Categories: Linux administration, Linux (LPI)
Cryptography, Access Control, Services and Network Security is an intensive, lab-oriented training course for administrators and specialists who work with Linux and its applications. Its aim is to deepen their knowledge about the necessary and the most important aspects of Linux security. The course covers: cryptography (Open SSL, GPG, data encryption), access control (e.g. PAM, ACL and EA, SELinux), application security (e.g. Apache/HTTP/HTTPS, Postfix, FTP, SSH) and network security (e.g. snort, nmap, wireshark, tcpdump, nagios).
The contents of this training course are essential for anyone who is responsible for systems and services security. 
We are an approved training partner of Linux Professional Institute. Security of Linux System and Services covers the topics needed for LPIC-3 303 exam. After passing that exam, you will acquire LPIC-3 Linux Enterprise Professional certificate.
Duration
4 days
Agenda
- Cryptography
- Open SSL – configuration and use
- GPG (encryption and signing, management, configuration)
- Data encryption (LUKS, dm-crypt)
- Access control
- PAM
- nsswitch
- Access Control Lists (ACLs) and Extended Attributes (EAs)
- SELinux
- AppArmor and SMACK – introduction
- Services and applications security
- BIND/DNS – secure configuration
- Postfix mail server
- HTTP server (Apache v1 and v2 security issues, htpasswd, SSL)
- FTP (Pure-FTPd and vsftpd)
- ssh server (OpenSSH)
- NFS: Network File System (security and access control mechanisms)
- Network security
- Snort – configuration, rules, use
- Tripwire
- Network scanning (nmap, wireshark, tcpdump, nessus)
- Monitoring (nagios, ntop)
- Network traffic filtering (iptables)
- VPN (OpenVPN-configuration and use)
Audience and prerequisites
Participants should have the knowledge equivalent to the contents of LPIC-1 and LPIC-2 training courses.
Certificates
Course participants receive completion certificates signed by ALX.
