1. Home
  2. Training Library
  3. Linux Security and Hardening | CSL4 A3.1 |

Introduction

Introduction
Overview
Difficulty
Beginner
Duration
3h 21m
Description

In this section, you’ll take a deep dive into Linux security. You’ll build your knowledge and skills through a comprehensive overview of the key areas that you need to know to secure Linux systems.

You’ll begin with Linux security in general before moving on to physical security and the countermeasures you can employ to protect your hardware. From there, you’ll explore authentication systems and the various account types on a Linux system, and how to secure each one. You'll also learn how to enforce strong passwords and manage account and password expirations.

In the networking section, you'll learn how to secure network services that run on Linux systems. You'll also learn how the local firewall works in Linux and how to configure it. You’ll learn about file system security and how permissions work in detail, including special modes, file attributes, and ACLs. You'll also discover what rootkits are, how to detect them, and how to remove them.

You’ll also find several security resources you can use to continue your security education and stay on top of the latest security issues for Linux distributions.

There are several knowledge checks as you go through these resources. These will help you identify any areas that you might need or want to review. At the end you’ll find a final exam, where you can test yourself on what you’ve learnt.

Learning Objectives

  • Get a general view of Linux security including roles, network services, encryption, accounts, and multifactor authentication
  • Learn specific strategies for mitigating physical security risks and protecting your Linux systems against the most common physical attacks
  • Learn about data encryption and how to implement it on new Linux systems, as well as those that are already in service
  • Understand the different types of accounts you'll find on a Linux system and the special precautions you need to take with each account type
  • Learn how to enforce good password security practices on your Linux systems
  • Learn about multi-factor authentication and how it can be implemented in Linux
  • Learn techniques and strategies to secure network services
  • Learn how to secure your files and directories on Linux through permissions, data sharing, special modes, file attributes, ACLs, and rootkits
Transcript

In this section of the course, you'll learn why Linux is considered to be a relatively secure operating system. We'll talk about a special account on Linux systems called the superuser and how it differs from other accounts on a Linux system. You'll learn why Linux systems are often avoided by attackers and why this is both a good and bad thing. Next, we'll look at the security implications of using open source software such as Linux. From there, you'll learn how Linux systems manage software and security benefits that result from that design. We'll also look at the roles users and system administrators play in security. Next, we'll look at several security principles that you can use to guide you in making security-conscious decisions going forward. You'll also learn how to look at software and network services through the lens of security. We'll also touch on encryption, how to handle accounts and multi-factor authentication. Finally, we'll wrap up things with a discussion on the principle of least privilege, what that means and how you can apply it to your Linux systems.

About the Author