Books about Selinux from Amazon.com

The intensive search for a more secure operating system has often left everyday, production computers far behind their experimental, research cousins. Now SELinux (Security Enhanced Linux) dramatically changes this. This best-known and most respected security-related extension to Linux embodies the key advances of the security field. Better yet, SELinux is available in widespread and popular distributions of the Linux operating system--including for Debian, Fedora, Gentoo, Red Hat Enterprise Linux, and SUSE--all of it free and open source. SELinux emerged from research by the National Security Agency and implements classic strong-security measures such as role-based access controls, mandatory access controls, and fine-grained transitions and privilege escalation following the principle of least privilege. It compensates for the inevitable buffer overflows and other weaknesses in applications by isolating them and preventing flaws in one application from spreading to others. The scenarios that cause the most cyber-damage these days--when someone gets a toe-hold on a computer through a vulnerability in a local networked application, such as a Web server, and parlays that toe-hold into pervasive control over the computer system--are prevented on a properly administered SELinux system. The key, of course, lies in the words "properly administered." A system administrator for SELinux needs a wide range of knowledge, such as the principles behind the system, how to assign different privileges to different groups of users, how to change policies to accommodate new software, and how to log and track what is going on. And this is where SELinux is invaluable. Author Bill McCarty, a security consultant who has briefed numerous government agencies, incorporates his intensive research into SELinux into this small but information-packed book. Topics include:

• A readable and concrete explanation of SELinux concepts and the SELinux security model
• Installation instructions for numerous distributions
• Basic system and user administration
• A detailed dissection of the SELinux policy language
• Examples and guidelines for altering and adding policies

With SELinux, a high-security computer is within reach of any system administrator. If you want an effective means of securing your Linux system--and who doesn't?--this book provides the means..
Price: $29.49 [Notify me when price goes down.]

"Neither a "Starting Linux" book nor a dry reference manual, this book has a lot to offer to those coming to Fedora from other operating systems or distros "
-- Behdad Esfahbod, Fedora developer

This book will get you up to speed quickly on Fedora Linux, a securely-designed Linux distribution that includes a massive selection of free software packages. Fedora is hardened out-of-the-box, it's easy to install, and extensively customizable - and this book shows you how to make Fedora work for you.

Fedora Linux: A Complete Guide to Red Hat's Community Distribution will take you deep into essential Fedora tasks and activities by presenting them in easy-to-learn modules. From installation and configuration through advanced topics such as administration, security, and virtualization, this book captures the important details of how Fedora Core works--without the fluff that bogs down other books and help/how-to web sites. Instead, you can learn from a concise task-based approach to using Fedora as both a desktop and server operating system.

In this book, you'll learn how to:

• Install Fedora and perform basic administrative tasks
• Configure the KDE and GNOME desktops
• Get power management working on your notebook computer and hop on a wired or wireless network
• Find, install, and update any of the thousands of packages available for Fedora
• Perform backups, increase reliability with RAID, and manage your disks with logical volumes
• Set up a server with file sharing, DNS, DHCP, email, a Web server, and more
• Work with Fedora's security features including SELinux, PAM, and Access Control Lists (ACLs)

Whether you are running the stable version of Fedora Core or bleeding-edge Rawhide releases, this book has something for every level of user. The modular, lab-based approach not only shows you how things work-but also explains why--and provides you with the answers you need to get up and running with Fedora Linux.

Chris Tyler is a computer consultant and a professor of computer studies at Seneca College in Toronto, Canada where he teaches courses on Linux and X Window System Administration. He has worked on systems ranging from embedded data converters to Multics mainframes.

.
Price: $10.97 [Notify me when price goes down.]

This book contains 14 original papers on SELinux, an operating system program designed to protect against software vulnerabilities. The papers were originally presented at a 2007symposium sponsored by IBM, Red Hat, Tresys, and Hewlett-Packard. The book contains programming and other guidance for those using SELinux to improve the security of computer operating systems.

TABLE OF CONTENTS

Security-Enhanced Darwin: Porting SELinux to Mac OS X Christopher Vance, Todd C. Miller, Robert Dekelbaum and Andrew Reisse, SPARTA, Inc.

Enforcing Security Enhanced Linux Policies in a Networked Policy Domain Joshua Brindle, Karen Vance and Chad Sellers, Tresys Technology

Using the Flask Security Architecture to Facilitate Risk Adaptable Access Controls Machon Gregory and Peter Loscocco, National Security Agency

Using GConf as an Example of How to Create an Userspace Object Manager James Carter, National Security Agency

Application of the Flask Architecture to the X Window System Server Eamon F. Walsh, National Information Assurance Research Laboratory,National Security Agency

FCGlob: A New SELinux File Context Syntax Don Miner, University of Maryland, Baltimore County James Athey, Tresys Technology, LLC

Towards Intuitive Tools for Managing SELinux: Hiding the Details but Retaining the Power James Athey, Christopher Ashworth, Frank Mayer and Don Minner, Tresys Technology, LLC

Madison: A New Approach to Policy Generation Karl MacMillan, Red Hat

Setroubleshoot: A User Friendly Tool to Diagnose AVC Denials John Dennis, Red Hat

The Design and Implementation of a Guard Installation and Administration Framework Boyd Fletcher, USJFCOM J9 & SPAWAR Systems Center San Diego Chris Roberts, General Dynamics Kurt Risser, Dataline

Securing Inter-Process Communications in SELinux Spencer Shimko and Joshua Brindle, Tresys Technology, LLC

Integrating SELinux with Security-Typed Languages Boniface Hicks, Sandra Rueda, Trent Jaeger and Patrick McDaniel, Systems and Internet Infrastructure Security Laboratory (SIIS), Computer Science and Engineering, Pennsylvania State University

Porting Legacy Multilevel Secure Applications to Security Enhanced Linux Andy Suchoski and Rick Supplee, Hewlett Packard Company

Extending Linux for Multi-Level Security George Wilson, IBM Corporation

Klaus Weidner, Atsec Information Security Corporation Loulwa Salem, IBM Corporation

Author Index.
Price: $49.50 [Notify me when price goes down.]