There are currently no UNS classes scheduled. Please call for the next scheduled class.

If you have a group of four or more students, we can schedule this class for you.

UNS - UNIX System Security

Categories	Operating Systems Training, UNIX Training
Duration	5 days (35 hours)
Pre-requisites	UN1 - Fundamentals of UNIX and UN2 - UNIX System Administration and UN3 - UNIX Advanced Administration, or equivalent knowledge with Instructor approval.
Courseware	UNS-UN-01 (450 pages)
Price	$1975
Notes	Although we use the most recent version of Sun's Solaris OS to teach our UNIX courses, earlier versions are also available upon request.

This UNIX System Security training course covers the security features of the Solaris Operating Environment as well as the latest in third party attack prevention devices & practices. The objectives defined in the Security Administration Exam developed by Sun Microsystems are introduced. Topics include Log Files, User Accounts, Passwords, root Access, File System Security, Auditing, Network Defense, Security Services, Authentication and Attack Prevention.

---

Exploring Security
      Review the importance of system security
      Share some historical examples of historical break-ins
      List and define some popular terminolgy relating to security
      Classify security attacks
      Discuss the motivations of a "Hacker"
      Run an intrusion detection system
      Define a security policy
      Use the open source security tools
Understanding Log Files
      Describe the Solaris OS standard log files
      Configure the system logging (syslogd) utility
      Monitor log files using the swatch tool
      Describe the Solaris OS monitoring tools
      Collect information using the Solaris OS accounting package
Basic Security Module
      Configure BSM auditing
      Start and stop the BSM
      Create an audit trail using the BSM
      Generate an audit trail
      Interpret and filter audit data
      Implement BSM device management
Attack Prevention
      Recognize Trojan horses
      Identify back door attacks
      Detect and prevent Trojan horse and back door attacks
      Use rootkits to hide attackers
      Identify Denial of Service (DoS) attacks
User Accounts
      Administer regular users
      Administer superuser accounts
      Secure guest accounts
      Protect dormant accounts
      Check user security
      Classify non-login accounts
      Limit user options with restricted shells
Administering Passwords
      Describe password mechanisms
      Run a password-cracking program
Securing root Access
      Control root access with role based access control (RBAC)
      Control root access with the sudo utility
File System Security
      Set up the root partition
      Set file system permissions for security
      Describe set-user-ID and set-group-ID permissions
      Secure files using access control lists (ACLs)
      Describe other security defense mechanisms
      Protect systems using backups and restores
Auditing
      Describe file system auditing
      Describe file system auditing tools
      Defend against network service attacks
Network Defense
      Define network sniffing
      Describe network sniffer tools
      Defend against network service attacks
Security Services
      Implement secure communication using the SSL
      Describe the IPsec architecture
      Configure security using the skip utility in the SunScreen software
Authenticating access
      Apply network security probing tools
      Describe using the GUI to configure the SAINT
      Configure the SAINT network analysis tool
      Interpret SAINT reports
      Detect network analyzer attacks
Security Lab
      Restrict network services
      Defend network services
      Use Berkeley "r" commands for remote connections
      Secure services with the chroot command
      Integrate services using the Pluggable Authentication Module
      Describe the Sun enterprise authentication mechanism (SEAM)