easylearn.ing
Easy Learning with Linux Security & Network Hardening: Practical Defense
IT & Software > Operating Systems & Servers
2h 37m
£17.99 £12.99
3.9
3994 students

Enroll Now

Language: English

Master Linux System Security: Hardening & Defense

What you will learn:

  • Implement robust Linux logging with syslog, rsyslog, and journald.
  • Conduct thorough password and file system access audits.
  • Secure data at rest and in transit using LUKS and GPG encryption.
  • Harden services using SELinux, chroot jails, and LXC containers.

Description

Transform your Linux system administration skills with this comprehensive course. Learn to implement robust security measures, from foundational logging and auditing to advanced techniques like disk encryption and containerization. This hands-on training will equip you with the practical knowledge to defend against modern cyber threats.

We begin by mastering essential logging and auditing practices. You'll configure secure logging with syslog and rsyslog, efficiently manage logs using journald, and employ advanced password auditing techniques with John the Ripper. Learn to detect vulnerabilities through SUID/SGID permission analysis and fortify SSH against brute-force attacks using fail2ban.

Next, we delve into robust data protection methods. Master disk encryption with LUKS to safeguard data at rest, and encrypt individual files using GPG. We'll also cover securing network communications with SSH, shielding your data from unauthorized access.

Finally, we'll cover advanced server hardening using SELinux, a powerful security framework. You'll learn to customize SELinux policies, leverage chroot jails for application containment, and implement secure and efficient LXC containers to enhance service isolation.

By the end of this course, you'll be equipped to confidently secure Linux systems and prevent potential security breaches. Become a proactive and security-conscious Linux administrator.

Curriculum

System Logging and Auditing Essentials

This section lays the groundwork for effective system monitoring and security auditing. You'll begin by mastering secure logging with syslog and rsyslog, learning to configure and manage logs effectively. Next, you'll explore the power of journald for efficient log management in modern Linux systems. The module also covers critical password auditing using John the Ripper, pinpointing vulnerabilities, and employing Auditd to meticulously track file system access and identify suspicious activities. The section concludes with hands-on training on securing SSH against brute-force attacks utilizing fail2ban.

Data Security

This section dives into practical methods for protecting sensitive data. You will master disk encryption using LUKS, ensuring data remains secure even in case of physical theft or system compromise. Next, you'll learn how to encrypt individual files using GPG, maintaining confidentiality of specific documents and data sets. The module concludes with a thorough exploration of securing network traffic using SSH, protecting data in transit.

Securing Services

This section focuses on enhancing system security through advanced techniques. We'll explore the intricacies of SELinux, a powerful security module, and you'll learn to both understand and customize its policies to tailor security measures to your specific system needs. You’ll then delve into chroot jails, creating isolated environments to contain applications and mitigate risks. The section concludes with a comprehensive introduction to LXC containers, showing you how to set up, manage, and leverage these lightweight containers for superior service isolation and robust system security.