This course prepares students to take the LPI 202 exam of the LPIC-2 certification. The Linux Professional Institute (LPI) is the go-to certification body for vendor independent Linux certifications. This course covers more advanced Linux skills such as system management and networking. Students will feel confident taking the LPI LPIC-2 202 exam with in classroom assessments and practice exams.
Current Version: E00
Prerequisites:
LPIC-1 certification or LPI101 "LPIC-1 Exam Prep (Course 1)" and LPI102 "LPIC-1 Exam Prep (Course 2)".
Supported Distributions:
Red Hat Enterprise Linux 6
SUSE Linux Enterprise 11
Course Outline:
- DNS Concepts
- LPI Objectives Covered
- Naming Services
- DNS - A Better Way
- The Domain Name Space
- Delegation and Zones
- Server Roles
- Resolving Names
- Resolving IP Addresses
- Basic BIND Administration
- BIND Configuration Files
- rndc Key Configuration
- Configuring the Resolver
- Testing Resolution
- Configuring a Slave Name Server
- Use rndc to Control named
- Creating DNS Hierarchies
- LPI Objectives Covered
- named.conf Syntax
- named.conf Options Block
- Creating a Site-Wide Cache
- Zones In named.conf
- Zone Database File Syntax
- SOA - Start of Authority
- A & PTR - Address & Pointer Records
- NS - Name Server
- CNAME & MX - Alias & Mail Host
- Abbreviations and Gotchas
- $GENERATE, $ORIGIN, and $INCLUDE
- Subdomains and Delegation
- Subdomains
- Delegating Zones
- in-addr.arpa. Delegation
- Issues with in-addr.arpa.
- RFC2317 & in-addr.arpa.
- Configuring BIND Zone Files
- Create a Subdomain in an Existing Domain
- Subdomain Delegation
- Securing DNS
- LPI Objectives Covered
- Split Namespaces
- Split Namespace with Views
- Address Match Lists & ACLs
- Restricting Queries
- Restricting Zone Transfers
- Running BIND in a chroot jail
- Securing DNS With TSIG
- Securing BIND DNS
- Implementing a Web Server
- LPI Objectives Covered
- Apache Architecture
- Dynamic HTTP Content
- Configuring PHP
- Securing PHP
- Security Related php.ini Configuration
- Installing PHP
- Apache Configuration Files
- httpd.conf - Server Settings
- httpd.conf - Main Configuration
- Adding Modules to Apache
- Virtual Hosting DNS Implications
- httpd.conf - VirtualHost Configuration
- Port and IP based Virtual Hosts
- Name-based Virtual Host
- Apache Logging
- Log Analysis
- Delegating Administration
- Apache Access Controls (mod_access)
- HTTP User Authentication
- Standard Auth Modules
- HTTP Digest Authentication
- Directory Protection
- Directory Protection with AllowOverride
- Common Uses for .htaccess
- Apache Troubleshooting
- Apache Architecture
- Apache Architecture
- Apache Content
- Apache Content
- Using .htaccess Files
- Using .htaccess Files
- CGI Scripts in Apache
- CGI Scripts in Apache
- Maintaining a Web Server
- LPI Objectives Covered
- HTTP Virtual Servers
- Virtual Hosting DNS Implications
- Virtual Hosting Security Implications
- Port and IP based Virtual Hosts
- Name-based Virtual Host
- Scrubbing HTTP Headers
- Symmetric Encryption Algorithms
- Asymmetric Encryption Algorithms
- Digital Certificates
- SSL Using mod_ssl.so
- Configuring Virtual Hosts
- Using SSL Certificates with Apache
- Using SSL Certificates with Apache
- Create a TLS CA key pair
- Using SSL CA Certificates with Apache
- Enable Apache SSL Client Certificate Authentication
- Nginx, Squid, and DHCP
- LPI Objectives Covered
- Nginx
- Squid Overview
- Squid File Layout
- Squid Access Control Lists
- Applying Squid ACLs
- Monitoring Squid
- DHCP Protocol Operation
- IP to MAC Address Mapping with ARP
- Configuring a DHCP server
- Nginx Web Basics
- HTTPS and Reverse Proxy with Nginx
- Installing and Configuring Squid
- Squid Cache Manager CGI
- SAMBA Server Configuration
- LPI Objectives Covered
- Introducing Samba
- Samba Daemons
- Accessing Windows/Samba Shares from Linux
- Samba Utilities
- Samba Configuration Files
- The smb.conf File
- Share Authentication
- Share-Level Access
- User-Level Access
- Mapping Users
- Samba Account Database
- User Share Restrictions
- Samba Share-Level Access
- NFS Server Configuration & Securing FTP Servers
- LPI Objectives Covered
- File Sharing via NFS
- NFSv4
- NFS Clients
- TCP Wrappers
- The /etc/hosts.allow & /etc/hosts.deny Files
- /etc/hosts.{allow,deny} Shortcuts
- Advanced TCP Wrappers
- NFS Server Configuration
- The FTP Protocol
- Active Mode FTP
- Passive Mode FTP
- vsftpd
- Configuring vsftpd
- Anonymous FTP with vsftpd
- Pure-FTPd
- ProFTPD
- NFS Server Configuration
- Configuring vsftpd
- PAM Authentication
- LPI Objectives Covered
- PAM Overview
- PAM Module Types
- PAM Order of Processing
- PAM Control Statements
- PAM Modules
- pam_unix
- pam_limits.so
- pam_cracklib.so
- pam_listfile.so
- pam_tally2.so
- pam_console.so
- Setting Limits with the pam_limits Modules
- Using pam_limits to Restrict Simultaneous Logins
- Configuring an OpenLDAP Server and Client
- LPI Objectives Covered
- LDAP
- What LDAP Provides
- LDAP Concepts
- LDAP Organization
- Entry Referencing
- Online LDAP Data Manipulation
- Querying LDAP Databases
- OpenLDAP: Server Architecture
- OpenLDAP: Backends
- OpenLDAP: Replication
- OpenLDAP: Configuration Options
- OpenLDAP: Configuration Sections
- OpenLDAP: Global Parameters
- OpenLDAP: Database Parameters
- OpenLDAP Server Tools
- Enabling LDAP-based Login
- System Security Services Daemon (SSSD)
- Querying LDAP
- Building An OpenLDAP Server
- Enabling TLS For An OpenLDAP Server
- Enabling LDAP-based Logins
- Using E-mail Servers
- LPI Objectives Covered
- SMTP
- SMTP Terminology
- SMTP Architecture
- SMTP Commands
- SMTP Session
- Sendmail Architecture
- Sendmail Configuration
- Sendmail Remote Configuration
- Controlling Access
- Sending Email with sendmail
- Exim
- Postfix Features
- Postfix Architecture
- Postfix Components
- Postfix Configuration
- master.cf
- main.cf
- Virtual Domains
- Configuration Commands
- Postfix Logging
- Advanced Postfix Options
- Configuring Postfix
- Postfix Network Configuration
- Postfix Virtual Host Configuration
- Configuring Sendmail
- Sendmail Network Configuration
- Sendmail Virtual Host Configuration
- Sendmail SMTP AUTH Configuration
- Sendmail STARTTLS Configuration
- SUSE Sendmail Configuration Cleanup
- Managing Local and Remote E-Mail Delivery
- LPI Objectives Covered
- Filtering Email
- Procmail
- SpamAssassin
- Accessing Email
- The IMAP4 Protocol
- Courier IMAP
- Dovecot POP3/IMAP Server
- Configuring Procmail & SpamAssassin
- Dovecot Setup
- Configuring a Router and Security Tasks
- LPI Objectives Covered
- IPv4 Fundamentals
- TCP/UDP Fundamentals
- Security Advisories
- Discovering Hosts
- nmap
- Netcat
- Nessus Insecurity Scanner
- Configuring OpenVAS
- Intrusion Detection Systems
- Snort Rules
- Writing Snort Rules
- Linux as a Router
- Configuring Routing Tables
- Basic Firewall Activation
- Using the iptables Command
- Netfilter Rule Syntax
- Netfilter Concepts
- Targets
- Common match_specs
- Netfilter: Stateful Packet Filter Firewall
- Connection Tracking
- Address Translation
- Configuring NAT and PAT
- NMAP
- OpenVAS
- Securing Services with SuSEfirewall2
- Securing Services with Netfilter
- OpenSSH and OpenVPN
- LPI Objectives Covered
- Secure Shell
- ssh and sshd Configuration
- Accessing Remote Shells
- SSH Port Forwarding
- Transferring Files
- SSH Key Management
- ssh-agent
- OpenVPN
- Introduction to ssh and scp
- SSH Key-based User Authentication
- Using ssh-agent
- OpenVPN