1. Chapter 1 Threat Modeling and Risk Management

   1. Components of Risk

   2. Simple Risk Analysis: ALEs

   3. An Alternative: Attack Trees

   4. Defenses

   5. Conclusion

   6. Resources

2. Chapter 2 Designing Perimeter Networks

   1. Some Terminology

   2. Types of Firewall and DMZ Architectures

   3. Deciding What Should Reside on the DMZ

   4. Allocating Resources in the DMZ

   5. The Firewall

3. Chapter 3 Hardening Linux and Using iptables

   1. OS Hardening Principles

   2. Automated Hardening with Bastille Linux

4. Chapter 4 Secure Remote Administration

   1. Why It's Time to Retire Cleartext Admin Tools

   2. Secure Shell Background and Basic Use

   3. Intermediate and Advanced SSH

5. Chapter 5 OpenSSL and Stunnel

   1. Stunnel and OpenSSL: Concepts

6. Chapter 6 Securing Domain Name Services (DNS)

   1. DNS Basics

   2. DNS Security Principles

   3. Selecting a DNS Software Package

   4. Securing BIND

   5. djbdns

   6. Resources

7. Chapter 7 Using LDAP for Authentication

   1. LDAP Basics

   2. Setting Up the Server

   3. LDAP Database Management

   4. Conclusions

   5. Resources

8. Chapter 8 Database Security

   1. Types of Security Problems

   2. Server Location

   3. Server Installation

   4. Database Operation

   5. Resources

9. Chapter 9 Securing Internet Email

   1. Background: MTA and SMTP Security

   2. Using SMTP Commands to Troubleshootand Test SMTP Servers

   3. Securing Your MTA

   4. Sendmail

   5. Postfix

   6. Mail Delivery Agents

   7. A Brief Introduction to Email Encryption

   8. Resources

10. Chapter 10 Securing Web Servers

    1. Web Security

    2. The Web Server

    3. Web Content

    4. Web Applications

    5. Layers of Defense

    6. Resources

11. Chapter 11 Securing File Services

    1. FTP Security

    2. Other File-Sharing Methods

    3. Resources

12. Chapter 12 System Log Management and Monitoring

    1. syslog

    2. Syslog-ng

    3. Testing System Logging with logger

    4. Managing System Logfiles with logrotate

    5. Using Swatch for Automated Log Monitoring

    6. Some Simple Log-Reporting Tools

    7. Resources

13. Chapter 13 Simple Intrusion Detection Techniques

    1. Principles of Intrusion Detection Systems

    2. Using Tripwire

    3. Other Integrity Checkers

    4. Snort

    5. Resources

1. Appendix A Two Complete iptables Startup Scripts

2. Colophon

Our look is the result of reader comments, our own experimentation, and feedback from distribution channels. Distinctive covers complement our distinctive approach to technical topics, breathing personality and life into potentially dry subjects. The image on the cover of Linux Server Security, Second Edition is a caravan. An essential mode of transport for 19th-century Americans making the epic migration westward along the Oregon Trail, the typical family caravan was a covered wagon approximately 10 feet long and 4 feet wide. It was essential for one's caravan to accommodate a large supply of food, clothing, and household necessities; however, settlers were wise to keep luxury goods to a minimum to economize space and avoid taxing their oxen and horses. Living conditions in the caravan were usually quite cramped. The boxes and trunks that lined the floor of the wagon doubled as beds for the weary travelers. Completing the Oregon Trail was an arduous and hazardous endeavor, as casualties caused by perils ranging from cholera to firearm mishaps took the lives of many intrepid pioneers. Those that survived the harrowing 2,000-mile journey settled in the Willamette Valley of northwest Oregon, as well as in Washington State and California. Today, motorists can travel much of the length of this historic route on U.S. Highway 26. Sanders Kleinfeld was the production editor and copyeditor for Linux Server Security, Second Edition. Linley Dolby was the proofreader. Matt Hutchinson and Claire Cloutier provided quality control. Julie Hawks wrote the index.

Emma Colby designed the cover of this book, based on a series design by Hanna Dyer and Edie Freedman. The cover image is a 19th-century engraving from The American West in the 19th Century (Dover). Emma Colby produced the cover layout with Adobe InDesign CS using Adobe's ITC Garamond font.

Melanie Wang designed the interior layout. The chapter opening images are from the Dover Pictorial Archive, Marvels of the New West: A Vivid Portrayal of the Stupendous Marvels in the Vast Wonderland West of the Missouri River, by William Thayer (The Henry Bill Publishing Co., 1888) and The Pioneer History of America: A Popular Account of the Heroes and Adventures, by Augustus Lynch Mason, A.M. (The Jones Brothers Publishing Company, 1884).

This book was converted to FrameMaker 5.5.6 by Julie Hawks with a format conversion tool created by Erik Ray, Jason McIntosh, Neil Walls, and Mike Sierra that uses Perl and XML technologies. The text font is Linotype Birka; the heading font is Adobe Myriad Condensed; and the code font is LucasFont's TheSans Mono Condensed. The illustrations that appear in the book were produced by Robert Romano and Jessamyn Read using Macromedia FreeHand MX and Adobe Photoshop CS. The tip and warning icons were drawn by Christopher Bing. This colophon was written by Sanders Kleinfeld.