Products / Linux/Unix / Complete Linux / Unix Security Video Training CBT

Complete Linux / Unix Security Video Training CBT Basic Security - Module 1 • Boot Security o Explore Dell PowerEdge BIOS Security-related features o Discuss concepts & improve Dell PowerEdge BIOS security o Explain run-time boot loader vulnerabilities o Explore single-user mode (rootshell) and its inherent problems o Modify default GRUB startup options & examine results o Secure boot loader using MD5 hash o Identify key startup-related configuration files & define boot security measures o Identify key boot-related utilities o Confirm expected hardware configuration o Discuss INIT process, runlevel configuration & concepts o Explore & tighten the security of the INIT configuration o o Shell Security o Confirm expected applications o Discuss Teletype Terminals (TTYs) and Pseudo Terminals (PTS) o Identify common TTYs and PTSs o Track current TTYs and PTSs - character devices o Discuss concepts related to privileged and non-privileged use o Restrict privileged login o Use SSH and discuss TTYs o Discuss the importance of consistent system-wide banners & messages o Define and configure system banners for pre and post-system-access o Identify user-logon history and correlate to TTYs o Identify current user-connections - console-based and network-based o Use lsof to identify open files and sockets o o Syslog Security o Discuss Syslog concepts and applications o Explain Syslog semantics - facilities & levels - message handling & routing o Focus on security-related Syslog facilities o Examine security logs managed by Syslog o Configure Network Time Protocol (NTP) on interesting hosts o Secure NTP configuration o Ensure time consistency to preserve log-integrity o Configure Syslog replication to preserve log-integrity o Identify log discrepancies between Syslog hosts o o Reconnaissance & Vulnerability Assessment Tools o Discuss Stage-1 host/network attack concepts o Upgrade NMAP reconnaissance tool to increase effectiveness o Identify NMAP files o Discuss TCP handshake procedure o Discuss half-open/SYN connections o Perform connect and SYN-based host/network reconnaissance o Identify potential vulnerabilities on interesting hosts derived from reconnaissance o Examine NMAP logging capabilities o Perform port sweeps to identify common vulnerabilities across exposed systems o Secure exposed daemons/services o Perform follow-up audit to ensure security policy compliance o Discuss vulnerability scanner capabilities and applications o Prepare system for Nessus vulnerability scanner installation - identify/install dependencies o Generate self-signed SSL/TLS certificates for secure client/server communications o Activate Nessus subscription, server and client components o Explore vulnerability scanner interface and features o Perform network-based reconnaissance attack to determine vulnerabilities o Examine results of the reconnaissance attack and archive results o Secure exposed vulnerabilities o o XINETD - TCPWrappers - Chattr - Lsattr - TCPDump - Clear Text Daemons o Install Telnet Daemon o Install Very Secure FTP Daemon (VSFTPD) o Explore XINETD configuration and explain directives o Configure XINETD to restrict communications at layer-3 and layer-4 o Restrict access to XINETD-protected daemons/services based on time range o Examine XINETD logging via Syslog o Discuss TCPWrappers security concepts & applications o Enhance Telnetd security with TCPWrappers o Confirm XINETD & TCPWrappers security o Discuss chattr applications & usage o Identify & flag key files as immutable to deter modifcation o Confirm extended attributes (XATTRs) o Discuss TCPDump applications & usage o Configure TCPDump to intercept Telnet & FTP - clear-text traffic o Use Ethereal to examine & reconstruct captured clear-text traffic o o Secure Shell (SSH) & MD5SUM Applications o Use Ethereal to examine SSH streams o Generate RSA/DSA PKI usage keys o Configure Public Key Infrastructure (PKI) based authentication o Secure PKI authentication files o Use SCP to transfer files securely in non-interactive mode o Use SFTP to transfer files securely in interactive mode o Configure SSH to support a pseudo-VPN using SSH-Tunnelling o Discuss MD5SUM concepts and applications o Compare & contrast modified files using MD5SUM o Use MD5SUM to verify the integrity of downloaded files o o GNU Privacy Guard (GPG) - Pretty Good Privacy (PGP) Compatible - PKI o Discuss GPG concepts & applications - symmetric/asymmetric encryption o Generate asymmetric RSA/DSA GPG/PGP usage keys - for multiple users o Create a local web of trust o Perform encrypts/decrypts and test data-exchanges o Sign encrypted content and verify signatures @ recipient o Import & export public keys for usage o Use GPG/PGP with Mutt Mail User Agent (MUA) o o AIDE File Integrity Implementation o Discuss file-integrity checker concepts & applications o Identify online repository & download AIDE o Install AIDE on interesting hosts o Configure AIDE to protect key files & directories o Alter file system objects and confirm modifications using AIDE o Audit the file system using AIDE o o Rootkits o Discuss rootkits concepts & applications o Describe privilege elevation techniques o Obtain & install T0rnkit - rootkit o Identify system changes due to the rootkit o Implement T0rnkit with AIDE to identify compromised system objects o Implement T0rnkit with chkrootkit to identify rootkits o T0rnkit - rootkit - cleanup o Implement N-DU rootkit o Evaluate system changes o o Bastille Linux - OS-Hardening o Discuss Bastille Linux system hardening capabilities o Obtain Bastille Linux & perform a system assessment o Install Bastille Linux o Evaluate hardened system components Proxy Security - Module 2 • Squid Proxy Initialization o Discuss Squid concepts & applications o Discuss DNS application o Configure DNS on primary SuSE Linux server for the Squid Proxy environment o Confirm DNS environment o Start Squid and evaluate default configuration o Install Squid Proxy server o o General Proxy Usage o Configure web browser to utilize proxy services o Grant permissions to permit local hosts to utilize proxy services o Discuss ideal file system layout - partitioning o Explore key configuration files o Use client to test the performance of proxy services o Discuss HIT/MISS logic for serving content o Configure proxy support for text-based (lftp/wget/lynx) HTTP clients o o Squid Proxy Logs o Discuss Squid Proxy logging mechanism o Identify key log files o Discuss & explore the Access log to identify HITS and/or MISSES o Discuss & explore the Store log to identify cached content o Convert Squid logs to the Common Log Format (CLF) for easy processing o Discuss key CLF fields o Configure Webalizer to process Squid-CLF logs o Revert to Squid Native logs o Discuss key Native log fields o Configure Webalizer to process Squid Native logs o o Squid Network Configuration & System Stats o Discuss cachemgr.cgi Common Gateway Interface(CGI) script o Explore the available metrics provided by cachemgr.cgi o Change default Squid Proxy port o Modify text/graphical clients and test communications o Discuss Safe Ports - usage & applications o o Squid Access Control Lists (ACLs) o Intro to Access Control Lists (ACLs) - syntax o Define & test multiple HTTP-based ACLs o Define & test ACL lists - to support multiple hosts/subnets o Define & test time-based ACLs o Nest ACLs to tighten security o Implement destination domain based ACLs o Exempt destination domains from being cached to ensure content freshness o Define & test Anded ACLs o Discuss the benefits of Regular Expressions (Regexes) o Implement Regular Expressions ACLs to match URL patterns o Exempt hosts/subnets from being cached or using the Squid cache o Force cache usage o Configure enterprise-class Cisco PIX firewall to deny outbound traffic o Configure DNS round-robin with multiple Squid Proxy caches for load-balancing o Discuss delay pool concepts & applications - bandwidth management o Configure delay pools - to support rate-limiting o Examine results of various delay pool classes o Enforce maximum connections to deter Denial of Service (DoS) attacks o Verify maximum connections comply with security policy o o Squid Proxy Hierarchies o Discuss Squid cache hierarchy concepts & applications o Ensure communications through a primary cache server - double-auditing o Discuss and configure parent-child bypass based on ACLs o Configure Intranet ACLs for peer-cache bypass o Discuss & implement Squid cache hierarchy siblings o Configure transparent proxy services Firewall Security - Module 3 • Intro IPTables o Discuss key IPTables concepts o OSI Model discussion o Determine if IPTables support is available in the current kernel o Identify key IPTables modules and supporting files o Explore and examine the default tables o Learn IPTables Access Control List (ACL) syntax o Discuss ACL management o Learn to Save & Restore IPTables ACLs o o IPTables - Chain Management o Explore the various chains in the default tables o Discuss the purpose of each chain o Examine packet counts & bytes traversing the various chains o Focus on appending and inserting new ACLs into pre-defined chains o Write rules to permit common traffic flows o Delete & Replace ACLs to alter security policy o Flush ACLs - reset the security policy to defaults o Zero packet counts & bytes - bandwidth usage monitoring o Create user-defined chains to perform additional packet handling o Rename chains to suit the security policy/nomenclature o Discuss & explore chain policy o o IPTables - Packet Matching & Handling o Explain the the basics of packet matching o Identify key layer-3/4 match objects - (Source/Dest IPs, Source/Dest Ports, etc.) o Explore the multi-homed configuration o Block traffic based on untrusted (Internet-facing) interface o Perform packet matching/handling based on common TCP streams o Perform packet matching/handling based on common UDP datagrams o Perform packet matching/handling based on common ICMP traffic o Write fewer rules (ACLs) by specifying lists of interesting layer-4 ports o Discuss layer-3/4 IPTables default packet matching o Discuss default layer-2 behavior o Increase security by writing rules to match packets based on layer-2 addresses o o IPTables - State Maintenance - Stateful Firewall o Discuss the capabilities of traditional packet-filtering firewalls o Explain the advantages of stateful firewalls o Examine the supported connection states o Identify key kernel modules to support the stateful firewall o Implement stateful ACLs & examine traffic flows o o IPTables - Targets - Match Handling o Discuss the purpose of IPTables targets for packet handling o Write rules with the ACCEPT target o Write rules with the DROP target o Write rules with the REJECT target o Write rules with the REDIRECT target o Confirm expected behavior for all targets o o IPTables - Logging o Explore Syslog kernel logging configuration o Define Access Control Entry (ACEs) to perform logging o Explain the key fields captured by IPTables o Log using user-defined chain for enhanced packet handling o Log traffic based on security policy o Define a catch-all ACE o Use ACE negation to control logged packets o Label log entries for enhanced parsing o o IPTables - Packet Routing o Describe subnet layout o Enable IP routing in the kernel - committ changes to disk o Update routing tables on the other Linux Hosts on the network o Update the Cisco PIX Firewall's routing tables o Test routing through the Linux router, from a remote Windows 2003 Host o Focus on the forward chain o Write ACEs to permit routing o Test connectivity o o IPTables - Network Address Translation (NAT) o Discuss NAT features & concepts o Discuss & implement IP masquerading o Define Source NAT (SNAT) ACEs & test translations o Create SNAT multiples o Implement Destination NAT (DNAT) ACEs & test translations o Define DNAT multiples o Create NETMAP subnet mappings - one-to-one NATs o o IPTables - Demilitarized Zone (DMZ) Configuration o Describe DMZ configuration o Write Port Address Translation (PAT) rules to permit inbound traffic o Test connectivity from connected subnets o Configure DMZ forwarding (Routing) o Implement Dual-DMZs - ideal for n-tiered web applications SELinux Security - Module 4 • Access Control Models o Describe Access Control Model (ACM) theories (DAC/MAC/nDAC) o Explain features & shortcomings of Discretionary Access Control (DAC) models o Identify key DAC-based utilities o Discuss the advantages & caveats of Mandatory Access Control (MAC)models o Explore DAC-based programs o o SELinux - Basics o Discuss subjects & objects o Explain how SELinux is implemented in 2.6.x-based kernels o Confirm SELinux support in the kernel o Identify key SELinux packages o Use sestatus to obtain the current SELinux mode o Discuss subject & object labeling o Describe the 3 SELinux operating modes o Identify key utilities & files, which dictate the current SELinux operating mode o Focus on the features of SELinux permissive mode o Explore the boot process as it relates to SELinux o o SELinux - Object Labeling o Discuss subject & object labeling o Discuss the role of extended attributes (XATTRs) o Expose the labels of specific objects o Alter the lables of specific objects o Configure SELinux to automatically label objects per security policy o Reset the system and confirm labels on altered objects o Explain security tuples o Use fixfiles to restore object labels on running system per security policy o o SELinux - Type Contexts - Security Labels Applied to Objects o Intro to object security tuples - security labels o Attempt to serve HTML content using Apache in SELinux enforcing mode o Identify problematic object security labels o Serve HTML content in SELinux permissive mode o Use chcon to alter object security labels o Switch to enforcing mode & confirm the ability to serve HTML content o Use restorecon to restore object security context (labels) o o SELinux - Basic Commands - Type & Domain Exposition o ps - reveal subjects' security context (security label) - Domains o ls - reveal objects' security label - Types o cp - preserve/inherit security labels o mv - preserve security labels o id - expose subject security label o o SELinux - Targeted Policy - Binary o Explain the Targeted Policy's features o Discuss policy transitions for domains o Compare & contrast confined & unconfined states o Exempt Apache daemon from the auspicies of the targeted policy's confined state o Evaluate results after exemption o Explain the security contexts applied to subjects & objects o Peruse key targeted binary policy files o Identify the daemons protected by the targeted policy o Discuss the unconfined_t domain - subject label o o SELinux - Targeted Policy - Source o Install the targeted policy source files o Identify & discuss TE and FC files o Explore file_contexts - context definition for objects o Discuss the file context syntax o Explain the purpose of using run_init to initiate SELinux-protected daemons o Switch between permissive & enforcing modes and evaluate behavior o Peruse the key files in the targeted source policy o o SELinux - Miscellaneous Utilities - Logging o Use tar to archive SELinux-protected objects o Confirm security labels on tar-archived objects o Use the tar substitute 'star' to archive extended attributes(XATTRs) o Confirm security labels on star-archived objects o Discuss the role of the AVC o Examine SELinux logs - /var/log/messages o Alter Syslog configuration to route SELinux messages to an ideal location o Use SETools, shell-based programs to output real-time statistics o Install & use SEAudit graphical SELinux log-management tool Network Intrusion Detection System (NIDS) Security - Module 5 • Snort NIDS - Installation o Peruse the LinuxCBT Security Edition classroom network topology o Download Snort o Import G/PGP public key and verify package integrity o Identify & download key Snort dependencies o Install current libpcap - Packet Capture Library o Establish security configuration baseline o o Snort NIDS - Sniffer Mode o Discuss sniffer mode concepts & applications o Sniff IP packet headers - layer-3/4 o Sniff data-link headers - layer-2 o Sniff application payload - layer-7 o Sniff application/ip packet headers/data-link headers - all layers except physical o Examine packets & packet loss o Sniff traffic traversing interesting interfaces o Sniff clear-text traffic o Sniff encrypted streams o • Snort NIDS - Logging Mode o Discuss logging mode concepts & applications o Log traffic using default PCAP/TCPDump format o Log traffic using ASCII mode & examine output o Discuss directory structure created by ASCII logging mode o Control verbosity of ASCII logging mode & examine output o Enhance packet logging analysis by defaulting to binary logging o Discuss default nomenclature for binary/TCPDump files o Alter binary output options o Use Snort NIDS to read binary/TCPDump files o • Snort NIDS - Berkeley Packet Filters (BPFs) o Explain the advantages to utilizing BPFs o Discuss BPF directional, type, and protocol qualifiers o Identify clear-text based network applications and define appropriate BPFs o Execute Snort NIDS in sniffer mode with BPFs enabled to match interesting traffic o Log to the active pseudo-terminal console and examine the packet flows o Combine BPF qualifiers to increase packet-matching capabilities o Use logical operators to define more flexible BPFs o Read binary TCPDump files using Snort & BPFs o Execute Snort NIDS in logging/daemon mode o • Snort NIDS - Cisco Switch Configuration o Examine the current network configuration o Identify Snort NIDS sensors and centralized DBMS Server o Create multiple VLANs on the Cisco Switch o Secure the Cisco Switch configuration o Isolate internal and external hosts, sensors and DBMS systems o Configure SPAN - Port Mirroring for internal and external Snort NIDS Sensors o Examine internal and external packet flows • Snort NIDS - Network Intrusion Detection System (NIDS) Mode o Discuss NIDS concepts & applications o Prepare /etc/snort - configuration directory for NIDS operation o Explore the snort.conf NIDS configuration file o Discuss all snort.conf sections o Download & install community rules o Execute Snort in NIDS mode with TCPDump compliant output plugin o Download & install Snort Vulnerability Research Team (VRT) rules o Compare & contrast community rules to VRT rules o • Snort NIDS - Output Plugin - Barnyard Configuration o Discuss features & benefits o Configure Syslog based logging and examine results o Configure Snort to log sequentially to multiple output locations o Implement unified binary output logging to enhance performance o Discuss concepts & features associated with post-processing Snort logs o Download and install current barnyard post-processor o Use barnyard to post-process logs to multiple output destinations o o Snort NIDS - BASE - MySQL® Implementation o Discuss benefits of centralized console reporting for 1 or more Snort sensors o Re-compile Snort on both sensors to support MySQL logging o Configure MySQL on Database Management System (DBMS) Host o Implement Snort database schema on DBMS Host o Configure Snort to log output to MySQL DBMS Host o Confirm output logging to the MySQL DBMS Host o Prepare DBMS Host for BASE console installation o Install BASE and complete schema extension o Peruse BASE interface o o Snort® NIDS - Rules Configuration & Updates o Discuss the concept of rules as related to Snort NIDS o Examine Snort rule syntax o Peruse pre-defined Snort rules o Download & configure oinkmaster to automatically update Snort rules o Confirm oinkmaster operation Packet Capture Analysis Security feat. Ethereal® - Module 6 • Introduction - Topology - Features o Discuss course outline o Explore system configuration o Identify key network interfaces to be used for captures o Identify connected interfaces on Cisco Switch o Explore network topology - IPv4 & IPv6 o Identify Ethereal installation o Enumerate and discuss key Ethereal features o o Ethereal® Graphical User Interface (GUI) o Identify installation footprint o Differentiate between promiscuous and non-promiscuous modes o Configure X.org to permit non-privileged user to write output to screen o Launch Ethereal GUI o Identify the primary GUI components /Packet List | Packet Details | Packet Bytes/ o Discuss defaults o Explore key menu items o • TCPDump | WinDump - Packet Capturing for /Linux|Unix|Windows/ o Discuss defaults, features and applications o Use TCPDump on Linux to capture packets o Log traffic using default PCAP/TCPDump format o Discuss Berkeley Packet Filters (BPFs) o Capture and log specific packets using BPFs for analysis with Ethereal o Connect to Windows 2003 Server using Remote Desktop (RDesktop) utility o Install WinDump and WinPCAP on Windows 2003 Server o Identify available network interfaces using WinDump o Capture and log packets using WinDump o Capture and log specific packets using BPFs with WinDump for analysis with Ethereal o Upload captures to Linux system for analysis in Ethereal o • Snort® NIDS Packet Capturing & Logging o Discuss Snort NIDS's features o Confirm prerequisites - /PCRE|LibPCAP|GCC|Make/ o Download and Import Snort G/PGP key and MD5SUM for Snort NIDS o Download, verify, compile and install Snort NIDS o Discuss BPF directional, type, and protocol qualifiers o Identify clear-text based network applications and define appropriate BPFs o Execute Snort NIDS in sniffer mode with BPFs enabled to match interesting traffic o Log to the active pseudo-terminal console and examine the packet flows o Combine BPF qualifiers to increase packet-matching capabilities o Use logical operators to define more flexible BPFs o Create captures for further analysis with Ethereal o • Sun Snoop Packet Capturing & Logging o Connect to Solaris 10 system and prepare to use Snoop o Draw parallels to TCPDump o Enumerate key features o Sniff and log generic traffic o Sniff and log specific traffic using filters o Sniff using Snoop, HTTP and FTP traffic o Save filters for analysis by Ethereal o Snoop various Solaris interfaces for interesting traffic o • Layer-2 & Internet Control Messaging Protocol (ICMP) Captures o Launch Ethereal o Identify sniffing interfaces o Capture Address Resolution Protocol (ARP) Packets using Capture Filters o Discuss and Identify Protocol Data Units (PDUs) o Identify default Ethereal capture file o Peruse packet capture statistics o Identify Cisco VOIP router generating ARP requests o Peruse time precision features - deci - nano-seconds o Discuss time manipulations - relative to first packet - actual time o Reveal protocol information from layer-1 through 7 o Identify network broadcasts in the packet stream o Generate Layer-2 ARP traffic using PING and capture and analyze results o Sniff traffic based on MAC addresses using Ethereal and Capture FIlters o • User Datagram Protocol (UDP) Captures & Analyses o Discuss UDP Characteristics o Focus on Network Time Protocol (NTP) o Setup NTP strata for testing between multiple systems o Analyze NTP - UDP traffic using Ethereal o Focus on Domain Name Service (DNS) o Install a BIND DNS Caching-Only Server o Analyze DIG queries o Analyze 'nslookup' queries o o Transmission Control Protocol (TCP) Captures & Analyses o Discuss TCP Characteristics - Connection-Oriented Services o Explain TCP connection rules - Socket creation o Sniff TCP traffic using Capture Filters in Ethereal o Use Display Filters to parse TCP traffic o Sniff FTP traffic o Reconstruct FTP flows using TCP Stream Reassembly o Differentiate between client and server flows o Quantify client and server flows o Discuss embedded Protocol Data Units (PDUs) o Sniff Internet Protocol Version 6 (IPv6) traffic o Peruse and discuss the IPv6:TCP:FTP traffic dump o Analyze TCP Sockets o o Ethereal Display Filters - Post Processing Filters o Identify previously captured - TCPDump - Ethereal - Snort - Snoop - Dumps o Discuss features o Explain Display Filter syntax o Post-process previously captured traffic dumps o Identify the various methods to exact display filters o Filter data using the expression builder o Filter traffic based on interesting properties o Filter traffic using logical operators o o Ethereal Statistics o Discuss features o Explore the summary (metadata) of captured packets o Peruse the protocol hierarchy - Layer's 1 - 7 of OSI o Examine network conversations of captured packets o Identify Destinations in packet dumps o Examine ICMP statistics o • Text-based Captures with Tethereal o Discuss features and applications o Identify 'tethereal' and invoke o Enumerate network interfaces o Sniff generic network traffic o Suppress capture output o Apply Capture Filters o Capture UDP Traffic o Capture TCP Traffic o o Intranet-based Captures & Analysis o Discuss Intranet monitoring objectives o Analyze the network topology drawing o Discuss Unicast, Broadcast and Multicast traffic o Discuss Switch Port Mirroring - SPAN o Configure Port Mirroring - SPAN on Cisco Switch for interesting ports o Dedicate a network interface for sniffing traffic o Configure Snort NIDS to sniff traffic on dedicated network interface o Analyze Snort NIDS captures in Ethereal o Sniff traffic between various Intranet hosts o o Internet-based Captures & Analysis o Discuss Internet monitoring objectives o Identify key external interfaces to monitor o Update the Port Mirroring configuration to capture Internet traffic o Capture external traffic o Analyze using Ethereal o o Wireless-based Captures & Analysis o Discuss Wireless monitoring objectives o Connect to remote system with wireless interface o Enable wireless interface o Sniff traffic on wireless network o Analyze using Ethereal o o Windows-based Captures & Analysis on Windows o Download and Install Ethereal for Windows o Explore interface o Load previously captured data o Analyze data o Compare and contrast with Ethereal for Linux|Unix systems Pluggable Authentication Modules (PAM) Security - Module 7 • Introduction - Topology - Features o Discuss course outline o Explore system configuration o Explore network topology o Identify primary PAM systems o Enumerate and discuss key PAM features o o PAM Rules Files & Syntax o Identify key PAM configuration files o Explain the purpose of the /etc/pam.d/other PAM rules file o Discuss PAM's 4 management tasks o Identify the 4 tokens supported within PAM rules files o Explain possible values for the 4 supported rules file tokens o Discuss PAM's stacking of rules for the 4 management tasks o Examine the /etc/pam.d/sshd PAM rules file for the SSHD service/daemon o Explore the contents of included PAM rules files o • Common PAMs - Identify & Discuss Commonly Implemented PAMs o Explain the purpose and implementation of pam_echo o Test pam_echo using SSH o Explain the purpose and implementation of pam_warn o Explain the purpose and implementation of pam_deny o Identify instances of pam_warn and pam_deny modules o Explain the purpose and implementation of pam_unix2 o Identify instances of pam_unix2 module o Explain the purpose and implementation of pam_env o Explain the purpose and implementation of pam_ftp o Peruse /etc/pam.d/vsftpd and discuss the implemenation of pam_ftp o Explain the purpose and implementation of pam_lastlog o Explain the purpose and implementation of pam_limits o Explain the purpose and implementation of pam_listfile o Explain the purpose and implementation of pam_nologin o • Account Policies with PAM o Explain authentication flow when using PAM o Discuss account policies features o Identify and peruse the default account policies file: /etc/login.defs o Discus PAM's usage of /etc/login.defs as it pertains to system security o Discuss pam_pwcheck is maintaining system policy o Configure pam_pwcheck to support minimum password length o Correlate pam_pwcheck system policy to user accounts database o Configure pam_pwcheck to support password history o Use chage to enumerate and change user accounts' attributes associated with system policy o • PAM Tally o Explain applications of pam_tally o Identify failed logins log file: /var/log/faillog o Identify PAM authentication messages in /var/log/messages o Compare and contrast pam_tally with faillog o Use pam_tally to display user's tally o Enable pam_tally system-wide with desired policy o Fail to login multiple times, exceeding the system policy and evaluate results o Reset user's login count using pam_tally and faillog o Redirect PAM log messages using Syslog-NG o • PAM Password Quality Check (pam_passwdqc) o Identify pam_passwdqc using RPM o Discuss features o Enumerate the supported password character classes - Complex passwords o Replace pam_pwcheck with pam_passwdqc using at least 2 character classes o Test password policy in non-enforcing mode o Evaluate the effects o Enable password policy in enforcing mode and evaluate o Alter character class and length (complexity) requirements and evaluate o • PAM Time - Time-based Access Control o Discuss features o Explain configuration file syntax o Impose restrictions on common services o Evaluate results o o PAM Nologin o Discuss features o Explain configuration file syntax o Implement nologin module via /etc/nologin o Evaluate results o o PAM Limits - System Resource Limits Controlled by PAM o Discuss features o Explain configuration file syntax o Impose restrictions on system resources o Evaluate results o o PAM Authentication with Apache o Discuss features and desired result o Install Apache and development modules providing apxs support o Download PAM Apache module o Compile and install PAM Apache module o Configure Apache web site to support PAM o Evaluate results Open Secure Shell version 2 (OpenSSHv2) Security - Module 8 • Introduction - Topology - Features o Discuss course outline o Explore system configuration o Identify key systems to be used o Explore network topology o Enumerate and discuss key OpenSSHv2 features o o Identify Key OpenSSHv2 Components o Identify installed OpenSSHv2 related packages o Peruse related startup and run-control script files o Locate 'sshd' on the file system o Discuss related client | server configuration files o • OpenSSHv2 Client - /ssh/ o Discuss features and benefits o Obtain shell access on a remote system o Configure /etc/hosts to provide local name resolution for OpenSSHv2 o Identify and discuss pseudo-terminals - pty o Redirect X11/X.org traffic to localhost via SSH o Bind 'ssh' to specific source IP address and test connectivity o Execute commands on remote system without allocating a pseudo-terminal o Debug 'ssh' connectivity o Explore the system-wide client configuration file o Explore user configuration file o • Secure Copy Program (SCP) - /scp/ o Discuss features and benefits o Locate 'scp' on the file system o Discuss usage o Copy, non-interactively, previously generated data to remote systems o Test 'scp' with global and user configuration directives o Debug 'scp' connectivity o Limit transfer rate to conserve bandwidth o • Secure File Transfer Program (SFTP) - /sftp/ o Discuss features and benefits o Locate 'sftp' on the file system o Discuss usage o Connect to remote system using 'sftp' interactive shell o Issue puts and gets and evaluate results o Identify the sftp-server subsystem o Peruse process list while connected to OpenSSHv2 server o Illustrate batch file usage o • SSH Key Scan Utility - /ssh-keyscan/ o Discuss features and benefits o Locate 'ssh-keyscan' on the file system o Discuss usage o Scan the network from STDIN for OpenSSHv2 public keys - RSA (SSHv1 & SSHv2) | DSA o Scan the network based on a file with a list of hosts for OpenSSHv2 public keys o Populate ~/.ssh/known_hosts file using 'ssh-keyscan' with BASH for loop o Compare and contrast STDOUT with the output file o • SSH Key Generation Utility - /ssh-keygen/ o Discuss features and benefits o Locate 'ssh-keygen' on the file system o Discuss usage o Generate RSA-2 usage keys o Identify RSA-2 public and private key pair o Generate DSA usage keys o Identify DSA public and private key pair o Expose usage keys' fingerprint using 'ssh-keygen' o Generate RSA-2 | DSA usage keys for all hosts o o Public Key Infrastructure (PKI) - Password-less Logins o Discuss features and benefits o Identify key files for client and server implemenation of password-less (PKI-based) logins o Copy manually, RSA-2 | DSA public keys to remote system's ~/.ssh/authorized_keys file o Test password-less logins o Use 'ssh-copy-id' to seamlessly populate remote system with RSA-2 | DSA usage keys o Test password-less connectivity after using 'ssh-copy-id' o Confirm password-less connectivity using SSH clients /ssh|scp|sftp/ in debug mode o Connect to privileged account from non-privileged account using PKI o Configure RSA-1 connectivity using PKI o o System-wide OpenSSHv2 Configuration Directives o Identify key directory and files associated with client | server configuration o Explore primary server configuration file o Discuss applicability of directives o Alter and test several SSHD directives o Explore OpenSSHv2 configuration on RedHat Linux o Explore OpenSSHv2 configuration on Solaris 10 o o Port Forwarding - Pseudo-VPN Support - /Local|Remote|Gateway/ o Discuss features and benefits o Implement local port forwarding using 'ssh' o Configure remote port forwarding using 'ssh' o Test circumvention of local firewall using remote port forwarding o Implement gateway ports to share forwarded /local|remote/ with connected users o Test connectivity o • Windows Integration - /PuTTY|WinSCP/ o Discuss features and applications o Download and install PuTTY o Explore PuTTY's features o Configure PKI logins o Download and install WinSCP o Explore WinSCP's features o Move data between Windows, Linux and Solaris o o Syslog | Syslog-NG Configuration o Discuss features and benefits o Identify default configuration o Redirect OpenSSHv2 data using Syslog and Syslog-NG o Examine results o Enable debugging o o Host-based Authentication o Discuss applicability and caveats o Identify key configuration files and directives o Implement host-based authentication o Test results o o OpenSSHv2 Source Installation o Discuss features and benefits o Download current OpenSSHv2 source code o Compile and install o Restart services|daemons o Test new version of OpenSSHv2 o o Secure OpenSSHv2 Implementation o Discuss features and benefits o Identify key configuration file o Enumerate and implement key directives o Test configuration                              FREE Shipping:             We ship to worldwide Shipping is free. Insurance is included. We ship on the same or next day after payment is received. Delivery service: first-class airmail. Trackability:no. Delivery time: 5 to 7 business days 99.00 $ Enter promotionnal code: