This course builds on the Linux System Administration course, reacquainting students with administrative concepts and presenting security methodologies as they relate to Linux. It will present logical concepts and provide practical applications related to Linux and the applications and methodologies utilized to secure it. Discussions will include notable hacks, hardening topics and IP Tables, which is an internal firewall feature-set within Linux. Also, the course will present methods for securing both file and file systems. Upon completion of the course, students will have an understanding of Linux subsystems and their relationship to security through successful completion of the following labs: building both a Linux workstation and server; navigating the Linux file system; checking for rootkits; server block encryption; securing Apache; configuring IP tables (Linux Firewall); and hardening the OS.
Learning Objectives
Upon successful completion of the course, the student will be able to:
- Identify threats to the Linux operating system and other open source applications.
- Describe components of Linux security
- Lock down the Linux boot process
- Explain user account management and the principle of least privilege to protect and secure the system and its data
- Examine the flexibility of various options with file permissions and filesystem settings and how granular control isolates data access
- Describe vulnerabilities in Linux services and the appropriate steps to mitigate the risks
- Assess how firewall, Transmission Control Protocol (TCP) Wrappers, and SELinux complement one another to secure network applications
- Describe Linux file-sharing and remote access solutions
- Describe how to secure Web services, applications, and access
- Assess the architecture of the Linux kernel and techniques used to enact a more secure kernel
- Evaluate the importance of maintaining a software management plan
- Establish a system baseline to detect anomalies
Framework Connections
The materials within this course focus on the NICE Framework Task, Knowledge, and Skill statements identified within the indicated NICE Framework component(s):
Competency Areas
Feedback
If you would like to provide feedback on this course, please e-mail the NICCS team at NICCS@mail.cisa.dhs.gov. Please keep in mind that NICCS does not own this course or accept payment for course entry. If you have questions related to the details of this course, such as cost, prerequisites, how to register, etc., please contact the course training provider directly. You can find course training provider contact information by following the link that says “Visit course page for more information...” on this page.