Curriculum Design and Instruction To Teach
Linux Administration: Networking: Security:
Author: Charles Hayes:
This curriculum design and
instruction is for the Linux
administrator who must
efficiently solve technical
problems and maximize the
reliability and performance
of a production environment.
It addresses today's most
important Linux distributions
and most powerful new administrative
tools. It spells out detailed best
practices for every facet of system
administration, including storage
management, network design and
administration, web hosting,
software configuration management,
performance analysis, Windows
interoperability,m and much more.
Systems administrators will expecially
appreciate the thourough and up-to-date
subject of such topics such as DNS, LDAP,
secrutiy, and the Management of IT service
organizations:
Special Features Include:
* Phases For Conducting A Needs Assessment:
* Curriculum Design Supplement:
* Curriculum Design Plan:
* Lesson Plans:
* Instructional Goals:
* Instructional Objectives:
* Instructional Activities:
* Instructional Evaluation Techniques:
* Standard Vocabulary:
* A Limited Glimpse:
Topics Include:
* Networking:
@ Security:
A. Introduction:
B. Is Linux secure?
C. How security is compromised:
1. Social engineering:
2. Software vulnerabilites:
3. Configuration errors:
D. Certifications and standards:
1. Certifications:
2. Standards:
E. Security tips and philosophy:
1. Packet filtering:
2. Unnecessary services:
3. Software patches:
4. Backups:
5. Passwords:
6. Vigilance:
7. General philosophy:
F. Security problems in /etc/passwd
and /etc/shadow:
1. Password checking and selection:
2. Password aging:
3. Group logins and shared logins:
4. User shells:
5. Rootly entries:
6. PAM: cooking spray or authentication
wonder?
G. POSIX capabilities:
H. Setuid programs:
I. Important file permissions:
J. Miscellaneous security issues:
1. Remote event logging:
2. Secure terminals:
3. /etc/hosts.equiv and ~/.rhosts:
4. Security and NIS:
5. Security and NFS:
6. Security and sendmail:
7. Security and backups:
8. Viruses and worms:
9. Trojan horses:
10. Rootkits:
K. Security power tools:
1. Nmap: scan network ports:
2. Nessus: next generation network
scanner:
3. John the Ripper: find insecure
passwords:
4. hosts_access: host access control:
5. Samhain: host-based intrusion detection:
6. Security-Enhanced Linux (SELinux):
L. Cryptographic security tools:
1. Kerberos: a unified approach to
network security:
2. PGP: Pretty Good Privacy:
3. SSHL the secure shell:
4. One-time passwords:
5. Stunnel:
M. Firewalls:
1. Packer-filtering firewalls:
2. Service proxy firewalls:
3. Firewalls: how safe are they?
N. Linux firewall features: IP tables:
O. Virtual private networks (VPNs):
1. IPsec tunnels:
2. All I need is a VPN, right?
Q. Hardened Linux distributions:
R. What to do when your site has been
attacked:
S. Sources of security information:
1. CERT: a registered service mark of
Carnegie Mellon University:
2. SecurityFocus.com and the Bug Traq
mailing list:
3. Crypto-Gram newsletter:
4. SANS: the system Administration,
Networking, and Security Institute:
5. Distribution-specific security resources:
6. Other mailing lists and web sites:
T. Recommended reading:
* STATE OF THE ART CURRICULUM DESIGN:
* NEW:
* REFERENCES:
* ILLUSTRATIONS:
* PHOTOS:
* PAPERBACK:
* TRANSPARENT FRONT PAGE:
* TITLE PAGE:
* BLACK OR WHITE BACK PAGE COVER:
* 8 TO 10 INCH FONTS:
* BINDED: B OR W OR COLOR COIL: WIRE-0:
* 150 WHITE PAGES: 8x11 INCHES:
* ALLOW 10 TO 14 DAYS TO RECEIVE ITEM:
* ORDER EARLY WHILE SUPPLIES LAST:
