Mission 345

Security administration bridge

Checkpoint SSH policy, identity, listeners, and firewall evidence.

Security administration
8 minutes Capstone Lesson 345 of 360
sshgrepssufw
Lesson 345 of 360 0/360 lessons 0/17 missions Security administration · 8 minutes
0%
Continue View profile
Ops lab terminal Training lab
New learnerrank 0XP 0%complete
learner@clairos:/home/learner $ Unix ops lab: type a command, press Enter
Instructions 8 minutes

Click any instruction for the command details, the why, and the common mistake to avoid.

Resolve SSH client policy

Run ssh -G lab.

ssh -G lab
Check root-login policy

Run grep PermitRootLogin /etc/ssh/sshd_config.

grep PermitRootLogin /etc/ssh/sshd_config
List exposed listeners

Run ss -tulpn.

ss -tulpn
Compare firewall policy

Run ufw status verbose.

ufw status verbose
Lesson support

What to notice while you play.

Objective

Build repeatable confidence with assembling a defensible security posture review.

Hint

Start with ssh -G lab, inspect the result, then continue in order.

Why it matters

Assembling a defensible security posture review helps operators explain what they know before they change anything.

Common mistakes
  • Skipping the output that proves assembling a defensible security posture review.
  • Changing several things before recording a baseline.
Reference

Commands in this lesson.

grep [-i] <text> <file>

Find literal text inside a file.

ss|ip

Inspect simulated sockets and addresses.

ssh|scp|ssh-keygen

Practice SSH inspection and dry-run transfer shapes without network access.

ufw status

Inspect simulated firewall rules.