RHS333 Red Hat Enterprise Security: Network Services
Check out our Red Hat Partner Profile Here
Length: 4 days
Course Code: RHS333
List Price:
$2,598
TrainingPage Price: $2,533
TAP Eligible
Bundles and Multi-Student Savings
10% off through March 2010 10% off through March 2010 for IBM, Red Hat, HP, Cisco classes
View Dates & Enroll Online
Red Hat Training ROI Calculator
Truth Happens : Play the Video
Can't find what you're looking for? Let us find it for you.
Overview:
Red Hat Enterprise Linux has gained considerable momentum as the operating system of choice for deploying network services such as web, ftp, email, and file sharing. RHS333 Red Hat Enterprise Security: Network Services is an intensive course that provides four days of instruction and labs on how to to use the latest technologies to secure your services.
Description:
RHS333 trains people with RHCE-level competency to understand, prevent, detect, and properly respond to sophisticated security threats aimed at enterprise systems. The course equips system administrators and security professionals with the skills and knowledge to harden computers against both internal and external attacks, providing in-depth analysis of the ever-changing threat models as they pertain to Red Hat Enterprise Linux. RH333 builds on the security skills developed in other Red Hat training courses so that administrators can design and implement an adequate security profile for critical enterprise systems.
Audience:
The audience for this course includes system administrators, consultants, and other IT professionals responsible for the planning, implementation, and maintenance of network servers. While the emphasis is on running these services on Red Hat Enterprise Linux, and the content and labs will assume its use, system administrators and others using proprietary forms of Unix may also find many elements of this course relevant.
Prerequisites:
RH253, RH300, or RHCE certification or equivalent work experience is required for this course.
Course participants should already know the essential elements of how to configure the services covered, as this course will be focusing on more advanced topics from the outset.
What you will learn:
RHS333 goes beyond the essential security coverage offered in the RHCE curriculum and delves deeper into the security features, capabilities, and risks associated with the most commonly deployed services. Among the topics covered in this four-day, hands-on course are the following:
Mastering basic service security
Review of host security
- Advanced TCP wrappers configuration
- Advanced xinetd configuration
Understanding cryptography
- Overview of cryptographic techniques
- Management of SSL certificates
Logging system activity
- Clock synchronization with NTP
- Configuring centralized syslog management
Securing BIND and DNS
- Name server topology and "views"
- Configuration of appropriate recursion and response policies
- Using TSIG authentication keys
- Running BIND in a chroot environment
Network user authentication security
- Managing portmap and NIS risks
- Using Kerberos authentication
Improving NFS security
- NFS security limitations
- Configurations to avoid
The secure shell: OpenSSH
- Protocol and service security
- Protecting public-key authentication
- Port-forwarding and X11-forwarding issues
Securing E-mail with Sendmail and Postfix
- User mail spool access issues
- Overview of Postfix configuration
- Access control and STARTTLS
- Anti-spam features
- Introduction to Procmail
Managing FTP access
- Controlling local and anonymous users
Apache security
- User authentication and access control
- Common misconfigurations
- Containing CGI risks
Basics of intrusion response
- Monitoring for suspicious activity
- Verifying suspected intrusions
- Recovering from an intrusion