Notices
NSC-020709: Red Hat Linux Operating System Security Seminar
Tuesday July 23, 2002 from 100-300pm in the Illinois Room (348) at the IMU
Audience Beginner to Intermediate level experience with Linux Operating System Administration
Description A two-hour seminar focusing on procedures, resources, and tools for securing RedHat Linux operating systems, both at a workstation and server level. This seminar requires a basic understanding of Unix operating systems. The content will be delivered as a lecture/presentation with demonstrations, followed by a question and answer period. (Note Instructions for securing applications that run on Linux will not be covered in this seminar.)
Part 1. Resources
ECSS website (enhanced OS distribution)
SANS security documents (step by step hardening instructions)
ftp mirror site (patches)
Bastille script ("automated" hardening)
Campus security scanning service (ISS scans)
Part 2. Best practices for securing Linux OS (SANS "Securing Linux", etc)
Boot security / Physical Security
- lilo,grub
- ctrl+alt+delete
Securing Users (or securing the system from users)
- pam
- /etc/security/*
Securing the filesystem
- partitioning
- suid bits (replacing with sudo)
- chattr
Securing networking/services
- services (chkconfig)
- xinetd
- iptables
- tcp wrappers
Part 3. Open Q & A
Part 4. Bonus Topics (time permitting)
- LIDS
- iptables (more in-depth)
- Snort
- nmap
- Nessus
- chroot