|
IStudents
interested in developing skills as network administrators find this
course invaluable. Topics explored and implemented in the class include
the setup and maintenance of many of the most popular network services
available for Linux and Unix today, including servers for DNS, SMB
(Windows networking), e-mail servers, FTP, web, and caching proxy.
Special attention is paid to the concepts needed to implement these
services securely, and to the trouble-shooting skills which will be
necessary for real-world administration of network services.
Individuals wishing to take this class should already have a solid
grounding in UNIX concepts and basic systems administration.
Fundamentals such as an understanding of the Linux filesystem, process
management, and the ability to manipulate and edit files is considered a
must and will not be covered in class. A good understanding of network
concepts, and the TCP/IP protocol suite is also assumed.
Prerequisites
Individuals wishing to take this class should already have a solid
grounding in UNIX concepts. Fundamentals such as an understanding of the
Linux filesystem, process management, and the ability to manipulate and
edit files is considered a must and will not be covered in class. An
understanding of network concepts and the TCP/IP protocol suite is
helpful.
DNS
Concepts
·
Naming
Services
·
The Domain
Name Space
·
Delegation
and Zones
·
Server
Roles
·
Resolving
Names and Resolving IP Address
·
BIND
Administration
·
rndc key
configuration
·
Configuring the Resolver and Testing Resolution
Configuring Bind
·
BIND
Configuration Files
·
Named.conf
Syntax and Options Block
·
Creating a
Site-Wide Cache
·
Zones in
named.conf
·
Zone
Database File Syntax
·
SOA- Start
of Authority
·
A-Address/
PTR-Pointer
·
NS-Name
Server
·
CNAME-Alias/
MS-Mail Host
·
Abbreviations and Shortcuts
·
$GENERATE
Creating DNS Hierarchies
·
Subdomains
and Delegation
·
In-addr.arpa
Delegation
·
Issues
with in-addr.arpa
·
RFC2317 &
in-addr.arpa
Securing BIND and DNS
·
Split
Namespaces
·
Using
Views with BIND 9
·
Address
Match Lists & ACLs
·
Restricting Queries
·
Restricting Zone Transfers
·
Running
BIND in a chroot jail
·
Dynamic
DNS Concepts
·
Allowing
DDNS updates
·
Using DDNS
with “nsupdate”
·
Common
Problems
LDAP
Concepts
·
Centralized Authentication
·
Directory
Services
·
What LDAP
Provides
·
LDAP
Concepts and Organization
·
Schema and
Entry Referencing
·
LDIF
·
LDAP
Architecture, Security, and Implementation
OpenLDAP Servers
·
OpenLDAP
Components
·
Configuring slapd
·
Global
Parameters and Schema Definition
·
Access
Control
·
Backend
Types
·
Backend
and Database configuration
·
Indexes
and Replicas
·
Replica
Configuration
Using
OpenLDAP
·
Managing
slapd
·
Online and
Offline Data Manipulation
Using
Apache
·
HTTP
Operation
·
Apache
History and Status
·
Apache
Architecture
·
SSL/ HTTPS
and Apache
·
Apache
Configuration Files
·
httpd.conf
·
Dynamic
Shared Objects
·
Adding
Modules to Apache
·
Apache
Logging
·
Log
Analysis
·
The
Webalizer
Client Networking
Virtual Hosting with Apache
·
HTTP
Virtual Servers
·
DNS
Implications
·
Security
Implications
·
IP-based
Virtual Host
·
Name-based
Virtual Host
·
Port-based
Virtual Host
Apache Security
·
Delegating
Administration
·
Directory
Protection
·
Common
Uses for .htaccess
·
Symmetric
and Asymmetric Key Cryptography
·
Digital
Certificates
·
SSL Using
mod_ssl
Apache Server-side Programming
·
Dynamic
HTTP Content
·
PHP:
Hypertext Preprocessor
·
Develop
Tools for PHP
·
Installing, Configuring, and Securing PHP
·
Java
Servlets and JSP
·
Jakarta
Tomcat
·
Installing
Java SDK and Jakarta Tomcat
·
Using
Tomcat with Apache
Implementing an FTP Server
·
The FTP
Protocol and Operation
·
Active and
Passive FTP
·
WU-FTPD
·
Vsftpd
·
Configuring vsftpd
·
Anonymous
vsftpd
The
SQUID Proxy Server
·
Squid
Overview, File Layout, and Access Control lists
·
Squid ACL
application
·
Tuning
Squid/ Hierarchies
·
Bandwidth
Metering
·
Monitoring
Squid
·
Proxy
Client Configuration
Samba
Concepts
·
SMB
Network Protocol
·
NetBIOS
and NetBEUI
·
NetBIOS
Naming
·
Samba
Daemons, Clients, and Utilities
·
Samba
Configuration Files
·
The
smb.conf File
Configure Samba
·
Install
the Samba server and configure it to share your tmp/directory
·
Use
smbclient and smbfs to access SMB shares
Using
Samba
·
Unix and
DOS Permissions
·
Unix and
Windows Concepts
·
Name and
Case Mangling
·
Sharing
[homes] and Printers
·
Restricting Access
·
Share-Level and User-Level Access
·
Mapping
Users
·
SMB and
Passwords
·
The
smbpasswd Database
·
User Share
Restrictions
SMTP
Theory
·
SMTP
Terminology and Architecture
·
SMTP
Commands and Extensions
·
SMTP AUTH
and STARTTLS
·
SMTP
Session
Sendmail
·
sendmail
Features, and Process
·
sendmail
Architectures, Components, and Configuration
·
Configuration Files
·
Databases
·
Text Files
·
Network
Access
·
Masquerading sendmail
·
Controlling access
·
Configuring SMTP AUTH and Configuring SMTP STARTTLS
Postfix
·
Postfix
Features, Architecture, Components, and Configuration
·
master.cf
and main.cf
·
Postfix
Map Types and Pattern Matching
·
Advanced
Options
·
Virtual
Domains and Mail Filtering
·
Configuration and Management Commands
·
Postfix
Logging and Logfile Analysis
·
chroot’ing
Postfix
·
Postfix
and SMTP AUTH
·
SMPT AUTH
Server and Clients
·
Postfix
Extensions
·
Postfix/TLS
·
TLS Server
configuration
·
Postfix
Client Configuration
·
Other TLS
Clients and Ensuring TLS Security
IMAP,
POP, Spam Filtering and Web Mail
·
Filtering
Email
·
Procmail
·
SpamAssassin
·
Accessing
Email
·
The POP3
and IMAP4 Protocol
·
POP3 and
IMAP4 Servers
|
