Presentation is loading. Please wait.

Presentation is loading. Please wait.

CompTIA Server+ Certification (Exam SK0-004)

Published byErick Grant Modified over 6 years ago

Similar presentations

Presentation on theme: "CompTIA Server+ Certification (Exam SK0-004)"— Presentation transcript:

1 CompTIA Server+ Certification (Exam SK0-004)
5.3 Server Hardening

2 Understand the concepts of hardening, baseline configurations, and host management
Apply operating system and application software patches and firmware updates The number in the bottom right corner of the slides refers back to the page where this topic starts in the course book. 5.3 Server Hardening

3 Baseline OS Security and Settings
Attack surface Interfaces Services Application service ports Install to secure configuration Uninstall or disable unnecessary devices / services / protocols Install patches and updates Configure shared resources / ACLs and user privileges Install and configure security software Anti-malware Host firewall / IDS Server application hardening Execution control (white listing / black listing) 5.3 Server Hardening

4 Firmware Security System passwords
Supervisor / Administrator User Disable Wake on LAN (WoL) and hardware Intrusion detection 5.3 Server Hardening

5 Patch Management Security control improving availability
Update policies and schedule Apply all latest Only apply specific patches Testing 5.3 Server Hardening

6 Windows Update Types of patches and service packs
Windows Update web client Windows Server Update Services (WSUS) 5.3 Server Hardening

7 Linux Patch Management
Distribution repositories Source code versus precompiled Package managers (rpm, apt-get, yum) 5.3 Server Hardening

8 Upgrading Firmware Update via vendor website / update tool
Updates for security software Firmware updates 5.3 Server Hardening

9 Understand the concepts of hardening, baseline configurations, and host management
Apply operating system and application software patches and firmware updates What general procedures are involved in server hardening? Establish a configuration baseline identifying the necessary services and ports that should be open and running and software that should be installed and disable or uninstall everything else. Make sure that OS and application patches and drivers are kept up-to-date. Configure security software and access permissions / privileges appropriately. In a security context, what would disabling WoL achieve? Prevent a server from being turned on over the network without authorization. What is WSUS? Windows Server Update Services is a Windows service for managing product update deployment. Name three Linux package managers that can be configured to install application updates. rpm (RedHat), apt-get (Debian), and yum (Fedora). Following an update cycle, multiple servers in your company are experiencing high packet loss due to checksum errors. What type of update rollback is most likely to fix this type of problem? Most likely to be a driver issue. What type of update is most likely to require frequent installation and least likely to require extensive testing? Security software (anti-malware) updates are often issued frequently and should have the least impact on system reliability, though problems can occur. 5.3 Server Hardening

Download ppt "CompTIA Server+ Certification (Exam SK0-004)"

Similar presentations

Security Update Server Registration, Active scanning and Windows patching.

Security Update Server Registration, Active scanning and Windows patching.
1 Chapter 8 Fundamentals of System Security. 2 Objectives In this chapter, you will: Understand the trade-offs among security, performance, and ease of.

1 Chapter 8 Fundamentals of System Security. 2 Objectives In this chapter, you will: Understand the trade-offs among security, performance, and ease of.
Host Hardening (March 21, 2011) © Abdou Illia – Spring 2011.

Host Hardening (March 21, 2011) © Abdou Illia – Spring 2011.
System and Network Security Practices COEN 351 E-Commerce Security.

System and Network Security Practices COEN 351 E-Commerce Security.
INTRANET SECURITY Catherine Alexis CMPT 585 Computer and Data Security Dr Stefan Robila.

INTRANET SECURITY Catherine Alexis CMPT 585 Computer and Data Security Dr Stefan Robila.
Exam ● On May 15, at 10:30am in this room ● Two hour exam ● Open Notes ● Will mostly cover material since Exam 2 ● No, You may not take it early.

Exam ● On May 15, at 10:30am in this room ● Two hour exam ● Open Notes ● Will mostly cover material since Exam 2 ● No, You may not take it early.
How PNNL Manages Windows Desktops 1 Will Jorgensen.

How PNNL Manages Windows Desktops 1 Will Jorgensen.
Firewall 2 * Essential Network Security Book Slides. IT352 | Network Security |Najwa AlGhamdi 1.

Firewall 2 * Essential Network Security Book Slides. IT352 | Network Security |Najwa AlGhamdi 1.
Installing and Configuring a Secure Web Server COEN 351 David Papay.

Installing and Configuring a Secure Web Server COEN 351 David Papay.
© 2013 Jones and Bartlett Learning, LLC, an Ascend Learning Company www.jblearning.com All rights reserved. Security Strategies in Linux Platforms and.

© 2013 Jones and Bartlett Learning, LLC, an Ascend Learning Company All rights reserved. Security Strategies in Linux Platforms and.
Principles of Computer Security: CompTIA Security + ® and Beyond, Second Edition © 2010 Baselines Chapter 14.

Principles of Computer Security: CompTIA Security + ® and Beyond, Second Edition © 2010 Baselines Chapter 14.
Chapter 8 Hardening Your SQL Server Instance. Hardening  Hardening The process of making your SQL Server Instance more secure  New features Policy based.

Chapter 8 Hardening Your SQL Server Instance. Hardening  Hardening The process of making your SQL Server Instance more secure  New features Policy based.
Chapter 4: Security Baselines Security+ Guide to Network Security Fundamentals Second Edition.

Chapter 4: Security Baselines Security+ Guide to Network Security Fundamentals Second Edition.
1 Infrastructure Hardening. 2 Objectives Why hardening infrastructure is important? Hardening Operating Systems, Network and Applications.

1 Infrastructure Hardening. 2 Objectives Why hardening infrastructure is important? Hardening Operating Systems, Network and Applications.
E-Security: 10 Steps to Protect Your School’s Network NEN – the education network.

E-Security: 10 Steps to Protect Your School’s Network NEN – the education network.
Module 14: Configuring Server Security Compliance

Module 14: Configuring Server Security Compliance
Introduction to Computer Administration Course Supervisor: Muhammad Saeed.

Introduction to Computer Administration Course Supervisor: Muhammad Saeed.
Principles of Computer Security: CompTIA Security + ® and Beyond, Third Edition © 2012 Principles of Computer Security: CompTIA Security+ ® and Beyond,

Principles of Computer Security: CompTIA Security + ® and Beyond, Third Edition © 2012 Principles of Computer Security: CompTIA Security+ ® and Beyond,
Training and Dissemination Enabling Grids for E-sciencE www.eu-egee.org Jinny Chien, ASGC 1 Training and Dissemination Jinny Chien Academia Sinica Grid.

Training and Dissemination Enabling Grids for E-sciencE Jinny Chien, ASGC 1 Training and Dissemination Jinny Chien Academia Sinica Grid.
Module 6: Designing Security for Network Hosts

Module 6: Designing Security for Network Hosts

Similar presentations

Ads by Google