Expertise in SELinux (RHS429)
Expertise in SELinux (RHS429)
| Course Description |
| Security-enhanced Linux (SELinux) is a powerful, kernel-level security layer that provides fine- grained control over which users and processes may access what resources and execute which programs on a system. Red Hat Enterprise SELinux Policy Administration (RHS429) introduces senior system administrators, security administrators, and application programmers to SELinux policy writing. Students will learn how SELinux works, how to manage, and how to write, compile and debug a SELinux policy. This class culminates in a major project to analyze, determine the security needs, design and implement a set of net new policies for a service previously unprotected by SELinux. |
|
| Course Content |
- Introduction to SELinux
- Using SELinux
- The Red Hat targeted policy Introduction to policies Policy utilities
- User and role security Anatomy of a policy Manipulating policies
|
|
| Unit 1-: Introduction to SELinux |
- Discretionary Access Control vs. Mandatory Access Control
- SELinux History and Architecture Overview
Elements of the SELinux security model:
o user identity and role
o domain and type
o sensitivity and categories
o security context
- SELinux Policy and Red Hat`s Targeted Policy
- Configuring Policy with Booleans
- Archiving
- Setting and Displaying Extended Attributes
|
|
| Unit 2-: Using SELinux |
- Controlling SELinux
- File Contexts
- Relabeling Files and Filesystems
- Mount options
|
|
| Unit 3-: The Red Hat Targeted Policy |
- Identifying and Toggling Protected Services
- Apache Security Contexts and Configuration Booleans
- Name Service Contexts and Configuration Booleans
- Other Services
- File Context for Special Directory Trees
- Troubleshooting and avc Denial Messages
- setroubleshootd and Logging
|
|
| Unit 4-: Introduction to Policies |
- Policy Overview and Organization
- Compiling and Loading the Monolithic Policy and Policy Modules
- Policy Type Enforcement Module Syntax
- Object Classes
|
|
| Unit 5-: Policy Utilities |
Tools available for manipulating and analyzing policies
- apol
- seaudit and seaudit_report
- checkpolicy
- sesearch
- sestatus
- audit2allow and audit2why
- sealert
- avcstat
- seinfo
- semanage
- Man pages
|
|
| Unit 6-: User and Role Security |
- Role-based Access Control
- Multi Category Security
- Defining a Security Administrator
- Multi-Level Security
- The strict Policy
- User Identification and Declaration Role Identification and Declaration
- Domain Transitions
- Roles in Use in Transitions
- Role Dominance
|
|
| Unit 7-: Anatomy of a Policy |
- Policy Macros
- Type Attributes and Aliases
- Type Transitions
- When and How do Files Get Labeled restorecond
- Customizable Types
|
|
| Unit 8-: Manipulating Policies |
- Installing and Compiling Policies
- The Policy Language
- Access Vector
- SELinux logs
- Security Identifiers – SIDs
- Filesystem Labeling Behavior
- Context on Network Objects
- Creating and Using New Booleans
- Manipulating Policy by Example
- Macros
- Enableaudit
|
|
| Unit 9-: Project |
- Best practices
- Create File Contexts, Types and Typealiases
- Edit and Create Network Contexts
- Edit and Create Domains
|
|
| EXAM DETAIL OF RH429-: |
| The Red Hat Enterprise SE Linux Policy Administration Exam is a performance-based test of the skills covered in RHS429: SE Linux Policy Administration |
| RHS429(Red Hat Enterprise Selinux Policy Administration)-: |
| Exam duration:-RH429 Exam have 2 secession
1st secession = 2.50hr
2nd secession = 1.00hr
Exam totally based on practical.
You must have a RHCE Certified and RH429 book.
NOTE: You get RHCSS Certificate After 333,423,429 Certified |
