[TUHS] Off topic: Books on Unix security?
Lynn Grant via TUHS
tuhs at tuhs.org
Mon Nov 17 13:09:33 AEST 2025
This is probably not what you are looking for (especially since it is
dusty), but yet it might be of some interest. It is a semi-formal
mathematical model implementing the Bell-LaPadula security model for
Mandatory Access Control.
Although it has Multics in the title, it was being used in Orange Book
security evaluations of Unix systems in the late 1980s.
ESD-TR-75-306 / MTR-2997 Rev. 1 Secure Computer System: Unified Exposition
and Multics Interpretation
https://csrc.nist.gov/files/pubs/conference/1998/10/08/proceedings-of-the-21st-nissc-1998/final/docs/early-cs-papers/bell76.pdf
Lynn
On Sun, Nov 16, 2025 at 5:02 PM Rik Farrow via TUHS <tuhs at tuhs.org> wrote:
> I don't know of any recent, good books on Unix security. I wrote one, but
> that was in 1990. Simpson and Spafford's book was last updated in 2003, and
> had become somewhat of a monster by then at 986 pages:
>
> https://www.oreilly.com/library/view/practical-unix-and/0596003234/
>
> Paul Von Oorschot's security book second edition came out in 2021, and
> while not focused on Unix, is more of a college textbook, but also provides
> in-depth coverage. Here's a book review I wrote about it:
>
>
> https://www.usenix.org/publications/loginonline/computer-security-and-internet
>
> Rik
>
>
> On Sat, Nov 15, 2025 at 6:14 PM steffen via TUHS <tuhs at tuhs.org> wrote:
>
> >
>
More information about the TUHS
mailing list