 |
| We are here to help... |
 |
| With easy ways to get the answers you need: |
 |
Or call us at:
1-888-742-3214 |
| |
 |
RED HAT
|
| |
|
| |
|
| Course Name: |
RHS333 Red Hat Enterprise Security: Network Services Training |
| |
|
| Deployment Options: |
Onsite - Instructor-Led Training |
| |
|
| Course Duration: |
4 days depending on audience background and options |
|
|
| |
|
| Related Courses |
| |
 |
| |
|
|
|
| Introduction: |
| |
Red Hat Enterprise Linux has gained considerable momentum as the operating system of choice for deploying network services such as web, ftp, email, and file sharing. In this intensive course, you'll learn to use the latest technologies to secure your services.
Designed for those with RHCE-level competency, RHS333 goes beyond the essential security coverage offered in the RHCE curriculum and delves deeper into the security features, capabilities, and risks associated with the most commonly deployed services. You'll gain the knowledge and skills to understand, prevent, detect, and properly respond to sophisticated security threats aimed at enterprise systems.
The course equips system administrators and security professionals with the knowledge and skills to harden computers against both internal and external attacks, providing in-depth analysis of the ever-changing threat models as they pertain to Red Hat Enterprise Linux. RH333 builds on the security skills developed in other Red Hat training courses so that administrators can design and implement an adequate security profile for critical enterprise systems.
Certification:
This course prepares you for the Red Hat Enterprise Security: Network Services Expertise Exam (EX333), which is part of the RHCA and RHCSS certification programs. |
| |
| Audience: |
| |
| The audience for this course includes system administrators, consultants, and other IT professionals responsible for the planning, implementation, and maintenance of network servers. While the emphasis is on running these services on Red Hat Enterprise Linux, and the content and labs will assume its use, system administrators and others using proprietary forms of Unix may also find many elements of this course relevant. |
| |
| Prerequisites: |
| |
- RH253 (Course 1235)
- RH300 (Course 1240), RHCE certification, or equivalent work experience
- Knowledge of the essential elements of how to configure the services covered, as this course focuses on more advanced topics from the outset
- RH253 Red Hat® Linux Networking and Security Administration
- RH300 Red Hat® Linux (RHCE®) Rapid Track Certification Course & RHCE Lab Exam
|
| |
| Customize it: |
| |
| This 4-day LINUX course will be customized to your needs and specifications. Eno.com will assist you in identifying those needs and specifications. A word to the wise, there are many vendors of Linux training. They will typically have a broad and general course, one size fits all, already developed and just put your organization?s ame on the title slide. This minimizes their effort and time investment. At Eno.com, every course is made to your exact and exacting specifications. We help you ensure what you are getting is what you really need even if at the beginning you weren't too sure of what that was. We fit the class to your needs. We never fit you into our standard, one size fits all, class. |
| |
| Objectives: |
| |
| What You'll Learn |
| |
| Course Outline |
| |
1. The Threat Model and Protection Methods
•Internet threat model and the attacker's plan
•System security and service availability
•An overview of protection mechanisms
2. Basic Service Security
•SELinux
•Host-based access control
•Firewalls using Netfilter and iptables
•TCP wrappers
•xinetd and service limits
3. Cryptography
•Overview of cryptographic techniques
•Management of SSL certificates
•Using GnuPG
4. Logging and NTP
•Time synchronization with NTP
•Logging: syslog and its weaknesses
•Protecting log servers
5. BIND and DNS Security
•BIND vulnerabilities
•DNS Security: attacks on DNS
•Access control lists
•Transaction signatures
•Restricting zone transfers and recursive queries
•DNS Topologies
•Bogus servers and blackholes
•Views
•Monitoring and logging
•Dynamic DNS security
6. Network Authentication: RPC, NIS, and Kerberos
•Vulnerabilities
•Network-managed users and account management
•RPC and NIS security issues
•Improving NIS security
•Using Kerberos authentication
•Debugging Kerberized Services
•Kerberos Cross-Realm Trust
•Kerberos Encryption
7. Network File System
•Overview of NFS versions 2, 3, and 4
•Security in NFS versions 2 and 3
•Improvements in security in NFS4
•Troubleshooting NFS4
•Client-side mount options
8. OpenSSH
•Vulnerabilities
•Server configuration and the SSH protocols
•Authentication and access control
•Client-side security
•Protecting private keys
•Port-forwarding and X11-forwarding issues
9. Electronic Mail with Sendmail
•Vulnerabilities
•Server topologies
•Email encryption
•Access control and STARTTLS
•Anti-spam mechanisms
10. Postfix
•Vulnerabilities
•Security and Postfix design
•Configuring SASL/TLS
11. FTP
•Vulnerabilities
•The FTP protocol and FTP servers
•Logging
•Anonymous FTP
•Access control
12. Apache security
•Vulnerabilities
•Access control
•Authentication: files, passwords, Kerberos
•Security implications of common configuration options
•CGI security
•Server side includes
•suEXEC
13. Intrusion Detection and Recovery
•Intrusion risks
•Security policy
•Detecting possible intrusions
•Monitoring network traffic and open ports
•Detecting modified files
•Investigating and verifying detected intrusions
•Recovering from, reporting, and documenting intrusions |
| |
| Other Expertise: |
| |
|
|
|
| |
|
For organizational purchases, please send us a message at  salesinfo@eno.com
or complete and submit this form .
|
| |
| |
| |
|
 |
Request A Quote
Convert your currency
RSS Feed
Facebook
LinkIn
Twitter
You Tube
