Dear all, This year, we're working on a major update of the objectives for the LPIC-303 (Security) exam.
During the last few weeks, we consulted several existing LPIC-303 holders, some subject matter experts (SMEs), and courseware providers for their opinion and ideas for the update. Thanks to all of you for your very positive comments on that first draft! Based on this feedback, I created a more comprehensive draft of the content and how LPIC-303 could be structured for version 2. The overall goal is to focus more on the security aspects of Linux infrastructure instead of security related aspects of specific applications or services. This is why the former topic 322, Application Security, has been reduced and integrated into other topics. Instead of asking the candidate to configure SSL with numerous services, the draft focuses on Apache HTTPD to test the general understanding of how SSL/TLS is used. Also, topic 323, Operations Security, has been dropped as it does not directly address system security. On the other hand, the required knowledge of X.509, CAs and SSL has been increased. Also, new proposed content includes: - DNSSEC and DANE - eCryptfs - FreeIPA - SSSD - CIFS security - IPv6 - Host and Network Hardening - Host Intrusion Detection. In general, topics have been renamed to reflect the intention behind the topic and not the specific tools used to achieve them. The current draft is available at the LPI wiki at: http://wiki.lpi.org/wiki/LPIC-303_Objectives_V2 and we ask all of you to discuss it here on the lpi-examdev list. The LPIC-303 objectives contain a lot of complex technology (even in version 1). Although we think that we've included anything relevant to the Security subject area, we would like some feedback from everyone on any additional topics and aspects that you would like to see in the exam. Feedback on what could be dropped is also of great value to help in reducing the amount of topics that are covered and the amount of effort required to acquire a LPIC-303 certification. One possible candidate to be dropped is OpenSSH as it has already been tested in LPIC-2 (and LPIC-1). Also, it may be a good idea to move Advanced GPG to LPIC-2 during the next LPIC-2 update (and drop it from LPIC-303 for now). What do you think? So, please don't hesitate to share your opinion with us. We appreciate any feedback! Lastly, once the general architecture of the exam is fixed we will have a more formal survey and/or Job Task Analysis (JTA) to determine more precisely the relevance of the topics and assign weights to the objectives. Best regards, Fabian _______________________________________________ lpi-examdev mailing list lpi-examdev@lpi.org http://list.lpi.org/cgi-bin/mailman/listinfo/lpi-examdev