Return to Contact Us

Search Results

Back to Results

Enterprise Linux Server Hardening

This course covers a wide range of security concepts and practices for Red Hat Enterprise Linux 7 (RHEL7).

  • GL413

    Enterprise Linux Server Hardening

    GL413 starts with an introduction to basic security principles, including minimisation, service discovery, and hardening techniques.

    Duration: 4 days
    Price: £995 (exc VAT)

Further Information

  • GL413: Course Overview

    Hardening of a RHEL Linux System.

    This course covers a wide range of security concepts and practices for Red Hat Enterprise Linux 7 (RHEL7). It starts with an introduction to basic security principles, including minimisation, service discovery, and hardening techniques. The course then delves into scanning, probing, and mapping vulnerabilities, covering tools like WHOIS, DNS interrogation, Nessus/OpenVAS, and intrusion detection systems like Snort.

    The course also covers tracking security updates and software maintenance, including managing RPM packages, Yum repositories, and the Red Hat Network Subscription Manager. It explores filesystem management, partitioning, encryption, and securing the filesystem with disk quotas, file attributes, and mount options. Additionally, the course covers special permissions, file access control lists (ACLs), and monitoring for filesystem changes using host-based intrusion detection systems (HIDS) like AIDE.

    User account management, password security, and the Pluggable Authentication Modules (PAM) framework are also covered. The course introduces FreeIPA for centralised authentication and discusses log file administration, including systemd Journal, rsyslog, and log management tools. Kernel-level auditing with auditd is explored, along with securing services like Xinetd, TCP Wrappers, and firewalls (FirewallD and iptables).

    Finally, the course delves into SELinux, covering its goals, modes, policies, troubleshooting, and the differences between Discretionary Access Control (DAC) and Mandatory Access Control (MAC) security models.

  • GL413: Course Modules

    Module 1: Security concepts

    Module 2: Scanning, probing, and mapping vulnerabilities

    Module 3: Tracking security updates and software maintenance

    Module 4: Manage the filesystem

    Module 5: Securing the filesystem

    Module 6: Manage special permissions

    Module 7: Manage file access controls

    Module 8: Monitor for filesystem changes

    Module 9: Manage user accounts

    Module 10: Password security and PAM

    Module 11: Using free IPA for centralised authentication

    Module 12: Log file administration

    Module 13: Accountability with kernel audit

    Module 14: Securing services

    Module 15: SELinux

Interested? Get in touch today.