Summary
 This course focuses on various security-related aspects of SUSE Linux Enterprise Server 10 from a system administrator’s perspective. Topics covered include, cryptography, aspects for consideration when developing a security policy, as well as the configuration of Novell AppArmor, packet filters, application level gateways, and VPNs using IPSec.
Students will gain hands-on experience on how to administer SUSE Linux Enterprise Server 10 on a broad range of topics from host security and network security to Novell AppArmor, packet filters, and VPNs.
This course is designed for experienced Linux system administrators who are familiar with networking services running on Linux, and who want to improve their skills in planning, designing and managing a secure SUSE Linux Enterprise Server 10 environment. It is also ideal for those students seeking the Novell Certified Linux Engineer 10 certification. If you are seeking the Novell Certified Linux Engineer qualification, you are required to complete the Novell Certified Linux Professional 10 certification first.
Prerequisites
A detailed understanding of the network protocols is essential for the design and configuration of firewalls. Additionally, the information found in SUSE Linux Enterprise Server 10 : Networking Services (Course 3074) is key to be able to perform effective security tasks.
Key Objectives
Skills taught in SUSE Linux Enterprise Server 10: Security (Course 3075) enable you to:
- Install and administer a computer running SUSE Linux Enterprise Server 10 securely
- Configure Novell AppArmor
- Create a Certificate Authority and certificates
- Set up a packet filter, an application level gateway, and a VPN gateway
Course Outline
Section 1: General Considerations and Definition of Terms
Create a Security Concept
Understand Frequently Used Terms
Section 2: Host Security
Limit Physical Access to Server Systems
Partitioning and File System Security
Limit the Installed Software Packages
Configure Security Settings With YaST
Stay Informed about Security Issues
Apply Security Updates
Test and Document the Configuration
Use Logging and Accounting
Section 3: Novell AppArmor
Improve Application Security with AppArmor
Create and Manage AppArmor Profiles
Control AppArmor
Monitor AppArmor
Section 4: Cryptography: Basics and Practical Application
Cryptography Basics
Create a Certification Authority (CA) and Issue Certificates With CLI Tools
Use YaST to Create a Certification Authority (CA) and Issue Certificates
GNU Privacy Guard (GPG)
Section 5: Network Security
Understand Services and Protocols
Secure Access With TCP Wrapper
Use SSL to Secure a Service
Secure Clients
Section 6: General Firewall Design
Understand Firewall Concepts and Purpose
Describe Components of Firewalls
Understand Advantages and Disadvantages of Different Setups
Section 7: Packet Filters
Understand Packet Filters
Understand iptables Basics
Understand iptables Advanced Features
Understand Network Address Translation
Section 8: Application-Level Gateways
Application-Level Gateway Basics
Configure and Use Squid
Configure and Use Dante
Configure and Use rinetd
Section 9: Virtual Private Networks
VPN and IPSec Basics
Configure and Establish an IPSec Connection
Understand Packet Filtering of IPSec Traffic
Section 10: Intrusion Detection and Incident Response
Log Files and Their Evaluation
Host-Based Intrusion Detection
Network-Based Intrusion Detection
Incident Response
Section 11: Live Fire Exercise
Course Testing Information
This course together with the skills gained in course N3074 SUSE Linux Enterprise Server 10: Networking Services is ideal preparation for the Novell Certified Linux Engineer 10 Practicum exam.
If you are seeking the Novell Certified Linux Engineer 10 certification, please note that you are required to complete the Novell Certified Linux Professional 10 certification first. |
Ask your question online
Latest Tweet
