Dear all,
This year, we're working on a major update of the objectives for the
LPIC-303 (Security) exam.
During the last few weeks, we consulted several existing LPIC-303 holders,
some subject matter experts (SMEs), and courseware providers for their
opinion and ideas for the update. Thanks to all of you for your very
positive comments on that first draft!
Based on this feedback, I created a more comprehensive draft of the
content and how LPIC-303 could be structured for version 2. The overall
goal is to focus more on the security aspects of Linux infrastructure
instead of security related aspects of specific applications or services.
This is why the former topic 322, Application Security, has been reduced
and integrated into other topics. Instead of asking the candidate
to configure SSL with numerous services, the draft focuses on Apache
HTTPD to test the general understanding of how SSL/TLS is used. Also,
topic 323, Operations Security, has been dropped as it does not directly
address system security.
On the other hand, the required knowledge of X.509, CAs and SSL has
been increased. Also, new proposed content includes:
- DNSSEC and DANE
- eCryptfs
- FreeIPA
- SSSD
- CIFS security
- IPv6
- Host and Network Hardening
- Host Intrusion Detection.
In general, topics have been renamed to reflect the intention behind
the topic and not the specific tools used to achieve them.
The current draft is available at the LPI wiki at:
http://wiki.lpi.org/wiki/LPIC-303_Objectives_V2
and we ask all of you to discuss it here on the lpi-examdev list.
The LPIC-303 objectives contain a lot of complex technology (even in
version 1). Although we think that we've included anything relevant to
the Security subject area, we would like some feedback from everyone on
any additional topics and aspects that you would like to see in the exam.
Feedback on what could be dropped is also of great value to help in
reducing the amount of topics that are covered and the amount of effort
required to acquire a LPIC-303 certification. One possible candidate
to be dropped is OpenSSH as it has already been tested in LPIC-2 (and
LPIC-1). Also, it may be a good idea to move Advanced GPG to LPIC-2
during the next LPIC-2 update (and drop it from LPIC-303 for now). What
do you think?
So, please don't hesitate to share your opinion with us. We appreciate
any feedback!
Lastly, once the general architecture of the exam is fixed we will
have a more formal survey and/or Job Task Analysis (JTA) to determine
more precisely the relevance of the topics and assign weights to the
objectives.
Best regards,
Fabian
_______________________________________________
lpi-examdev mailing list
lpi-examdev@lpi.org
http://list.lpi.org/cgi-bin/mailman/listinfo/lpi-examdev
