Module 17 Overview: Linux Security Best Practices

Video Activity

Join over 3 million cybersecurity professionals advancing their career

Required fields are marked with an *

View all SSO options

Already have an account? Sign In »

CompTIA Linux+

Course

Time

21 hours 25 minutes

Difficulty

Intermediate

CEU/CPE

Video Transcription

00:00

>> Hey, Cybrarians.

00:00

>> Welcome back to the Linux+ course here at Cybrary.

00:00

>> I'm your instructor, Rob Goelz.

00:00

In today's lesson,

00:00

>> we're going to be moving into Module 17,

00:00

>> where we're going to cover security best practices.

00:00

Upon completion of today's lesson,

00:00

you are going to be able to plan

00:00

>> for the security best-practice objectives

00:00

>> that are going to be on the Linux+ exam,

00:00

and then we're going to talk about

00:00

>> the content plan for Module 17

00:00

>> and how it relates to the exam objectives.

00:00

>> What will you take away from this module?

00:00

Well, we're going to talk about

00:00

security best practices in Linux,

00:00

and we're going to talk about

00:00

>> why these practices are implemented.

00:00

>> We're going to use that information in this module

00:00

>> when we go forward to protect your systems,

00:00

>> and also we're going to modify Linux

00:00

as directed to secure the systems.

00:00

Overall, this is going to help us

00:00

>> to defend our systems from compromise.

00:00

>> In this module, we're going to

00:00

protect our boot up with boot security.

00:00

We're also going to talk about

00:00

>> how we can validate logins

00:00

>> using multi-factor authentication.

00:00

>> We're going to discuss remote authentication

00:00

and securing LDAP.

00:00

Then we're going to talk about how we secure Kerberos

00:00

>> and disable SSH root login.

00:00

>> We're going to talk about enforcing PKI

00:00

>> and password-less logins,

00:00

>> and then putting apps in jail with chroot.

00:00

>> We're going to talk about

00:00

>> enforcing no share IDs and denying hosts.

00:00

>> We're going to talk about disk partitioning

00:00

and changing default ports.

00:00

We're going to disable

00:00

>> or uninstall non-secure services,

00:00

>> enable SSL and TLS,

00:00

>> and turn on auditing with auditd,

00:00

>> and also monitor CVEs.

00:00

>> Finally, we're going to talk about

00:00

discouraging and disabling USB devices,

00:00

how we encrypt disks using LUKS.

00:00

We're going to talk about restricting job scheduling,

00:00

disabling Control Alt Delete,

00:00

>> and adding banner messages.

00:00

>> In this lesson,

00:00

>> we covered the security best practices

00:00

>> that are covered on the Linux+ exam,

00:00

>> and then we talked about how the content in Module 17

00:00

>> maps to those objectives.

00:00

>> Thanks so much for being here,

00:00

>> and I look forward to seeing you in the next lesson.

Up Next

Boot Security (Discussion and Demo)

Multifactor Authentication Methods: Tokens, OTP and Biometrics

Remote Authentication Options

LDAP Security Overview

Kerberos Security

View All

Instructed By

Rob Goelz

Systems Engineer

Instructor