System administrators, consultants, and other IT professionals responsible for the planning, implementation, and maintenance of network servers. While the emphasis is on running these services on Red Hat Linux, and the content and labs will assume its use, system administrators and others using proprietary forms of Unix may also find many elements of this course relevant.

• Have completed RH-253, RH-300, or RHCE certification or equivalent work experience (required for this course)
• Display knowledge of the essential elements of how to configure the services covered, as this course will be focusing on more advanced topics from the outset

N/A

Module 1 - Securing BIND

• Name server topology: public vs. private, DMZs, etc.
• Configuring appropriate recursion and fetching policies
• Using authentication keys
• Running BIND in a chrooted environment

Module 2 - Improving NIS and NFS

• Configurations to avoid
• Restricting accounts

Module 3 - Securing LDAP

• Configuring TLS authentication
• Restricting access to directory schema

Module 4 - Locking Down Sendmail

• Configuring access control
• Authentication configuration options, including TLS
• Implementing the Real-time Black Hole List and other anti-spam features

Module 5 - Secure Email Alternatives: imaps and pop3s

• SSL-tunneled IMAP and POP3 mail

Module 6 - Restricting FTP Access

• Configuring restricted guest account

Module 7 - Mastering host-based access controls

• Advanced xinetd configuration
• Advanced tcp_wrappers configuration

Module 8 - Securing Apache

• Containing CGI risks
• Auditing PHP and scripts
• Controlling and monitoring hosted sites

Module 9 - Using Kerberos Authentication

• "Kerberizing" services
• Using Kerberos in heterogeneous environments

Module 10 - The Secure Shell: OpenSSH

• Using public-private key pairs for authentication
• Remote administration using OpenSSH
• Port-forwarding
• Alternate authentication methods

Module 11 - Database Security