March 3, 2003
New Update of Classic Security Reference: O'Reilly Releases "Practical Unix & Internet Security, Third Edition"
Sebastopol, CA--When "Practical Unix Security" was first published more
than a decade ago, it became an instant classic, saving many a Unix
system administrator from disaster. The second edition added
much-needed internet security coverage and doubled the size of the
original volume. Practical Unix & Internet Security, Third Edition by
Simson Garfinkel, Gene Spafford, and Alan Schwartz (O'Reilly,
US $54.95) is a comprehensive update of this very popular book--a
companion for the Unix/Linux system administrator who needs to secure
his or her organization's system, networks, and web presence in an
increasingly hostile world.
"This book is a combination of reference material, tutorial, and
strategy," explains coauthor Gene Spafford. "It will be useful for
years because it teaches the fundamentals of security. It is meant to
be a keeper. You'll find other security books written by people who use
a 'handle' and whose only claim to fame is that they know how to run
hacker tools. 'Practical Unix & Internet Security' was written by
security professionals and educators--with more than 40 years'
experience among us--to provide fundamental knowledge on this subject."
Focusing on the four most popular Unix variants today--Solaris, Mac OS
X, Linux, and FreeBSD--this book contains new information on PAM
(Pluggable Authentication Modules), LDAP, SMB/Samba, anti-theft
technologies, embedded systems, wireless and laptop issues, forensics,
intrusion detection, chroot jails, telephone scanners and firewalls,
virtual and cryptographic filesystems, WebNFS, kernel security levels,
outsourcing, legal issues, new internet protocols and cryptographic
algorithms, and much more.
"Practical Unix & Internet Security" consists of six parts:
Computer security basics: introduction to security problems and
solutions, Unix history and lineage, and the importance of security
policies as a basic element of system security.
Security building blocks: fundamentals of Unix passwords, users,
groups, the Unix filesystem, cryptography, physical security, and
Network security: a detailed look at modem and dialup security,
TCP/IP, securing individual network services, Sun's RPC, various host
and network authentication systems (e.g., NIS, NIS+, and Kerberos), NFS
and other filesystems, and the importance of secure programming.
Secure operations: keeping up to date in today's changing security
world, backups, defending against attacks, performing integrity
management, and auditing.
Handling security incidents: discovering a break-in, dealing with
programmed threats and denial of service attacks, and legal aspects of
Appendixes: a comprehensive security checklist and a detailed
bibliography of paper and electronic references for further reading and
With nearly 1000 pages of helpful text, scripts, checklists, tips, and
warnings, "Practical Unix & Internet Security, Third Edition" remains
the definitive reference for Unix administrators and all others who
care about protecting their systems and data from today's threats.
Praise for the previous editions:
"If you know nothing about Linux security, and only have time for one
book you should start with 'Practical Unix & Internet Security.' It's a
fat book, but it's accessible, and it gives you a solid grounding in
--Charlie Stross, Linux Format, May 2002
"If you're a novice at computer security and want to learn, get this
book and set aside time to read some of it every day. The bookmark will
move slowly, but keep moving it. If you're already an expert, get this
book and keep it at hand as a reference--and read a chapter a month,
just to remind yourself of things you've forgotten."
--Jennifer Vesperman, linuxchix.org
"...replete with practical examples, including typescripts of console
command sessions, clear and easily understood diagrams...This classic,
indispensable volume is the right book to trust."
--Christopher Brown-Syed, "Library and Archival Security, Vol. 17,
Number 1," 2001
"Securing Unix systems and networks against crackers and other assorted
bad guys is a top priority for most organizations (or at least it
should be). In order to properly protect your systems, you need to have
the right information at your disposal: without this information you
can easily miss holes in your security implementation. The authors of
'Practical Unix & Internet Security,' Simson Garfinkel and Gene
Spafford, write in a very down-to-earth, simple fashion that never
leaves the reader wondering. Instead, the book is written for both
those new to the field and the professionals that need a good reference
manual lying on their shelves. 'Practical Unix & Internet Security' is
a very popular book, and has reached almost cult status in many
circles. The reason behind this is simple: there is a lot of
information, the information is easily readable, and topics are grouped
logically. What else can a reader ask for?"
--Dustin Puryear, 32bitsonline, December 2000
"To call this highly readable book comprehensive is an understatement.
The breadth is vast, from fundamentals (definitions of computer
security; the history of Unix) and commonsense but little-observed
security basics (making backups; physical and personnel security; buggy
software) to modern software (NFS, WWW, firewalls) and the handling of
security incidents. The section on users alone is 21 pages long--and
worth every pageThe Internet covers too much and moves too quickly for
any book to cover every security aspect of every piece of software, but
this book comes close. More importantly, it gives you a grounding in
the fundamental issues of security and teaches the right questions to
ask--something that will stay with you long after today's software is
"[A] keeper...the second edition of Garfinkel and Spafford's 1991
security book...has grown immensely, from barely over 500 pages to
nearly a thousand, but most of it is both worthwhile and
important....Security is a really important topic. Your users don't
understand it. Educators don't; nor does the medical profession. This
is a fine book on a difficult topic."
--Peter H. Salus, ;login:, August 1996
"Buy this book and save on aspirin."
--Cliff Stoll, author of "The Cuckoo's Egg and Silicon Snake Oil"
"This is exactly the type of practical, easy to follow book that system
administrators need to stay one step ahead of the system crackers--if
you have time to read only one security book, this should be
--Kevin J. Ziese, Captain, United States Air Force; Chief,
Countermeasures Development, AF Information Warfare Center
Practical Unix & Internet Security, Third Edition
Simson Garfinkel, Gene Spafford, and Alan Schwartz
ISBN 0-596-00323-4, 954 pages, $54.95 (US), $85.95 (CAN), 38.95 (UK)
O'Reilly Media spreads the knowledge of innovators through its books, online services, magazines, and conferences. Since 1978, O'Reilly Media has been a chronicler and catalyst of cutting-edge development, homing in on the technology trends that really matter and spurring their adoption by amplifying "faint signals" from the alpha geeks who are creating the future. An active participant in the technology community, the company has a long history of advocacy, meme-making, and evangelism.
Return to: O'Reilly Press Room
Recent Press Releases
Press Release Archive »
Media Relations - North America
Media Relations - Germany
Media Relations - Japan
Media Relations - United Kingdom
Media Relations - Conferences