Bit - loader
Bit - Linux Security

Linux Security


Linux Security

This advanced, completely hands-on course adopts a highly technical approach to cover important security techniques and tools. By providing visibility both into attack vectors and possible security holes, this course provides you a complete guide on how to mitigate security risks in any Linux environment. 


Objetivos

You’ll learn: 

  • How to assess security risks in your enterprise Linux environment. 
  • The best techniques and tools to increase security. 
  • Server hardening 
  • How to deploy and use monitoring and attack detection tools. 
  • How to gain visibility into possible vulnerabilities. 
  • The art and science of developing your Linux security policy and response strategy. 
  • How to configure your systems for compliance with HIPAA, DISA STIG, etc. 

This course is designed to work with a wide range of Linux distributions, so you will be able to apply these concepts regardless of your distro. 


Perfil de los alumnos

This course is primarily intended for system administrators and technology architects who need to select and tune their environment to protect their environments. 


Requisitos previos

Familiarity with local system administration concepts covered in LFS301 Linux System Administration is required. 

Attendees should: 

  • Have a solid understanding of core local system administration and networking concepts equivalent to that obtained from LFS301 Linux System Administration and LFS311 Linux Network Management. 
  • Be experienced with Linux (or more generally UNIX), especially at the command line level. 

Profesorado

Our team of highly qualified instructors combine training activities with the development of their profession as experts in the field of IT. Professionals certified by the major manufacturers capable of transferring an enjoyable and easy to understand technical concepts more abstract. 


Documentación

A copy of the official Linux Foundation Training documentation 


Contenidos del Linux Security

 1. Introduction  

  • Linux Foundation 
  • Linux Foundation Training 
  • Linux Foundation Certifications 
  • Laboratory Exercises, Solutions and Resources 
  • E-Learning Course: LFS216 
  • Distribution Details 
  • Labs 

2. Security Basics  

  • What is Security? 
  • Assessment 
  • Prevention 
  • Detection 
  • Reaction 
  • Labs 

3. Threats and Risk Assessment  

  • Classes of Attackers 
  • Types of Attacks 
  • Trade Offs 
  • Labs 

4. Physical Access  

  • Physical Security 
  • Hardware Security 
  • Understanding the Linux Boot Process 
  • Labs 

5. Logging  

  • Logging Overview 
  • Syslog Services 
  • The Linux Kernel Audit Daemon 
  • Linux Firewall Logging 
  • Log Reports 
  • Labs 

6. Auditing and Detection  

  • Auditing Basics 
  • Understanding an Attack Progression 
  • Detecting an Attack 
  • Intrusion Detection Systems 
  • Labs 

7. Application Security  

  • Bugs and Tools 
  • Tracking and Documenting Changes 
  • Resource Access Control 
  • Mitigation Techniques 
  • Policy Based Access Control Frameworks 
  • Real World Example 
  • Labs 

8. Kernel Vulnerabilities  

  • Kernel and User Spaces 
  • Bugs 
  • Mitigating Kernel Vulnerabilities 
  • Vulnerabilities Examples 
  • Labs 

9. Authentication  

  • Encryption and Authentication 
  • Passwords and PAM 
  • Hardware Tokens 
  • Biometric Authentication 
  • Network and Centralized Authentication 
  • Labs 

10. Local System Security  

  • Standard UNIX Permissions 
  • Administrator Account 
  • Advanced UNIX Permissions 
  • Filesystem Integrity 
  • Filesystem Quotas 
  • Labs 

11. Network Security  

  • TCP/IP Protocols Review 
  • Remote Trust Vectors 
  • Remote Exploits 
  • Labs 

12. Network Services Security  

  • Network Tools 
  • Databases 
  • Web Server 
  • File Servers 
  • Labs 

13. Denial of Service  

  • Network Basics 
  • DoS Methods 
  • Mitigation Techniques 
  • Labs 

14. Remote Access  

  • Unencrypted Protocols 
  • Accessing Windows Systems 
  • SSH 
  • IPSEC VPNs 
  • Labs 

15. Firewalling and Packet Filtering  

  • Firewalling Basics 
  • iptables 
  • Netfilter Implementation 
  • Netfilter rule management 
  • Mitigate Brute Force Login Attempts 
  • Labs 

16. Response and Mitigation  

  • Preparation 
  • During an Incident 
  • Handling Incident Aftermath 
  • Labs 

17. Compliance testing with OSCAP  

  • Compliance Testing 
  • SCAP Introduction 
  • OpenSCAP 
  • SCAP Workbench 
  • Command Line Scan 
  • Labs 

Metodología

Active and participatory course through demonstrations, practical exercises and clinical analysis of users of all the theoretical topics taught by the instructor in order to deal with real cases of the related product. The trainer will also use different dynamics that allow group work in the classroom as challenges, evaluation exams and real cases to prepare for the associated Linux Foundation certification exam, if there is one. 


Certificaciones

Continual evaluation based on group and individual activities. The faculty will give continuous feedback and at the end of the activities to each participant.  

During the course the participants will complete an evaluation test that must be passed with more than 75%. They will have one hour available for its realization.


Acreditación

Se emitirá Certificado de Asistencia sólo a los alumnos con una asistencia superior al 75% y Diploma aprovechamiento si superan también la prueba de evaluación.


Cursos relacionados