Fee Download Mastering FreeBSD and OpenBSD Security, by Yanek Korff, Paco Hope, Bruce Potter
Maintain your means to be right here and read this page finished. You could appreciate browsing the book Mastering FreeBSD And OpenBSD Security, By Yanek Korff, Paco Hope, Bruce Potter that you actually describe get. Below, getting the soft documents of the book Mastering FreeBSD And OpenBSD Security, By Yanek Korff, Paco Hope, Bruce Potter can be done effortlessly by downloading in the web link web page that we offer here. Of course, the Mastering FreeBSD And OpenBSD Security, By Yanek Korff, Paco Hope, Bruce Potter will certainly be yours sooner. It's no need to get ready for guide Mastering FreeBSD And OpenBSD Security, By Yanek Korff, Paco Hope, Bruce Potter to get some days later after purchasing. It's no have to go outside under the warms at mid day to go to the book store.
Mastering FreeBSD and OpenBSD Security, by Yanek Korff, Paco Hope, Bruce Potter
Fee Download Mastering FreeBSD and OpenBSD Security, by Yanek Korff, Paco Hope, Bruce Potter
Some people could be laughing when considering you reviewing Mastering FreeBSD And OpenBSD Security, By Yanek Korff, Paco Hope, Bruce Potter in your spare time. Some might be admired of you. And also some could really want resemble you who have reading hobby. What concerning your own feeling? Have you felt right? Reviewing Mastering FreeBSD And OpenBSD Security, By Yanek Korff, Paco Hope, Bruce Potter is a demand and a leisure activity at once. This condition is the on that will certainly make you feel that you must review. If you know are searching for guide qualified Mastering FreeBSD And OpenBSD Security, By Yanek Korff, Paco Hope, Bruce Potter as the option of reading, you could discover below.
Positions now this Mastering FreeBSD And OpenBSD Security, By Yanek Korff, Paco Hope, Bruce Potter as one of your book collection! But, it is not in your bookcase compilations. Why? This is the book Mastering FreeBSD And OpenBSD Security, By Yanek Korff, Paco Hope, Bruce Potter that is supplied in soft data. You can download and install the soft documents of this incredible book Mastering FreeBSD And OpenBSD Security, By Yanek Korff, Paco Hope, Bruce Potter now as well as in the link supplied. Yeah, different with the other individuals that try to find book Mastering FreeBSD And OpenBSD Security, By Yanek Korff, Paco Hope, Bruce Potter outside, you can get simpler to position this book. When some people still stroll into the store as well as look the book Mastering FreeBSD And OpenBSD Security, By Yanek Korff, Paco Hope, Bruce Potter, you are below just remain on your seat as well as obtain the book Mastering FreeBSD And OpenBSD Security, By Yanek Korff, Paco Hope, Bruce Potter.
While the other individuals in the establishment, they are not sure to find this Mastering FreeBSD And OpenBSD Security, By Yanek Korff, Paco Hope, Bruce Potter straight. It might require even more times to go shop by shop. This is why we intend you this website. We will certainly provide the most effective method and also referral to get the book Mastering FreeBSD And OpenBSD Security, By Yanek Korff, Paco Hope, Bruce Potter Also this is soft documents book, it will be simplicity to bring Mastering FreeBSD And OpenBSD Security, By Yanek Korff, Paco Hope, Bruce Potter anywhere or conserve at home. The difference is that you could not require relocate the book Mastering FreeBSD And OpenBSD Security, By Yanek Korff, Paco Hope, Bruce Potter place to place. You may need only copy to the various other gadgets.
Now, reading this magnificent Mastering FreeBSD And OpenBSD Security, By Yanek Korff, Paco Hope, Bruce Potter will be much easier unless you obtain download and install the soft data right here. Merely here! By clicking the link to download and install Mastering FreeBSD And OpenBSD Security, By Yanek Korff, Paco Hope, Bruce Potter, you can begin to obtain the book for your own. Be the initial owner of this soft data book Mastering FreeBSD And OpenBSD Security, By Yanek Korff, Paco Hope, Bruce Potter Make difference for the others and also get the very first to progression for Mastering FreeBSD And OpenBSD Security, By Yanek Korff, Paco Hope, Bruce Potter Present moment!
FreeBSD and OpenBSD are increasingly gaining traction in educational institutions, non-profits, and corporations worldwide because they provide significant security advantages over Linux. Although a lot can be said for the robustness, clean organization, and stability of the BSD operating systems, security is one of the main reasons system administrators use these two platforms.There are plenty of books to help you get a FreeBSD or OpenBSD system off the ground, and all of them touch on security to some extent, usually dedicating a chapter to the subject. But, as security is commonly named as the key concern for today's system administrators, a single chapter on the subject can't provide the depth of information you need to keep your systems secure.FreeBSD and OpenBSD are rife with security "building blocks" that you can put to use, and Mastering FreeBSD and OpenBSD Security shows you how. Both operating systems have kernel options and filesystem features that go well beyond traditional Unix permissions and controls. This power and flexibility is valuable, but the colossal range of possibilities need to be tackled one step at a time. This book walks you through the installation of a hardened operating system, the installation and configuration of critical services, and ongoing maintenance of your FreeBSD and OpenBSD systems.Using an application-specific approach that builds on your existing knowledge, the book provides sound technical information on FreeBSD and Open-BSD security with plenty of real-world examples to help you configure and deploy a secure system. By imparting a solid technical foundation as well as practical know-how, it enables administrators to push their server's security to the next level. Even administrators in other environments--like Linux and Solaris--can find useful paradigms to emulate.Written by security professionals with two decades of operating system experience, Mastering FreeBSD and OpenBSD Security features broad and deep explanations of how how to secure your most critical systems. Where other books on BSD systems help you achieve functionality, this book will help you more thoroughly secure your deployments.
- Sales Rank: #1959418 in Books
- Brand: Brand: O'Reilly Media
- Published on: 2004-12
- Original language: English
- Number of items: 1
- Dimensions: 9.19" h x 1.13" w x 7.00" l, 1.58 pounds
- Binding: Paperback
- 350 pages
- Used Book in Good Condition
About the Author
Yanek Korff graduated with a Bachelor's degree in Computer Science from the College of William and Mary and is currently a Certified Information Systems Security Professional (CISSP). Mr. Korff joined Bell Atlantic as a Systems Engineer where he played a major role in the strategy, design, and deployment of a key Northern Virginia test facility. He later joined Cigital, Inc., a software quality management company, where he played a central role in the design of their systems infrastructure. He is now an essential member of the Information Security division at America Online. During his career, Mr. Korff has been able to identify and mitigate information security risks particularly relating to host-based BSD security. By leveraging his experience, he has been able to apply security fundamentals to influence business and industry practices.
Paco Hope is a Technical Manager with Cigital. His areas of expertise software security, security testing, and casino gaming. He specializes in analyzing the security of software, software systems, and software development processes. Paco frequently speaks at conferences such as the Better Software Conference, STAR East, and STAR West. He conducts training on risk-based security testing, writing security requirements, and software security fundamentals. He can be reached at paco@cigital.com.
Bruce Potter is a Senior Associate at Booz Allen Hamilton. Prior to working at Booz Allen Hamilton, Bruce served as a software security consultant for Cigital in Dulles, VA. Bruce is the founder of the Shmoo Group of security professionals. His areas of expertise include wireless security, large-scale network architectures, smartcards, and promotion of secure software engineering practices. Bruce coauthored the books 802.11 Security and Mac OS X Security. He was trained in computer science at the University of Alaska, Fairbanks.
Most helpful customer reviews
21 of 21 people found the following review helpful.
Congrats on a much needed *BSD security book
By Lloyd R.
O'Reilly
Mastering FreeBSD and OpenBSD Security
By Yanek Korff, Paco Hope, Bruce Potter
First Edition March 2005
ISBN: 0-596-00626-8
464 pages, $49.95 US
[...]
This book has been long awaited as the *BSD community has been lacking the number of security geared books compared to the Linux and Windows communities. I found that this book is almost the equal of "Linux Server Security", but for OpenBSD and FreeBSD. With OpenBSD being said to be one of the most secure operating systems, you would think there would be more books about the security other than the normal online documentation.
I'm glad O'Reilly finally put out this book as it covers a broad area of security within OpenBSD and FreeBSD.
This covers *BSD basics, initial install and hardening of the specific OS, security practices, running secure servers (DNS, Mail, Web), firewall, intrusion detection, system audits, incident response, and forensics. This is a broad coverage of security, but I wish on some of the specifics they would have went into detail discussing.
Some points I wish were added in detail was coverage on OpenNTPD's security and/or atleast mentioning that it is contained within OpenBSD. Another would be more coverage of Qmail on FreeBSD/OpenBSD as there really wasn't much more than a mention of Qmail and basic information. Compared to the details given to Sendmail and Postfix, Qmail info was really slacking. The last point I would like to mention that I found lacking was possibly a more in-depth guide to CARP and what it's capable of doing. The main thing dealing with CARP that I would have liked to see would be about load balancing firewalls using CARP and PFSYNC.
Other than these few minor lacking areas, I found this book to be great addition to other security books based around general Linux and BSD servers. I almost wish this book would have waited a little while longer before releasing or hope they plan an update soon as OpenBSD 3.7 is scheduled for release on May 19th and this book mainly just covers versions 3.5/3.6 for OpenBSD. Along with the new version of OpenBSD releasing, FreeBSD 5.4 was released not long after this book was published.
Even lacking the parts that it does, I enjoyed reading the sections about DJBDNS comparison to BIND with details of the specifics. On top of this, there is enough information to get anyone with general *nix knowledge going with a OpenBSD/FreeBSD firewall or secure server. By no means is this book the answer to first time OpenBSD/FreeBSD system administrators to learn the basics from, but seems to be more geared for those atleast somewhat familiar with the *BSD feel of things and aware of what's going on inside their machine. In the beginning of the book it mentions this book was written "by system administrators for system administrators". For someone just getting started with OpenBSD I'd recommend this book, but also would recommend picking up Absolute OpenBSD ([...]) for more coverage of the basics. Otherwise, it will be difficult picking up on what they are saying in this book. Also, on the FreeBSD side of things I'd recommend Absolute BSD ([...]) or The Complete FreeBSD ([...] If your new to *BSD this book will help but a book to compliment it will help even more. Atleast once you learn the basics, you will get a detailed bit of information on securing your new *BSD box.
I believe the writers met their goal of creating a book to solely cover the security features of OpenBSD and FreeBSD aswell as the types of servers run on those platforms. I'm glad this book arrived and look forward to seeing if they release a 2nd edition that is updated and possibly covers the parts that seem to be missing or lacking in detail. Congrats to O'Reilly and the writers.
Lloyd Randall
Pensacola Linux User's Group
9 of 9 people found the following review helpful.
Lots of sound information, but not what I hoped to read
By Richard Bejtlich
Mastering FreeBSD and OpenBSD Security (MFAOS) more or less delivers on its subtitle: "Building, securing, and maintaining BSD systems." The book is chock full of absolutely sound administration advice from three experts with plenty of operational experience. I am also thrilled whenever I find a new BSD title on bookshelves. However, I believe a second edition of this book should be radically altered to better deliver value to the reader.
Note: I am in a somewhat awkward position as I write this review, since I know one of the authors as a fellow local security professional. I've spoken at a conference he organizes and I even have all three authors' signatures on my copy of MFAOS! Still, I hope they will consider incorporating my ideas when O'Reilly asks for a second edition.
First, I think MFAOS:2E should address FreeBSD, OpenBSD, and NetBSD. It's appropriate to read a book only about ONE of the BSDs, or all three of the BSDs. It's odd to cover FreeBSD and OpenBSD but not NetBSD. I think DragonFly BSD's miniscule userbase puts it on the fringe, and Mac OS X is not BSD.
Second, the authors should rigorously concentrate on covering BSD-specific administration and security issues. I do not need to read about generic security issues in Ch 1, or standard DNS/Mail/Web attacks in Chs 5/6/7. I definitely did not need YASD (Yet Another Snort Doc) in Ch 9 -- especially when ACID is explained as the console of choice. (BASE replaced ACID in Sep 04). I do not need the advice on incident response and forensics found in Ch 11. MFAOS should be a more of a BSD book and less of a security book.
Removing all of this generic material in a second edition would provide room to focus on BSD-specific material not found elsewhere. For example, Dru Lavigne's briefer, older, all-BSD book BSD Hacks gives more information on FreeBSD's Mandatory Access Controls than MFAOS -- and MFAOS is a BSD security book. I would have liked more details on building FreeBSD jails, especially with respect to creating a local package builder.
While reading MFAOS, I frequently felt the authors did not provide enough details on the subjects I felt were different from multi-platform Unix books. For example, why write five pages on Nagios in Ch 4 if that information really isn't enough to do anything useful?
It seemed the authors assumed many of their brief discussions of useful behavior was sufficient for the reader. In reality, I probably wouldn't be reading the book if I could get by on the information provided; I'd be implementing on my own. For example, the authors devote 3 1/2 pages in Ch 4 to using CVS to track changes to configuration files. While not BSD-specific, this is the sort of good practice not frequently covered elsewhere. Yet, when I hoped for more advanced discussions I see the phrase "beyond the scope of this book" on p 136.
I was disappointed that Qmail was ignored in Ch 6, even though Djbdns was addressed in Ch 5. Furthermore, when the authors repeatedly admit that Dan Berstein's software isn't well documented, they should recognize that as an opportunity! Say less on Apache, BIND, etc., and cover the lesser-known but potentially more secure alternatives.
I rate this book highly (four stars) because it's full of good advice. For example, I liked recommendations on using flags, secure levels, and similar topics in Ch 2. I liked the two-tiered Web server architecture in Ch 7, as well as comparisons of IPFW and Pf in Ch 8. You won't find me disagreeing with the authors of this book -- except when they configure Snort to log directly to a database. (Ouch -- that has been bad advice since Barnyard was released in Dec 02.)
A second edition should also keep in mind the binary upgrade and patching tools available since FreeBSD 5.x -- updating via source isn't necessary for many admins these days. Also, if they insist on demonstrating how to set up well-documented servers (DNS/Web/Mail), try picking one app and one BSD. Then thoroughly document setting up the entire system, from install to deployment. Consider providing templates, especially for automated and repeatable installations. Tie them to standards like CISecurity if possible. That would be exceptional.
I wish the authors had directed their talents toward BSD-specific quirks and less on topics covered elsewhere. This is still a solid BSD book, but I would be very glad to see MFAOS:2E take this advice to heart.
4 of 6 people found the following review helpful.
Wonderful book, just missing one thing...
By M. Shirk
I was really hoping to see a chapter on systrace or other advanced host-based security tools (HIPS and other kernel utils). All in all, the book is a nice addition to any security library. The basic ideas of risk management and confidentiality, integrity and availability (CIA), are covered throughout the book. I would say this is a good reference to use in addition to the man pages for both operating systems.
Mastering FreeBSD and OpenBSD Security, by Yanek Korff, Paco Hope, Bruce Potter PDF
Mastering FreeBSD and OpenBSD Security, by Yanek Korff, Paco Hope, Bruce Potter EPub
Mastering FreeBSD and OpenBSD Security, by Yanek Korff, Paco Hope, Bruce Potter Doc
Mastering FreeBSD and OpenBSD Security, by Yanek Korff, Paco Hope, Bruce Potter iBooks
Mastering FreeBSD and OpenBSD Security, by Yanek Korff, Paco Hope, Bruce Potter rtf
Mastering FreeBSD and OpenBSD Security, by Yanek Korff, Paco Hope, Bruce Potter Mobipocket
Mastering FreeBSD and OpenBSD Security, by Yanek Korff, Paco Hope, Bruce Potter Kindle
Tidak ada komentar:
Posting Komentar