Training Course
Locations | Schools | Online Courses | MBA | Submit Course | Post Request | Students | Jobs | House Rental


Jobs & Resumes

House Rental

Back | Home
Training Course:

System Security for the Solaris Operating System Fast Track Program

School/Trainer:

Sun Microsystems - Russia
Moscow, Russia

Course Format: Classroom | E-learning | Virtual Class | Online | On-site | Blended | Self-paced

Course Description:

'' The System Security for the Solaris Operating System Fast Track Program is a 12-hour per day immersion course. Through a combination of lab exercises and topnotch presentations, students will be immersed in the world of system security and network intrusion for the Solaris OS, including server monitoring, server hardening, network services analysis and hardening, network instrusion detection, and securing network infrastructure.

The program is an accelerated course which provides experienced system administrators with the necessary skills to successfully protect Sun Microsystems Solaris systems in a non-trusted environment such as the Internet or a LAN environment with multiple unknown/untrusted users.

Live, breathe, eat, drink, play Solaris system security for one week.

The bootcamp is held in a Sun training center. Your registration includes five 12-hour days of Sun-Certified top notch instruction and continental breakfast.

Prerequisites
To succeed fully in this course, students should be able to:
Install, configure, and maintain a Solaris product line server
Administer users, printers, file systems, networks, and devices on the Solaris Operating System (OS)
Configure a Solaris NIC for LAN and Internet access
Have a firm understanding of the TCP/IP protocol stack and IP routing
Configure Solaris logging daemons like syslog
Install open source utilities like tcpdump and libpcap

Skills Gained
Upon completion of this course, you should be able to:
Secure a Solaris OS host against user and network attacks
Describe security terminology and common forms of host-based security attacks
Use Solaris OS logging and auditing to identify actual and potential host-based security attacks
Use tools such as Basic Security Model (BSM), Tripwire, TCP wrappers, SSH, and Titan to improve system security
Describe all types of network based security attacks like SYN/ACK attack, man-in-the-middle attack, ARP spoofing, session hijacking and Buffer Overflow attacks
Identify and protect against design flaws in standard networking protocols (such as TCP, UDP, IP, ICMP, SSL, SSH, HTTP and ARP)
List possible ways that an intruder can gather information about a server or a whole network
Install a Network Intrusion Detection System and a host based firewall
Identify, in real time, a network security breach and respond

Course Content
Module 1 - Security Overview


Describe basic system security, its manifestations, and the sources and implications of poor security
Explain what security means in computing terms
Explain why system security is important
Recognize security terminology
Identify different types of security violation
Describe the most likely sources of security violations
Describe the need for security policy
Recognize the differences between prevention of security violations and fixing after the event # Explain how to obtain and build third-party security tools

Module 2 - Using Solaris OS Log Files


Locate and interpret Solaris OS standard log files
Use log files to form an audit trail
Configure and use the syslogd daemon
Configure and use the Solaris OS process monitoring control tools
Use third-party process monitoring tools
Configure and use UNIX accounting tools

Module 3 - The Solaris OS Basic Security Module


Implement auditing using the Solaris OS BSM
Use the BSM to log user and kernel events
Locate and configure the necessary administrative files to implement device allocation functionality
Allocate and de-allocate shared devices

Module 4 - Security Attacks


Recognize and detect the following common security attacks and list at least two consequences of each: Trojan horses, Back door attacks, DoS attacks
Describe how attackers can use a rootkit to cover their tracks

Module 5 - Auditing File Systems


Describe the role of file system auditing
Describe how file system auditing tools such as TripWire can secure your system
Describe the purpose of Solaris OS Fingerprint Database

Module 6 - Files System Attacks


Set secure file permissions and ownerships
Describe the security implications of using set-user-id (SUID) programs
Describe the security implications of setting sticky bits on directories
Configure and use access control lists (ACLs)
Encrypt data using the crypt command
Describe the security implications of device files
Describe common security issues with backup and restore strategies

Module 7 - Administering User Accounts Securely


Explain how to add, maintain, and delete user accounts securely
Administer login accounts with special requirements
Describe how to make special user accounts more secure
Configure restricted shell accounts

Module 8 - Password Security


List at least two measures that constitute good password practice
Configure and use the password-cracking tool crack

Module 9 - Securing Root Access


Configure and use Role Based Access Control (RBAC)
Configure and use the sudo utility

Module 10 - Hardening the System


List at least two reasons for hardening a system
Describe the role of Titan in a secure system
Install and configure Titan
Write a Titan module
Configure and use the Automated Security Enhancement Tool (ASET)

Module 11 - Securing Physical Access


Justify the need for physical system security and define measures that enhance the physical system security
Explain the potential weak points in a physical network
Disable the STOP-A key
Explain the role of the EEPROM password and security modes

Module 12 - Ethernet and IP Operation


Review OSI network model
Review application and network service layers
Identify Ethernet security issues
Review IPv4 addressing
Understand IP fragmentation
Identify ICMP security issues
Implement basic traffic capture and analysis

Module 13 - IP and ARP Vulnerability Analysis


Identify IP security issues
Describe IP routing and routing protocol security
Protect against IP abuse
Identify ARP security issues
Execute attacks against ARP
Protect against ARP abuse
Implement advanced packet capture and analysis

Module 14 - UDP/TCP Protocol and TELNET Vulnerability Analysis


Discuss characteristics of UDP and TCP
Identify TCP security issues
Describe common TCP abuses: SYN attack, sequence guessing, connection hijacking
Discuss characteristics of TELNET
Identify TELNET security issues
Execute attacks on TCP and TELNET
Protect against TCP and TELNET abuse

Module 15 - FTP and HTTP Vulnerability Analysis


Discuss characteristics of FTP
Describe FTP transfer methods and modes
Identify FTP security issues
Describe common FTP abuses: FTP bounce attack, port stealing, brute force
Discuss characteristics of HTTPv1.1
Describe role of HTTP proxy servers and HTTP authentication
Identify HTTP security issues
Describe common HTTP abuses: path name stealing, header spoofing, proxy poisoning
Execute attacks on FTP and HTTP
Protect against FTP and HTTP abuse

Module 16 - DNS Vulnerability Analysis


Discuss characteristics of DNS
Identify DNS security issues
Describe common DNS abuses: DNS spoofing, DNS cache poisoning, unauthorized zone transfers
Execute attacks on DNS
Protect against DNS abuse

Module 17 - Securing Remote Access


Identify the benefits of the secure shell
Install and configure the secure shell
Use the secure shell

Module 18 - SSH and HTTPS Vulnerability Analysis


Discuss characteristics of SSH
Describe differences between SSH1 and SSH2 protocol ...''

Please go to the school's official website for training price and schedule:
http://ru.sun.com/win/service/education

Phone:(095)935-84-11

School Address:

Sun Microsystems
B-200, Leninsky Pr.
Moscow, 117198
Russia
Tel: (095)935-84-11
E-mail: education@Russia.Sun.Com



Jobs & Resumes: Moscow
Houses & Roommates: Moscow



Other training courses offered by Sun Microsystems - Russia:

Sun StorEdge 9900-V Hardware and Software Fundamentals Workshop
Sun StorEdge 9900-V Overview and Configuration
Sun StorEdge 9900-V Software Solutions
Sun StorEdge Availability Suite 3.1 Install, Configure, and Troubleshoot
Sun StorEdge Enterprise Backup 7.x Administration
Sun StorEdge Resource Management Suite 6.0
Sun StorEdge SAM-FS 4.1 and Sun StorEdge QFS 4.1 Administration
Sun StorEdge T3+ Array and Sun StorEdge 6120 Array Installation and Maintenance
Sun StorEdge Volume Manager Administration
Sun Systems Fault Analysis Workshop
Systems Management Using Sun Management Center 3.5
TCP/IP Network Troubleshooting in a Solaris 9 OS
Transitioning to Solaris 8 Operating System for HP-UX Administrators
Trusted Solaris 8 System Administration
UNIX Essentials Featuring the Solaris 10 Operating System
UNIX Essentials Featuring the Solaris 9 Operating System
Using LDAP as a Naming Service
Using Sun Cluster 3.0 Software API: Data Service Integration
VERITAS File System 3.5 for Solaris


Notice: The course description on this page was captured from the Internet as historical reference or submitted by visitors. It was archived statically and not updated from day to day.
 


Facts:
This website holds more than 300,000 training course records worldwide, with hundreds of new postings daily. All services in this website are free!



Finding any course, anywhere to learn...
Worldwide training course directory, linking for free
United States - United Kingdom - Australia - CanadaASKEDU.net  © 2003-2008