallation Packages 27\u003c\/p\u003e \u003cp\u003eGetting Started 27\u003c\/p\u003e \u003cp\u003eTransferring Files 29\u003c\/p\u003e \u003cp\u003eChatting Example 30\u003c\/p\u003e \u003cp\u003eChaining Commands Together 30\u003c\/p\u003e \u003cp\u003eSecure Communications 31\u003c\/p\u003e \u003cp\u003eExecutables 33\u003c\/p\u003e \u003cp\u003eAccess Control Lists 34\u003c\/p\u003e \u003cp\u003eMiscellaneous Options 34\u003c\/p\u003e \u003cp\u003eSummary 35\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 4: Denying Service 37\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eNTP Infrastructure 37\u003c\/p\u003e \u003cp\u003eNTP Reflection Attacks 38\u003c\/p\u003e \u003cp\u003eAttack Reporting 40\u003c\/p\u003e \u003cp\u003ePreventing SNMP Reflection 41\u003c\/p\u003e \u003cp\u003eDNS Resolvers 42\u003c\/p\u003e \u003cp\u003eComplicity 43\u003c\/p\u003e \u003cp\u003eBringing a Nation to Its Knees 44\u003c\/p\u003e \u003cp\u003eMapping Attacks 45\u003c\/p\u003e \u003cp\u003eSummary 46\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 5: Nping 49\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eFunctionality 49\u003c\/p\u003e \u003cp\u003eTCP 50\u003c\/p\u003e \u003cp\u003eInterpreter 51\u003c\/p\u003e \u003cp\u003eUDP 52\u003c\/p\u003e \u003cp\u003eICMP 52\u003c\/p\u003e \u003cp\u003eARP 53\u003c\/p\u003e \u003cp\u003ePayload Options 53\u003c\/p\u003e \u003cp\u003eEcho Mode 54\u003c\/p\u003e \u003cp\u003eOther Nping Options 57\u003c\/p\u003e \u003cp\u003eSummary 58\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 6: Logging Reconnoiters 59\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eICMP Misconceptions 59\u003c\/p\u003e \u003cp\u003etcpdump 60\u003c\/p\u003e \u003cp\u003eIptables 61\u003c\/p\u003e \u003cp\u003eMultipart Rules 64\u003c\/p\u003e \u003cp\u003eLog Everything for Forensic Analysis 64\u003c\/p\u003e \u003cp\u003eHardening 65\u003c\/p\u003e \u003cp\u003eSummary 67\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 7: Nmap’s Prodigious NSE 69\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eBasic Port Scanning 69\u003c\/p\u003e \u003cp\u003eThe Nmap Scripting Engine 71\u003c\/p\u003e \u003cp\u003eTiming Templates 73\u003c\/p\u003e \u003cp\u003eCategorizing Scripts 74\u003c\/p\u003e \u003cp\u003eContributing Factors 75\u003c\/p\u003e \u003cp\u003eSecurity Holes 75\u003c\/p\u003e \u003cp\u003eAuthentication Checks 77\u003c\/p\u003e \u003cp\u003eDiscovery 78\u003c\/p\u003e \u003cp\u003eUpdating Scripts 79\u003c\/p\u003e \u003cp\u003eScript Type 80\u003c\/p\u003e \u003cp\u003eRegular Expressions 80\u003c\/p\u003e \u003cp\u003eGraphical User Interfaces 81\u003c\/p\u003e \u003cp\u003eZenmap 81\u003c\/p\u003e \u003cp\u003eSummary 82\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 8: Malware Detection 85\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eGetting Started 85\u003c\/p\u003e \u003cp\u003eDefinition Update Frequency 85\u003c\/p\u003e \u003cp\u003eMalware Hash Registry 86\u003c\/p\u003e \u003cp\u003ePrevalent Threats 86\u003c\/p\u003e \u003cp\u003eLMD Features 86\u003c\/p\u003e \u003cp\u003eMonitoring Filesystems 88\u003c\/p\u003e \u003cp\u003eInstallation 88\u003c\/p\u003e \u003cp\u003eMonitoring Modes 90\u003c\/p\u003e \u003cp\u003eConfiguration 91\u003c\/p\u003e \u003cp\u003eExclusions 91\u003c\/p\u003e \u003cp\u003eRunning from the CLI 92\u003c\/p\u003e \u003cp\u003eReporting 92\u003c\/p\u003e \u003cp\u003eQuarantining and Cleaning 93\u003c\/p\u003e \u003cp\u003eUpdating LMD 94\u003c\/p\u003e \u003cp\u003eScanning and Stopping Scans 94\u003c\/p\u003e \u003cp\u003eCron Job 96\u003c\/p\u003e \u003cp\u003eReporting Malware 96\u003c\/p\u003e \u003cp\u003eApache Integration 96\u003c\/p\u003e \u003cp\u003eSummary 97\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 9: Password Cracking with Hashcat 99\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eHistory 99\u003c\/p\u003e \u003cp\u003eUnderstanding Passwords 99\u003c\/p\u003e \u003cp\u003eKeyspace 100\u003c\/p\u003e \u003cp\u003eHashes101\u003c\/p\u003e \u003cp\u003eUsing Hashcat 103\u003c\/p\u003e \u003cp\u003eHashcat Capabilities 103\u003c\/p\u003e \u003cp\u003eInstallation 103\u003c\/p\u003e \u003cp\u003eHash Identifi cation104\u003c\/p\u003e \u003cp\u003eChoosing Attack Mode 106\u003c\/p\u003e \u003cp\u003eDownloading a Wordlist 106\u003c\/p\u003e \u003cp\u003eRainbow Tables 107\u003c\/p\u003e \u003cp\u003eRunning Hashcat 107\u003c\/p\u003e \u003cp\u003eoclHashcat 110\u003c\/p\u003e \u003cp\u003eHashcat-Utils 111\u003c\/p\u003e \u003cp\u003eSummary 111\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 10: SQL Injection Attacks 113\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eHistory 113\u003c\/p\u003e \u003cp\u003eBasic SQLi 114\u003c\/p\u003e \u003cp\u003eMitigating SQLi in PHP 115\u003c\/p\u003e \u003cp\u003eExploiting SQL Flaws 117\u003c\/p\u003e \u003cp\u003eLaunching an Attack 118\u003c\/p\u003e \u003cp\u003eTrying SQLi Legally 120\u003c\/p\u003e \u003cp\u003eSummary 121\u003c\/p\u003e \u003cp\u003eIndex 123\u003c\/p\u003e    \u003cp\u003e\u003cb\u003eCHRIS BINNIE\u003c\/b\u003e is a Technical Consultant with 20 years of experience working with Linux systems, and a writer for Linux Magazine and Admin Magazine. He built an Autonomous System Network in 2005, and served HD video to 77 countries via a media streaming platform that he architected and built. Over the course of his career, he has deployed many servers in the cloud and on banking and government server estates.    \u003c\/p\u003e\u003cp\u003e\u003cb\u003eLEVERAGE LINUX STABILITY AND SECURITY FEATURES TO KEEP YOUR SYSTEM SAFE\u003c\/b\u003e \u003c\/p\u003e\u003cp\u003eLinux has become the most popular web server platform on the planet, which puts Linux security measures at the top of the priority list for every sysadmin—and every hacker. Linux has always been a hotbed of technology and developments in the security realm, with both offensive and defensive tools like knockd, netcat, Nmap, Nping, and others, but knowing how to exploit these tools the way a hacker would is becoming an increasingly essential part of keeping your system safe. Instead of chasing after the bad guy, learn to anticipate and block his every move. \u003c\/p\u003e\u003cp\u003eChris Binnie is a Linux veteran with server deployment experience in banking and government where security concerns are critical. Chris walks through challenging scenarios in a diverse array of security areas to demonstrate robust detection, prevention, and defensive techniques, providing the hard-won insight of experience every step of the way. These techniques apply across distributions, including Debian and Red Hat derivatives, and other Unix-type systems, and include the expert touches that make software packages work well with the operating system as well as with other packages. Linux enjoys a well-deserved reputation for bedrock stability, which is why it powers up to 70 percent of the Internet's public servers; this book provides the insight and skill set you need to keep it locked up tight. \u003c\/p\u003e\u003cp\u003eCovering the hacker's favorite tools and biggest frustrations, \u003ci\u003eLinux Server Security\u003c\/i\u003e shows you how to:  \u003c\/p\u003e\u003cul\u003e \u003cli\u003eMake your server invisible without disrupting services in production\u003c\/li\u003e  \u003cli\u003eFingerprint files to monitor filesystems manually or automatically\u003c\/li\u003e  \u003cli\u003eTurn hacker's favorite tools against them as part of your defense\u003c\/li\u003e \u003cli\u003eLearn how hackers identify your system's weak points\u003c\/li\u003e  \u003cli\u003eExplore the possibilities of standard Nmap scripts\u003c\/li\u003e  \u003cli\u003eDefend against malware and fight off a DDoS attack\u003c\/li\u003e  \u003cli\u003eDiscover how easily websites are compromised and passwords are cracked\u003c\/li\u003e \u003c\/ul\u003e","brand":"Wiley","offers":[{"title":"Default Title","offer_id":47989533606117,"sku":"NP9781119277651","price":50.0,"currency_code":"USD","in_stock":false}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/1842\/7735\/files\/9781119277651.jpg?v=1761784493","url":"https:\/\/k12savings.com\/es\/products\/linux-server-security-isbn-9781119277651","provider":"K12savings","version":"1.0","type":"link"}