On Wed, 26 Jan 2000 [EMAIL PROTECTED] wrote:
:>On Wed, 26 Jan 2000, Chuck Mead wrote:
:>
:>> On Wed, 26 Jan 2000, [EMAIL PROTECTED] said:
:>>
:>> >TOPIC 2: Network Administration
:>> >
:>> >Network Administration was covered during the Level 1 exam. While
:>> >network connectivity was certainly covered, services used to administer,
:>> >maintain, debug and create this capability were not addressed. In level
:>> >2, candidates should be well versed in network administration tools such
:>> >as ifconfig, route, netstat, whois, nslookup, dig and be capable to use
:>> >them efficiently when designing, implementing, investigating and
:>> >debugging network related issues.
:>> >
:>> >In Level 1, candidates are familiar with interfacing with popular
:>> >networking services such has HTTP, FTP, file servers, etc. In level 2,
:>> >however, candidates must be proficient in the configuration,
:>> >troubleshooting, and maintenance of the equipment and services
:>> >responsible for hosting these applications. Level 2 candidates should
:>> >cover Apache, Samba, sendmail, autofs, and proxy. In addition,
I won't metion apache again (though it should be on every level)
...
:>>
:>> What am I leaving out???
:>>
...
:>> >Topic 5: Security
:>> >
:>> >In Level 1, candidates were expected to view system logs and such to
:>> >evaluate security issues such as invalid logins, root hacks, and more.
:>> >In level 2, candidates should be familiar with security access
:>> >prevention using concepts such as tcp_wrappers, ipchains, and being able
:>> >to evaluate system risks with unneeded services on a system with inetd
:>> >and so forth. Completing this level of certification allows future
:>> >certifications to focus on implementing network security devices using
:>> >Linux, and engineering Linux based security options with other security
:>> >technologies.
:>>
:>> I agree with this... I particularly like the ipchains inclusion... we need to
:>> remember that ipchains is a great tool for controlling and securing
:>single
:>> servers as well as a firewall tool for entire networks.
:>>
:>Absolutely.
:>
:>> I am going to bring it up now... what do folks think about testing xinetd? It is
:>> much more configurable than wrappers and provides a higher level of security
:>> when properly implemented!
:>>
:>Hmn.. I have no opinion one way or other here. I've never used it, nor
:>heard of it myself. Is that distribution independant?
I agree about xinetd. I've been using it on solaris. It beats wrappers
hands down. It free and downloadable, I don't think it is important
what distributors think it works on Linux. If it comfords anyone new
Suse version have the choice inetd or xinetd.
(Open)SSH is a must i think for (advanced) sysadmins. Also free/distro
independant. I know no distribution that packs it.
:wq!
Daan Hoogland Unix consultants v v
[EMAIL PROTECTED] OO developers \ /
### ## ## # >---X---<
http://snow.nl # # # # # # # # / \
Snow B.V. ## # # # # # # # ^ ^
Tel. (+31)418-653333 # # # # # # # #
Fax. (+31)418-653666 ### # # ## ## ##
--
This message was sent from the lpi-examdev mailing list.
Send `unsubscribe lpi-examdev' in the subject to [EMAIL PROTECTED]
to leave the list.
