Linux Server Security (2nd Edition( [Electronic resources] نسخه متنی

اینجــــا یک کتابخانه دیجیتالی است

با بیش از 100000 منبع الکترونیکی رایگان به زبان فارسی ، عربی و انگلیسی

جستجو بر اساس ... همه عنوان پدیدآور موضوع یادداشت تمام متن
اصطلاحنامه مجموعه ها مرورالفبایی لغت نامه دهخدا
جستجو در لغت نامه
بیشتر
کتابخانه شخصی پرسش از کتابدار ارسال منبع

Linux Server Security (2nd Edition( [Electronic resources] - نسخه متنی

Michael D. Bauer

| نمايش فراداده ، افزودن یک نقد و بررسی
افزودن به کتابخانه شخصی
میخواهم بخوانم
درحال خواندن
خوانده شده
ارسال به دوستان

آدرس پست الکترونیک گیرنده :

آدرس پست الکترونیک فرستنده :

نام و نام خانوارگی فرستنده :

پیغام برای گیرنده ( حداکثر 250 حرف ) :

کد امنیتی را وارد نمایید

ارسال
جستجو در متن کتاب
بیشتر
تنظیمات قلم

فونت

اندازه قلم

+ - پیش فرض

حالت نمایش

روز نیمروز شب
جستجو در لغت نامه
بیشتر
لیست موضوعات

Section 6.1. DNS Basics

Section 6.2. DNS Security Principles

Section 6.3. Selecting a DNS Software Package

Section 6.4. Securing BIND

Section 6.5. djbdns

Section 6.6. Resources

Chapter 7. Using LDAP for Authentication

Section 7.1. LDAP Basics

Section 7.2. Setting Up the Server

Section 7.3. LDAP Database Management

Section 7.4. Conclusions

Section 7.5. Resources

Chapter 8. Database Security

Section 8.1. Types of Security Problems

Section 8.2. Server Location

Section 8.3. Server Installation

Section 8.4. Database Operation

Section 8.5. Resources

Chapter 9. Securing Internet Email

Section 9.1. Background: MTA and SMTP Security

Section 9.2. Using SMTP Commands to Troubleshootand Test SMTP Servers

Section 9.3. Securing Your MTA

Section 9.4. Sendmail

Section 9.5. Postfix

Section 9.6. Mail Delivery Agents

Section 9.7. A Brief Introduction to Email Encryption

Section 9.8. Resources

Chapter 10. Securing Web Servers

Section 10.1. Web Security

Section 10.2. The Web Server

Section 10.3. Web Content

Section 10.4. Web Applications

Section 10.5. Layers of Defense

Section 10.6. Resources

Chapter 11. Securing File Services

Section 11.1. FTP Security

Section 11.2. Other File-Sharing Methods

Section 11.3. Resources

Chapter 12. System Log Management and Monitoring

Section 12.1. syslog

Section 12.2. Syslog-ng

Section 12.3. Testing System Logging with logger

Section 12.4. Managing System Logfiles with logrotate

Section 12.5. Using Swatch for Automated Log Monitoring

Section 12.6. Some Simple Log-Reporting Tools

Section 12.7. Resources

Chapter 13. Simple Intrusion Detection Techniques

Section 13.1. Principles of Intrusion Detection Systems

Section 13.2. Using Tripwire

Section 13.3. Other Integrity Checkers

Section 13.4. Snort

Section 13.5. Resources

Colophon
توضیحات
افزودن یادداشت جدید







13.5. Resources


Amoroso, Ed. Intrusion Detection. Sparta, NJ: Intrustion.Net Books, 1999.



Excellent introduction to the subject.



Baker, Andrew, Brian Caswell, and Mike Poor. Snort 2.1 Intrusion Detection, Second edition. Syngress, 2004.





Up-to-date details on
Snort, ACID,
Barnyard, and
Sguil.



Card, Rémy, Theodore Ts'o, and Stephen Tweedie. "Design and Implementation of the Second Extended Filesystem." (http://web.mit.edu/tytso/www/linux/ext2introl)





Excellent paper on the LinuxEXT2 filesystem; the section
entitled "Basic File System
Concepts" is of particular interest to Tripwire
users.


Northcutt, Stephen and Judy Novak. Network Intrusion Detection: An Analyst's Handbook. Indianapolis: New Riders Publishing, 2001.




A very practical book with many examples showing system log excerpts
and configurations of popular IDS tools.


http://www.chkrootkit.org/


Home of the chkrootkit shell
script and an excellent source of information about how to detect and
defend against rootkits.


http://sourceforge.net/projects/tripwire


Project pages for Tripwire Open Source. The place to obtain the
latest Tripwire Open Source code and documentation.


http://prdownloads.sourceforge.net/tripwire/tripwire-2.3.0-docs-pdf.tar.gz


Tripwire Open Source Manual and the Tripwire Open Source Reference
Card in PDF format. Required reading! (If this link
doesn't work, try http://sourceforge.net/project/showfiles.php?group_id=3130)

http://www.tripwire.org


Home page for Tripwire Open Source. Binaries for Linux
available here.


http://www.tripwire.com/downloads/tripwire_asr/


Tripwire Academic Source Release download site.


http://securityportal.com/topnews/tripwire20000711l


Article on using Tripwire Academic Source Release, by Jay
Beale (principal
developer of Bastille Linux).


http://sourceforge.net/projects/aide


Official web site for the Advanced Intrusion
Detection Environment (AIDE).


http://www.geocities.com/fcheck2000/


Official web site for
Fcheck,
an extremely portable integrity checker written entirely in Perl.


Ranum, Marcus J. "Intrusion Detection & Network Forensics."



Presentation E1/E2 at the Computer Security
Institute's 26th Annual Computer Security Conference
and Exhibition, Washington, D.C., 17-19 Nov 1999.


http://www.snort.org


Official Snort web site: source, binaries,
documentation, discussion forums, and amusing graphics.


http://acidlab.sourceforge.net/


The Analysis Console for Intrusion
Databases (ACID) is a
PHP application that
analyzes IDS data in real time. ACID is a popular companion to Snort
because it helps make sense of large Snort data sets.


http://www.algonet.se/~nitzer/oinkmaster


Home of the Oinkmaster auto-Snort rules update
script.


http://www.whitehats.com


Security news, tools, and the
arachNIDS attack signature
database (which can be used to update your SNORT rules automatically
as new attacks are discovered).


http://www.lids.org


The Linux
Intrusion Detection System (LIDS) web site. LIDS is a kernel patch
and administrative tool that provides granular logging and access
controls for processes and for the filesystem.



/ 94