Categories: Linux (LPI), Linux administration
Cryptography, Access Control, Services and Network Security is an intensive, lab-oriented training course for administrators and specialists who work with Linux and its applications. Its aim is to deepen their knowledge about the necessary and the most important aspects of Linux security. The course covers: cryptography (Open SSL, GPG, data encryption), access control (e.g. PAM, ACL and EA, SELinux), application security (e.g. Apache/HTTP/HTTPS, Postfix, FTP, SSH) and network security (e.g. snort, nmap, wireshark, tcpdump, nagios).
The contents of this training course are essential for anyone who is responsible for systems and services security. 
We are an approved training partner of Linux Professional Institute. Security of Linux System and Services covers the topics needed for LPIC-3 303 exam. After passing that exam, you will acquire LPIC-3 Linux Enterprise Professional certificate.
Duration
4 days
Agenda
- Cryptography
- Open SSL – configuration and use
- GPG (encryption and signing, management, configuration)
- Data encryption (LUKS, dm-crypt)
- Access control
- PAM
- nsswitch
- Access Control Lists (ACLs) and Extended Attributes (EAs)
- SELinux
- AppArmor and SMACK – introduction
- Services and applications security
- BIND/DNS – secure configuration
- Postfix mail server
- HTTP server (Apache v1 and v2 security issues, htpasswd, SSL)
- FTP (Pure-FTPd and vsftpd)
- ssh server (OpenSSH)
- NFS: Network File System (security and access control mechanisms)
- Network security
- Snort – configuration, rules, use
- Tripwire
- Network scanning (nmap, wireshark, tcpdump, nessus)
- Monitoring (nagios, ntop)
- Network traffic filtering (iptables)
- VPN (OpenVPN-configuration and use)
Audience and prerequisites
Participants should have the knowledge equivalent to the contents of LPIC-1 and LPIC-2 training courses.
Certificates
Course participants receive completion certificates signed by ALX.
See also:
- Linux administrator
- Advanced Linux administrator
- Linux Essentials (For Everyday Users)
- LPI 101. An introduction to Linux administration
- LPI 102. Linux administration and networking
- Building a modern CI / CD process using the Jenkins server
- Selected Linux network services
- Selected Linux server-side technologies
- LPI 201. Linux architecture and low-level configuration
- File sharing and directory services
- LPI 202. Selected network services and network security
- LPIC-2 exam prep course
- LPI 300: LDAP, Samba, Integration with MS Windows and Mixed Environments
- LPI 304: Linux Virtualization and High Availability
- E-mail server - Exim, anti-spam solutions
- E-mail server - Postfix
- Bash shell programming
- Advanced shell programming, Bash, AWK
- Linux backups
- Advanced network traffic and content filtering
- VPNs in theory and practice
- Bandwidth and Traffic Management (QoS) on Linux
- Server and network monitoring, SNMP, Nagios, Munin
- Apache HTTP server on Linux
- Bind domain name server on Linux
- LDAP directory services on Linux. Integrating authorization systems
- Samba server on Linux
- Advanced Samba configuration (PDC, LDAP, replication)
- Linux virtualization
- Wireless networks and their security
- Digital signature and encryption with OpenSSL and GnuPG
- High availability: Linux Virtual Server and supporting technologies (HA1)
- NFS: Network File System on Linux
- Safe Internet in a computer lab
- Security components in Linux
- Linux - application and kernel debugging
- Linux - exploiting applications and operating system. Low level attacks.
- Linux - application security testing, searching for possible exploits. High-level attacks
- MySQL administration
