Hacking Linux Exposed, Second Edition
by Brian Hatch, James Lee
List Price:
Our Price: $14.04
You Save: $35.95 (72%)
Availability: Usually ships in 1-2 business days
Buy Used: from $0.93 (click here)
Category: Book
See more book details and other editions
Book Summary Information
Author: Brian Hatch, James LeeEdition: Paperback
Audio: English (Unknown); English (Original Language); English (Published)
Published: 2002-12-04
ISBN: 0072225645
Number of pages: 712
Publisher: McGraw-Hill Osborne Media
Book Reviews of Hacking Linux Exposed, Second Edition
Book Review: Worth it many times over!
Summary: 5 Stars
Hacking Linux comes in six parts, each of which is worth the price of the book in whole. Part one: security overview covers all the basics like file permissions, setuserid problems, buffer overflows/format string attacks, tools to use before you go online, and mapping tools like nmap. Part two comes in from more of the hacker angle with social engineering and trojans, attacks from the console, and then concludes with two excellent chapters about netowrk attacks and TCP/IP vulnerabilities.All the stuff to this point assumes the hacker is on the outside. Part three takes over and shows you what the hacker will do once they've gotten on, such as attacking other local users including root, and cracking passwords. It becomes obvious that you need to protect things from insiders as much as from the outsider, because the outsider will usually get in as a normal user first, and if you can prevent him or her from getting root access, the damage cannot be nearly as severe. A lot of books don't cover this angle at all, and it's done superbly here.
Part four covers common problems in internet services. First they discuss mail servers. Sendmail, Qmail, Postfix, and Exim each get covered in detail - it's nice to see more than just Sendmail discussed in a security book. Of course, it'd be even nicer to see something other than Sendmail installed on a Linux machine by default. Next they cover problems with FTP software and problems with the FTP protocol. I'd never seen "beneath the hood" and realized how wierd FTP really was, and why it's not supported by firewalls very well, and the authors show you the inner workings of it so anyone can understand the problems. They continue with Apache and CGI/mod_perl/PHP/etc problems, both from a coding standpoint and how to secure against outsiders and your own web developers. Next it's on to Firewalls (iptables and TCP wrappers) and lastly (distributed) denial of service attacks. The countermeasures for the DOS problems are excellent, and a must for anyone with a server.
Part five covers everything a hacker can do once they've broken in. They describe trojan programs, trojan kernel modules, and configuration changes that can be used to keep root access, or hide the hacker activity, or let them get back in should the computer be partially fixed. This was not only complete, but scary in how many different things they showed. It works both as a blueprint for what you need to defend against, how to clean up after a hacker has gotten in, and also how you could back door a machine if you get in. I'll leave the ethics up to you.
Lastly we have part six, which is the appendicies. While most times I ignore appendicies, these are really an integral part of the book, and are referenced throughout the book all over. (This very good, because it keeps the book from having too much repeated countermeasures.) They discuss post-breakin cleanup, updating your software and kernel, and turning off daemons (both local and network ones) and a new case study. The book is good about covering Linux from a distribution-agnostic standpoint (it doesn't assume you use RedHat, unlike everything else out there) but in these appendicies they cover the differences you may encounter. They show you how to use dpkg/apt-get as much as RPM as much as .tgz packages, discuss both inetd and xinetd, and even svscan/supervise. They are extreemly complete.
Hacking Linux Exposed 2nd Edition is required reading for anyone with a Linux machine, period.
Summary of Hacking Linux Exposed, Second Edition
Tighten holes and maintain security on your Linux system! From the publisher of the international best-seller, Hacking Exposed: Network Security Secrets & Solutions, comes this must-have security handbook for anyone running Linux. This up-to-date edition shows you how to think like a Linux hacker in order to beat the Linux hacker. You'll get detailed information on Linux-specific hacks, both internal and external, and how to stop them.
"Throw up a Linux box," comes the chorus whenever there's a need to provide some network service or other without impinging upon the boss's martini budget. Fair enough, but by doing so are you opening security holes you don't know how to find or fix? The newest edition of Hacking Linux Exposed helps you answer that question and solve many of the security problems you find. To a certain extent this book is a recipe collection in that it describes weaknesses in Linux (calling attention to specific distributions where appropriate). The authors stop short of explicitly showing you how to wage most kinds of attacks, a reasonable thing to do from an ethical point of view even though the instructions can be found easily on the Internet. Rather than do that, they give step-by-step instructions on how to defend against the attacks they catalog. The point is not, "Here's precisely how to bring down a server by means of an ACK storm," but rather, "Here's how to defend against such problems." They do demonstrate plenty of weaknesses, though, as in their coverage of the conversation that goes back and forth between an FTP server and its client.
This book covers pretty much everything you'd want to do with a Linux machine as a network server. Read it and see some of the weaknesses in your system--and do something about them before someone else does. --David Wall
Topics covered: Security best practices, approached from the perspective of what can go wrong and what can be done about the problems. Specific coverage goes to all major services, including user management, FTP, HTTP, and firewalling.
Hackers Books
- Arts & Photography
- Biographies & Memoirs
- Business & Investing
- Children's Books
- Comics & Graphic Novels
- Computers & Internet
- Cooking, Food & Wine
- Entertainment
- Gay & Lesbian
- Health, Mind & Body
- History
- Home & Garden
- Horror
- Law
- Literature & Fiction
- Mystery & Thrillers
- Nonfiction
- Outdoors & Nature
- Parenting & Families
- Professional & Technical
- Reference
- Religion & Spirituality
- Romance
- Science
- Science Fiction & Fantasy
- Sports
- Teens
- Travel
Advances in Digital Forensics IV (IFIP International Federation for Information Processing) (IFIP Advances in Information and Communication Technology) (No. IV)Springer; Published: 2008-08-28; Hardcover; Book
Best price: $8.50
Price in other shops:
Insider Attack and Cyber Security: Beyond the Hacker (Advances in Information Security)Springer; Published: 2008-04-07; Hardcover; Book
Best price: $69.01
Price in other shops:
Wi-Foo II: The Secrets of Wireless Hacking (2nd Edition)by Andrew Vladimirov, Konstantin V. Gavrilenko, Andrei A. Mikhailovsky
Addison-Wesley Professional; Published: 2007-10; Paperback; Book
Price in other shops:
Encyclopedia of Hacking: Headline Makers, Hack Attacks and Hacking Solutionsby Bernadette H. Schell
Greenwood Press; Published: 2005-12; Hardcover; Book
DarkMarket: Cyberthieves, Cybercops and Youby Misha Glenny
Knopf; Published: 2011-10-04; Hardcover; Book
Best price: $9.95
Price in other shops:
The New Hacker's Dictionary - 3rd EditionThe MIT Press; Published: 1996-10-11; Paperback; Book
Best price: $9.98
Price in other shops:
Hacker's Delightby Henry S. Warren
Addison-Wesley Professional; Published: 2002-07-27; Hardcover; Book
Best price: $32.99
Price in other shops:
The Social Net: Understanding Human Behavior in CyberspaceOxford University Press, USA; Published: 2005-06-16; Paperback; Book
Best price: $50.60
Price in other shops:
Hacking For Dummiesby Kevin Beaver
For Dummies; Published: 2010-01-12; Paperback; Book
Best price: $16.25
Price in other shops:
Hacking For Dummies (For Dummies (Computers))by Kevin Beaver
For Dummies; Published: 2006-10-30; Paperback; Book
Best price: $4.93
Price in other shops:
The Rootkit Arsenal: Escape and Evasion in the Dark Corners of the Systemby Bill Blunden
Jones & Bartlett Publishers; Published: 2009-05-04; Paperback; Book
Best price: $26.40
Price in other shops:
Nmap Network Scanning: The Official Nmap Project Guide to Network Discovery and Security Scanningby Gordon Fyodor Lyon
Nmap Project; Published: 2009-01-01; Paperback; Book
Best price: $31.79
Price in other shops:
Linux Security Cookbookby Daniel J. Barrett, Richard E. Silverman, Robert G. Byrnes
O'Reilly Media; Published: 2003-06; Paperback; Book
Best price: $17.00
Price in other shops:
Linux Pocket Guideby Daniel J. Barrett
O'Reilly Media; Published: 2004-03-01; Paperback; Book
Best price: $5.40
Price in other shops:
The Linux Cookbook, Second Editionby Michael Stutz
No Starch Press; Published: 2004-08; Paperback; Book
Best price: $15.00
Price in other shops:
Practical Guide to Linux Commands, Editors, and Shell Programming, A (2nd Edition)by Mark G. Sobell
Prentice Hall; Published: 2009-11-29; Paperback; Book
Best price: $24.82
Price in other shops:
Hacking Exposed Wireless, Second Editionby Johnny Cache, Joshua Wright, Vincent Liu
McGraw-Hill Osborne Media; Published: 2010-07-09; Paperback; Book
Best price: $22.82
Price in other shops:
Maximum Linux Security (2nd Edition)by John Ray, Anonymous
Sams; Published: 2001-06-21; Paperback; Book
Best price: $18.99
Price in other shops:
Hacking: The Art of Exploitation, 2nd Editionby Jon Erickson
No Starch Press; Published: 2008-02-04; Paperback; Book
Best price: $32.96
Price in other shops:
Hacking Exposed: Network Security Secrets and Solutions, Sixth Editionby Stuart McClure, Joel Scambray, George Kurtz
McGraw-Hill Osborne Media; Published: 2009-01-05; Paperback; Book
Best price: $24.00
Price in other shops: