ACCU Home page ACCU Conference Page
Search Contact us ACCU at Flickr ACCU at GitHib ACCU at Google+ ACCU at Facebook ACCU at Linked-in ACCU at Twitter Skip Navigation

Search in Book Reviews

The ACCU passes on review copies of computer books to its members for them to review. The result is a large, high quality collection of book reviews by programmers, for programmers. Currently there are 1918 reviews in the database and more every month.
Search is a simple string search in either book title or book author. The full text search is a search of the text of the review.
    View all alphabetically
Title:
Linux Security
Author:
ISBN:
0 7821 2741 X
Publisher:
Sybex
Pages:
482pp
Price:
£36-99
Reviewer:
Joe McCool
Subject:
security
Appeared in:
14-2
I approached this book with some excitement. Recently on a site of mine, I had a problem with spam and network intrusion. I had the idea of implementing a Linux firewall, using the famed robustness of Linux to keep intruders from tampering with prone NT servers. As it turned out, I got it completely wrong. Hontañón's book is about security on Linux itself and not just about using Linux to protect others, but it is no less relevant for that. It had never crossed my mind that Linux might itself be susceptible.

Susceptible it certainly is, according to this author. Problems can stem right from kernel compilation to setting up user accounts. (Hontañón points out that most hacking takes place behind firewalls and by legitimate users!)

There is a wealth of material covered here; things to watch while configuring samba, apache, network security, sendmail, user authentication, transport and application layer firewalls, ssh and vpn. The material is well organised and presented clearly.

I do have some petty criticisms: some diagrams have essential text missing, screen shots, while pretty, add little to the understanding. Listings are too long (4 pages), deliver little and could be relocated to an appendix. Like anyone trying to hedge their bets, he does not come down in favour of any particular Linux distribution. Kernel re-compilation is an essential part of Linux security and very much part of Linux culture. Hontañón recommends kernel compilation as root. This contradicts the advice given by Linux gurus on the Step by Step site (see http://linux.ns/misconstrue.html). Otherwise this is a good and useful read, certainly recommended. With Linux playing an increasing role in commercial web servers, this text has a ready market.