Search icon CANCEL
Arrow left icon
Explore Products
Best Sellers
New Releases
Books
Videos
Audiobooks
Learning Hub
Conferences
Free Learning
Arrow right icon
Arrow up icon
GO TO TOP
IT Audit Field Manual

You're reading from   IT Audit Field Manual Strengthen your cyber defense through proactive IT auditing

Arrow left icon
Product type Paperback
Published in Sep 2024
Publisher Packt
ISBN-13 9781835467930
Length 336 pages
Edition 1st Edition
Tools
Arrow right icon
Author (1):
Arrow left icon
Lewis Heuermann Lewis Heuermann
Author Profile Icon Lewis Heuermann
Lewis Heuermann
Arrow right icon
View More author details
Toc

Table of Contents (18) Chapters Close

Preface 1. Part 1: Foundations of IT Auditing FREE CHAPTER
2. Chapter 1: Introduction to IT Auditing 3. Chapter 2: Audit Planning and Preparation 4. Part 2: Auditing IT Systems and Networks
5. Chapter 3: Cisco Switches and Routers: Access Methods and Security Assessments 6. Chapter 4: Next-Generation Firewall Auditing 7. Chapter 5: Cloud Security Auditing 8. Chapter 6: Endpoint Security: Windows 10 and Windows 11 9. Chapter 7: Linux Systems Auditing 10. Chapter 8: Wireless Access Points and Storage Technology Auditing 11. Chapter 9: Data Protection and Privacy Considerations 12. Chapter 10: Reporting and Remediation 13. Chapter 11: Advanced Topics in IT Auditing 14. Chapter 12: Building an IT Audit Career 15. Index 16. Other Books You May Enjoy Appendix: Conclusion and Future Outlook

Managing user access and privileges in Linux

We just looked at some of the ways to examine user permissions with the read/write/execute permissions in the Audit Results.xml example. Effective management of user access and privileges is essential for maintaining the security and integrity of Linux systems. This section will cover the key aspects of user and group management, auditing and managing sudo privileges, implementing the principle of least privilege, and identifying and mitigating risks related to user access control.

Understanding user and group management in Linux

Linux uses a combination of users and groups to control access to system resources and files. Each user has a unique user ID (UID) and belongs to one or more groups. Groups are used to organize users and grant them specific permissions and privileges.

Auditors should be familiar with the tools and processes used to create and modify user accounts on Linux systems. The useradd command is used to create new...

lock icon The rest of the chapter is locked
Register for a free Packt account to unlock a world of extra content!
A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.
Unlock this book and the full library FREE for 7 days
Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of
Renews at €18.99/month. Cancel anytime