timofte andrei
Homepage timofte andrei About PHP timofte andrei About Java timofte andrei About MySQL timofte andrei About C timofte andrei About C++ timofte andrei About Linux timofte andrei Contact Us
LPIC 3 - Exam 303: Security
timofte andrei
Linux, originally created by Linus Torvalds, is an operating system that is freely distributed under the terms of the GNU Public License. The Linux Professional Institute (LPI) is a non-profit organization that provides vendor-independent professional certification for Linux system administrators and programmers. Linux Professional Institute has a fundamental interest in championing workforce development initiatives for Linux and Open Source professionals. It also work on wider industry initiatives to promote the creation of Linux jobs and the recognition of the value of IT certification. The Linux Professional Institute Certifications (LPIC) provides a qualification that can be used to indicate that someone is competent at a certain level. The exams cover a range of different Linux based topics. The exams are available in almost every country in the world, and are translated into a number of different languages. The exams are primarily multiple choice questions, with some written answers. These are either taken using a computer based system, or using a paper based exam. The organisation encourages active community participation in creating and updating exams. Anyone can use the exam Objectives Development wiki, or the Exam Development Mailing List to participate in the creation of new exams and the update of the existing ones. The exams are distribution-neutral, requiring a general knowledge of Linux rather than specifics about a certain distribution. This is shown in the way that the exams deal with the differing package management formats .deb and .rpm. In earlier versions of the test one of these was chosen by the candidate. In the current version the candidate is expected to know both formats. The examinations can be taken at any Pearson VUE testing center worldwide. To pass LPI-303 Security specialty you should have necessary skills and experience as outlined in LPIC-3 core exam, you should design and implement customized solutions to complex automation problems such as multi-site enterprises and heavy-duty Internet sites. Also you should initiate projects and work against a budget, supervise assistants and help troubleshoot problems and serve as a consultant to higher management.

Detailed Objectives

Topic 320: Cryptography

320.1 OpenSSL

Key Knowledge Areas
certificate generation
key generation
SSL/TLS client and server tests

320.2 Advanced GPG

Key Knowledge Areas
GPG encyption and signing
private/public key management
GPG key servers
GPG configuration

320.3 Encrypted Filesystems

Key Knowledge Areas
dm-crypt and awareness of CBC, ESSIV, LRW and XTS modes

Topic 321: Access Control

321.1 Host Based Access Control

Key Knowledge Areas
PAM and PAM configuration files
password cracking

321.2 Extended Attributes and ACLs

Key Knowledge Areas
EAs and attribute classes

321.3 SELinux

Key Knowledge Areas
SELinux configuration and command line tools
TE, RBAC, MAC and DAC concepts and use

321.4 Other Mandatory Access Control Systems

Key Knowledge Areas

Topic 322: Application Security

322.1 BIND/DNS

Key Knowledge Areas
BIND vulnerabilities
chroot environments

322.2 Mail Services

Key Knowledge Areas
Postfix security centric configuration
securing Sendmail
chroot environments

322.3 Apache/HTTP/HTTPS

Key Knowledge Areas
Basic Authentication

322.4 FTP

Key Knowledge Areas
Pure-FTPd configuration and important command line options
vsftpd configuration
chroot environments

322.5 OpenSSH

Key Knowledge Areas
OpenSSH configuration and command line tools
OpenSSH key management and access control
Awareness of SSH protocol v1 and v2 security issues

322.6 NFSv4

Key Knowledge Areas
NFSv4 security improvements, issues and use
NFSv4 pseudo file system
NFSv4 security mechanisms (LIPKEY, SPKM, Kerberos)

322.7 Syslog

Key Knowledge Areas
syslog security issues
chroot environments

Topic 323: Operations Security

323.1 Host Configuration Management

Key Knowledge Areas

Topic 324: Network Security

324.1 Intrusion Detection

Key Knowledge Areas
Snort configuration, rules and use
Tripwire configuration, policies and use

324.2 Network Security Scanning

Key Knowledge Areas
Nessus configuration, NASL and use
Wireshark filters and use

324.3 Network Monitoring

Key Knowledge Areas
Nagios configuration and use

324.4 netfilter/iptables

Key Knowledge Areas
Iptables packet filtering and network address translation

324.5 OpenVPN

Key Knowledge Areas
OpenVPN configuration and use
HTML/CSS Courses
timofte andrei
HTML is the basic language of web programmming domain. This course presents the principles of HTML and CSS and the way it can be combined this two languages. With HTML and CSS we can create profesional webpages with a simple text editor and a common Internet browser.
Read More
Javascript/JQuery Courses
timofte andrei
This course presents the basics of Javascript programming language and also the JQuery technology. Javascript is a very popular web programming language and it's very useful for creating interactive web pages. DHTML is a combination of HTML, CSS and Javascript.
Read More