RCS Education

The Administering Security on the Solaris Operating System course provides students with the skills to implement, administer, and maintain a secure Solaris Operating System (Solaris OE).

Students who can benefit from this course are system administrators or security administrators who have responsibility for administering one or more homogeneous Solaris OE systems or administering security on one or more Solaris OE systems.

To succeed fully in this course, delegates should be able to:

4
Demonstrate basic Solaris OE system and network administration skills

4

Install the Solaris OE

4
Administer users, printers, file systems, networks, and devices on the Solaris OE

4
Perform user administration in a UNIX operating environment

4
Demonstrate a basic understanding of Transmission Control Protocol/Internet Protocol (TCP/IP) networking

Upon completion of this course, delegates should be able to:

4

Describe security terminology and common forms of security attack

4
Use Solaris OE logging and auditing to identify actual and potential security attacks

4
Secure a Solaris OE host against user and network attacks

4
Use tools, such as Solaris Security Toolkit (SST), to improve system security

Before :

4 SA-399: Network Administration for the Solaris 9 Operating Environment

Module 1 - Exploring Security
4	Describe the role of system security
4	Describe security awareness
4	Describe historical examples of break-ins
4	Define security terminology
4	Classify security attacks
4	Examine the motivations of an attacker
4	Identify data gathering methods
4	Run an intrusion detection system
4	Define a security policy
4	Use the open source security tools
Module 2 - Using Solaris OE Log Files
4	Explore the standard Solaris OE log files
4	Configure and use the system logging utility
4	Monitor log files using the swatch tool
4	Describe the process monitoring tools
4	Collect information using the Solaris OE accounting package
Module 3 - Examining the Solaris OE Basic Security Module (BSM)
4	Configure Basic Security Module (BSM) auditing
4	Start and stop the BSM
4	Create an audit trail using the BSM
4	Generate an audit trail
4	Interpret and filter audit data
4	Implement BSM device management
Module 4 - Preventing Security Attacks
4	Recognize Trojan horses
4	Identify back door attacks
4	Detect and prevent Trojan horse and back door attacks
4	Use rootkits to hide attackers
4	Identify DoS attacks
Module 5 - Administering User Accounts Securely
4	Administer regular users
4	Administer other accounts
4	Configure special user security
4	Limit user options with restricted shells
Module 6 - Administering Password Security
4	Describe password mechanisms
4	Run a password-cracking program
Module 7 - Securing Root Access
4	Control root access with role based access control (RBAC)
4	Control root access with the sudo utility
Module 8 - Preventing File System Attacks
4	Set up the root partition
4	Set file system permissions for security
4	Explore set-user-ID and set-group-ID permissions
4	Use access control lists (ACLs)
4	Examine other security defense mechanisms
4	Protect systems using backups and restores
Module 9 - Auditing File Systems
4	Examine file system auditing
4	Examine file system auditing tools
Module 10 - Attacking Network Data
4	Examine network sniffers
4	Explore network sniffer tools
4	Defend against network service attacks
Module 11 - Securing Network Data
4	Administer regular users
4	Administer other accounts
4	Configure special user security
4	Limit user options with restricted shells
Module 6 - Administering Password Security
4	Describe password mechanisms
4	Run a password-cracking program
Module 7 - Securing Root Access
4	Control root access with role based access control (RBAC)
4	Control root access with the sudo utility
Module 8 - Preventing File System Attacks
4	Set up the root partition
4	Set file system permissions for security
4	Explore set-user-ID and set-group-ID permissions
4	Use access control lists (ACLs)
4	Examine other security defense mechanisms
4	Protect systems using backups and restores
Module 9 - Auditing File Systems
4	Examine file system auditing
4	Examine file system auditing tools
Module 10 - Attacking Network Data
4	Examine network sniffers
4	Explore network sniffer tools
4	Defend against network service attacks
Module 11 - Securing Network Data
4	Implement secure communication using the Secure Socket Layer (SSL)
4	Configure SSL to encrypt and decrypt files
Module 12 - Analyzing Network Services
4	Apply network security probing tools
4	Describe using the GUI to configure the SAINT
4	Configure the SAINT network analysis tool
4	Interpret SAINT reports
4	Detect network analyzer attacks
Module 13 - Securing Network Services
4	Restrict network services
4	Defend network services
4	Use Berkeley r commands for remote connections
4	Secure services with the chroot command
4	Integrate services using the PAM
4	Describe the SEAM
Module 14 - Automating Server Hardening
4	Describe system hardening
4	Describe system hardening using the Solaris Security Toolkit (SST)
4	Set up the SST
Module 15 - Authenticating Network Services
4	Describe network authentication using TCP wrappers
4	Configure host access control
4	Use banners with TCP wrappers
Module 16 - Securing Remote Access
4	Describe the benefits of Secure Shell
4	Configure Secure Shell
Module 17 - Securing Physical Access
4	Assess the risk from physical intrusion
4	Apply physical security measures
Module 18 - Connecting the Enterprise Network to the Outside World
4	Design the network to improve security
4	Running enterprise security audits
4	Explain the role of security audits
4	Identify common sources of security information