1-888-THE-TREE (1-888-843-8733)
PRODUCTIVITY THROUGH EDUCATION®
 
 

UNIX® and Linux® Security: Hands-On

Protecting Against System and Network Intrusion
 
Course: 433   Duration: 4 Days
 
 

You Will Learn How To

  • Secure UNIX and Linux systems from internal and external threats
  • Control authenticated access to local and remote resources
  • Scan servers for vulnerabilities and correct the problems that are found
  • Reduce security risk by limiting superuser privileges
  • Configure tools and utilities to minimize exposure and detect intrusions
  • Tackle security problems by swapping out insecure software components

Course Benefits

The UNIX family of operating systems, including the Linux versions, is prized by IT professionals for its flexibility and openness. However, vulnerabilities can make UNIX systems susceptible to information assurance threats. In this course, you gain the skills needed to secure your UNIX and Linux platforms. You learn to use tools and utilities to assess vulnerabilities, detect threats and provide effective access controls.

Who Should Attend

UNIX systems administrators and others responsible for deploying secure open systems. Knowledge of Linux or UNIX at the level of Course 143, "Linux Comprehensive Introduction," or Course 428, "UNIX Comprehensive Introduction," is required.

Hands-On Training

Hands-on experience in securing UNIX and Linux systems is provided throughout this course using Red Hat® Enterprise Linux®, Solaris and BSD. Exercises include:
  • Scanning systems for network vulnerabilities with Nessus
  • Detecting weak configuration settings with Sussen
  • Analyzing compromised systems to help prevent attacks
  • Enforcing password quality and user account usage policies with PAM
  • Configuring OpenSSH servers and clients
  • Securing limited administrative privileges with sudo

Related Courses

 
Linux is a registered trademark of Linus Torvalds. UNIX is a registered trademark of X/Open Company, Limited. Red Hat and Red Hat Enterprise Linux are registered trademarks of Red Hat, Inc. in the United States and other countries. 		 

Training Dates

Apr 10 - 13New York 
Apr 24 - 27Reston, VA
May 8 - 11Rockville, MD
Aug 7 - 10New York 
Aug 21 - 24Reston, VA
Sep 4 - 7Rockville, MD
Dec 4 - 7New York 

For complete schedule, please visit www.learningtree.com
 
http://www.learningtree.com/courses/433pf.htm
 
 
1-888-THE-TREE (1-888-843-8733)
PRODUCTIVITY THROUGH EDUCATION®
 
 

UNIX® and Linux® Security: Hands-On

Protecting Against System and Network Intrusion
 
Course: 433   Duration: 4 Days
 
 
Course 433 Content
 

UNIX and Security

Achieving UNIX security

  • Detecting intrusions with audits and logs
  • Avoiding security loopholes
  • Discovering software vulnerabilities and configuration errors

Protecting data and systems with cryptography

  • Pretty Good Privacy (PGP)
  • Gnu Privacy Guard (GnuPG)
  • Authenticity and integrity through digital signatures and cryptographic hashes

Protecting User Accounts and Strengthening Authentication

Controlling secure account usage

  • The UNIX login process
  • Enforcing password quality and account use policy
  • Controlling access with Pluggable Authentication Modules (PAM)
  • Logging all account access and login failures

Monitoring and disabling accounts

  • Tracking account usage
  • Managing user and group IDs
  • How and when to disable accounts

Logging in across the network

  • Risks of application protocols
  • Providing strong user authentication with cryptography and tokens
  • Tunneling application protocols through SSH

Reducing Exposure to Threats by Limiting Superuser Privileges

Controlling root access

  • Configuring secure terminals
  • Preventing insecure network access
  • Gaining root privileges with su
  • Using groups instead of root identity

Auditing superuser activity

  • Limiting access to privileged accounts
  • Detecting misuse and attacks with log files

Role-based access control (RBAC)

  • Risks of UNIX all-or-nothing access
  • RBAC in Solaris
  • Adding RBAC with sudo

Safeguarding Vital Data by Securing Local and Network File Systems

Directory structure and partitioning for security

  • Files, directories, devices and links
  • Employing read-only file systems
  • Ownership and access permissions
  • Immutable and append-only files
  • Identifying NFS vulnerabilities

Backup and integrity testing

  • Safeguarding backed-up data
  • Detecting intrusions with Tripwire

Hardening UNIX systems

  • Increasing information assurance with yassp, TITAN and Bastille
  • Scanning for network vulnerabilities with Nessus
  • Detecting weak configuration choices with Sussen

Avoiding the Exploitation of Programs

Risks from unwanted program execution

  • Starting programs surreptitiously
  • Running programs as other users
  • Scheduling jobs with cron and at
  • Minimizing start-up script vulnerabilities

Reacting to attacks and intrusions

  • Finding signs of intrusion in syslog data
  • Analyzing a compromised system
  • Reducing the effects of buffer overflow exploits

Minimizing Threats to Network Services

TCP/IP and its security loopholes

  • Sniffing passwords with Ethereal and dsniff
  • Testing network exposure with netstat, lsof and nmap

Securing internal network services

  • Enabling enhanced logging
  • Configuring OpenSSH and OpenSSL
  • Network authentication using Kerberos
  • X Window System vulnerabilities/solutions

Safely connecting to external networks

  • Controlling and logging server access with TCP wrappers and xinetd
  • Reducing information leakage
  • Securing FTP, e-mail and Web access
 
http://www.learningtree.com/courses/433pf.htm
 
 
1-888-THE-TREE (1-888-843-8733)
PRODUCTIVITY THROUGH EDUCATION®
 
 

UNIX® and Linux® Security: Hands-On

Protecting Against System and Network Intrusion
 
Course: 433   Duration: 4 Days
 
 
Course Tuition
$ 2,890Standard Tuition
Tuition with a Savings Plan
$ 1,700Premium-Pass
$ 1,833Training Passport
$ 2,250Voucher 10-Pack
$ 2,267Triple-Pack
$ 2,573Government Discount
$ 2,600Alumni Gold Discount

Your Course Tuition Entitles You To...

  • Class participation
  • Team workshops
  • Use of in-class hands-on equipment
  • Comprehensive course materials
  • Morning and afternoon refreshments
  • Course Completion Certificate awarding Continuing Education Units
  • FREE participation in Professional Certification
  • FREE participation in College Credit programs (including related exams)
  
 

Tuition Savings Plans

Training Passport
  • 3 courses in 12 months
  • As little as $1,833 per course
  • Savings as much as 40%
  • Only $5,500
Premium Pass
  • 4 courses in 24 months
  • As little as $1,700 per course
  • Save as much as 45%
Training Vouchers
  • Save as much as $1,040 per course
  • Fully transferable
  • As low as $2,250 per course
Triple-Pack
  • 3 courses for anyone in your organization
  • As little as $2,266 per course
  • Only $6,799
Alumni Gold Discount Attend your first course and you'll receive a personalized Alumni Gold Discount card, entitling you to save as much as $320 on each course you take within the following 12 months. Take just one course each year and you'll be entitled to ongoing discounts...year after year!

Your Guarantee of Satisfaction

Unless you feel 100% satisfied that Learning Tree delivered even more than you expected, there is no fee for your course attendance. Our Guarantee of Quality lets you experience the value of the course—and then pay only if you feel the course was well worth the tuition.

Enrolling is Easy and Flexible!

Enroll by phone or online. If your plans change, just let us know and, without a fee, you can transfer to another course or cancel your enrollment. Pay after you've taken the course, and then only if you are 100% satisfied.

 
http://www.learningtree.com/courses/433pf.htm