Linux Host Security

By Andrew Mallett
Why should you be interested in Linux Host Security, Linux is secure, isn't it? Those of us who are a little more paranoid understand that "nothing is secure" and will benefit from understanding how to lock up your host more securely than the default.
Play course overview
Course info
Level
Advanced
Updated
Jan 31, 2019
Duration
4h 16m
Table of contents
Course Overview
Course Overview 2m
The Linux Security Onion
Understanding the Security Onion 7m
Tuning the Linux Kernel with Sysctl
Understanding the Linux Procfs 3m Summary and What's Next 2m Securing ICMP within the Procfs 4m Working with the Procfs 3m Address Space Layout Randomization 4m Tuning the Linux Kernel within the Procfs 9m
Monitoring Ports and Services
Why Analyse Ports and Services? 3m Implementing an NTP Client without Server 3m Filtering Ports Using the Command ss 7m Listing Services 5m
Understanding Chroot Jails
Summary and What's Next 1m Chrooting Users and Services 5m Chrooting SSH Logins 4m Creating Chroot Jails 10m
Limiting User Access to Resources
Summary and What's Next 3m Working with Limits 8m Why Limit User Access? 6m
Restricting Physical Access and Implementing GRUB Passwords
Summary and What's Next 2m Inherent Virtual Machine Security 4m Lost User Password Recovery 4m Securing the GRUB Boot Process 6m Creating Fully Virtualized Machines 5m
The Linux Audit System
Working with Custom Rules 7m Default Configuration of Auditing 5m Installing the Linux Audit System 5m Auditing Tools 8m Auditing in Linux 6m
Linux Malware Detection
Summary and What's Next 3m Linux Does Not Have Viruses 7m Developing Your AIDE Strategy 8m Linux Malware Detection with Maldet 7m Rootkit Detection in Linux 7m Working with AIDE 6m
Centralizing User Accounts in OpenLDAP
Summary and What's Next 2m Identity Management in Linux 5m Creating OpenLDAP Users 6m Configuring the OpenLDAP Appliance 7m Configuring SSSD on OpenLDAP Client Systems 10m
Implementing Kerberos Realms
Summary and What's Next 1m Deploying a KDC in Ubuntu 18.04 6m Enabling Kerberos Authentication with SSH 10m
Implementing a FreeIPA Server
Summary and What's Next 1m Configuring CentOS 7 for FreeIPA 4m Understanding the FreeIPA Server 6m Using the Web Interface 4m Installing the FreeIPA Client 6m Installing the FreeIPA Server 8m
Description
Course info
Level
Advanced
Updated
Jan 31, 2019
Duration
4h 16m
Description

Everyday we learn of new cyber attacks against, often large organizations, coming to the realization that nothing is secure in the modern world. In this course, Linux Host Security, you will gain the the skills needed to begin to lock your Linux server down and protect your precious data and resources. First, you will learn to tune the Linux Kernel using the procfs and sysctl. Next, you will discover how much traceability you lose where you have not installed the Linux Audit System. Finally, you will explore how to deploy the integrated Identity Management tool, FreeIPA Server on CentOS 7. When you’re finished with this course, you will have the skills and knowledge of Linux Security needed to harden your Linux Servers.

About the author
Andrew Mallett
About the author

Andrew is a committed evangelist of the Linux Operating System and the concept of community and freedom that it provides. He has worked as a technical trainer since 1995 and has taught throughout the world, including Australia, the US, Germany and Eastern Europe. Andrew started teaching Linux in 2004 when Novell acquired SUSE and has been a long time supporter of Novell and provides SYSOP support the the Certifed Novell Instructor community on Linux. Andrew founded theurbanpenguin and has been submitting video training material to his YouTube channel since 2009 and currently has over 8,500 subscribers and 1.6 Million views. Andrew has had two publications with Packt: Citrix Access Gateway VPX Essentials (2012) and Citrix XenApp (2013).

More from the author
Creating Shell Scripts in Enterprise Linux
Beginner
2h 11m
Aug 1, 2019
Managing Software in Linux with Debian Software Management
Beginner
1h 59m
Jul 17, 2019
Access Control Mechanisms in Linux
Advanced
2h 46m
May 8, 2019
More courses by Andrew Mallett
Section Introduction Transcripts
Section Introduction Transcripts

Course Overview
(Music playing) Hi everyone, my name is Andrew Mallett, and welcome to my course, Linux Host Security. I'm a Linux trainer and consultant working at The Urban Penguin in the UK. Now, why should you learn to secure Linux? After all, Linux is secure, right? Well, maybe. And if you can sleep at night with that belief, then great. There are many times that working as a consultant I have been shown direct to a server room with direct access to those servers. We will show you that even on modern systems how easy it is to reset passwords, and you probably won't be as confident at the default security. This course will help you understand what you can do to secure the Linux host and why monitor the system for security breaches. Some of the major topics that we will cover include tuning the Linux kernel using the sysctl command and files, protecting that boot process using GRUB, auditing Linux using the Linux audit system, and deploying the FreeIPA server and client, the Linux identity management suite. By the end of this course, you'll know how and why your Linux servers need to be hardened at the host level, as well as being able to audit security events on your systems. Before beginning this course, you should be familiar with Linux server management and be able to install Ubuntu and CentOS Linux systems. I hope you'll join me on this journey learning to secure your Linux servers with the Linux Host Security course at Pluralsight.

You're the smartest person in the room

PROVE IT

Your team won't just close the skills gap

THEY'LL HURDLE IT