SC-300: Administering Security on the Solaris Operating System

SC-300 Duration 5 Days


Who Can Benefit

System administrators or security administrators who have responsibility for administering one or more homogeneous Solaris OS systems or administering security on one or more Solaris OS systems.

 

Prerequisites

  • To succeed fully in this course, students should be able to:

  • Demonstrate basic Solaris OS system and network administration skills
  • Install the Solaris OS
  • Administer users, printers, file systems, networks, and devices on the Solaris OS
  • Demonstrate a basic understanding of Transmission Control Protocol/Internet Protocol (TCP/IP) networking


    • Related Courses

    Before: SA-399: Network Administration for the Solaris 9 Operating System 

    Course Content

    Module 1 - Exploring Security
  • Describe the role of system security
  • Describe historical examples of break-ins
  • Define security terminology
  • Classify security attacks
  • Describe the motivations of an attacker
  • Run an intrusion detection system
  • Define a security policy
  • Use the open source security tools


    • Module 2 - Using Solaris OS Log Files
  • Describe the Solaris OS standard log files
  • Configure the system logging (syslogd) utility
  • Monitor log files using the swatch tool
  • Describe the Solaris OS monitoring tools
  • Collect information using the Solaris OS accounting package
    •  

    Module 3 - Examining the Solaris OS Basic Security Module (BSM)
  • Configure BSM auditing
  • Start and stop the BSM
  • Create an audit trail using the BSM
  • Generate an audit trail
  • Interpret and filter audit data
  • Implement BSM device management
    •   

    Module 4 - Preventing Security Attacks

  • Recognize Trojan horses
  • Identify back door attacks
  • Detect and prevent Trojan horse and back door attacks
  • Use rootkits to hide attackers
  • Identify Denial of Service (DoS) attacks
    •  

    Module 5 - Administering User Accounts Securely 
  • Administer regular users
  • Administer superuser accounts
  • Secure guest accounts
  • Protect dormant accounts
  • Check user security
  • Classify non-login accounts
  • Limit user options with restricted shells
    •  

    Module 6 - Administering Password Security
  • Describe password mechanisms
  • Run a password-cracking program


    • Module 7 - Securing Root Access
  • Control root access with role based access control (RBAC)
  • Control root access with the sudo utility


    • Module 8 - Preventing File System Attacks
  • Set up the root partition
  • Set file system permissions for security
  • Describe set-user-ID and set-group-ID permissions
  • Secure files using access control lists (ACLs)
  • Describe other security defense mechanisms
  • Protect systems using backups and restores


    • Module 9 - Auditing File Systems
  • Describe file system auditing
  • Describe file system auditing tools
  • Using the TripWire tool to audit file systems


    • Module 10 - Attacking Network Data
  • Define network sniffing
  • Describe network sniffer tools
  • Defend against network service attacks


    • Module 11 - Securing Network Data
  • Implement secure communication using the SSL
  • Describe the IPsec architecture
  • Configure security using the skip utility in the SunScreen software  


    • Module 12 - Analyzing Network Services
  • Apply network security probing tools
  • Describe using the GUI to configure the SAINT
  • Configure the SAINT network analysis tool
  • Interpret SAINT reports
  • Detect network analyzer attacks


    • Module 13 - Securing Network Services
  • Restrict network services
  • Defend network services
  • Use Berkeley "r" commands for remote connections
  • Secure services with the chroot command
  • Integrate services using the Pluggable Authentication Module (PAM)
  • Describe the Sun enterprise authentication mechanism (SEAM)


    • Module 14 - Automating Server Hardening
  • Describe system hardening
  • Describe system hardening using the SST
  • Set up the SST


    • Module 15 - Authenticating Network Services
  • Describe network authentication using TCP wrappers
  • Configure host access control
  • Use banners with TCP wrappers


    • Module 16 - Securing Remote Access   
  • Describe the benefits of Secure Shell
  • Configure Secure Shell


    • Module 17 - Securing Physical Access
  • Assess the risk from physical intrusion
  • Apply physical security measures


    • \Module 18 - Connecting the Enterprise Network to the Outside World
  • Design the network to improve security
  • Running enterprise security audits
  • Explain the role of security audits
  • Identify common sources of security information

    •