Javascript Menu by Deluxe-Menu.com LinuxCBT SELinux Edition, Linux Training, Computer Based Training,Certification Preparation, Linux Administrator, Learn Linux
 



Price: $195 for Single-Computer License - licensing details
5-Computer License: $495
Academic Pricing Schedule (Students|Education): Pricing Schedule
Additional Licenses: For pricing contact sales@LinuxCBT.com
System Requirements: Windows NT/2000/XP/2003/Vista
Duration: 10 hours/40 Videos on 1-DVD
Available for Download:YES
MD5SUM: a68d6a26301246d273155511bde983b2
Demos: here
Certificate of Completion: YES - contact sales for details

LinuxCBT SELinux Edition encompasses: 1. SELinux Security.

LinuxCBT SELinux Edition is unparalleled in content, depth and expertise. It entails 10-hours, or over 1-day of classroom training. LinuxCBT SELinux Edition prepares you or your organization for successfully securing GNU/Linux & Open Source-based solutions. As a by-product, many of the covered concepts, utilities and tricks are applicable to heterogeneous computing environments, ensuring your coverage of the fundamentals of securing corporate infrastructures.

Let LinuxCBT SELinux Edition cost-effectively sharpen your GNU/Linux & Open Source Security skills!

Recommended Prerequisites for:

  • Any LinuxCBT Operating System Course (Classic/EL-4/SUSE/Debian Editions)
    • Open mind & determination to master Linux and related open-source applications
    • Basic understanding of networking concepts
    • Access to a PC to follow the exercises

SELinux Security - Module 1

  • Access Control Models
    • Describe Access Control Model (ACM) theories (DAC/MAC/nDAC)
    • Explain features & shortcomings of Discretionary Access Control (DAC) models
    • Identify key DAC-based utilities
    • Discuss the advantages & caveats of Mandatory Access Control (MAC)models
    • Explore DAC-based programs
  • SELinux - Basics
    • Discuss subjectsobjects
    • Explain how SELinux is implemented in 2.6.x-based kernels
    • Confirm SELinux support in the kernel
    • Identify key SELinux packages
    • Use sestatus to obtain the current SELinux mode
    • Discuss subject & object labeling
    • Describe the 3 SELinux operating modes
    • Identify key utilities & files, which dictate the current SELinux operating mode
    • Focus on the features of SELinux permissive mode
    • Explore the boot process as it relates to SELinux

  • SELinux - Object Labeling
    • Discuss subject & object labeling
    • Discuss the role of extended attributes (XATTRs)
    • Expose the labels of specific objects
    • Alter the lables of specific objects
    • Configure SELinux to automatically label objects per security policy
    • Reset the system and confirm labels on altered objects
    • Explain security tuples
    • Use fixfiles to restore object labels on running system per security policy
  • SELinux - Type Contexts - Security Labels Applied to Objects
    • Intro to object security tuples - security labels
    • Attempt to serve HTML content using Apache in SELinux enforcing mode
    • Identify problematic object security labels
    • Serve HTML content in SELinux permissive mode
    • Use chcon to alter object security labels
    • Switch to enforcing mode & confirm the ability to serve HTML content
    • Use restorecon to restore object security context (labels)
  • SELinux - Basic Commands - Type & Domain Exposition
    • ps - reveal subjects' security context (security label) - Domains
    • ls - reveal objects' security label - Types
    • cp - preserve/inherit security labels
    • mv - preserve security labels
    • id - expose subject security label
  • SELinux - Targeted Policy - Binary
    • Explain the Targeted Policy's features
    • Discuss policy transitions for domains
    • Compare & contrast confined & unconfined states
    • Exempt Apache daemon from the auspicies of the targeted policy's confined state
    • Evaluate results after exemption
    • Explain the security contexts applied to subjects & objects
    • Peruse key targeted binary policy files
    • Identify the daemons protected by the targeted policy
    • Discuss the unconfined_t domain - subject label
  • SELinux - Targeted Policy - Source
    • Install the targeted policy source files
    • Identify & discuss TE and FC files
    • Explore file_contexts - context definition for objects
    • Discuss the file context syntax
    • Explain the purpose of using run_init to initiate SELinux-protected daemons
    • Switch between permissive & enforcing modes and evaluate behavior
    • Peruse the key files in the targeted source policy
  • SELinux - Miscellaneous Utilities - Logging
    • Use tar to archive SELinux-protected objects
    • Confirm security labels on tar-archived objects
    • Use the tar substitute 'star' to archive extended attributes(XATTRs)
    • Confirm security labels on star-archived objects
    • Discuss the role of the AVC
    • Examine SELinux logs - /var/log/messages
    • Alter Syslog configuration to route SELinux messages to an ideal location
    • Use SETools, shell-based programs to output real-time statistics
    • Install & use SEAudit graphical SELinux log-management tool
  • top






Copyright © LinuxGenius, LLC. 2003-2008 - All Rights Reserved - Privacy | Site Map
Linux is a registered trademark of Linus Torvalds.
All brands, products or company names are trademarks or registered trademarks of their respective companies.
 


LinuxCBT feat. KornShell Edition - Released...(more)

Accenture
Actel
AccuWeather
AIG
Alcatel
Alliant Energy
Ameritrade
Avocent
AutoDesk
Bechtel Corp.
Bentley College
Boston Pub Health
Burlington Coat
Cadence
CALTECH
Canada Space Agency
City of Orlando
Cisco Systems
Continental Airlines
CNET
Daimler Chrysler
Dublin AA
DisplayTech
Dept. of Labor
DELL
DISA
DORMAN
Duke Energy
EMC
ENTRUST
FBI.GOV
Filtration Group
FH Cancer Research
Fuji Film Canada
Georgia Lottery
Good Year
GrayBar Electric
Hewlett Packard
Ingersoll Rand
Iowa State U.
iPAY
JP Morgan Chase
Kramer Levin LLP
Louisville Tech
Maui HPCC
Maxtor Corporation
MBG
McGill University
Methodist University
Mt. Sinai Medical
Namasco
NASA.GOV - JPL
NAVY
NICHIA Corp
NIH.GOV
NOAA.GOV
NOKIA
Ontario Power Gen.
PABC Bank
Park Nicollet
Partners Healthcare
PA State Senate
Phelps Dodge
Piper Jaffray
REUTERS
ROGERS
SAIC
SafeNet, Inc.
Sanofi-Aventis
Sarah Lawrence
Seton Hall U.
SGI
Simon & Schuster
SLCC.EDU
Smiths Aerospace
Stafford Pub Schools
Symantec
TD Waterhouse
TeliaSonera
Texas Instruments
UC Irvine
UC San Francisco
UC Santa Cruz
U. of Afghanistan
Univ. of Alaska
Univ. of Colorado
University of Iowa
Univ. of Louisville
Univ. of New Haven
UMass School of Med.
Unilever
Unisys
US Courts
Veritas
VMWare
WebTrends
Weidlinger Associates
Woods Hole
XEROX

· EL-5 Edition
· IPv6 Edition
· Debian4x Edition
· SUSE10 Edition
· UnixCBT Edition
· DBMS Edition
· Security Edition
· Basic Security
· Proxy Security
· Firewall Security
· SELinux Security
· NIDS Security
· Packet Analysis
· PAM Security
· OpenSSHv2 Security
· OpenPGP Security
· Samba Edition
· EL-4 Edition
· Mail Edition
· Sendmail Edition
· Postfix Edition
· qmail Edition
· SUSE9 Edition
· Classic Edition
· Debian3x Edition
· Scripting Edition
· BASH Edition
· Perl Edition
· Python Edition
· PHP Edition
· RegEx Edition
· Awk & Sed Edition
· KornShell Edition
· Suite Edition
· Demo Edition
· Pricing & Licensing
· Purchase Orders
· FAQ
· Testimonials
· About us
· Demos
· Contact us
· Clients
· Tell a friend