3075 SUSE Linux Enterprise Server 10: Security

Training goals

This course focuses on various security-related aspects of SUSE Linux Enterprise Server 10 from a system administratorÔÇÖs perspective. Topics covered include, cryptography, aspects for consideration when developing a security policy, as well as the configuration of Novell AppArmor, packet filters, application level gateways, and VPNs using IPSec.

Training days

5 days

Conspect

General Considerations and Definition of Terms:

• Create a Security Concept
• Understand Frequently Used Terms

Host Security:

• Limit Physical Access to Server Systems
• Partitioning and File System Security
• Limit the Installed Software Packages
• Configure Security Settings With YaST
• Stay Informed about Security Issues
• Apply Security Updates
• Test and Document the Configuration
• Use Logging and Accounting

Novell AppArmor:

• Improve Application Security with AppArmor
• Create and Manage AppArmor Profiles
• Control AppArmor
• Monitor AppArmor

Cryptography: Basics and Practical Application:

• Cryptography Basics
• Create a Certification Authority (CA) and Issue Certificates With CLI Tools
• Use YaST to Create a Certification Authority (CA) and Issue Certificates
• GNU Privacy Guard (GPG)

Network Security:

• Understand Services and Protocols
• Secure Access With TCP Wrapper
• Use SSL to Secure a Service
• Secure Clients

General Firewall Design:

• Understand Firewall Concepts and Purpose
• Describe Components of Firewalls
• Understand Advantages and Disadvantages of Different Setups

Packet Filters:

• Understand Packet Filters
• Understand iptables Basics
• Understand iptables Advanced Features
• Understand Network Address Translation

Application-Level Gateways:

• Application-Level Gateway Basics
• Configure and Use Squid
• Configure and Use Dante
• Configure and Use rinetd

Virtual Private Networks:

• VPN and IPSec Basics
• Configure and Establish an IPSec Connection
• Understand Packet Filtering of IPSec Traffic

Intrusion Detection and Incident Response:

• Log Files and Their Evaluation
• Host-Based Intrusion Detection
• Network-Based Intrusion Detection
• Incident Response

Live Fire Exercise

Certificates

The participants will obtain certificates signed by Novell.

Locations

Krakow - 5 Tatarska Street, II floor, hours: 9:00 am - 4:00 pm
Warsaw - 17 Bielska Street, hours: 9:00 am - 4:00 pm

Trainer

Authorized Novell Trainer.

Training price

Learn more about training material options