LinuxCBT - Deb5x Edition

Tutorial & e-learning. July 27, 2010 by bomb.
LinuxCBT - Deb5x Edition
LinuxCBT - Deb5x Edition | ISO | 2.82 GB
Genre: eLearning

LinuxCBT Deb5x Edition focuses primarily on the open-source Debian Linux 5 operating system. LinuxCBT Deb5x Edition prepares you or your organization for successfully deploying and managing business-critical Debian GNU/Linux-based server solutions. Let LinuxCBT Deb5x Edition teach you what traditional training outlets and other CBTs do not; solid Debian GNU/Linux skills!

Recommended Prerequisites:
* Open mind & determination to master Linux and related open-source applications
* Basic MS Windows skills
* Basic understanding of networking concepts
* Access to a spare PC to perform all of the installations and exercises


# Introduction to & Installation of Debian GNU/Linux

* Install Debian Linux Using Various Methods
o Explore network layout
o Identify Debian GNU/Linux distribution sites
o Explain various methods of obtaining Debian GNU/Linux
o Explain the various branches
o Prep the Intel-based system for a minimal installation
o Install Debian Linux on x86 machine using local media and the Internet
o Install Debian Linux on Intel-based x86 machine using CD-ROMs
o Configure the installation process with Server-oriented packages
o Prep the Intel-based system for a PXE network installation
o Identify Network Installation ISO Image repositories
o Configure the installation process with Server-oriented packages
o Prepare VMWare host server
o Install Debian GNU/Linux on VMWare Server

# Debian GNU/Linux Fundamentals

* Explore Linux boot sequence
* Explore Debian GNU/Linux GNOME Desktop Interface & Default Applications
* Basic Debian GNU/Linux Skills
* Demonstrate usage of the following useful commands & concepts
o ls, pwd, cd, cp, mv, rm, mkdir, rmdir, whoami, man, info
o alias, cat, file, chmod, chown, history
o Standard in/out, UNIX Pipes, Redirection, Command Chaining
o ps, df, free, vmstat, top, kill
o less & more, head & tail, find
o which & whereis, w, who
o PING (Packet Internet Groper)
o dig (Domain Information Groper) – used to query DNS servers
o Demonstrate typical usage of the vi text editor
o Demonstrate typical usage the nano text editor
o Tarball Archiving & compression of files & directories with tar|gzip|bzip2|unzip
o Explain UNIX/Linux file security & permissions (-rwxrwxrwx)
o Use mount/umount to access CD-ROM and floppy devices
o Explore /etc/fstab (File system Table file)
o Explore TCP/IP Configuration
o Explore Wget and demonstrate its typical usage to interface to HTTP/FTP servers
o Explore GNU: GREP | Awk | Sed
* Advanced Package Management Tool (APT) Concepts
o Explain classes of Debian GNU/Linux Packages
o Identify Debian GNU/Linux Package Management Tools
o Inventory currently installed DEB packages
o Identify key Advanced Package Tool (APT) configuration files
o Search for Debian GNU/Linux packages using Advanced Package Tool (APT)
o Install/Update/Remove software using APT
o Configure APT to query multiple sources for packages
o Use DPKG to install a DEB package located on an EXT3 File System
o Configure APT to install packages from varying versions of Debian GNU/Linux
o Use Aptitude to manage Debian GNU/Linux packages
o Install Apt-Spy using APT to identify optimal mirrors
* Disk & Volume Management
o Provision additional Storage partitions using FDISK
o Use MKE2FS to provision multiple EXT2 & EXT3 File Systems
o Provision additional Storage partitions using Parted
o Provision additional Swap storage
o Use MKSWAP & SWAPON to enable additional Swap storage
o Update File System Table (FSTAB) to reflect system changes
o Explore Logical Volume Management (LVM) Configuration
o Create volume sets using: Logical Volume Management (LVM)
* Package Management
o Discuss various package management options
o Explore package management repositories
o Use DPKG to install a .deb package
o Install packages using ‘apt-get’
o Manage packages using ‘aptitude’
o Explain Debian GNU/Linux System V Init Runlevel (0 – 6) concepts & applications
o Explore INIT configuration
o Identify key startup files, including scripts (inittab,Sscripts,Kscripts,etc.)
o Switch between run levels and evaluate
o Demonstrate using SSH to authenticate to remote Linux hosts without passwords
* Explore the CRON scheduling daemon & configuration
o Identify key Cron configuration scopes (Global & User)
o Explain Crontab file format and applicable options
o Define custom cron jobs system-wide
o Define custom cron jobs user-wide
o Evaluate results of cron jobs

# top
# Core Network Services

* System Logging via Syslog, Syslog-NG and Logrotate
o Explanation of syslog facilities & levels
o Demonstrate syslog administration
o Demonstrate Cisco to Linux SYSLOG functionality
o Migrate system to Syslog-NG
o Discuss Syslog-NG features and benefits
o Explore automatic log rotation and customization via Logrotate
o Configure Logrotate to rotate & compress sample log files
* IPv4 & IPv6 Configuration
o Identify key files for the transition from DHCP to Static addressing
o Configure Linux client with static TCP/IP parameters for network communication
o Configure Virtual (Sub) Ethernet Interfaces to faciliate multiple IP addresses
o Explain IPv6 addresses (prefixes)
o Explore IPv6 configuration on Linux and Cisco router
* Implement Network Time Protocol (NTP) Client/Server
o Configure Network Time Protocol (NTP) to perform client/server time synchronization
o Identify NTP bounded UDP interfaces
o Synchronize Debian GNU/Linux NTP with RedHat Linux Stratum 2 NTP server
o Configure RedHat Linux NTP server to synchronize with Debian GNU/Linux server
* Trivial File Transfer Protocol Daemon (TFTPD)
o Discuss features and benefits
o Explore TFTPD configuration
o Backup Cisco router and firewall configuration using TFTPD
o Evaluate results
* Very Secure File Transfer Protocol Daemon (VSFTPD) & LFTP Client
o Discuss features and benefits
o Explore configuration
o Test FTP connectivity
o Explore LFTP client features
o Evaluate results
* Telnet Daemon (TELNETD) for temporary clear-text shell communications
o Discuss features and benefits
o Install TELNETD using Aptitude
o Explore configuration and usage
o Examine Message of the day banners (MOTD), /etc/issue file (pre-login banner/display info.)
* Commonly-used Network Utilities
o Traceroute & MTR (PING & Traceroute functionality)
o Route
o Whois
* Dynamic Host Configuration Protocol (DHCP) services
o Explain the various steps of the DHCP process
o Configure global & scope-level DHCP options
o Configure IP reservations based on layer 2 MAC addresses
o Enable Linux DHCP services
o Configure Windows/Linux clients to receive dynamic addresses from Linux
o Examine evidence of clients requesting addresses from DHCPD
* Implement the Berkeley Internet Naming Daemon (BIND) Domain Name Server (DNS)
o Implement BIND 9.x
o Configure BIND as a caching-only DNS server
o Test caching-only name resolution from Linux hosts
o Configure Linux/Windows 2003 clients to use Linux BIND DNS server
o Configure BIND as an Authoritative DNS server
o Test primary name resolution from Windows & Linux hosts
o Configure BIND as a secondary(slave) DNS server
o Evaluate results of BIND configuration using DIG
o Configure DNS zones
o Configure zone transfers
o Evaluate BIND’s configuration files
o Implement IPv6 DNS AAAA records & evaluate forward IPv6 name resolution
o Implement IPv6 DNS reverse records & evaluate reverse IPv6 name resolution
* Network File System (NFS)
o Discuss features and benefits
o Explore NFS configuration
o Test NFS on clients and servers
* Implement Linux & Windows Integration via Samba
o Implement SMBFS integration with Debian GNU/Linux File System
o Mount Windows shares seamlessly using Samba File System (SMBFS)
o Configure FSTAB to support repetitive mounts
o Implement secure SMBFS credentials for mounting
o Install Samba Server support
o Install Samba Web-based Administration Tool (SWAT)
o Configure Samba file sharing
o Configure Samba with multiple NETBIOS aliases
o Configure Samba Windows Internet Name Server (WINS) support
o Evaluate Windows XP client access to Debian GNU/Linux Samba server

# top
# Application Services – Linux|Apache|MySQL|PHP (LAMP)

* Web Application Services
o Implement Apache Web Server
o Examine httpd.conf file directives
o Implement virtual directories using Apache and symbollic links
o Implement Redirects using Locate and various Apache directives
o Configure virtual hosts bound to the primary IP address and port
o Configure virtual hosts bound to alternate virtual IP addresses and ports
o Implement Apache logging system per virtual host
o Configure basic authentication to virtual hosts containers via Directory directives
o Configure digest authentication
o Implementation of Webalizer Log Analysis software
o Generate web reports using Webalizer
o Implementation of PHP Dynamic Web Access Scripting Engine
+ Evaluate PHP Dynamic Web Access Scripting Engine installation results
+ Test basic PHP script-processing using sample scripts
* MySQL Relational Database Management System
o Install MySQL Relational Database Management System
o Secure access to MySQL
o Create sample MySQL databases
o Install PHPMyAdmin for web-based management of MySQL instances
o Explain & Secure access to PHPMyAdmin
o Explore PHPMyAdmin’s interface
* Postfix MTA
o Install Postfix MTA
o Introduction to Postfix Message Transfer Agent (MTA)
o Use Mutt to demonstrate outbound mail handling using Postfix
o Explore Postfix Configuration
* Post Office Protocol Version 3 (POP3)
o Explain POP3 concepts and applications
o Implement POP3 daemon
o Connect to POP3 daemon using Windows Outlook Express client
o Use Mutt to send SMTP-based messages to POP3 account
* Internet Messaging Access Protocol (IMAP)
o Explain IMAP concepts and applications in comparison to POP3
o Implement IMAP services
o Connect to IMAP services from remote Windows Outlook Express client
* Web-based Mail Implementation using Squirrel-mail
o Describe required squirrel mail components for web-mail integration
o Install squirrel mail on Debian GNU/Linux system
o Configure Apache virtual directory for squirrel mail integration
o Configure Apache Virtual Host for squirrel mail integration
o Configure BIND DNS services for squirrel mail integration
o Explore squirrel mail’s web-based interface

# top
# Security Implementation Techniques

* IPTABLES (Netfilter Linux Kernel-based Firewall)
o Discuss IPTABLES/Netfilter Concepts
o Explain IPTABLES default chains/filters and policies
o Examine TCP/ICMP communications pre-IPTABLES chains
o Implement ICMP inbound filtration based on various hosts
o Use Cisco PIX Firewall to verify ICMP debugging
o Filter traffic based on Layer-4 TCP/UDP (Source/Destination Ports) information
o Restrict access to various daemons (SSH/FTP/HTTP/etc.)
o Test connectivity locally and remotely (RedHat/Windows/etc.)
* Network Mapper (NMAP)
o Obtain, compile and install current version of NMAP
o Identify commonly used NMAP options/switches/parameters
o Perform default TCP SYN-based ethical scans of local and remote resources
o Explain typical TCP handshake protocol while using NMAP
o Examine the results of scans on remote Cisco firewall with debugging mode enabled
o Perform default TCP Connect-based ethical scans of local and remote resources
o Examine the results of scans on remote Cisco PIX Firewall with debugging mode enabled
o Use NMAP to scan using aliased and spoofed IP addresses
o Peform local ethical scans
o Identifiy key NMAP configuration files
o Use NMAP to perform operating system fingerprinting
o Peform subnet-wide ethical scans
* Lockdown (Debian GNU/Linux System Lockdown)
o Explain potential network-based entry points to the system
o Identify superfluous daemons/services using NETSTAT & NMAP
o Disable superfluous daemons/services using update-rc.d and proper scripts
o Identify changes in the system as a result of performing the lockdown
o Disable superfluous daemons/services using XINETD
o Restrict source address access to daemons/services using XINETD
o Restrict bind address for daemons/services using XINETD
o Discuss application-layer security for added protection (MySQL/Apache/SSH)
o Force SSHD to bind to desired layer-3 IP address for controlled security
o Secure the system using IPTABLE for added security
* TCPDump & Wireshark
o Discuss features and benefits
o Explore TCPDump usage
o Capture interesting traffic
o Analyze with Wireshark

LinuxCBT - Deb5x Edition

Download from Hotfile

Download from FileServe

Download File

Here you can download files online. Unlimited access to all sources file with one click direct download link!
  • Featured link
  • [27-07-2010]