Mission 254

Security evidence checkpoint

Tie identity, SSH, firewall, and logs into a review.

Security administration
8 minutes Capstone Lesson 254 of 360
whoamigrepufwjournalctl
Lesson 254 of 360 0/360 lessons 0/17 missions Security administration · 8 minutes
0%
Continue View profile
Ops lab terminal Training lab
New learnerrank 0XP 0%complete
learner@clairos:/home/learner $ Unix ops lab: type a command, press Enter
Instructions 8 minutes

Click any instruction for the command details, the why, and the common mistake to avoid.

Confirm user

Run whoami.

whoami
Check password auth

Run grep PasswordAuthentication /etc/ssh/sshd_config.

grep PasswordAuthentication /etc/ssh/sshd_config
Review firewall

Run ufw status verbose.

ufw status verbose
Read SSH journal

Run journalctl -u ssh -n 2.

journalctl -u ssh -n 2
Lesson support

What to notice while you play.

Objective

Tie identity, SSH, firewall, and logs into a review.

Hint

Run the commands in order and compare the outputs.

Why it matters

Junior operators build confidence by gathering evidence before changing systems.

Common mistakes
  • Skipping the inspection step.
  • Assuming one command tells the whole story.
Reference

Commands in this lesson.

grep [-i] <text> <file>

Find literal text inside a file.

whoami|id|groups

Inspect the learner account.

journalctl -u <service>

Read simulated service journal entries.

ufw status

Inspect simulated firewall rules.