110.1 – Perform security administration tasks

Weight

3

Description

Candidates should know how to review system configuration to ensure host security in accordance with local security policies.

Key Knowledge Areas

• Audit a system to find files with the suid/sgid bit set.

• Set or change user passwords and password aging information.

• Being able to use nmap and netstat to discover open ports on a system.

• Set up limits on user logins, processes and memory usage.

• Determine which users have logged in to the system or are currently logged in.

• Basic sudo configuration and usage.

Files, Terms, and Utilities

• find

• passwd

• fuser

• lsof

• nmap

• chage

• netstat

• sudo

• /etc/sudoers

• su

• usermod

• ulimit

• who, w, last