SELinux Administration Basic Course

Seminarziel

In the SELinux Administration Basic Course, participants acquire comprehensive knowledge in managing and configuring SELinux (Security-Enhanced Linux). They learn how to effectively implement and tailor SELinux in various Linux-based systems. The course focuses on familiarizing participants with fundamental principles and techniques to enhance the security and integrity of systems.

Through hands-on exercises and case studies, participants will be equipped to create SELinux policies, fend off attacks and tailor security policies to specific requirements. Upon completing the course, participants will be capable of successfully administering and optimizing SELinux in various environments.

Inhalt

• Fundamental SELinux Concepts
  • Course Overview
  • Enhanced Security for Linux
  • Labeling All Resources and Objects
  • Defining and Distributing Policies
  • Differentiating Between Policies
• Understanding SELinux Decisions and Logging-Switching
  • Enabling and Disabling SELinux
  • SELinux Logging and Auditing
  • Other SELinux-Related Event Types
  • Getting Help with Denials
• Managing User Logins
  • User-Oriented SELinux Contexts
  • SELinux Users and Roles
  • Handling SELinux Roles
  • SELinux and PAM (Pluggable Authentication Modules)
  • Process Domains and File-Level Access Controls
  • About SELinux File Contexts
  • Maintaining or Ignoring Contexts
  • SELinux File Context Expressions
  • Changing File Contexts
  • The Context of a Process
  • Limiting the Scope of Transitions
  • Types, Permissions, and Restrictions
• Controlling Network Communication
  • From IPC (Inter-Process Communication) to TCP and UDP Sockets
  • Linux Netfilter and SECMARK Support
  • Labeled Networks
  • Using Netlabel/CIPSO (Common IP Security Option)