Subscription

Explore Products

Best Sellers

New Releases

Books

Videos

Audiobooks

Learning Hub

Conferences

Free Learning

You're reading from Mastering Linux Security and Hardening Secure your Linux server and protect it from intruders, malware attacks, and other external threats

Product type Paperback

Published in Jan 2018

Publisher

ISBN-13 9781788620307

Length 376 pages

Edition 1st Edition

Tools

Linux

Concepts

Cybersecurity

Author (1):

Donald A. Tevault

View More author details

Table of Contents (12) Chapters

Preface

1. Running Linux in a Virtual Environment FREE CHAPTER

2. Securing User Accounts

3. Securing Your Server with a Firewall

4. Encrypting and SSH Hardening

5. Mastering Discretionary Access Control

6. Access Control Lists and Shared Directory Management

7. Implementing Mandatory Access Control with SELinux and AppArmor

8. Scanning, Auditing, and Hardening

9. Vulnerability Scanning and Intrusion Detection

10. Security Tips and Tricks for the Busy Bee

11. Other Books You May Enjoy

Leave a review – let other readers know what you think

Using SUID and SGID on regular files

When a regular file has its SUID permission set, whoever accesses the file will have the same privileges as the user of the file. When the SGID permission is set on a regular file, whoever accesses the file will have the same privileges as the group that's associated with the file. This is especially useful on program files.

To demo this, let's say that Maggie, a regular, unprivileged user, wants to change her own password. Since it's her own password, she would just use the one-word command, passwd, without using sudo:

[maggie@localhost ~]$ passwd
Changing password for user maggie.
Changing password for maggie.
(current) UNIX password:
New password:
Retype new password:
passwd: all authentication tokens updated successfully.
[maggie@localhost ~]$

To change a password, a person has to make changes to the /etc/shadow file. On my CentOS...

The rest of the chapter is locked

A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of

Start free trial

Renews at $19.99/month. Cancel anytime

Authors (1)

Donald A. Tevault

Donald A. Tevault - but you can call him Donnie - got involved with Linux way back in 2006, and has been working with it ever since. He holds the Linux Professional Institute Level 3-Security certification, and the GIAC Incident Handler certification. Donnie is a professional Linux trainer, and thanks to the magic of the internet, teaches Linux classes literally the world over from the comfort of his living room. He's also a Linux security researcher for an IoT security company.

See other products by Donald A. Tevault