Course Outline
Session 1: Introduction to Secure Shell (SSH) and Access Security
- Overview of the SSH protocol and its critical role in maintaining secure remote access infrastructure
Hardening SSH access through the implementation of key-based authentication mechanisms
Establishing robust password policies and integrating two-factor authentication protocols
Restricting SSH connectivity to authorized IP address ranges to limit network exposure
Session 2: Samba File Sharing Services
- Overview of Samba and its function in facilitating file and print sharing across heterogeneous environments
Configuring Samba servers to expose designated directories for shared access
Defining user authentication requirements and granular permissions for Samba resources
Facilitating access to Samba shares from both Windows and Linux client systems
Session 3: Domain Name System (DNS)
- Understanding DNS architecture and its essential function in mapping domain names to IP addresses
Deploying and configuring a DNS server utilizing BIND (Berkeley Internet Name Domain)
Defining DNS zones, resource records, and name resolution procedures
Diagnosing and resolving common DNS configuration and resolution issues
Session 4: Web Server Deployment (Apache)
- Overview of the Apache HTTP Server and its function in delivering web content
Installing and configuring Apache on Linux-based systems
Establishing virtual hosts to support multiple distinct web applications on a single server
Implementing SSL/TLS certificates to ensure secure HTTPS communications
Session 5: Cache Server Operations (Squid)
- Overview of caching principles and their impact on web performance optimization
Installing and configuring Squid as a caching proxy server for network traffic
Defining access control lists, caching policies, and logging requirements within Squid
Evaluating and monitoring Squid’s caching efficiency and operational performance
Session 6: Mail Server Infrastructure (Sendmail, Postfix)
- Overview of core email protocols including SMTP, POP3, and IMAP
Deploying and configuring Sendmail or Postfix as the primary mail transfer agent
Configuring email aliases, virtual domains, and user mailbox structures
Integrating spam filtering and antivirus protections to secure email communications
Session 7: Dynamic Host Configuration Protocol (DHCP)
- Overview of DHCP and its role in automating network parameter assignment
Installing and configuring the ISC DHCP server software
Automating the assignment of IP addresses, subnet masks, and other network parameters
Managing DHCP lease durations and troubleshooting common connectivity issues
Session 8: File Transfer Protocol (FTP) Services
- Overview of FTP standards and their application in file exchange
Installing and configuring FTP server solutions such as vsftpd or proftpd
Defining user access rights, permissions, and secure transfer configurations
Enabling FTPS (FTP over SSL/TLS) to ensure encrypted file transfers
Session 9: Database Management (MySQL)
- Overview of the MySQL relational database management system
Installing and configuring the MySQL server environment
Creating databases, tables, and administrative user accounts
Managing data integrity, backup procedures, and database security controls
Session 10: Advanced Firewall Configuration, Kernel Management, and Compilation
- Advanced firewall configuration techniques using iptables
Implementing network address translation (NAT) and port forwarding rules
Overview of kernel configuration and source compilation processes
Customizing kernel parameters to enhance system performance and security posture
Requirements
Testimonials (2)
Very good structured and complex documentation. A good pace for exercises. Detailed explanations and right to subject.
Tiberiu Longauer
Course - Linux Advanced
I liked the fact that 80-90% of things were new to me, and it opened my eyes about a lot of technologies and about how sys admin works.
