Practical UNIX and Internet Security: Securing Solaris, Mac OS X, Linux & Free BSD

As a Linux administrator, I ordered this book hoping to find out how hackers typically gain access to systems and neat little tricks for locking down my system, as well as detecting and dealing with intruders. While Practical Unix & Internet Security did cover these topics, it covered little I didn't already know.Significant time is spent explaining how unix-based systems work. The book covers things such as file systems, partition structure, file ownership/permissions, users and groups, inodes, ssh, backups, etc. Each command, utility, procedure or feature is detailed over several pages followed by an explanation of what you should be doing with said topic.There are also a few real-world examples here and there; stories most of us have heard before, like the admin who had . in his path.Unlike many computer books, this one is well written and an easy read, and it's certainly a lot more friendly than some unix geek's advice which consists of RTFM.I think this book would be great for someone who has a very basic understanding of unix-based systems but has never administrated one before, but for those of us who've already had some experience running unix there's probably not anything new here for you.

I should have paid more attention when I bought this book in a series of security books and I regret this buy. Its "best seller" position is IMO unjustified because the networking/internet sections (10 total lines on SSL!, mentions of Netscape 2.0b2, nothing on ICMPs attacks, 3 lines about spoofing...) are completly outdated and/or pretty useless.

Good review book of things I have known for a long time. But, it should be geared more toward large enterprise security tools like BoKS, PowerBroker, TripWire, etc.

Gospel by now

This book may be very useful for people who have a strong working knowledge of Unix or Linux. I would recommend learning one of these operating systems before purchasing the book because it's practically unintelligible without that base of knowledge.I bought it for a class and stopped reading it after the third week of school because I was getting nothing out of it. One can learn security concepts without learning Unix.I recommend this book only if you have a good background in Unix or Linux. Otherwise, it will likely end up a paperweight.

I'm pretty sure this book has been "de facto" for all security professionals, It is contains all basics stuff related unix wold.

Excellent and comprehensive coverage of the topic. Easy to understand.

Good indexStraightforward languagePractical examplesHighly recommendedRequired reading for Linux Sys AdminsGreat reference for novices or experts

As above, but very U.S. -centric. From the off (Page 1) we're told about how many americans know of x or y. Phrases like "Congressional action" re-inforce the impression of a standard U.S. world-blindness. It's offputting to read such and kicks off the annoyance meter for the rest of it. The rest of the world understand software and security just as well as you do, Messers authors.A pity because even today, MacOS, penguinistas and BSD users can get some fairly good refreshers from this mega-tome.Top quote: "...vet your (job) applicants with a lie-detector test (if legal)".Right.

I have only read part of this book and it was an eye opener. Even thogh it was an older book, much of what it says is appiable today. I can warmly recommend this book.

I am preparing for an IT security audit of enterprise UNIX systems. I had limited understanding of UNIX prior to reading this book. However I feel more confident now - the book provides an understandable description of the basic concepts, goes into sufficient detail and compares the different versions at an acceptable level. This book helped me loads in preparing for the audit, recommended for the whole team to read.

A great book! Despite the time that has passed since the release - still valid! Describes important issues related to the security of unix systems and the Internet. Mandatory reading for network and unix system administrators! I would recommend!