book

Practical Linux Security Cookbook

by Tajinder Kalsi

April 2016

Beginner to intermediate

276 pages

5h 32m

English

Packt Publishing

Read now

Unlock full access

eBooks, discount offers, and moreWhy Subscribe?
What this book covers

Getting readyHow to do it…How it works…There's more…See also
Downloading the example codeDownloading the color images of this bookErrataPiracyQuestions
Introduction
Developing a security policy
How to do it…How it works…
How to do it…How it works…There's more…
Getting readyHow to do it…How it works…See also
Getting readyHow to do it…How it works…
Getting readyHow to do it…How it works…There's more…Vulnerability assessment
Getting readyHow to do it…How it works…See also
Getting readyHow to do it…How it worksThere's more…Null or default passwordsIP spoofingEavesdroppingService vulnerabilitiesDenial of Service (DoS) attack
Introduction
Getting readyHow to do it…How it works…
Getting readyHow to do it…How it works…
Getting readyHow to do it…How it works…
Getting readyHow to do it…How it works…
Getting readyHow to do it…How it worksThere's more…
How to do it…
Viewing file and directory details using the ls commandGetting readyHow to do it…How it works…
Getting readyHow to do it…How it works…There's more...
Getting readyHow to do it…There's more…
Getting ready…How it works…There's more…
Getting readyHow to do it…How it works…
User authentication and loggingGetting StartedHow to do it...How it works...
Getting readyHow to do it...How it works...
Getting startedHow to do it?How it works...
Getting readyHow to do it…How it works...There's more...
Getting started...How to do it...How it works...
Remote server/host access using SSHGetting readyHow to do it…How it works…
Getting readyHow to do it…How it works…There's more…
Getting readyHow to do it...How it works...
Getting readyHow to do it...How it works...
Getting readyHow to do it...How it works...
Managing the TCP/IP networkGetting readyHow to do it...How it works...
Getting ReadyHow to do it...How it works...
Getting ReadyHow to do it...How it works...
Getting ReadyHow to do it...How it works...
Getting ReadyHow to do it?How it works...
Linux sXIDGetting ReadyHow to do it...How it works...
Getting ReadyHow to do it?How it works...
Getting ReadyHow to do it...How it works...
Getting ReadyHow to do it...How it works...
Getting ReadyHow to do it...How it works...
Getting readyHow to do it...How it works...
Kali LinuxGetting readyHow to do it...How it works...
Getting readyHow to do it...How it works...
Getting readyHow to do it...How it works...
Getting readyHow to do it...How it works...
Getting readyHow to do it?How it works...
Understanding the bash vulnerability through ShellshockGetting ReadyHow to do it…How it works…
Getting ReadyHow to do it…How it works…
Getting readyHow to do it…How it works…
Getting readyHow to do it...How it works...
Viewing and managing log files using LogcheckGetting readyHow to do it…How it works…
Getting readyHow to do it…How it works…
Getting readyHow to do it…How it works…
Getting readyHow to do it…How it works…
Getting readyHow to do it…How it works
Getting readyHow to do it…How it works
Getting readyHow to do it…How it works
Getting readyHow to do it…How it works
Getting readyHow to do it…How it works

Content preview from Practical Linux Security Cookbook

Blocking spoofed addresses

IP spoofing is a very common technique used by attackers to send malicious packets to a computer server. This is the process of creating IP packets with a forged IP address. It is mainly used for attacks such as Denial of Service (DoS).

Getting Ready

If we wish to block a spoofed IP address, we need to have a list of IP addresses or domain names from where these spoofed connections have been trying to connect.

How to do it...

We will try to create a basic ruleset of iptables through which we will restrict all incoming packets, except those that are necessary for our usage:

The first step is to create a rule to allow access to the loopback interface so that services on the system can communicate properly with each other locally. ...