Preloader

Overview


Linux RHCSS Certification Training in Delhi

RHCSS trains people with RHCE-level competency to understand, prevent, detect, and properly respond to sophisticated security threats aimed at enterprise systems. The course equips system administrators and security professionals with the skills and knowledge to harden computers against both internal and external attacks, providing in-depth analysis of the ever-changing threat models as they pertain to Red Hat Enterprise Linux. It builds on the security skills developed in other Red Hat training courses so that administrators can design and implement an adequate security profile for critical enterprise systems.


  • Module: The Threat Model and Protection Methods

  •  Internet Threat Model and The Attacker's Plan
  •  System Security and Service Availability
  •  An Overview of Protection Mechanisms
  • Module: Cryptography

  •  Internet Threat Model and The Attacker's Plan
  •  System Security and Service Availability
  •  An Overview of Protection Mechanisms
  • Module: Cryptography

  •  Overview of Cryptographic Techniques
  •  Management of SSL Certificates
  •  Using GnuPG
  • Module: BIND and DNS Security

  •  BIND Vulnerabilities
  •  DNS Security: Attacks on DNS
  •  Access Control Lists
  •  Transaction Signatures
  •  Restricting Zone Transfers and Recursive Queries
  •   DNS Topologies
  •  Bogus Servers and Blackholes
  •  Views
  •  Monitoring and Logging
  •  Dynamic DNS Security
  • Module: Network File System

  •  Overview of NFS Versions 2, 3, and 4
  •  Security in NFS Versions 2 and 3
  •  Improvements in Security in NFS4
  •  Troubleshooting NFS4
  •  Client-Side Mount Options
  • Module: Electronic Mail with Sendmail

  •  Vulnerabilities
  •  Server Topologies
  •  Email Encryption
  •  Access Control and STARTTLS
  •  Anti-Spam Mechanisms
  • Module: FTP

  •  Vulnerabilities
  •  The FTP Protocol and FTP Servers
  •  Logging
  •  Anonymous FTP
  •  Access Control
  • Module: Intrusion Detection and Recovery

  •  Intrusion Risks
  •  Security Policy
  •  Detecting Possible Intrusions
  •  Monitoring Network Traffic and Open Ports
  •  Detecting Modified Files
  •  Investigating and Verifying Detected Intrusions
  •  Recovering from, Reporting, and Documenting Intrusions
  • Module: The LDAP Naming Model

  •  Directory Information Trees and Distingued Names
  •  X.500 and "Internet" Naming Suffixes
  •  Planning the Directory Hierarchy
  • Module: Searching and Modifying the LDAP Directory

  •  Using Command Line Utilities to Search the Directory
  •  Search Filter Syntax
  •  Updating the Directory
  • Module: Linux User Authentication with NSS and PAM

  •  Understanding Authentication and Authorization
  •  Name Service Switch (NSS)
  •  Advanced Pluggable Authentication Modules (PAM) Configuration
  • Module: Kerberos and LDAP

  •  Introduction to Kerberos
  •  Configuring the Kerberos Key Distribution Center (KDC) and Clients
  •  Configuring LDAP to Support Kerberos
  • Module: Cross-Platform Centralized Identity Management

  •  Synchronizing Red Hat Directory Server With Active Directory
  •  Managing Users With Winbind and LDAP
  •  Mapping Attributes Between Linux and Windows
  • Module: Introduction to SELinux

  •  Discretionary Access Control vs. Mandatory Access Control
  •  SELinux History and Architecture Overview
  •  Elements of The SELinux Security Model
  •  User Identity and Role
  •  Domain and Type
  •  Sensitivity and Categories
  •  Security Context
  •  SELinux Policy and Red Hat's Targeted Policy
  •  Configuring Policy With Booleans
  •  Setting and Displaying Extended Attributes
  •  Hands-on Lab: Understanding SELinux
  • Module: The Red Hat Targeted Policy

  •  Identifying and Toggling Protected Services
  •  Apache Security Contexts and Configuration Booleans
  •  Name Service Contexts and Configuration Booleans
  •  NIS Client Contexts
  •  Other Services
  •  File Context for Special Directory Trees
  •  Troubleshooting and avc Denial Messages
  •  Setroubleshooted and Logging
  •  Hands-on Lab: Understanding and Troubleshooting the Red Hat Targeted Policy
  • Module: Policy Utilities

  •  Tools Available for Manipulating and Analyzing Policies
  •  apol
  •  seaudit and seaudit_Report
  •  checkpolicy
  •  sepcut
  •  sesearch
  •  sestatus
  •  audit2allow and audit2why sealert
  •  avcstat
  •  seinfo
  •  semanage and semodule
  •  Man Pages
  •  Hands-on Lab: Exploring Utilities
  • Module: Basic Service Security

  •  SELinux
  •  Host-based Access Control
  •  Firewalls Using Netfilter and iptables
  •  TCP Wrappers
  •  xinetd and Service Limits
  • Module: Logging and NTP

  •  Time Synchronization With NTP
  •  Logging: Syslog and its Weaknesses
  •  Protecting Log Servers
  • Module: Network Authentication: RPC, NIS, and Kerberos

  •  Vulnerabilities
  •  Network-Managed Users and Account Management
  •  RPC and NIS Security Issues
  •  Improving NIS Security
  •  Using Kerberos Authentication
  •  Debugging Kerberized Services
  •  Kerberos Cross-Realm Trust
  •  Kerberos Encryption
  • Module: OpenSSH

  •  Vulnerabilities
  •  Server Configuration and The SSH Protocols
  •  Authentication and Access Control
  •  Client-Side Security
  •  Protecting Private Keys
  •  Port-Forwarding and X11-Forwarding Issues
  • Module: Postfix

  •  Vulnerabilities
  •  Security and Postfix Design
  •  Configuring SASL/TLS
  • Module: Apache Security

  •  Vulnerabilities
  •  Access Control
  •  Authentication: Files, Passwords, Kerberos
  •  Security Implications of Common Configuration Options
  •  CGI Security
  •  Server Side Includes
  • Module: Introduction to Directory Services

  •  What is a directory?
  •  LDAP: Models, Schema, and Attributes
  •  Object Classes
  •  LDIF
  • Module: Red Hat Directory Server: Basic Configuration

  •  Installation and Setup of Red Hat Directory Server
  •  Using the Red Hat Console
  •  Using Logging to Monitor Red Hat Directory Server Activity
  •  Backing up and Restoring the Directory
  •  Basic Performance Tuning with Indexes
  • Module: Red Hat Directory Server: Authentication and Security

  •  Configuring TLS Security
  •  Using Access Control Instructions (ACI's)
  •  ACI's and The Red Hat Console
  • Module: Centralized User Authentication with LDAP

  •  Central account management with LDAP
  •  Using migration scripts to migrate existing data into an LDAP server
  •  LDAP user authentication
  • Module: Directory Referrals and Replication

  •  Referrals and Replication
  •  Single Master Configuration
  •  Multiple Master Configuration
  •  Planning for Directory Server Availability
  • Module: Red Hat Enterprise IPA

  •  Understanding IPA
  •  IPA Requirements
  •  Configuring IPA Server
  •  Configuring IPA Clients
  • Module: Using SELinux

  •  Controlling SELinux
  •  File Contexts
  •  Relabeling Files and Filesystems
  •  Mount Options
  •  Hand-on Lab: Working With SELinux
  • Module: Introduction to Policies

  •  Policy Overview and Organization
  •  Compiling and Loading the Monolithic Policy and Policy Modules
  •  Policy Type Enforcement Module Syntax
  •  Object Classes
  •  Domain Transition
  •  Hands-on Lab: Understanding policies
  • Module: User and Role Security

  •  Role-based Access Control
  •  Multi Category Security
  •  Defining a Security Administrator
  •  Multi-Level Security
  •  The strict Policy
  •  User Identification and Declaration
  •  Role Identification and Declaration
  •  Roles in Use in Transitions
  •  Role Dominance
  •  Hands-on Lab: Implementing User and Role Based Policy Restrictions
  • Module: Manipulating Policies

  •  Installing and Compiling Policies
  •  The Policy Language
  •  Access Vector
  •  SELinux logs
  •  Security Identifiers - SIDs
  •  Filesystem Labeling Behavior
  •  Context on Network Objects
  •  Creating and Using New Booleans
  •  Manipulating Policy by Example
  •  Macros
  •  Enableaudit
  •  Hands-on Lab: Compiling Policies
  • Module: Anatomy of a Policy

  •  Policy Macros
  •  Type Attributes and Aliases
  •  Type Transitions
  •  When and How do Files Get Labeled
  •  restorecond
  •  Customizable Types
  •  Hands-on Lab: Building Policies

Why Efficient India ?

Our Trainers are having more than 3 years of experience in MNC Company.

Trained 50+ Students.

Well Equipped Computer Lab & Internet.

Interview Preparation & Technical Event.

Strong Practical & Theoretical Knowledge.

Corporate Exposure through Us.

100 % Job Assistance.