SUSE Linux Enterprise 10 精妙解决方案教程 jgt-lfse iso

SUSE Linux Enterprise 10 是一款开放企业平台。Novell 推出的 SUSE Linux Enterprise 是一款设计最优良、成本最低且互操作性最佳的企业计算平台。从桌面到数据中心，只有 SUSE Linux Enterprise 能为推动贵公司业务发展的关键任务应用程序提供全面的开放源码解决方案。

SUSE Linux Enterprise 10 不仅获得了全球各大领先硬件和软件供应商的支持和认证，同时还有 Novell 获奖的技术支持以及全球合作伙伴和服务生态系统作为强大后盾。SUSE Linux Enterprise 10 使用开放标准构建，使您在组织内外均可共享信息。当性能、可靠性、安全性和世界级的支持都是您缺一不可的选项时，请选择 Novell 的 SUSE Linux Enterprise！

本教程耗时40小时为您讲述SUSE Linux Enterprise 10系统的安装配置与日常办公使用、系统的配置管理、核心网络服务、Linux Apache MySQL PHP (LAMP) – Messaging – PureFTPD、安全技术等等。

Price: $495 for Single-Computer License – licensing details
5-Computer License: $995
Academic Pricing Schedule (Students|Education): Pricing Schedule
Additional Licenses: For pricing contact sales@LinuxCBT.com
System Requirements: Windows NT/2000/XP/2003/Vista
Duration: 40 hours/75 Videos on 1-DVD
Available for Download:YES
MD5SUM: ddb5646940bd0cc1e987e464584c6c28

LinuxCBT feat. SUSE 10 Enterprise Edition focuses exclusively on the SUSE Enterprise 10 Linux operating system.
LinuxCBT feat. SUSE 10 Enterprise Edition, is unparalleled in content, depth and expertise. LinuxCBT feat. SUSE 10 Enterprise Edition prepares you or your organization for successfully deploying and managing business-critical SUSE Enterprise 10-based server solutions.
Let LinuxCBT feat. SUSE 10 Enterprise Edition teach you SUSE Enterprise 10 Linux skills!
Recommended Prerequisites:

Open mind & determination to master Linux and related open-source applications
Basic MS Windows skills
Basic understanding of networking concepts
Access to a spare PC to perform all of the installations and exercises

http://www.linuxcbt.com/images/course_objectives.jpg
Installation & General Usage – Module 1

Network-based (HttP & SSH) Installations
Enable Apache HttPD on Installation server Configure SUSE Ent. 10 Server as an HttP Installation source with Apache Discuss system requirements Install SUSE Ent. 10 Server via HttP
Confirm results

Grand Unified Boot Loader (GRUB) & System V Linux Runlevel implementation

Explore GRUB configuration
Explain SUSE Linux System V Init Runlevel (0 – 6) concepts & applications
Identify key startup files, including scripts (inittab,Sscripts,Kscripts,etc.)

GNOME & YaST
Explore the GNOME Desktop Interface Explore YaST, centralized management tool
Install packages using Yast package manager

Basic GNU/Linux Skills – Command Line Interface (CLI) – BASH
Introduction to GNOME Terminal Demonstrate usage of the following useful commands & concepts ls, pwd, cd, cp, mv, rm, mkdir, rmdir, whoami, man, info alias, cat, file, chmod, chown, history Standard in/out, UNIX Pipes, Redirection, Command Chaining ps, df, free, vmstat, top, kill less & more, head & tail, diff which & whereis, w, who Use grep and cut to process delimited log files find, locate tar, gzip/gunzip, bzip2, zcat Explore Pico text editor Install and explore Nano text editor Convert Windows text files to Unix format using dos2unix
Convert Unix text files to Windows format using unix2dos

Common Network Clients
File Transfer Protocol (FTP) client Install and use LFTP – Sophisticated FTP Client to connect to FTP/HttP servers Mirror and reverse mirror using LFTP to synchronize data Wget – HttP/HttPS/FTP connectivity Explain SSH concepts, implementation, etc. Use SSH Client to connect to remote Linux Systems using password authentication Identify key SSH-client files (.known_hosts, public/private key pairs,etc.) Authenticate to remote Linux systems using alternate credentials Use Secure Copy Protocol (SCP) to move data between systems non-interactively Use Secure File Transfer Protocol (SFTP) to move data between systems interactively Demonstrate how to generate Public/Private key (RSA/DSA) pairs using SSH-Keygen Demonstrate using SSH to authenticate to remote Linux hosts without passwords Generate Public Key/Private Key pairs for use with file and E-mail encryption Demonstrate using E-mail client with GNU Privacy Guard (GPG) Open PGP for E-Mail encryption Use Remote Desktop to connect to RDP & VNC remote Linux and Windows hosts Use ping, mtr & arp Use dig, host, nslookup name resolution clients NETSTAT
IFCONFIG

top

Systems Managment & Configuration – Module 2

RPM Package Management Tool Concepts & Usage
Explain classes of SUSE Linux Packages Query existing packages Identify offline and online package repositories Install packages Upgrade packages Freshen packages Remove packages
Identify package membership of files on the SUSE system

Manage Users and Groups & Permissions
User profile implementation logic and concepts – (Bash profile/etc/skel/aliases/PATH/etc.) User and group creation & management concepts – passwd, shadow, group, gshadow files Use YaST to create and manage users and groups SETUID SETGID – Group collaboration Sticky Bit
Explore Hard and Symbolic links including across disparate file systems

Paritions, File Systems & Volumes (RAID|LVM)
Provision new paritions with FDISK/Parted/YaST & ReiserFS Configure RAID 0/1/5/ Volumes Implement Logical Volume Management (LVM) Provision additional Swap storage paritions and files Use MKSWAP & SWAPON to enable additional Swap storage Identify allocated swap space to the kernel
Committchanges for persistence

Explore System Logging via SYSLOG-NG and Logrotate
Explore Boot log & System Log
Explanation of syslog facilities & levels
Discuss SYSLOG-NG features & enhancements Demonstrate syslog administration
Enable SYSLOG network listener Demonstrate Cisco PIX Firewall to SUSE Linux SYSLOG-NG functionality
Explore automatic log rotation and customization via Logrotate
Configure Logrotate to rotate & compress sample log files

top

Core Networking Services – Module 3

Network – Physical & Logical Configuration
Identify key directories & files for static & dynamic communications Configure Linux client with static TCP/IP parameters for network communication Explore hotplug -> hwup -> ifup logic Use ifconfig to ascertain logical TCP/IP configuration Use hwinfo to ascertain installed hardware
Configure Aliased Ethernet Interfaces to faciliate multiple IP addresses

Implement Network Time Protocol (NTP) Client/Server

Configure Network Time Protocol (NTP) to perform client/server time synchronization
Identify NTP bounded UDP interfaces
Synchronize SUSE Enterprise Linux NTP with RedHat Linux Stratum 2 NTP server
Synchronize against Stratum 1 NTP servers

Dynamic Host Configuration Protocol (DHCP)

Explain DHCP Concepts & Applications
Explore DHCP confiuration files
Configure DHCP subnet with applicable options
Configure DHCP Reservation based on layer-2 address
Enable DHCP with DDNS
Configure DHCP Failover between SUSE and RedHat Linux Servers
Test DHCP Failover with Windows 2003 Host

Domain Name System (DNS)

Explore SUSE DNS configuration via YaST
Configure BIND as a caching-only DNS server
Implement Master DNS Zone
Configure Reverse Zone for local subnet
Implement Dynamic Domain Name System (DDNS) Zones (Forward/Reverse)
Explain DHCP and DNS update integration options
Integrate DHCP with DNS via Encypted Transaction Signatures (TSigs)
Configure Windows 2003 Active Directory to publish DNS Records to SUSE Server
Examine Windows 2003 SRV Records
Configure Master/Slave Zones with RedHat Linux Server
Evaluate results of BIND configuration using DIG & host
Implement DNS sub-domains (Third-level domains)

CRON – System Scheduler

Explore Cron Implementation
Explain scheduling options
Global and scope-based Cron options
Schedules jobs to run & examine the output
Configure individual Crontab entries

Samba Implementation

Implement Linux & Windows Integration via Samba
Explore Samba Configuration files
Implement SMBFS integration with SUSE Enterprise Linux File System
Mount Windows shares seamlessly using Samba File System (SMBFS)
Configure FSTAB to support repetitive mounts
Implement secure SMBFS credentials for mounting
Install Samba Server support
Install Samba Web-based Administration Tool (SWAT)
Configure Samba file sharing
Configure Samba with multiple NETBIOS aliases
Install Active Directory on Windows 2003 Server
Integrate SUSE Ent. 10 Server with Windows Active Directory (AD)
Test Samba-to-Windows integration using ‘getent’ and authentication

Very Secure VSFTPD File Transfer Protocol (FTP) services

Implement anonymous FTPD
Implement user-level FTPD access
Implement FTPD banners
Disable anonymous access
Configure VSFTPD to chroot jail users into their home directories
Implement bandwidth rate-limiting to control bandwidth usage
Implement & test banning of unwelcomed anonymous e-mail addresses
Implement VSFTPD user with redirect to a Samba share

Network File System (NFS) Implementation
Identify key services/daemons Configure NFS Client & Server
Evaluate NFS connectivity to other Linux hosts

RSYNC Implementation
Discuss features and benefits Implement rsync
Confirm results

top

Linux Apache MySQL PHP (LAMP) – Messaging – PureFTPD – Module 4

Apache Web Server Implementation

Discuss Apache server’s features and concepts Examine Apache-SUSE HttPD CONF hierarchy
Examine various configuration files
Implement Apache Mod Alias and ScriptAlias
Examine user home directories
Discuss the Directory directive
Explore redirects
Configure .htacess file with directives
Implement Basic and digest authentication schemes
Configure IP-based Virtual Hosts
Configure Name-based Virtual Hosts
Explore Apache logging
Implement Apache logging system per virtual host
Webalizer Log Analysis software Implementation
Generate web reports using Webalizer
Implementation of PHP Dynamic Web Access Scripting Engine
Evaluate PHP Dynamic Web Access Scripting Engine installation results
Test basic PHP script-processing using sample scripts
Create and test PHP-form with Apache

MySQL Relational Database Management System
Install MySQL Relational Database Management System
Secure access to MySQL
Explore MySQL monitor shell-based interface
Create sample MySQL databases
Load external data-set from Linux
Load external data-set from Windows
Integrate PHP with MySQL

PHPMyAdmin – MySQL Web-based Management Interface
Install PHPMyAdmin for web-based management of MySQL instances
Explain & Secure access to PHPMyAdmin
Explore PHPMyAdmin’s interface

Postfix Message Transfer Agent (MTA)
Introduction to Postfix Message Transfer Agent (MTA)
Explore the directives in the Postfix configuration files
Define default values for the FQDN
Alter myorigin and examine results
Configure Postfix to route messages using a Smarthost
Examine how Postfix delivers mail locally
Configure SMTP Relaying in Postfix
Use Muttto demonstrate outbound mail handling using PostfixDefine SMTP Virtual domains for hosting multiple DNS domains
Configure Postfix with a production LinuxCBT DNS domain
Examine Virtual domain routing with production and non-production DNS domains

Post Office Protocol Version 3 (POP3)
Explain POP3 concepts and applications
Implement POP3 daemon
Connect to POP3 daemon using Windows 2003 Outlook Express client
Reroute inbound messages using Sendmail to POP3 account for retrieval
Use Muttto send SMTP-based messages to POP3 account

Internet Messaging Access Protocol (IMAP)
Explain IMAP concepts and applications in comparison to POP3
Implement IMAP services
Connect to IMAP services from remote Windows Outlook Express client

Squirrel-mail Web-based Mail Interface Implementation
Describe required squirrel mail components for web-mail integration
Install squirrel mail on SUSE Enterprise Linux system
Configure Apache virtual directory for squirrel mail integration
Configure Apache Virtual Host for squirrel mail integration
Configure BIND DNS services for squirrel mail integration
Explore squirrel mail’s web-based interface

PureFTPD Implementation
Explore configuration & enable service
Test various modes of operation

Xen Virtualization
Discuss features & benefits
Implement Xen with instance of SUSE Ent. 10 Edition

top

Security Implementation Techniques – Module 5

System Audit & Lockdown

Identify tools to perform system audit
Ascertain and document current system state
Close all superflous services
Bind necessary services (daemons) to necessary interfaces and logical addresses
Establish security configuration baseline

XINETD (Enhanced & Secure INETD Super Server Implementation)

Identify key XINETD configuration files
Explain the contents and structure of xinetd.conf
Restrict access to various daemons/services based on hosts & subnets
Lockdown XINETD-controlled services
Configure XINETD to restrict number of spawned instances of daemons/services
Configure XINETD to bind daemons/services to specific sub-interfaces (Virtual IP addresses)
XINETD logging
Explore additional XINETD features

TCP Wrappers concepts & applications

Identify primary package and key TCP Wrappers configuration files
Demonstrate disabled TCP Wrappers configurations by attempting connectivity
Examine pre and post TCP Wrappers configuration effects
Implement TCP Wrappers for common services
Test local & remote access to TCP Wrappers-protected host & services

IPTABLES (Netfilter Linux Kernel-based Firewall)

Discuss IPTABLES/Netfilter Concepts
Explain IPTABLES default chains/filters and policies
Examine TCP/ICMP communications pre-IPTABLES chains
Implement ICMP inbound filtration based on various hosts
Use Cisco PIX Firewall to verify ICMP debugging
Filter traffic based on Layer-4 TCP/UDP (Source/Destination Ports) information
Restrict access to various daemons (SSH/FTP/HttP/etc.)
Test connectivity locally and remotely (RedHat/Windows/etc.)

Network Mapper (NMAP)

Obtain, compile and install current version of NMAP
Identify commonly used NMAP options/switches/parameters
Perform default TCP SYN-based ethical scans of local and remote resources
Explain typical TCP handshake protocol while using NMAP
Examine the results of scans on remote Cisco firewall with debugging mode enabled
Perform default TCP Connect-based ethical scans of local and remote resources
Examine the results of scans on remote Cisco PIX Firewall with debugging mode enabled
Use NMAP to scan using aliased and spoofed IP addresses
Peform local ethical scans
Identifiy key NMAP configuration files
Use NMAP to perform operating system fingerprinting
Peform subnet-wide ethical scans

Nessus Vulnerability Scanner Implementation
Download & Install Nessus Client & Server Configure & test credentials Discuss plug-ins and scopes
Perform vulnerability scans & evaluate results

TCPDump Traffic Capture
Discuss features Capture data in ASCII & Binary formats Implement Berkeley Packet Filters (BPFs)
Analyze results

Ethereal Traffic Analysis
Discuss features Install using YaST Analyze TCPDump binary file
Rebuild interesting TCP sessions

Snort 2.x Network Intrusion Detection System (NIDS)
Obtain, and install Snort pre-requisites (libpcap/libpcre/etc.) Obtain, compile and install the Snort Intrusion Detection System (NIDS) Identify and explain key operating modes (Sniffer/Logger/NIDS) Explore Snort in network sniffer mode Explain OSI Model and relevant Snort sniffing options Explore Snort in ASCII and Binary (TCPDUMP) logging modes Output Snort logs to ASCII text format and examine the results Output Snort logs to binary format and examine the results Implement Snort with BPF to filter traffic Generate traffic from remote Windows 2003 and Linux hosts Use Snort with Berkeley Packet Filter (BPF) to parse logs Implement Snort in NIDS modes Explore the snort.conf file and discuss rules Explain Logging and Alerting output options Perform port-scans from remote Linux systems and analyze Alerts Configure MySQL with Snort-compliant schema Configure Snort to log to MySQL Download & Install BASE web analysis application Configure BASE to read alerts from MySQL
Evaluate results

top

More detailed info here

本文链接: http://www.books51.com/190081.html

上一篇: 精深 Acrobat 8 教程 Total Training Adobe Acrobat 8 Vol 1 bin iso

下一篇: 3DS MAX VRay室内全局照明Gnomon DVD iso

(0 次顶, 0 人已投票)
你必须注册后才能投票！

Loading...