RHS427 - Introduction to SELinux and Red Hat Targeted Policy

• RHCE certification or equivalent work experience is required. Either RH133 and RH253, or RH300 is acceptable.
• Successful participants in this class will understand the Linux security model.
• Familiarity with some of the services protected by the Red Hat Targeted Policy is useful. These services include: httpd, squid, bind, dhcpd, ypserv, ypbind, portmap, syslogd, ntpd, snmpd, mysqld, postgresql.

To assist you in determining if you have sufficient system administration knowledge to take RHS427, try taking the following pre-assessment questionnaires:

• RH033 Pre-assessment Questionnaire
• RH133 Pre-assessment Questionnaire
• RH253 Pre-assessment Questionnaire

In order to ensure that the prerequisites for RHS427 are met, you should expect to receive a high score for the RH033 and RH133 classes (36 points or more) and a moderate score for the RH253 class (24 points or more). If one or more of these scores falls below the recommended level, consider taking the related class before taking RHS427.

Price:

AUD

920

():

4

Duration:

1 day
Training Start Time: 9:00 a.m.
Training End Time: 4:30-5:00PM (depending on class progress)

What you will learn:

1. Introduction to SELinux
   • Introduction
     • Discretionary vs. Mandatory Access Controls
     • The SELinux Solution
   • SELinux History
   • Architecture
     • Domains/Types
     • Roles/User Identities
     • Security Contexts
   • Security Policy
     • What is an SELinux Policy?
     • The Red Hat Targeted Policy
     • Configuring the Targeted Policy
   • Working with Files and Processes
     • Identifying a File´s Security Context
     • Identifying a Process´s Security Context
     • Identifying a User´s Security Context
     • SELinux and File Archiving
   • Lab 1: Understanding SELinux
2. Using SELinux
• Controlling SELinux
• Enabling SELinux
• Enforcing vs. Permissive Modes
• Setting a Policy
• system-config-securitylevel and Other Tools
• The /selinux Filesystem
• File Security Contexts
• Identifying a File´s Security Context
• Default Contexts
• Determining the Proper Context for a File
• Security Context at File Creation Time
• Changing a File´s Security Context
• Changing Security Contexts for a Directory Tree
• Special Topics in File Security Contexts
• Removeable Media
• Default Contexts
• Setting Contexts at Mount Time
• Setting Contexts in /etc/fstab
• Setting Contexts for Remote Filesystems Mounted Locally
• Process Security Contexts
• User Security Contexts
• Lab 2: Working with SELinux
3. The Red Hat Targeted Policy
• Protected Services
• Identifying Protected Services
• Disabling SELinux on a Per-Service Basis
• Apache
• Security Contexts for Web Content
• Name Service
• NIS Server and Client
• Other Services
• dhcpd, portmap, squid, syslogd
• nscd, ntpd, snmpd
• File Contexts for Special Directory Trees
• /etc, /home, and other Important Directory Trees
• Adding a New Filesystem
• Special Executables
• Troubleshooting
• Identifying an SELinux Denial
• The "avc: denied" Message
• Strategies
• Lab 3: Understanding and Troubleshooting the Red Hat Targeted Policy
4. Appendix: A Review of Extended Regular Expressions