Linux Host Security

By Andrew Mallett
Why should you be interested in Linux Host Security, Linux is secure, isn't it? Those of us who are a little more paranoid understand that "nothing is secure" and will benefit from understanding how to lock up your host more securely than the default.
Play course overview
Course info
Rating
(22)
Level
Advanced
Updated
Jan 31, 2019
Duration
4h 15m
Table of contents
Course Overview
Course Overview 2m
The Linux Security Onion
Understanding the Security Onion 7m
Tuning the Linux Kernel with Sysctl
Understanding the Linux Procfs 3m Working with the Procfs 3m Tuning the Linux Kernel within the Procfs 9m Address Space Layout Randomization 4m Securing ICMP within the Procfs 4m Summary and What's Next 2m
Monitoring Ports and Services
Why Analyse Ports and Services? 3m Listing Services 5m Implementing an NTP Client without Server 3m Filtering Ports Using the Command ss 7m
Understanding Chroot Jails
Chrooting Users and Services 5m Creating Chroot Jails 10m Chrooting SSH Logins 4m Summary and What's Next 1m
Limiting User Access to Resources
Why Limit User Access? 6m Working with Limits 8m Summary and What's Next 3m
Restricting Physical Access and Implementing GRUB Passwords
Inherent Virtual Machine Security 4m Creating Fully Virtualized Machines 5m Lost User Password Recovery 4m Securing the GRUB Boot Process 6m Summary and What's Next 2m
The Linux Audit System
Auditing in Linux 6m Installing the Linux Audit System 5m Auditing Tools 8m Default Configuration of Auditing 5m Working with Custom Rules 7m
Linux Malware Detection
Linux Does Not Have Viruses 7m Working with AIDE 6m Developing Your AIDE Strategy 8m Rootkit Detection in Linux 7m Linux Malware Detection with Maldet 7m Summary and What's Next 3m
Centralizing User Accounts in OpenLDAP
Identity Management in Linux 5m Configuring the OpenLDAP Appliance 7m Creating OpenLDAP Users 6m Configuring SSSD on OpenLDAP Client Systems 10m Summary and What's Next 2m
Implementing Kerberos Realms
Deploying a KDC in Ubuntu 18.04 6m Enabling Kerberos Authentication with SSH 10m Summary and What's Next 1m
Implementing a FreeIPA Server
Understanding the FreeIPA Server 6m Configuring CentOS 7 for FreeIPA 4m Installing the FreeIPA Server 8m Using the Web Interface 4m Installing the FreeIPA Client 6m Summary and What's Next 1m
Description
Course info
Rating
(22)
Level
Advanced
Updated
Jan 31, 2019
Duration
4h 15m
Description

Everyday we learn of new cyber attacks against, often large organizations, coming to the realization that nothing is secure in the modern world. In this course, Linux Host Security, you will gain the the skills needed to begin to lock your Linux server down and protect your precious data and resources. First, you will learn to tune the Linux Kernel using the procfs and sysctl. Next, you will discover how much traceability you lose where you have not installed the Linux Audit System. Finally, you will explore how to deploy the integrated Identity Management tool, FreeIPA Server on CentOS 7. When you’re finished with this course, you will have the skills and knowledge of Linux Security needed to harden your Linux Servers.

About the author
Andrew Mallett
About the author

Andrew is a committed evangelist of the Linux Operating System and the concept of community and freedom that it provides. He has worked as a technical trainer since 1995 and has taught throughout the world, including Australia, the US, Germany and Eastern Europe. Andrew started teaching Linux in 2004 when Novell acquired SUSE and has been a long time supporter of Novell and provides SYSOP support the the Certifed Novell Instructor community on Linux. Andrew founded theurbanpenguin and has been submitting video training material to his YouTube channel since 2009 and currently has over 8,500 subscribers and 1.6 Million views. Andrew has had two publications with Packt: Citrix Access Gateway VPX Essentials (2012) and Citrix XenApp (2013).

More from the author
Extending Salt Open with Plugins
Intermediate
1h 16m
Aug 5, 2020
Using Salt Open for Remote Execution
Intermediate
1h 39m
Jun 24, 2020
Using Salt's Alternative Architectures
Intermediate
1h 30m
Jun 17, 2020
More courses by Andrew Mallett
Section Introduction Transcripts
Section Introduction Transcripts

Course Overview
(Music playing) Hi everyone, my name is Andrew Mallett, and welcome to my course, Linux Host Security. I'm a Linux trainer and consultant working at The Urban Penguin in the UK. Now, why should you learn to secure Linux? After all, Linux is secure, right? Well, maybe. And if you can sleep at night with that belief, then great. There are many times that working as a consultant I have been shown direct to a server room with direct access to those servers. We will show you that even on modern systems how easy it is to reset passwords, and you probably won't be as confident at the default security. This course will help you understand what you can do to secure the Linux host and why monitor the system for security breaches. Some of the major topics that we will cover include tuning the Linux kernel using the sysctl command and files, protecting that boot process using GRUB, auditing Linux using the Linux audit system, and deploying the FreeIPA server and client, the Linux identity management suite. By the end of this course, you'll know how and why your Linux servers need to be hardened at the host level, as well as being able to audit security events on your systems. Before beginning this course, you should be familiar with Linux server management and be able to install Ubuntu and CentOS Linux systems. I hope you'll join me on this journey learning to secure your Linux servers with the Linux Host Security course at Pluralsight.

You're the smartest person in the room

PROVE IT

Your team won't just close the skills gap

THEY'LL HURDLE IT