small medium large xlarge

Practical Security, in print

February 13, 2019

John B. Stetson created the hat that bears his name in 1865. Although originally intended as an outdoorsman's hat, the Stetson has evolved into hundreds of individual styles worn by people in different roles and in different climates. Depending on the needs of your software project and the size of your team, you may find yourself wearing a lot of hats, some of which require you to learn about areas that you don't know a lot about. You might think security is too complicated for non-experts to wade into, but some security, implemented properly, is always better than no security at all. Practical Security: Simple Practices for Defending Your Systems gives you the security basics that you can implement with little or no experience.

And Happy Valentine's Day! If you don't follow us on twitter @pragprog, you might want to. Randy the Renegade Gerbil has been known to celebrate the holidays with massive discount coupons. Just sayin'.

Practical Security: Simple Practices for Defending Your Systems

Computer security is a complex issue. But you don't have to be an expert in all the esoteric details to prevent many common attacks. Attackers are opportunistic and won't use a complex attack when a simple one will do. You can get a lot of benefit without too much complexity by putting systems and processes in place that ensure you aren't making the obvious mistakes. Secure your systems better with simple (though not always easy) practices.

Implement the basics of good security now, and you'll have a solid foundation if you bring in a dedicated security staff later. Plan to patch often to improve your security posture. Identify the most common software vulnerabilities so you can avoid them when writing software. Discover cryptography—how it works, how easy it is to get wrong, and how to get it right. Configure your Windows computers securely. Defend your organization against phishing attacks with training and technical defenses.

Make simple changes to harden your system against attackers.

Now in print and shipping from

Upcoming Author Appearances

  • 2019-02-21 Frances Buontempo,
    nor(DEV):con 2019, Norfolk, UK
  • 2019-02-22 Johanna Rothman,
    Research Triangle Software Symposium
  • 2019-02-28 Fred Hebert,
    CodeBEAM San Francisco
  • 2019-02-28 Andrea Leopardi,
    Code BEAM SF 2019
  • 2019-03-15 Johanna Rothman,
    New England Software Symposium
  • 2019-03-28 Kevin Hoffman,
    Rust LATAM 2019
  • Did You Know?

    Please note our ebooks do not contain any Digital Restrictions Management and have always been DRM-free. For us, "DRM-free" means "freedom." You should own the books you've paid for and read them on whatever device is handy—your laptop, iThingy, BlueBerry, you name it. We think ideas should outlast any device you put them on.

    And you can always come back and redownload your books when needed, using your account on We're here to make your life easier.

    Don't Get Left Out

    Are your friends jealous that you get these spiffy email newsletters and they don't? Clue them in that all they need to do is create an account on (email address and password is all it takes) and select the checkbox to receive newsletters.

    Are you following us on Twitter and/or Facebook? Here's where you can find us and keep up with the latest news and commentary, and occasional discounts:

    Tell your friends! Tweet this

    Follow us on Twitter: pragprog</a>, <a href="">pragpub, Andy Hunt @PragmaticAndy.

    Coming Soon:

    • Docker for Rails Developers: Build, Ship, and Run Your Applications Everywhere, in print
    • The Ray Tracer Challenge: A Test-Driven Guide to Your First 3D Renderer, in print
    • Programming WebAssembly with Rust: Unifed Development for Web, Mobile, and Embedded Applications, in print

    Recently Released:

    Thanks for your continued support,

    Andy Hunt
    Publisher, Pragmatic Bookshelf

    Books • eBooks • PragPub Magazine • Audiobooks and Screencasts