Overview What You Will Learn Curriculum Instructor

Course Overview

Traditional Linux systems use Discretionary Access Control (DAC), which can be modified by root users and the applications that the user runs. SELinux (Security-Enhanced Linux) is a security architecture for Linux systems that provides Linux administrators more control over who can access the Linux-based system. SELinux is based on the principle of Mandatory Access Control (MAC), which allows administrators to precisely define security policies and additional attributes that determine the conditions and contexts in which a user may access certain operating system processes or files. 

The course begins with an introduction to SELinux, covering the fundamental concepts and prerequisites involved. Moving forward, participants will learn about architecture, packages, states, and modes, as well as how to assign roles and manage users. The course will then demonstrate how to work with access policies, create customized policies, and carry out the troubleshooting process. Participants will also learn how to use Multi-Level Security (MLS) and how to secure container platforms with SELinux. Finally, the course will conclude with use scenarios and a comparison of SELinux with AppArmor and other Linux Security Modules. 

By the end of the course, participants will be able to use SELinux to enhance the protection of their Linux-based systems. Develop the ability to interpret SELinux audit logs, troubleshoot common issues using tools like audit2allow and sealert, and implement advanced security features such as Multi-Level Security (MLS) and application sandboxing. 

What You Will Learn

  • Understand the principles of SELinux
  • including Mandatory Access Control (MAC)
  • SELinux policies
  • contexts
  • and modes (enforcing
  • permissive
  • and disabled).
  • Learn how to install SELinux on various Linux distributions and configure it
  • including setting SELinux modes and managing configuration files.
  • Master essential SELinux commands (getenforce
  • setenforce
  • sestatus
  • etc.) and tools (semanage
  • restorecon
  • chcon
  • and audit2allow) for managing and troubleshooting SELinux policies.
  • Gain skills in writing
  • compiling
  • and deploying custom SELinux policies and modules
  • and using SELinux booleans to toggle policy settings.

Program Curriculum

  • General Overview
  • SELinux Introduction
  • Basic Concepts and Terminology
  • Chapter 1 Quiz

  • Introduction to Linux Security
  • Access Control Models in SELinux
  • Linux System Administration Basics
  • Installation and Configuration of SELinux
  • Chapter 2 Quiz

  • Introduction to SELinux Architecture
  • Core Components of SELinux
  • SELinux Policies
  • Chapter 3 Quiz

  • SELinux Policy Management Packages
  • SELinux Configuration Packages
  • Distribution-specific SELinux Packages
  • Updating and Maintaining SELinux Packages
  • Chapter 4 Quiz

  • Introduction to Linux Security
  • SELinux States
  • SELinux Modes
  • Checking SELinux Status
  • Chapter 5 Quiz

  • Role-based Access Control (RBAC)
  • Users and Roles
  • Mapping Linux Users to SELinux Users
  • Customizing Roles and Users
  • Chapter 6 Quiz

  • Access Policies
  • Policy Components
  • Compiling and Deploying Policies
  • Policy Analysis and Troubleshooting
  • Chapter 7 Quiz

  • Understanding SELinux Policy Basics
  • Defining Types and Domains
  • Customized SELinux Policies
  • Loading and Unloading Policies
  • Chapter 8 Quiz

  • Understanding SELinux States and Modes
  • SELinux Troubleshooting
  • SELinux Status and Logs
  • Common SELinux Commands
  • Chapter 9 Quiz

  • SELinux Multi-level Security (MLS)
  • MLS Policy Components
  • MLS Policy Configuration
  • MLS Policy Management
  • Chapter 10 Quiz

  • Real-world Applications and Use Cases
  • Best Practices for MLS Implementation
  • Web Server Security
  • Cloud Infrastructure Protection
  • File Server Security
  • Critical Infrastructure Defense
  • Chapter 11 Quiz

  • Summary of SELinux Features and Benefits
  • Importance of SELinux in Modern Security Practices
  • Real-world Examples and Success Stories
  • Conclusion and Call to Action
  • Closing Remarks
Load more modules

Instructor

CodeRed Team

CodeRed Team

Jean Pierre Niyodusenga is a Senior Manager of Network & Systems Security at Broadband Systems Corporation (BSC). Previously, he spent five years as an Information Security Manager at KTRN. He is also an Instructor at AUCA, teaching courses such as Software Security, Linux Programming, CCNA Routing and Switching, Ethical hacking, and Microsoft Systems admins. Additionally, he instructs in CEH, CCNA, Microsoft, and Linux certifications. He holds a master’s degree in Information Technology from Carnegie Mellon University and a bachelor’s degree in Information Technology from AUCA. Peter has earned multiple certifications, including Cisco (CCNA, CCNA Security, CCNA Instructor, and CCNP), Microsoft (MCITP, MCT), EC-Council (CEH, CEI, CHFI, CCISO, CSA), Red Hat Inc. (RHCE, RHCSA), NSE 4, and ISO 27001 Lead Implementer & Lead Auditor. 

Join over 1 Million professionals from the most renowned Companies in the world!

certificate

Empower Your Learning with Our Flexible Plans

Invest in your future with our flexible subscription plans. Whether you're just starting out or looking to enhance your expertise, there's a plan tailored to meet your needs. Gain access to in-demand skills and courses for your continuous learning needs.

Monthly Plans
Annual Plans
Save 20% with our annual plans!

Pro

Ideal for continuous learning, offering extensive resources with 600+ courses and diverse Learning Paths to enhance your skills.

$ 499.00
Billed annually or $59.00 billed monthly
Get Started Now
Start your 7-day trial for $1

What is included

  • 700+ Premium Short Courses
  • 50+ Structured Learning Paths
  • Validation of Completion with all courses and learning paths
  • New Courses added every month
Early Access Offer

Pro +

Experience immersive learning with Practice Labs, CTF Challenges, and exclusive EC-Council certifications for comprehensive skill-building.

$ 599.00
Billed annually or $69.00 billed monthly
Get Started Now
Start your 7-day trial for $1

Everything in Pro and

  • 800+ Practice Lab exercises with guided instructions
  • 150+ CTF Challenges with detailed walkthroughs
  • New Practice Labs and Challenges added every month
  • 3 Official EC-Council Essentials Certifications¹ (retails at $897!)
    Exclusive Bonus with Annual Plans

¹This plan includes Digital Forensics Essentials (DFE), Ethical Hacking Essentials (EHE), and Network Defense Essentials (NDE) certifications. No other EC-Council certifications are included.

Related Courses

  • Hands-on FortiGate Firewall

    Hands-on FortiGate Firewall

    Short Course

    Hands-on FortiGate Firewall

    Security Architecture and Operations

    Learn how to deploy the FortiGate NGFW and how to configure t...

    $99.99

    Intermediate

    3 hr 0 m

  • Hands-on SELinux

    Hands-on SELinux

    Short Course

    Hands-on SELinux

    Security Architecture and Operations

    Learn SELinux Basics: Implement Security Policies, Troublesho...

    $49.99

    Beginner

    5 hr 28 m

  • Complete Bash Shell Scripting

    Complete Bash Shell Scripting

    Short Course

    Complete Bash Shell Scripting

    Security Architecture and Operations

    Automate repetitive tasks with Bash Shell Scripting to save v...

    $79.99

    Intermediate

    18 hr 10 m

  • Installing and Mitigating Linux Rootkits

    Installing and Mitigating Linux Rootkits

    Short Course

    Installing and Mitigating Linux Rootkits

    Security Architecture and Operations

    Understanding the threat posed by rootkits in Linux and poten...

    $59.99

    Advanced

    3 hr 0 m

  • Start Hacking and Making Money Today at HackerOne

    Start Hacking and Making Money Today at HackerOne

    Short Course

    Start Hacking and Making Money Today at HackerOne

    Security Architecture and Operations

    Hack Legally and Get Paid for Your Findings

    $59.99

    Beginner

    1 hr 9 m

  • PowerShell Scripting Essentials: Anatomy of Logging – Developing a Logging Module

    PowerShell Scripting Essentials: Anatomy of Logging – Developing a Logging Module

    Short Course

    PowerShell Scripting Essentials: Anatomy of Logging – Developi...

    Security Architecture and Operations

    How to write a PowerShell module that contains functions to d...

    $69.99

    Intermediate

    6 hr 1 m

  • Machine Learning for Application in Digital Forensics

    Machine Learning for Application in Digital Forensics

    Short Course

    Machine Learning for Application in Digital Forensics

    Security Architecture and Operations

    Unlocking the Potential of Machine Learning: From Theory to P...

    $99.99

    Intermediate

    4 hr 0 m

  • Applied Python Cryptography

    Applied Python Cryptography

    Short Course

    Applied Python Cryptography

    Security Architecture and Operations

    Securing your Python code and protecting your users private i...

    $79.99

    Intermediate

    4 hr 0 m

1 8