Buy Print Book:
$39.95 USD
Add to Cart

Buy Print Book:
£28.50 GBP
Add to UK Cart

What is this?

Read it online

Read this book online
at the Safari Bookshelf.

Read online - Safari

What is Safari?

Envelope Tell a friend
SELinux NSA's Open Source Security Enhanced Linux

By Bill McCarty
First Edition October 2004 
Pages: 254 (More details)

Buy 2 Get 1 FreeFree ShippingGuarantee

Book description

This small but information-packed book covers the wide range of knowledge needed to secure your system using this respected extension to Linux. SELinux discusses critical topics, such as SELinux concepts and its security model; installation instructions; system and user administration; understanding, implementing, and developing your own SELinux security policies. With SELinux, a high-security computer is within reach of any system administrator, and this book provides the means.
Full Description

The intensive search for a more secure operating system has often left everyday, production computers far behind their experimental, research cousins. Now SELinux (Security Enhanced Linux) dramatically changes this. This best-known and most respected security-related extension to Linux embodies the key advances of the security field. Better yet, SELinux is available in widespread and popular distributions of the Linux operating system--including for Debian, Fedora, Gentoo, Red Hat Enterprise Linux, and SUSE--all of it free and open source. SELinux emerged from research by the National Security Agency and implements classic strong-security measures such as role-based access controls, mandatory access controls, and fine-grained transitions and privilege escalation following the principle of least privilege. It compensates for the inevitable buffer overflows and other weaknesses in applications by isolating them and preventing flaws in one application from spreading to others. The scenarios that cause the most cyber-damage these days--when someone gets a toe-hold on a computer through a vulnerability in a local networked application, such as a Web server, and parlays that toe-hold into pervasive control over the computer system--are prevented on a properly administered SELinux system. The key, of course, lies in the words "properly administered." A system administrator for SELinux needs a wide range of knowledge, such as the principles behind the system, how to assign different privileges to different groups of users, how to change policies to accommodate new software, and how to log and track what is going on. And this is where SELinux is invaluable. Author Bill McCarty, a security consultant who has briefed numerous government agencies, incorporates his intensive research into SELinux into this small but information-packed book. Topics include:
  • A readable and concrete explanation of SELinux concepts and the SELinux security model
  • Installation instructions for numerous distributions
  • Basic system and user administration
  • A detailed dissection of the SELinux policy language
  • Examples and guidelines for altering and adding policies
With SELinux, a high-security computer is within reach of any system administrator. If you want an effective means of securing your Linux system--and who doesn't?--this book provides the means.
Post-purchase benefits:

Register your book | View/Submit Errata | View/Submit Review

Browse within this book

Cover | Table of Contents | Index | Sample Chapter | Colophon

No time right now?   Email This Page Email these links Customers who bought this book also bought:
Linux Server Security
Read more		 Linux Security Cookbook
Read more		 Linux iptables Pocket Reference
Read more
No time right now?   Email This Page Email these links Customers interested in this book may also be interested in:
Course:
Unix for Web Programming
Learn the fundamentals of Linux/Unix and how to prepare a server for Web Programming using Apache.
Read more		Conference:
O'Reilly Open Source Convention
July 23-27, 2007
Portland, Oregon
Read more		Course:
Linux/Unix Sysadmin I
Learn the basics of System Administration on your very own root server.
Read more
Course:
Learn C Programming
These two courses will take you from newbie to advanced skills in open-source C programming.
Read more		Course:
Linux/Unix Sysadmin II
Learn system administration skills in networking and DNS, on your very own root server.
Read more		Course:
Linux/Unix Sysadmin III
Gain skills in linux/unix services, including email and web servers, on your very own root server.
Read more
Book details

Title: SELinux
Subtitle: NSA's Open Source Security Enhanced Linux
First Edition: October 2004
ISBN 10: 0-596-00716-7
ISBN 13: 9780596007164
Pages: 254

Featured customer reviews

Be the first person to review this book!

Write a Review

Media reviews

"...this book is recommended reading for anyone considering implementing SELinux. The conceptual overview is some of the best I've seen since SELinux got its start. Using charts, diagrams and examples, McCarty presents an excellent overview of the nuts and bolts of SELinux."
--Jeffrey Huckaby, Amazon.com, April 2005

"SELinux is highly recommended as both a Linux security solution and an excellent book on how to utilize all the resources of SELinix."
--Harold McFarland, "Midwest Book Review," March 2005

"The intended audience for this title is someone who is 'responsible for the management of one or more sensitive hosts'; for those in that category this is an essential resource. It should also satisfy the needs of anyone wants to develop an in-depth understanding of SELinux."
--Major Keary, LUV (Linux Users of Victoria), February 2005

Read all reviews


See larger cover
Browse within this book