Packt+ | Advance your knowledge in tech

0

All Products

Best Sellers

New Releases

Books

Videos

Audiobooks

Free Learning

Practical Linux Security Cookbook

You're reading from Practical Linux Security Cookbook Secure your Linux environment from modern-day attacks with practical recipes

Product type Paperback

Published in Aug 2018

Publisher Packt

ISBN-13 9781789138399

Length 482 pages

Edition 2nd Edition

Tools

Linux

Concepts

Information Security

Author (1):

Kalsi

View More author details

Table of Contents (20) Chapters

Title Page

Copyright and Credits

Contributors

Packt Upsell

Preface

1. Linux Security Problem FREE CHAPTER

2. Configuring a Secure and Optimized Kernel

3. Local Filesystem Security

4. Local Authentication in Linux

5. Remote Authentication

6. Network Security

7. Security Tools

8. Linux Security Distros

9. Bash Vulnerability Patching

10. Security Monitoring and Logging

11. Understanding Linux Service Security

12. Scanning and Auditing Linux

13. Vulnerability Scanning and Intrusion Detection

1. Other Books You May Enjoy

Leave a review - let other readers know what you think

Index

Blocking incoming traffic

One of the most important tasks for a Linux system administrator is to control access to the network services. At times, it may be better to block all incoming traffic on the server and only allow required services to connect.

Getting ready

As we will be using iptables here as well, no extra packages are needed to perform these steps. We just need a user account with super user access. However, this account should preferably not be a root account.

How to do it...

We will configure Iptables to deny everything, except the traffic that has been initiated from inside our system (for example, the web browsers have web traffic, or some downloading has already been initiated earlier for updating the package or any other software):

As in the previous examples, our first rule in Iptables will be to allow access to localhost data. Run the following command to do this:

iptables -A INPUT -i lo -j ACCEPT

Our next rule will be for accepting all traffic related to outbound connections...

The rest of the chapter is locked

Register for a free Packt account to unlock a world of extra content!

A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of

Start free trial

Renews at £13.99/month. Cancel anytime

Authors (1)

Kalsi

Kalsi

Tajinder Kalsi is an innovative professional with more than 9 years' progressive experience within the information security industry. He has a good amount of knowledge and experience in web application testing, vulnerability assessment, network penetration testing, and risk assessment. At present, he is working as an information security consultant. He started his career with Wipro as a technical associate, and later on he became an ISMS consultant-cum-technical evangelist. In his free time, he conducts seminars in colleges all across India on various topics, in more than 125 colleges; he has spoken to 10,000+ students. Tajinder is a certified ISO 27001:2013 Auditor. Tajinder authored Practical Linux Security Cookbook published by Packt Publishing. He has also reviewed the following books: Web Application Penetration Testing with Kali Linux and Mastering Kali Linux for Advanced Penetration Testing. He has also authored three video courses with Packt: Getting Started with Pentensing, Finding and Exploiting Hidden Vulnerabilities, and Pentesting Web Applications. He is best described as dedicated, devoted, and determined and a person who strongly believes in making his dreams come true. He defines himself as a tireless worker, who loves to laugh and make others laugh. He is also very friendly and level-headed. https://www.linkedin.com/in/tajinderkalsi/.

See other products by Kalsi

Other recommended products

Related to this chapter

Mastering Linux Security and Hardening

Mastering Linux Security and Hardening

For the past couple of decades, Linux has been extremely popular with systems administrators, for everything from creating networks and servers to automating their entire working environment. However, security has always been the major concern. With not many resources available in the Linux security domain, this book will be an invaluable resource to help you get your Linux systems properly secured.

Jan 2018 12h 32m

Mastering Linux Security and Hardening

Mastering Linux Security and Hardening

Hardening a Linux system can make it much more difficult for an attacker to exploit it. This book will enable system administrators and network engineers to protect their Linux systems, and the sensitive data on those systems.

Feb 2020 22h 12m

Hands-On Dark Web Analysis

Hands-On Dark Web Analysis

Understanding the history of the Deep Web, its current state, and its possible evolution, can help you, the reader; better understand the dangers and risks that exist out there. This book helps you access the Deep Web and the Dark Net and also protect yourself while browsing the Deep Web.

Network Security with pfSense

Network Security with pfSense

pfSense is the world's most trusted open source network security solution. In this book, you'll learn about pfSense, all of its key features, how you can install and deploy it, as well as the different tasks you can perform.

Network Vulnerability Assessment

Network Vulnerability Assessment

Being able to identify security loopholes has become critical to many businesses. That's where learning network security assessment becomes very important. This book will not only show you how to find out the system vulnerabilities but also help you build a network security threat model.

Aug 2018 8h 28m

CentOS Quick Start Guide

CentOS Quick Start Guide

Linux kernel development has been the worlds largest collaborative project to date. With this practical guide, you will learn Linux through one of its most popular and stable distributions.

Dec 2018 10h 40m

Mastering Linux Administration

Mastering Linux Administration

Linux is an omnipresent operating system running on many computing platforms, including personal computers, smartphones, servers, IoT devices, and cloud infrastructures. Mastering Linux Administration will help you become a proficient sysadmin and quickly adapt to the challenges of modern server and cloud administration technologies.

Jun 2021 25h 44m

Mastering Ubuntu Server

Mastering Ubuntu Server

Ubuntu is a Debian-based Linux distribution with versions available for both desktops as well as servers. The Server edition, Ubuntu Server, has set the industry standard for Linux in the data center as well as the cloud. Organizations, inventors, and hobbyists alike will benefit from its flexible configuration, fast deployment, and a plethora of tools. Whether you want to host a website, set up virtual machines, containerize your organization's applications, or simplify the deployment of resources, Ubuntu Server is a great choice for powering stable, cutting-edge infrastructure. With this book as your guide, you will learn how to deploy, configure, and troubleshoot Ubuntu Servers utilizing Ubuntu Server 18.04, with all the skills necessary to manage real servers.

May 2018 18h 24m

Kali Linux Cookbook

Kali Linux Cookbook

Kali Linux is a Linux distribution designed for penetration testing and security auditing. It is the successor to BackTrack, the world's most popular penetration testing distribution. Kali Linux is the most widely used platform and toolkit for penetration testing. Security is currently the hottest field in technology with a projected need for millions of security professionals. This book focuses on enhancing your knowledge in Kali Linux for security by expanding your skills with toolkits and frameworks that can increase your value as a security professional.

Sep 2017 14h 36m

Mastering Ubuntu Server

Mastering Ubuntu Server

Mastering Ubuntu Server, Third Edition not only strengthens your server fundamentals but also equips you with the advanced concepts of Ubuntu 20.04 LTS. It polishes and expands your skill set to prepare you for better business opportunities.

Dec 2020 23h 24m

Linux Shell Scripting Cookbook

Linux Shell Scripting Cookbook

The shell is one of the most powerful tools on a computer system, yet a large number of users are unaware of how much they can accomplish with it. Have you ever imagined how to produce databases and web scripts or automate monotonous admin tasks such as creating backups or monitoring? Well, look no further - you have come to the right place!

May 2017 18h 24m

Enterprise Cloud Security and Governance

Enterprise Cloud Security and Governance

Modern day businesses and enterprises are moving to cloud simply to improve efficiency and speed, achieve flexibility and cost-effectiveness, and for on-demand cloud services. However, enterprise cloud security remains a major concern for many businesses because migrating to the public cloud requires transferring some control over organizational assets to the cloud provider, and there are chances those assets could be mismanaged. Therefore, big giants such as AWS, Microsoft, and Google have started adopting techniques and methodologies in securing and ensuring confidentiality of data across private and public cloud. This book opens the door to various methodologies and techniques in data security and governance to ensure privacy, availability, confidentiality, integrity and security of data across all cloud platforms.

Dec 2017 13h 40m

Personalised recommendations for you

Based on your interests and search pattern

Cloud Security Handbook

Cloud Security Handbook

This book provides complete coverage of every cloud security aspect—from initial design to ongoing maintenance. Packed with best practices, it helps you smoothly transition to the public cloud, while keeping your environments secure and compliant.

Apr 2025 16h 4m

CompTIA CySA+ (CS0-003) Certification Guide

CompTIA CySA+ (CS0-003) Certification Guide

Prepare for CompTIA CySA+ (CS0-003) exam with this study guide—covering security ops, incident response, and vulnerability management in depth to level up your cybersecurity career. Includes exam-style questions, 2 practice tests, and flashcards.

Apr 2025 24h 44m

Cyber Security Kill Chain - Tactics and Strategies

Cyber Security Kill Chain - Tactics and Strategies

Learn how the cyber kill chain, a structured model that outlines the stages of a cyberattack, guides you through understanding threat actor behaviors and bolstering their ability to defend against evolving cyber threats.

May 2025 10h 16m