Chapter 22. Security (Topic 110.1)
A system is only as secure as the administrator. Although some operating systems may claim better security than others, this is always the “out-of-the-box” type of security. Any system, no matter how secure initially, can become insecure if poorly maintained. It is the responsibility of the system administrator to take an active hand in security, and address both active and passive threats. As with most things, the first step is knowledge. Understanding how your system works and what tools are available is fundamental to securing your system. This chapter covers the first Objective of Topic 110:
- Objective 1: Perform Security Administration Tasks
Candidates should know how to review system configuration to ensure host security in accordance with local security policies. This includes topics such as SUID/SGID bits, password aging and good password policy, discovery tools such as nmap, netstat, and lsof, limiting user actions, and giving select users elevated privileges. Weight: 3.