LPI Highest Level:

Last updated April 2, 2004:


While recognizing that there will be a lot of overlap between areas and topics, I propose having four basic content areas for the LPI Level 3 certification:


  1. Security Concepts and Policy


Deals with information security best practices, policies, training and other non-technical best practices.


  1. Local security


Deals with local security issues user and authentication systems such as shadow passwords, PAM, filesystem and partition security, configuring local daemons and services, X-Windows, LIDS, Logging, Mail security, physical and bootloader security, incident response, etc.


  1. Network security


Deals with security issues that mainly use the network user and authentication systems such as NIS/Kerberos, Samba, Inetd/Xinetd, Linux firewalling (iptables and ipchains), NAT, Performing vulnerability assessments, email security (relay, mimedefang, TLS), SSH, NMAP, Nessus


  1. Packages / addons


Deals with all the packages or add-ons that are worthy of a section all their own, to include things such as Apache, Sama, Snort, BIND, NFS, SeLinux, etc.

Area #1
Area #2
Area #3
Area #4
Curriculum items for Nessus
Curriculum items for Nmap