| Course Code: |
UN 93 |
| Course Abstract: |
Participants are invited to bring their current ideas and questions to the classroom for discussion. Lecture, sample scenarios and group problem solving, and online laboratories will be used. Participants will be encouraged to enhance their skills utilizing the techniques presented through classroom problem solving and controlled online workshops. |
| Audience: |
This course is designed for system administrators and network administrators who are already familiar with SUSE Linux, but desire more detailed and specialized information on SUSE Linux security. This course makes comparisons to other distributions, such as RedHat Linux, as appropriate in various chapters. |
| Duration: |
4 days |
| Learning Outcomes: |
Upon completion of this course, the participant will be able to:
> Identify the major subsystems of SUSE Linux that relate to security
> Configure those subsystems for maximum resistance to penetration
> Use the available tools for monitoring penetration attempts
> Create and implement a security policy |
| Course Topics: |
Each of the topics listed includes discussion of the appropriate tools that are supplied with SUSE Linux. Enterprise-level administration topics are discussed, where applicable (for example, Password Security includes discussion of issues concerning the use of LDAP).
Security Policies and Practices
Overview of TCP/IP From a Security Perspective
Open Source Software Security Tools
Password Security
Host Security
Secure Data Copying Over a Public Network (ssh/scp/sftp)
Firewalls and Network Address Translation (including packet filters)
Virtual Private Networks
Virtual LAN (VLAN) Configuration and Use
Intrusion Detection Systems
|
| Prerequisites: |
Familiarity with Linux commands, directory structure, and the text editor are required. The participant is expected to have experience with using RPM, as they will be required to install software as part of the lab environment. A detailed understanding of network protocols is necessary for the second half of the course (firewalls, VPNs, and VLANs), although enough background is provided in this course to understand the fundamentals.
|