Udemy
    •  
    •  
    •  
    •  
    •  
    •  
    •  
    •  
Turn what you know into an opportunity and reach millions around the world.
Learn More
Your cart is empty.
Keep shopping
Linux Server Security - Protect system from getting hacked!
Rating: 3.4 out of 5(16 ratings)
140 students

Linux Server Security - Protect system from getting hacked!

A step by step guide to secure your Linux server with the help of efficient tools and techniques!
Last updated 7/2021
English

What you'll learn

  • Harden your Linux Server with DDoS Protection, Public Keys, and more!
  • Protect your Linux Server by securing memory, using security banners, and P.W. management.
  • Discourage hackers by setting up services such as IP Spoofing Prevention, SSL Security, and more!
  • Review various network security methods (including firewalls) using iptables and TCP Wrapper.
  • Explore various security tools including Port Sentry, Squid Proxy, Shorewall, and many more!
  • Use SUID/SGID to explore your local system security.
  • Secure communication with VPNs.

Course content

3 sections87 lectures5h 57m total length
  • The Course Overview4:34

    This video provides an overview of the entire course.

  • Network Mapping6:06

    Using Nmap in order to scan your website for server information.

    • Discover vulnerabilities on your server

    • Find information on your server

  • Nikto3:19

    Here we are able to test and diagnose our code on our website in order to determine if our code has any vulnerability errors.

    • Scan code

  • Reverse IP3:10

    This video will show you how to find other sites on your server.

    • Scan server for other sites and apps

  • Stress Testing3:45

    In this video, we will learn what a DDoS attack is, how to carry one out, and what happens to the server if a DDoS attack happens.

    • Carry out a DDoS attack

  • Updates4:13

    In this video, we will discuss the importance of updating our server, and server packages.

    • Secure your server with proper updates

  • Passwords1:29

    In this video, we will talk about the different types of passwords that are commonly used amongst system administrators, as well as passwords that are common amongst non-geek users.

    • Explore weak passwords versus secured passwords

  • Passwords (Continued)1:56

    Discover the importance of updating your passwords. How often should you update your password.

    • Update passwords

  • Accounts4:54

    In this video, we are going to be working on creating and deleting user accounts. This will come in handy if you have people come on board, or leave your company. You can add them to the server, or remove them.

    • Add new users to your server

    • Remove old users from your server

  • HTOP2:04

    In this video, we will dive into a basic operations of monitoring our server. With a terminal based software package, we are able to monitor the traffic going in and out of our server.

    • Use HTOP to monitor traffic on our server

  • Backup2:37

    In this video, we will discuss two methods we can use in order to back up our server data. By backing up your server data, you are staying ahead of the game if in the event in which your server does go down, you have a backup stored so you can restore your server back to last known working configurations.

    • Backup physical server

    • Backup virtual server

  • Uninstall2:42

    In this video, we will discover and remove any old packages we are not using in order to free up space on our server, and at the same time increase our server’s response time.

    • Find packages installed on our server

    • Remove unused/unwanted packages on our server

  • Update O.S.1:44

    It is extremely important to stay updated with the latest version of Linux. However, there are a few instances where updating the O.S. will crash your services running. Updating O.S. versions allows you to keep your server updated with latest security patches and updates.

    • Update Linux Server Operating System

  • Hardware3:38

    In this video, we are going to learn how to see any hardware issues you may have amongst your server. By knowing what hardware issue(s) you have, you can fix those issues and get your server back up to speed and performance you desire.

    • Search for hardware error logs

  • Zabbix6:58

    While using HTOP is a great method for monitoring traffic, we can use a more advanced GUI based server monitoring software known as Zabbix.

    • Install and configure Zabbix

  • Cloudflare5:08

    In this video, we will learn how to use an online MX record in order to monitor traffic going towards our site and detour DDoS attack to another point. Cloudflare is a widely used and highly trusted MX record service to allow our domain to travel through there and send real requests to our sites.

    • Use Cloudflare for MX records

  • Let’s Encrypt8:20

    When you are dealing with personal information, visitors like to see SSL Records on top URL bar. This SSL is what provides us with HTTPS telling our viewers that our site is secured. Let’s Encrypt is a free SSL record provider that we can use to provide HTTPS pings for our website.

    • Install let’s Encrypt

    • Configure let’s Encrypt

    • Test our SSL record

  • Fail2ban11:38

    In this video, we are going to be installing a firewall rules application that will act as a software-based firewall to help enhance and protect our server.

    • Install Fail2ban

    • Configure firewall rules

  • SSH Keys3:49

    We typically log into our server using passwords. Now, we are going to explore ways that we can use in order to log into our server using a special key. This by passes the usage of having to constantly use a password, and remove possibilities of having our site brute forced.

    • Create SSH keys on our computer

    • Insert SSK keys on server

    • Connect to server with SSH keys

  • Listing Edits2:05

    When you have multiple users on your server, and everyone is making alterations, something is bound to mess up. And using listing edits, we can see who did what edit and at what time. This is helpful to track down the issue with the server and fix the server.

    • Use terminal to determine who made what edit and when

  • Password Strength3:40

    We will discover how to increase our passwords strength using various techniques.

    • Use L337 in order to secure our passwords

  • Authentication Fails1:21

    If you have several failed attempts of logging into your server, we can view those logs as well as remove them. This will free up space on our server, as well as increase our server speed.

    • Discover authentication fails

    • Remove authentication fails

  • Removing Passwords1:27

    By removing passwords, after you have setup SSK keys, we are limiting the ability of our server being exposed to brute force attacks.

    • Remove login passwords

  • Aliases Computers3:14

    Now, we can setup different computers that we can use in order to allow these specified computers to connect to our server. This helps out with security as we are telling the server which computers we want to connect to our server.

    • Use remote computers to connect to the server

  • Password Management1:38

    In this video, we are going to be looking at some of the cool password management tools in order to store our passwords for us.

    • Install password management tools

  • ClamAV3:48

    We have antivirus software installed on our computers. So why not have an antivirus program running on our server. With ClamAV, we are able to have a secured running antivirus software on our server at all times.

    • Install ClamAV

    • Configure ClamAV

  • Memory Time1:17

    In this video, we will discover techniques we can use in order to secure our server’s memory in order to increase response time, and remove unwanted services brought on by other sites and apps running on the same server.

    • Secure memory

  • Security Banner3:43

    A carefully created security banner will be acting as the servers warning. When you log in you will be presented with a security banner indicating that the traffic is heavily monitored and unwanted visitors should be aware that they are being tracked.

    • Cultivate a security banner

  • IP Spoofing1:36

    We are able to prevent IP spoofing in a very easy method. By removing the option to allow IP spoofing, we are limiting the resources to hackers by providing a false IP for other users.

    • Remove IP spoofing

Requirements

  • Prior knowledge of Linux is assumed
  • Basic understanding of Linux commands will be useful (Not Mandatory).

Description

Do you worry about hackers hacking into your system running locally or remotely? Then this course is the one you're looking for! You'll learn how to secure your system from such attacks. Due to the lack of information about security-related attacks, administrators now face issues in dealing with these attackers as quickly as possible. Linux is the first choice for an attacker and more administrators have started moving to the system to create networks or servers for any task.

This comprehensive 3-in-1 course is an easy-to-follow guide with a step-by-step approach to various problems covering various Linux security administration tasks. You’ll start with discovering some of the tools hackers use to attack your server, such as NMAP, Reverse IP, and DDoS Attacks. Secure your Linux Server with firewalls and SSL encryptions. Also, learn how to prevent server exploits such as DDoS Protection, hardening login security protocols, and more! Towards the end, you’ll become a better Linux Admin by sharpening your Linux Security skills!

By the end of the course, you’ll not only secure your Linux server with the help of efficient tools and techniques but also protect networks from attacks by thinking like a hacker!

Contents and Overview

This training program includes 3 complete courses, carefully chosen to give you the most comprehensive training possible.

The first course, Linux Server Security, covers securing your Linux server with the help of efficient tools and techniques. You will start by discovering techniques that professional hackers use in order to scan a website and a server, in order to carry out their intrusion attacks. Next, you'll learn to create secure accounts where we'll look into deleting and creating user accounts password and monitoring servers. Further, you'll learn to maintain your Linux Server in order to get optimized performance and stability. Moving ahead, you'll focus on tools that can be used to enhance server security, understand the art of hardening passwords, and fix authentication failures. By the end of the course, you'll be confident enough to take control of your Linux servers and use hands-on techniques to protect your server from internet attacks.

The second course, Practical Linux Security Solutions, covers creating and administering a secured Linux system in your work environment. This course will help you understand the various vulnerabilities faced by the system and help you to overcome them. Whether you are new to Linux administration or experienced, it provides you with the skills to work with various security tools, thereby making your systems more secure. By the end of the course, you'll have mastered the art of preventing your Linux system from getting compromised.

The third course, Mastering Linux Security, covers protecting networks from attacks by thinking like a hacker! In this course, you'll learn to secure workstations and servers against unauthorized persons. You’ll start with the three critical fundamentals that must be dealt with first: updates, passwords, and firewalls. You’ll then get an overview of what it actually means to secure a system, what an attack surface is, how hackers perform attacks and how to successfully protect against them. You’ll learn to secure a Linux machine, by securely configuring and running services, performing logging, secure backups, and more. The course will show you how to secure your system locally or remotely. Finally, you’ll be shown how to verify your set up. By the end of the course, you'll have mastered security on Linux systems.

By the end of the course, you’ll be one step ahead of hackers by discovering and patching your network vulnerabilities as well as performing professional-level web penetration testing!

About the Authors

  • Aubrey Love II has been designing and developing websites for over 10+ years. He started off with a Commodore Vic20, on which he designed his first Hello World app at the age of 7. After attending several colleges and universities, he moved on and started his own website firm, in which he caters to all types of company, from startup ventures to Fortune 500 organizations.

  • Tajinder Kalsi has more than 9 years of working experience in the field of IT. He has conducted seminars all across India, on topics such as information security and Android application development at more than 120 colleges, teaching more than 10,000 students. Apart from training, he has also worked on VAPT projects for various clients. When talking about certifications, Tajinder is an ISO 2700 LA and also IBM certified analyst. Prior to this course, Tajinder authored Practical Linux Security Cookbook, published by Packt Publishing. He has also authored three video courses with Packt: Getting Started with Pentesting, Finding and Exploiting Hidden Vulnerabilities, and Pentesting Web Applications.

  • Marc “van Hauser” Heuse started to be interested in IT security in 1993. He founded one of the world's oldest security research communities—The Hacker's Choice (www. thc. org)—and is the author of several well-known security tools such as hydra, amap, thc-ipv6, THC-SCAN, SuSE firewall, and many others. From 1998 to 2007 he worked for SuSE, hardened the Linux distribution, and built-up the security team. Today he is an independent consultant and security researcher. Just for fun, he records training courses on how to secure Linux servers.

Who this course is for:

  • All those Linux users already familiar with Linux file systems and administration who would like to protect servers from vulnerabilities and attacks.
  • System administrators and network engineers who are interested in making their Linux environment more secure!