Linux Security from Basics to Guru
Published by Pearson
Learn how to build up Linux security from the basics through advanced features
- Learn Linux security best practices
- Understand the various parts involved in making Linux secure
- Apply security to the boot process, devices, file systems, users, and more
- Learn using hands-on demos
Linux has become the core operating system in data centers and in the cloud, offering advanced security features that are a crucial part of using Linux and making sure your projects are secure. Linux Security from Basics to Guru is a one-day exploration of what Linux security is and how you can incorporate good security practices into your projects. In this course you’ll learn how to secure all parts of Linux, leading to a truly secure system.
Linux Security from Basics to Guru starts by exploring how Linux security can be applied at different levels. This class was built to follow a logical flow, starting with measures to boot securely and secure device access before moving into a discussion on how to apply user and file-based security. Next up is network security before we end with an examination of how to use mandatory access control to completely lock down your Linux system.
This is a course where you will learn by doing—with each section containing hands-on demos that you can follow during the class or after.
What you’ll learn and how you can apply it
By the end of the live online course, you’ll understand:
- How to apply security as a layered approach
- How to find weak spots in your system security
- Why using mandatory access control really is important
And you’ll be able to:
- Protect the Grub boot prompt
- Secure files and user accounts
- Secure storage devices using encryption
- Run any application in an environment that is secured with SELinux or AppArmor
- Use auditd to trace security-related issues
This live event is for you because...
- You want to make sure your Linux infrastructure is secure
- You want to deepen your knowledge before taking the RHCSA, the LFCS, or the Linux+ exam
- You want to secure your systems from an overall understanding of Linux security options
- You want to learn how to use SELinux to run applications in a protected way
Prerequisites
- Knowledge of Linux at an RHCSA, Linux+, LFCS, or LPI-1 level is required
Course Set-up
- Students should prepare a virtual machine that runs either Red Hat Enterprise Linux (RHEL), CentOS, or Ubuntu LTS Server. Information on downloading and installing either RHEL, CentOS, or Ubuntu can be found here: https://learning.oreilly.com/videos/linux-fundamentals/9780135560396/9780135560396-LFUN_01_01_02
Recommended Preparation
- Watch: Red Hat Certified System Administrator (RHCSA) RHEL 9 by Sander van Vugt
- Watch: Linux Fundamentals, 2nd Edition by Sander van Vugt
- Watch: Linux Foundation Certified System Administrator (LFCS), 3rd Edition by Sander van Vugt
Recommended Follow-up
Watch: Linux Security by Sander van Vugt
Schedule
The time frames are only estimates and may vary according to how the class is progressing.
Segment 1: Understanding Linux Security (20 min)
- Permissions and capabilities
- Boot and physical security
- Authentication and authorization security
- Filesystem- related security
- Understanding network security
- Understanding Mandatory Access Control
Segment 2: Boot and Physical Security (40 minutes
- Securing the Grub Boot loader
- Using encryption to secure storage devices
Break (10 mins)
Segment 3: Authentication- Related Security (40 minutes)
- Understanding user login
- Using PAM for secure authentication and authorization
Break (10 mins)
Segment 4: Filesystem- Related Security (40 minutes)
- Standard permissions and special permissions
- Access Control Lists
- Extended attributes
Segment 5: Network Security (20 minutes)
- firewall solution architecture
- iptables and nftables
- Firewalld and UFW
Break (10 mins)
Segment 6: Logging and Auditing (30 minutes)
- Logging securely
- Interpreting audit logs
- Adding auditd rules
Segment 7: SELinux Mandatory Access Control (70 minutes)
- Understanding Mandatory Access Control
- Securing default services with SELinux
- Using SELinux users and roles
- Securing any service with SELinux
Q&A (10 minutes)
Your Instructor
Sander van Vugt
Sander van Vugt has many years of experience working with, writing about, and teaching Linux and Open Source topics. He is the author of the best-selling Red Hat RHCSA Cert Guide and the Red Hat RHCSA Complete Video Course along with many other titles on topics that include RHCE, Bash, Kubernetes, Ansible and more. Sander also works as a Linux instructor, teaching on-site and online classes for customers around the world.