Red Hat Enterprise Security: Network Services

4 Day Course
Hands On
Official Linux Curriculum
Code RHS333

Book Now - 1 Delivery Method Available:

Scheduled Online Onsite

Overview

Red Hat Enterprise Linux has gained considerable momentum as the operating system of choice for deploying network services such as web, ftp, email, and file sharing. RHS333 Red Hat Enterprise Security: Network Services is an intensive course that provides four days of instruction and labs on how to to use the latest technologies to secure your services.

Training Partners

We work with the following best of breed training partners using our bulk buying power to bring you a wider range of dates, locations and prices.

Modules

Hide all

The Threat Model and Protection Methods (3 topics)

  • Internet threat model and the attacker's plan
  • System security and service availability
  • An overview of protection mechanisms

Basic Service Security (5 topics)

  • SELinux
  • Host-based access control
  • Firewalls using Netfilter and iptables
  • TCP wrappers
  • xinetd and service limits

Cryptography (3 topics)

  • Overview of cryptographic techniques
  • Management of SSL certificates
  • Using GnuPG

Logging and NTP (3 topics)

  • Time synchronization with NTP
  • Logging: syslog and its weaknesses
  • Protecting log servers

BIND and DNS Security (10 topics)

  • BIND vulnerabilities
  • DNS Security: attacks on DNS
  • Access control lists
  • Transaction signatures
  • Restricting zone transfers and recursive queries
  • DNS Topologies
  • Bogus servers and blackholes
  • Views
  • Monitoring and logging
  • Dynamic DNS security

Network Authentication: RPC, NIS, and Kerberos (8 topics)

  • Vulnerabilities
  • Network-managed users and account management
  • RPC and NIS security issues
  • Improving NIS security
  • Using Kerberos authentication
  • Debugging Kerberized Services
  • Kerberos Cross-Realm Trust
  • Kerberos Encryption

Network File System (5 topics)

  • Overview of NFS versions 2, 3, and 4
  • Security in NFS versions 2 and 3
  • Improvements in security in NFS4
  • Troubleshooting NFS4
  • Client-side mount options

OpenSSH (6 topics)

  • Vulnerabilities
  • Server configuration and the SSH protocols
  • Authentication and access control
  • Client-side security
  • Protecting private keys
  • Port-forwarding and X11-forwarding issues

Electronic Mail with Sendmail (5 topics)

  • Vulnerabilities
  • Server topologies
  • Email encryption
  • Access control and STARTTLS
  • Anti-spam mechanisms

Postfix (3 topics)

  • Vulnerabilities
  • Security and Postfix design
  • Configuring SASL/TLS

FTP (5 topics)

  • Vulnerabilities
  • The FTP protocol and FTP servers
  • Logging
  • Anonymous FTP
  • Access control

Apache Security (7 topics)

  • Vulnerabilities
  • Access control
  • Authentication: files, passwords, Kerberos
  • Security implications of common configuration options
  • CGI security
  • Server side includes
  • suEXEC

Intrusion Detection and Recovery (7 topics)

  • Intrusion risks
  • Security policy
  • Detecting possible intrusions
  • Monitoring network traffic and open ports
  • Detecting modified files
  • Investigating and verifying detected intrusions
  • Recovering from, reporting, and documenting intrusions

Prerequisites

* RH253 Red Hat Linux Networking and Security Administration * RH300 RHCE Rapid Track Course (and RHCE Exam) * or RHCE certification or equivalent work experience is required for this course * Course participants should already know the essential elements of how to configure the services covered, as this course will be focusing on more advanced topics from the outset.

Additional Learning

The courses below may help you meet the knowledge level required to take this course. If you are unsure please ask a training advisor .

or call:408-759-5074

Course PDF

Print

Share this Course

+1
Share

Recommend this Course

Sections