10151114Linux Server 2 (Security)
Course Information
Description
This class provides a hands-on look at the tools and techniques needed to understand the fundamental security issues involving the linux operating system. You will create shell scripts intended to solve basic security scenarios. In addition, you will learn to set up and secure some of the more common network services usually implemented on Linux.  Tools include: Bash, netcat, BIND, sshd, NTP, firewalld, nano.
Total Credits
3
Course Competencies
  1. Perform Bash scripting
    Assessment Strategies
    Skill Demonstration
    Criteria
    Read files
    Write to files
    Pipe commands

  2. Use scripting Conditionals
    Assessment Strategies
    Skill Demonstration
    Criteria
    Create a basic chat client
    Copy a file
    Create a blind port
    Create a reverse shell (network)

  3. Create a simulated login script
    Assessment Strategies
    Skill Demonstration
    Criteria
    Use conditional statements in Bash
    Hash current plaintext password
    Compare stored credentials with user input
    Script success when credentials match

  4. Create a network anomaly detector
    Assessment Strategies
    Skill Demonstration
    Criteria
    Use loops
    Perform an ICMP sweep
    Read data from a log file
    Detect if a network sniffer has been used

  5. Create a script to perform brute-force password guessing
    Assessment Strategies
    Skill Demonstration
    Criteria
    Combine loops and conditional statements
    Read in and loop over a stored list of passwords from a file
    Compare lines of a file against user input
    Output plaintext password when a match is found

  6. Implement manipulated text input
    Assessment Strategies
    Skill Demonstration
    Criteria
    Parse a log file using command line tools
    Identify evidence of various scans/attacks
    Analyze log entry format
    Determine source IP addresses for HTTP server connections
    Determine most common User Agent
    Determine origin platform

  7. Create a tool to detect password guessing attacks
    Assessment Strategies
    Skill Demonstration
    Criteria
    Use Bash
    Create script to read log files
    Create script to identify access attempts
    Identify valid access attempts
    Identify malicious access attempts

  8. Deploy a Syslog server in a client-server function
    Assessment Strategies
    Skill Demonstration
    Criteria
    Use package management tools to install and update server software
    Identify and modify necessary configuration files
    Understand syslog facilities and priorities
    Use common tools to start and stop the server
    Use scripting tools to identify current status and error conditions

  9. Deploy a Secure Shell (SSH) server
    Assessment Strategies
    Skill Demonstration
    Criteria
    Use package management tools to install and update server software
    Identify and modify necessary configuration files
    Use common tools to start and stop the server
    Use scripting tools to identify current status and error conditions

  10. Deploy a BIND server (DNS)
    Assessment Strategies
    Skill Demonstration
    Criteria
    Use package management tools to install and update server software
    Identify and modify necessary configuration files
    Use common tools to start and stop the server
    Use scripting tools to identify current status and error conditions

  11. Deploy an Apache web server (HTTP)
    Assessment Strategies
    Skill Demonstration
    Criteria
    Use package management tools to install and update server software
    Identify and modify necessary configuration files
    Use common tools to start and stop the server
    Use scripting tools to identify current status and error conditions

  12. Review advanced security controls in Linux
    Assessment Strategies
    Skill Demonstration
    Criteria
    Harden a Linux server for deployment to a DMZ
    Use scripting techniques to create system monitors
    Use command line tools to interrogate security mechanisms