Overview What You Will Learn Curriculum Instructor

Course Overview

Traditional Linux systems use Discretionary Access Control (DAC), which can be modified by root users and the applications that the user runs. SELinux (Security-Enhanced Linux) is a security architecture for Linux systems that provides Linux administrators more control over who can access the Linux-based system. SELinux is based on the principle of Mandatory Access Control (MAC), which allows administrators to precisely define security policies and additional attributes that determine the conditions and contexts in which a user may access certain operating system processes or files. 

The course begins with an introduction to SELinux, covering the fundamental concepts and prerequisites involved. Moving forward, participants will learn about architecture, packages, states, and modes, as well as how to assign roles and manage users. The course will then demonstrate how to work with access policies, create customized policies, and carry out the troubleshooting process. Participants will also learn how to use Multi-Level Security (MLS) and how to secure container platforms with SELinux. Finally, the course will conclude with use scenarios and a comparison of SELinux with AppArmor and other Linux Security Modules. 

By the end of the course, participants will be able to use SELinux to enhance the protection of their Linux-based systems. Develop the ability to interpret SELinux audit logs, troubleshoot common issues using tools like audit2allow and sealert, and implement advanced security features such as Multi-Level Security (MLS) and application sandboxing. 

What You Will Learn

  • Understand the principles of SELinux including Mandatory Access Control (MAC), SELinux policies, contexts and modes (enforcing permissive and disabled).
  • Learn how to install SELinux on various Linux distributions and configure it, including setting SELinux modes and managing configuration files.
  • Master essential SELinux commands (getenforce, setenforce , sestatus , etc.) and tools (semanage , restorecon, chcon and audit2allow) for managing and troubleshooting SELinux policies.
  • Gain skills in writing, compiling and deploying custom SELinux policies and modules and using SELinux booleans to toggle policy settings.

Program Curriculum

  • General Overview
  • SELinux Introduction
  • Basic Concepts and Terminology
  • Chapter 1 Quiz

  • Introduction to Linux Security
  • Access Control Models in SELinux
  • Linux System Administration Basics
  • Installation and Configuration of SELinux
  • Chapter 2 Quiz

  • Introduction to SELinux Architecture
  • Core Components of SELinux
  • SELinux Policies
  • Chapter 3 Quiz

  • SELinux Policy Management Packages
  • SELinux Configuration Packages
  • Distribution-specific SELinux Packages
  • Updating and Maintaining SELinux Packages
  • Chapter 4 Quiz

  • Introduction to Linux Security
  • SELinux States
  • SELinux Modes
  • Checking SELinux Status
  • Chapter 5 Quiz

  • Role-based Access Control (RBAC)
  • Users and Roles
  • Mapping Linux Users to SELinux Users
  • Customizing Roles and Users
  • Chapter 6 Quiz

  • Access Policies
  • Policy Components
  • Compiling and Deploying Policies
  • Policy Analysis and Troubleshooting
  • Chapter 7 Quiz

  • Understanding SELinux Policy Basics
  • Defining Types and Domains
  • Customized SELinux Policies
  • Loading and Unloading Policies
  • Chapter 8 Quiz

  • Understanding SELinux States and Modes
  • SELinux Troubleshooting
  • SELinux Status and Logs
  • Common SELinux Commands
  • Chapter 9 Quiz

  • SELinux Multi-level Security (MLS)
  • MLS Policy Components
  • MLS Policy Configuration
  • MLS Policy Management
  • Chapter 10 Quiz

  • Real-world Applications and Use Cases
  • Best Practices for MLS Implementation
  • Web Server Security
  • Cloud Infrastructure Protection
  • File Server Security
  • Critical Infrastructure Defense
  • Chapter 11 Quiz

  • Summary of SELinux Features and Benefits
  • Importance of SELinux in Modern Security Practices
  • Real-world Examples and Success Stories
  • Conclusion and Call to Action
  • Closing Remarks
Load more modules

Instructor

Jean Pierre

CodeRed Team

Jean Pierre Niyodusenga is a Senior Manager of Network & Systems Security at Broadband Systems Corporation (BSC). Previously, he spent five years as an Information Security Manager at KTRN. He is also an Instructor at AUCA, teaching courses such as Software Security, Linux Programming, CCNA Routing and Switching, Ethical Hacking, and Microsoft Systems Administration. Additionally, he instructs in CEH, CCNA, Microsoft, and Linux certifications. He holds a master’s degree in Information Technology from Carnegie Mellon University and a bachelor’s degree in Information Technology from AUCA. Jean Pierre has earned multiple certifications, including Cisco (CCNA, CCNA Security, CCNA Instructor, and CCNP), Microsoft (MCITP, MCT), EC-Council (CEH, CEI, CHFI, CCISO, CSA), Red Hat Inc. (RHCE, RHCSA), NSE 4, and ISO 27001 Lead Implementer & Lead Auditor.

Join over 1 Million professionals from the most renowned Companies in the world!

certificate

Empower Your Learning with Our Flexible Plans

Invest in your future with our flexible subscription plans. Whether you're just starting out or looking to enhance your expertise, there's a plan tailored to meet your needs. Gain access to in-demand skills and courses for your continuous learning needs.

Monthly Plans
Annual Plans
Save 20% with our annual plans!

Pro

Ideal for continuous learning, offering video-based learning with 840+ courses and diverse Learning Paths to enhance your skills.

$ 69.00
Billed monthly or $599.00 billed annually
Get Started Now
Start your 7-day trial for $1

What is included

  • 840+ Premium Short Courses
  • 70+ Structured Learning Paths
  • Validation of Completion with all courses and learning paths
  • New Courses added every month
Early Access Offer

Pro +

Experience immersive learning with Practice Labs and CTF Challenges for comprehensive skill-building.

$ 79.00
Billed monthly or $699.00 billed annually
Get Started Now
Start your 7-day trial for $1

Everything in Pro and

  • 1400+ Practice Lab exercises with guided instructions
  • 150+ CTF Challenges with detailed walkthroughs
  • New Practice Labs and Challenges added every month

Related Courses

  • Hacking WEP/WPA/WPA2 Wi-Fi Networks Using Kali Linux 2.

    Hacking WEP/WPA/WPA2 Wi-Fi Networks Using Kali Linux 2

    Short Course

    Hacking WEP/WPA/WPA2 Wi-Fi Networks Using Kali Linux 2

    Vulnerability Assessment and Pentesting

    The comprehensive course to secure & crack WEP/WPA/WPA2 k...

    $69.99

    Intermediate

    5 hr 12 m

  • Bootstrap 4 Quick Website Bootstrap Components Course.

    Bootstrap 4 Quick Website Bootstrap Components Course

    Short Course

    Bootstrap 4 Quick Website Bootstrap Components Course

    Software Development

    Explore the basics of Bootstrap and learn to create a website...

    $49.99

    Beginner

    1 hr 30 m

  • CCNA - Understanding Routers and Switches.

    CCNA - Understanding Routers and Switches

    Short Course

    CCNA - Understanding Routers and Switches

    Security Architecture and Operations

    A comprehensive guide to understanding the in-depth functioni...

    $49.99

    Intermediate

    2 hr 0 m

  • The Complete Full-Stack JavaScript Course.

    The Complete Full-Stack JavaScript Course

    Short Course

    The Complete Full-Stack JavaScript Course

    Software Development

    Learn full-stack web development using JavaScript (ReactJS, N...

    $79.99

    Beginner

    24 hr 17 m

  • React.JS for Ecommerce: Building a Store with React.JS

    React.JS for Ecommerce: Building a Store with React.JS

    Short Course

    React.JS for Ecommerce: Building a Store with React.JS

    DevSecOps

    From React.js Fundamentals to Crafting an Online Storefront

    $49.99

    Advanced

    3 hr 30 m

  • CISSP Certification Domains 5, 6, 7, and 8 Video Training.

    CISSP Certification Domains 5, 6, 7, and 8 Video Training

    Short Course

    CISSP Certification Domains 5, 6, 7, and 8 Video Training

    Cybersecurity

    This course is ideal for individuals who desire to pass the I...

    $69.99

    Intermediate

    6 hr 30 m

  • Helm 3 - Package Manager for Kubernetes.

    Helm 3 - Package Manager for Kubernetes

    Short Course

    Helm 3 - Package Manager for Kubernetes

    Software Development

    A must tool for every DevOps engineer

    $49.99

    Intermediate

    1 hr 27 m

  • Learn Ethical Hacking by Hacking Real Websites Legally.

    Learn Ethical Hacking by Hacking Real Websites Legally

    Short Course

    Learn Ethical Hacking by Hacking Real Websites Legally

    Vulnerability Assessment and Pentesting

    Fun way to learn ethical hacking by playing online hacking ga...

    $69.99

    Beginner

    4 hr 18 m

1 50
View all