This highly technical course focuses on properly securing machines running the Linux operating systems. A broad range of general security techniques such as user/group policies, and file integrity checking are covered. Advanced security technologies are taught such as Kerberos, SELinux, and the hardening of popular applications such as Apache, databases, and email systems. At the end of the course, students have an excellent understanding of the potential security vulnerabilities -- know how to audit existing machines, and best practices how to securely deploy new Linux servers.
Individuals planning to take this class should have strong Linux system administration experience. Students should be comfortable with concepts and tasks such as editing text files in UNIX and starting and stopping services/daemons. A good grasp of networking concepts will be helpful.
5 Days/Lecture & Lab
This course is designed for Linux system administrators.
- Security Concepts
- Probing, Mapping and Scanning for Vulnerabilities
- Password Security and PAM
- Secure network time protocol (NTP)
- Kerberos Concepts
- Kerberos Components
- Implementing Kerberos
- Administrating and Using Kerberos
- Securing the filesystem
- Securing Apache
- Securing PostgreSQL
- Securing EMail Systems
- SELinux Concepts
- SELinux Policy