Unix Audit & Security Course
Course Description
The course is intended for those who need to find out what UINX is and where the different components are located, with a specific security objective in mind. In conjunction with an explanation of the technology, the prime risks and defences will be pointed out. Delegates who will benefit most from this course are typically computer auditors, security specialists and security conscious managers. The course also serves as a useful general introduction to UNIX.
Having acquired a high level understanding of UNIX, you will learn how to assess security hands on. All aspects are covered, both business and technical. You will hear commentary on certain real disasters that have happened to high profile companies in the past.
Planning for audits and discussion of suitable tests forms a substantial part of the course. Delegates will get a chance to run audit and security related commands. See what the administrators do. Find out how you could script your own TRIPWIRE.
Though the course is designed specifically for a SUN Solaris installation, it will serve as a good general overview for any flavour of UNIX.
Having acquired a high level understanding of UNIX, you will learn how to assess security hands on. All aspects are covered, both business and technical. You will hear commentary on certain real disasters that have happened to high profile companies in the past.
Planning for audits and discussion of suitable tests forms a substantial part of the course. Delegates will get a chance to run audit and security related commands. See what the administrators do. Find out how you could script your own TRIPWIRE.
Though the course is designed specifically for a SUN Solaris installation, it will serve as a good general overview for any flavour of UNIX.
Course pre-requisites:
Delegates should have had some experience of using UNIX beforehand and be able to enter simple shell commands, like ls and more, in a terminal environment. Shell programming and C programming experience would be an advantage.
Topics covered on the 2 day Unix Audit & Security course
Introduction
- The popularity of UNIX, UNIX attributes, UNIX security, the structure of the UNIX system
Processes
- The ps command, daemon processes, cron daemon, validating executables
Startup and Shutdown
- Shutdown, booting UNIX, Init states, rc scripts, fsck
The UNIX Filesystem
- File system structure (SVR4), File and directory permissions, locating a UNIX file - the find command, disk management information
Managing users
- Logging in, the super user /etc/passwd and /etc/shadow, control files in /etc affecting users and user sessions, password quality controls, session records, groups, profiles, Managing application systems - users, groups and file accesses
Secure inter server working
- Network services, the services file, inetd.conf, examples of insecure services
System compromise - detection and response
- Programmed threats, determine if your system has been compromised
- steps for recovering from a UNIX root compromise
- software tools
Course Classification:
Technical Training Course
This is an instructor led training course taught in a classroom based environment.
Scheduled course dates
| March 2010 | April 2010 | May 2010 | June 2010 | July 2010 |
| 18-19 | 29-30 | - | - | - |
View full schedule of Network Security courses
View full schedule of Generic Unix courses
Print / Download PDF Version of full course schedule
If you would prefer to run this course at your premises as you have several employees to place on the course perhaps, then we are also able to offer onsite Unix Training and bespoke Unix courses
The Unix Audit & Security course qualifies for the PTR Training Passport SAVE IT Scheme, which offers discounts on bookings for multiple courses and/or multiple delegates.