Linux Security for Systems Administrators
Securing typical workstation and server installations is covered in
addition to packet firewalling with ipchains and common security tools.
Tools and configurations will be demonstrated "live", and students are
encouraged to bring their laptops preloaded with Linux to follow along.
Installation & System Administration
- Installing Linux
- Establishing Boot-Time Security
- Reviewing and Updating of Packages
- Using Bastille Hardening Tool
- Tuning Network Parameters
- Managing Users
- Configuring Logging
Securing Network Services
- Disabling Internet daemon services
- TCP wrappers and their configuration
- Disabling unnecessary boot services
- Installing SSH for Remote Access
- HyperText Transfer Protocol (HTTP)
- File Transfer Protocol (FTP)
- Printing Services
- Network File System (NFS)
- Server Message Block (Samba)
- Electronic Mail Server
- Domain Name Service
- Central Syslog Host
Packet Filtering with IPCHAINS
- IPCHAINS syntax and semantics
- IPCHAINS log messages
- IP Masquerading
- Packet filtering for workstations
- A strong firewall ruleset
- Comparison of IPCHAINS and IPTABLES
Security Tools
Demonstrations of tools will be performed, time permitting.
- Host-based monitoring and intrusion detection
- Installing, configuring, and running: swatch, Psionic Logcheck,
Tripwire, and Psionic Portsentry
- Host-based vulnerability analysis: looking from the inside out
- Installing configuring, and running: Tiger and TARA
- Network-based vulnerability analysis: looking from the outside in
- Installing configuring and running: the SATAN derivitives SAINT and
SARA, Nessus, and nmap
Back to ADS Home Page