Customer Reviews

Maximum Linux Security (2nd Edition)

5 star:		(7)
4 star:		(2)
3 star:		(0)
2 star:		(2)
1 star:		(0)

 

 

I am a senior engineer for network security operations. I read "Maximum Linux Security" (MLS) to learn more about defending Linux hosts in hostile environments (i.e., the Internet). Compared to recent editions of "Maximum Security," MLS is more useful and accessible. I recommend this book as a supplement to "Hacking Linux Exposed" and "Real World Linux Security."

MLS is less list-oriented than the typical "Maximum Security" book. Useful advice on practical security measures takes the place of exploit listings. While you'll find discussions of older vulnerabilities, the most ancient are isolated in appendix B. The appendix also offers lengthy, detailed command listings and glossaries, unlike any I've recently seen.

The friendly tone of the book reminded me of a mentor speaking to a novice. Furthermore, the authors clearly know their material. For example, Linux frequently demands compiling tools from source code. Sometimes this process requires tweaking the code before running 'make'. The authors regularly give specific advice on the changes needed to get the code working properly. This attention to detail impressed me, and helped me run some of the example applications as I read the text. The authors also gave great clues on applying patches, a task required of every system administrator.

Beyond its specific use as a Linux security text, MLS also lets readers learn of other resources useful to security practioners. I was pleased to check out the Linux Cross Reference project, where I can browse and link to several incarnations of the Linux kernel.

On the negative side, the back cover advertises MLS as an "intermediate-advanced" text. While I thought the diagrams and explanations of the introductory chapters were well-done, they clearly depicted basic material. I also felt the discussion of intrusion detection failed to reflect front line experience with that technology and process.

If you're looking for a more defensive-minded Linux security book, give MLS a try. Those with an offensive mindset (like penetration testers) should stick with the Hacking Exposed series. Readers looking for the high end of Linux security theory will like Bob Toxen's "Real World Linux Security."

(Disclaimer: I received a free review copy from the publisher.)

I'll start off by saying that I am CISSP, CCSP and SANS GSEC certified. I have read a couple of the Maximum Security series books and I'm constantly disappointed. First off the book is about 5 times too long for a novice that is curious about the subject and under informative for a professional. It also seems to cover some "neeto" programs you can use to secure your system. For the amount of pages I thought it would at least delve into some kernel hacking, buffer overflow/underrun protection. The author seems to love to give scare tactic examples of attacks that happened years before the book was published. If someone is reading this book they most likely understand the threat. I don't need to the police to tell me about murders that have gone on in Baltimore to convince me to put locks on my doors. This kind of off subject garbage makes this book even heavier, and not from an information stand point. Published in 2001 it seem that is was out of date then as well. It covers, for the lack of better description, low level hacker tools in a majority of descriptions of tools. For example the "Sniffer" chapter mentions nothing about dsniff a very popular and powerful sniffing utility. I would not recommend this book to a beginner as there is way too much garbage taking you through the installation of basic pieces of software. Never mentioning some different options maybe you should be selecting during the install. There is no need to cut and paste the contents of the INSTALL file from Tripwire, most of the guides for installing are word for word from the programs own install and readme files. I would not recommend this to a professional as well as it does not go into great enough detail about anything unless you don't want to read man files and would rather have it in the form of a 13lbs book. My guess is this book was thrown together poorly with haste and by someone that has little to no experience in network security let alone security on ONE system. To sum this review up, there is nothing in this book that isn't already on google.

If you use Linux but do system administration only because you have to keep your system chugging along--this book is for you. It will help you understand the security impacts of your system administration decisions. The book is tome-like with 870 pages but is a fairly easy read for someone with even a bit of UNIX/Linux knowledge. You will learn alot about security and be entertained by the authors descriptions of how actual attacks on your system are performed in the real world.

I was dissapointed in the first edition of this book because it was little more than a big list of things. This edition is not much better. It gives more information about the tools, which was sorely missing in the first version, bit still it requires too much work on our part to see what tool fits the job.

As a definitive list of all the security tools you could use for Linux, this is a good book, however you better expect to investigate each on your own. If you're looking for a book that is more geared to teaching you as well as overviewing products, I suggest Hacking Linux Exposed or Real World Linux Security. The former is probably the better of the two, but both are better than this one.

I'm happy to see that the author has de-anonymized himself somewhat, though.

I got this book a week ago and I have been reading it ever since. It is a very good book that gives you a good idea about Linux "do" and "don't" in term of setting up secured Linux server. I am kind of new in Linux, and this book does help me a lot to merge to open source.

Although not oriented towards Red Hat, this book contains many recomendations that have now been incorporated into Red Hat distributions since it's publication. However, this book contains advice and instructions to make them easier to understand and work effectivly. It also contains many system enhancements that havent been included in any distro. Any network manager or home user could put several enhancements into service, with very little work. In my opinion, the included CD by itself is worth much more that the purchase price of the book.

I can't imagine how the author of this book wrote it!!! It's a legend, If you're a bigenner or a Linux god, you must get this book, I wish I can say more, it WILL help you understand how to secure your linux box. Once you buy it and read the Index, you wont stop reading it until you finish!!!! Note to Security Books Authors:" WE NEED BOOKS LIKE THIS. " And I know that there wont be a better book than this ". All I can say is BUY IT AND ENJOY IT.

My comment goes out to the first (very old now) edition, 1999. This was the first book I've read about linux security and it's very well written, well organized and cover most importat topics about system security and internet security as well.

This is probably not just the best linux book I have ever purchased but one of the best computer books I've purchased period. The book explains things clear and to the point with real examples and many sites you can check out for further information. I've learned a great detail about network security and linux in journal. Thank you Anonymous.

This book really opens your eyes to the world of hacking (how to stop it). I presume the auther is a hacker and his insight and detail make this book a must for sysadmin. I recommend the book to basically anyone running Linux (or Unix) even beginners, because of it's great explanations.