This course builds on the Linux System Administration course, reacquainting students with administrative concepts and presenting security methodologies as they relate to Linux. It will present logical concepts and provide practical applications related to Linux and the applications and methodologies utilized to secure it. Discussions will include notable hacks, hardening topics and IP Tables, which is an internal firewall feature-set within Linux. Also, the course will present methods for securing both file and file systems. Upon completion of the course, students will have an understanding of Linux subsystems and their relationship to security through successful completion of the following labs: building both a Linux workstation and server; navigating the Linux file system; checking for rootkits; server block encryption; securing Apache; configuring IP tables (Linux Firewall); and hardening the OS.
Upon successful completion of the course, the student will be able to:
- Identify threats to the Linux operating system and other open source applications.
- Describe components of Linux security
- Lock down the Linux boot process
- Explain user account management and the principle of least privilege to protect and secure the system and its data
- Examine the flexibility of various options with file permissions and filesystem settings and how granular control isolates data access
- Describe vulnerabilities in Linux services and the appropriate steps to mitigate the risks
- Assess how firewall, Transmission Control Protocol (TCP) Wrappers, and SELinux complement one another to secure network applications
- Describe Linux file-sharing and remote access solutions
- Describe how to secure Web services, applications, and access
- Assess the architecture of the Linux kernel and techniques used to enact a more secure kernel
- Evaluate the importance of maintaining a software management plan
- Establish a system baseline to detect anomalies