Practical Unix & Internet Security, 3rd Edition

Transactions of the world's most important business runs on a Unix machine, which means the machines running those transactions attract evildoers. In addition, many machines have Internet connections, which means it is always possible that some malicious remote user will find its way into the third edition of Practical Unix & Internet Security contains - to a greater extent even than the famous ancestor of all large-amount policies accumulated about how to protect Internet-connected Unix machines from intrusion and other forms of attack. This book is fat with practical advice on specific defensive measures (to defeat known attacks) and generally wise policies (to prevent people who have not been found). Authors approach to Unix security is holistic and clever, they devote much space to the security philosophy to advice about closing TCP ports and disable unnecessary services. 

Download Link

Secure Coding In C and C++

In details carefully, this book shows software developers how to build high-quality systems that are less vulnerable to attack and even expensive disaster. This is a book that every developer should read before embarking on any serious project. " - Frank Abagnale, author, lecturer, and leading consultant on fraud prevention and secure documents Learn the Root Causes of vulnerability Software and How to Avoid Them Generally used software vulnerabilities are usually caused by damage to software avoided. In addition, this book encourages programmers to adopt security best practices and develop a security mindset that can help protect software from tomorrow's attacks, not just today. Drawing on a / s CERT CC 'report and conclusions, Robert Seacord systematically identifies the program errors most likely to cause security breaches, shows how they can be exploited, reviews the potential consequences, and presents a safe alternative. Coverage includes technical details on how to Improve the overall security of any C / C + + application thwart buffer overflows and stack-smashing attacks that exploit safe string manipulation logic Avoid vulnerabilities and security flaws resulting from the incorrect use of dynamic memory management functions Eliminate integer-related problems: integer abundance, sign errors, and faults cutting properly formatted output functions without introducing format-string vulnerability Avoid I / O vulnerabilities, including race conditions Secure Coding in C and C + + presents hundreds of examples of security code, unsafe, and exploits, implemented for Windows and Linux. If you are responsible for creating secure C or C + + software - or to keep safe - no other book offers this assistance, more detailed expert. 

Download Link