| Course Length - 5 Days | | | | Course Description This course discusses Linux security and how system managers and administrators can implement security measures on Linux. The focus of the course is on the inherent security vulnerabilities commonly found on Linux systems and how to correct them. Examples are presented which illustrate how to insure a high level of security confidence against unauthorized users from accessing the system. The common methods used to penetrate Linux systems, gain unauthorized root access permission, become another user, plant trojan horses or spoofs, and other ways of circumventing the normal system protection are disclosed. Each attendee will receive detailed audit checklists and a CD containing Linux shell and C programs which will assist in performing security auditing and risk analysis. | | | | | | What You Will Learn Upon completion of this course the attendee will be able to: - State the built-in Linux security control mechanisms
- State the security vulnerabilities inherent to Linux systems
- Determine common methods used to gain unauthorized access to the system or data
- Identify the bugs contained in Linux system and application programs and how they are exploited by unauthorized users
- Identify how Trojan horses and spoofs are planted into the system and methods of detecting them
- State the minimum recommended file and directory access permissions
- Perform a risk analysis and analyze the results
- Execute audit programs which will assist in maintaining system security.
| | | | | | Who Should Attend? This course is designed for experienced system administrators who will be perform
system and network security operations. |
| | | Similar to RHS333 | | | Course Outline: | | Why System Security? | | - Linux Security Features
- Linux Security Problems
- Linux Security Levels
- The Trusted Computing Base
- The Orange Book
| | | Users, Passwords, Groups, and the Super User | | - User Accounts
- Passwords
- Groups
- Substitute User
- User Security Checklist
| | | File System Security | | - The Linux File System
- Changing File Access Permissions
- Changing Owner and Group
- Set UID/Set GID
- Device Special Files
- Mountable File Systems
- File System Security Checklist
| | | Programming Security | | - Input and Output Functions
- Writing Secure Programs
- Compiling and Installing SUID/SGID Programs
- Programming As root
- Programming Security Checklist
| | | Network Security | | - Network Exploits
- TCP/IP Network Security
- Network Security Checklist
| | | Common Security Problems | | - System Problems
- System Accounts Without Passwords
- System Directories With Wrong Permissions
- System Files with Wrong Permissions
- Planting Trojan Horses
- Spoofing Methods
- Known Bugs, Trapdoors, and Viruses
- Intelligent Terminals
- Physical Access
- Security Problem Checklist
| | | Protecting the System | | - Security Administration
- Security Compromises
- Restricted Environments
- Log Files
- Recommendations for Securing Your System
- Administrator Awareness
- Security Administration Tools
- Auditing
- What To Do If Your System Is Compromised
- Using the Trusted Computing Base for Auditing
- System Security Checklist
| |
|
