File Size: 2606 KB
Print Length: 988 pages
Simultaneous Device Usage: Unlimited
Publisher: O'Reilly Media; 3 edition (February 21, 2003)
Publication Date: May 10, 2011
Sold by: Digital Services LLC
X-Ray: Not Enabled
Word Wise: Not Enabled
Lending: Not Enabled
Enhanced Typesetting: Not Enabled
Best Sellers Rank: #900,458 Paid in Kindle Store (See Top 100 Paid in Kindle Store) #22 in Books > Computers & Technology > Networking & Cloud Computing > Networks, Protocols & APIs > LDAP #31 in Books > Computers & Technology > Programming > APIs & Operating Environments > Device Drivers #241 in Kindle Store > Kindle eBooks > Computers & Technology > Operating Systems > Unix
Somewhat outdated -- two years old in a very dynamic field, Rootkit is not even mentioned, Bugtraq mentioned only in supplement, etc. Far from being practical and can be used only as an introductory text in Unix security. Not recommended for Internet security (superficial and incomplete). Good style -- Simson Garfinkel of The UNIX-Haters Handbook fame is a really talented journalist (but now only a journalist, see his interview with .com). The main problem with the book is that instead of relying on tools as any Unix author should, the authors use a cookbook/reference approach giving recipes about improving security. References to important RFCs, FAQ and CERT advisories are absent. For example RFC1244 (now superseded by RTC2196) is not mentioned in index(and probably in the text as well) although Ch.2 and Ch.24 mirror its content. No attempts were made to explain what tools can be used for checking/fixing particular class of problems or to present a bigger picture in which the flaw exists. Typesetting is very primitive. Although one of the authors is a (former) programmer judging by just the book content it is difficult to believe that he is able to spell PERL :-). The book is not updated enough to compete with newer books on Internet Security. For corporate users possible alternatives are combinations of one book on Unix security (for example, Unix System Security by David A. Curry) and one book on Internet security (for example Actually Useful Internet Security Techniques by Larry J. Hughes). The last is recommended as an alternative for readers who cannot afford two books. Often books written by a specialist in particular areas can be a better deal than books from security folks. For example TCP/IP Network Administration by Craig Hunt contains a lot more information about how properly configure TCP/IP than this book and in Ch.12 has a very decent overview of security in just 40 pages.
As a Linux administrator, I ordered this book hoping to find out how hackers typically gain access to systems and neat little tricks for locking down my system, as well as detecting and dealing with intruders. While Practical Unix & Internet Security did cover these topics, it covered little I didn't already know.Significant time is spent explaining how unix-based systems work. The book covers things such as file systems, partition structure, file ownership/permissions, users and groups, inodes, ssh, backups, etc. Each command, utility, procedure or feature is detailed over several pages followed by an explanation of what you should be doing with said topic.There are also a few real-world examples here and there; stories most of us have heard before, like the admin who had . in his path.Unlike many computer books, this one is well written and an easy read, and it's certainly a lot more friendly than some unix geek's advice which consists of RTFM.I think this book would be great for someone who has a very basic understanding of unix-based systems but has never administrated one before, but for those of us who've already had some experience running unix there's probably not anything new here for you.
This books is a very thorough hands-on guide to the subject of security for unix computers connected to the Internet.It starts with basic subjects, such as passwords, backups, security auditing & logging, and physical security, and then continues with networking subjects, such as modems, TCP/IP, NFS, kerberos, firewalls, proxies, etc. important issues and terms are interwined - such as what is the rainbow series and legal issues.The subject of computer & Internet security is changing quickly, and as other reviewers have written a book written a couple of years ago (I have the 1996 edition) is no longer up to date.But I think it's a minor issue.First, because one must still learn and protect against older attacks - an intruder will not shy away from trying to use an old security hole just because it's two months old. Hacks are not cheese, and cant be thrown out after two weeks.Second, a sysadmin should get the basic information, terms, ways of thought, etc - and this book will teach this well - and then continuously look for new information and information sources.This includes finding out about bugtraq, ntbugtraq, phrack, and any other new mailing lists and web sites regularily.So I highly recommend this book to anyone who deals with the subject of unix & internet security.
The second edition of this book was my security vade mecum for the last 8 years. For what I can foresee, this third edition, will play the same role for (at least) the next three years.When you are required as an security expert, several tasks are usually to be faced:New scenarios to analyze?, checklists to recommend?, good firewall architectures to suggest?, logs to watch? (and so on). Don't worry, with the only help of this Garfinkel, Spafford and Schwartz 'little giant' book, you are done.Excellent book. A Must for security people.
The best beginners guide to UNIX security and computer security in general I have ever read. In fact the only technical book I have read and enjoyed! This book explains first principles in computer security in an understandable way. This is particularly useful for computer auditors, who may not be technically competent in UNIX. I used this book to develop security audit programs for backup and recovery, incident management, basic UNIX security review and risk management. Consequently I was haled as a hero and a guru by management! New computer auditors should buy this now!
Practical UNIX and Internet Security (Computer Security) Practical UNIX and Internet Security Home Security: Top 10 Home Security Strategies to Protect Your House and Family Against Criminals and Break-ins (home security monitor, home security system diy, secure home network) ESP8266: Programming NodeMCU Using Arduino IDE - Get Started With ESP8266: (Internet Of Things, IOT, Projects In Internet Of Things, Internet Of Things for Beginners, NodeMCU Programming, ESP8266) Newton's Telecom Dictionary: covering Telecommunications, The Internet, The Cloud, Cellular, The Internet of Things, Security, Wireless, Satellites, ... Voice, Data, Images, Apps and Video Mastering Unix Shell Scripting: Bash, Bourne, and Korn Shell Scripting for Programmers, System Administrators, and UNIX Gurus Social Security: Time for a Life of Leisure - The Guide of Secrets to Maximising Social Security Retirement Benefits and Planning Your Retirement (social ... disability, social security made simple) Shell Programming in Unix, Linux and OS X: The Fourth Edition of Unix Shell Programming (4th Edition) (Developer's Library) UNIX Shell Scripting Interview Questions, Answers, and Explanations: UNIX Shell Certification Review First Unix: A freshman's guide to Unix/Linux system administration IT Security Metrics: A Practical Framework for Measuring Security & Protecting Data The Social Security Answer Book: Practical Answers to More Than 200 Questions on Social Security 27 Best Free Internet Marketing Tools And Resources for Cheapskates (Online Business Ideas & Internet Marketing Tips fo Book 1) Beyond Powerful Radio: A Communicator's Guide to the Internet Age_News, Talk, Information & Personality for Broadcasting, Podcasting, Internet, Radio Tor Browser: The 2016 Guide (Ensure Internet Privacy, Access The Deep Web, Hide ... anonymity, Tow Browser, Privacy, Internet, Silk Road, Online Privacy) Internet Guide to Cosmetic Surgery for Men (Haworth Internet Medical Guides) Notes from the Internet Apocalypse: A Novel (The Internet Apocalypse Trilogy) Marketing de Atracción y Multinivel por Internet: Construya un Exitoso Negocio de Multinivel, aplicando los Secretos del Marketing de Atracción a través del Internet (Spanish Edition) The Usborne Internet-Linked Science Encyclopedia (Usborne Internet-Linked Discovery Program) Hacking : A Guide To Computer Hacking And Basic Internet Security (The Black Book)