Security in Linux Systems: Hands-on
Key Information
Prerequisites:
Familiarity with the operation of basic IP networks is assumed, and familiarity with basic administrative operations on UNIX/Linux is useful
Outline and Objectives:
Businesses of all sizes are adopting one of the various distributions of Linux as key elements in their networking and telecommunications strategy. The Linux kernel at release 2.6 includes powerful options for controlling access using Security-Enhanced Linux (SELinux) in addition to conventional system hardening techniques. The Iptables/netfilter firewall allows access control and powerful filtering of packets. This course takes attendees through all stages of installing, configuring, testing and operating both of these powerful packages, using a sophisticated classroom network.
Who Should Attend:
This course is aimed at IT staff, cross-training engineers, operations staff, and anyone who needs to understand the principles and practices of implementing highly secure Linux systems. The course involves extensive hands-on exercises for attendees throughout its duration.
Course Contents:
- Techniques Used by Attackers
- Vulnerabilities and Testing Tools
- Configuration of SELinux Using Defaults
- Defined Users and Customised Policies
- SELinux Configuration Tools
- Iptables/netfilter as a Stateful Packet Inspection Filter
- Features and Syntax of Iptables
- Building a Standalone Basic Firewall
- Control of Well-Known TCP Services: Telnet, SSH, FTP, HTTP,HTPPS
- Control of UDP-based Services: SMTP, DHCP, SMTP, DNS
- Control of ICMP and DoS Prevention
- NAT/NAPT Capabilities of Iptables/netfilter
- Troubleshooting Firewall Rules
